Security Directory

E

Ehinger Schwarz

ehinger-schwarz.de

0

Ehinger Schwarz is a well-established German jewelry manufacturer and retailer founded in 1876, offering high-quality, innovative jewelry products including rings, necklaces, and wedding bands. The company operates an e-commerce platform supported by a professional website built on the Shopware CMS, hosted by Timme Hosting. The site is well-structured, mobile-optimized, and includes modern tracking and consent management tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and formal security policies could be improved. Privacy compliance is strong with clear GDPR-aligned privacy and cookie policies. Overall, the website projects a trustworthy and professional image suitable for its retail audience.

K

Kolibri Ulm

kolibri-ulm.de

0

Kolibri Ulm is a small retail boutique specializing in exclusive women's fashion, high-quality accessories, and jewelry, located in Ulm, Germany. The business offers personalized fashion consulting and online shopping, targeting women seeking unique designer fashion. The website is built on the Shopify platform and incorporates common marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is well-designed with good SEO metadata and mobile optimization, providing a positive user experience. However, it lacks explicit privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the website appears legitimate and professionally maintained but would benefit from enhanced privacy and security disclosures.

B

Brunnenverwaltung Bad Dietenbronn GmbH

dietenbronner.de

0

Brunnenverwaltung Bad Dietenbronn GmbH operates the Dietenbronner Mineralwasser brand, a regional mineral water and beverage producer based in Oberschwaben, Germany. The company has a long-standing family ownership of over 90 years and offers a range of products including mineral water, schorlen, fruit juice beverages, and lemonades. The website reflects a professional and consistent brand image targeting general consumers interested in natural and regional products. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and JavaScript libraries, providing a responsive and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

T

Tentschert Immobilien GmbH & Co KG

tentschert.de

0

Tentschert Immobilien GmbH & Co KG is a well-established real estate brokerage firm operating primarily in Ulm, Neu-Ulm, and surrounding regions in Germany. With over 30 years of market experience, the company offers a comprehensive range of services including property sales, rentals, valuations, and market reporting. The website reflects a professional and trustworthy business with a clear focus on customer service and market expertise. Technically, the site is built on WordPress using the Enfold theme and several specialized plugins, supported by Cloudflare DNS and hosting infrastructure. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Overall, the site is well-optimized for SEO and user experience, targeting general audiences interested in real estate services.

T

Teva GmbH

teva.de

0

Teva GmbH operates a comprehensive pharmaceutical website focused on providing information about their products, corporate responsibility, and patient support. As a top-20 global pharmaceutical company, Teva offers a broad portfolio including generics, biosimilars, and innovative medicines, targeting patients, healthcare professionals, and potential employees. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS and integrates modern technologies such as RequireJS, Google Tag Manager, Google Optimize, and a consent management platform (Usercentrics) to ensure GDPR compliance. Performance and accessibility are good, with SEO best practices implemented including structured data and meta tags. Security posture is solid with HTTPS enforced and basic security best practices observed. However, additional security headers and a published security policy or incident response contacts are absent, representing areas for improvement. No vulnerabilities or suspicious content were detected. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, supporting Teva's business credibility and market position. Strategic enhancements in security transparency and incident response readiness would further strengthen their security posture.

P

Pani-Solutions

anmeldungs-service.de

0

Anmeldungs-Service is a German online platform specializing in registration services for various sports events such as running, triathlon, and multisport competitions. The website targets participants and organizers within Germany, offering a streamlined four-step registration process and participant login for managing registrations. The business operates as a small entity under Pani-Solutions, focusing on niche sports event management services. The platform integrates live registration updates and provides clear navigation and content in German, enhancing user experience for its target audience. Technically, the website employs a moderate technology stack including jQuery 1.9.1, Cookiebot for cookie consent, and analytics tools such as Matomo and Cloudflare Web Analytics. The site is hosted behind Cloudflare, leveraging its DNS and CDN services. While the site is mobile optimized and uses a CSS framework (YAML), some technical debt is evident due to the use of outdated jQuery and lack of explicit security headers. Performance is moderate, and SEO and accessibility are basic but functional. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating GDPR compliance. However, the absence of explicit security headers and use of an outdated JavaScript library present potential vulnerabilities. No direct contact or incident response information is provided, limiting transparency in security policies. The WHOIS data is consistent with the business profile, showing no suspicious patterns, and the domain is appropriately registered with Cloudflare nameservers. Overall, the website is functional and trustworthy for its niche market but would benefit from technical and security improvements. Strategic recommendations include updating JavaScript libraries, implementing comprehensive security headers, enhancing contact transparency, and conducting regular security audits to strengthen compliance and user trust.

H

HAMMER

hammer.de

0

HAMMER operates a professional e-commerce platform specializing in fitness equipment for home use, targeting fitness enthusiasts primarily in Germany. The company positions itself as a premium German manufacturer and retailer, offering a broad range of products alongside customer support and value-added services such as free shipping, returns, and online coaching. The website is built on Magento, leveraging a mature technical infrastructure with integrations for marketing, analytics, and payment processing. The digital maturity is evident through the use of advanced tracking, personalization, and performance monitoring tools. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response details are absent. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the website presents a trustworthy and professional front with good user experience and content quality.

M

Milchwerke Schwaben eG

weideglueck.de

0

Milchwerke Schwaben eG is a regional cooperative dairy producer based in Germany with a history spanning over 100 years. The company specializes in producing and selling a variety of dairy products including natural and fruit yoghurts, butter, cheese, desserts, and a comprehensive organic product range. Their business model focuses on collaboration with regional farmers and serving both retail consumers and cooperative members through dedicated portals. The website reflects a well-established brand with consistent messaging and certifications emphasizing animal welfare and organic standards. Technically, the website is built on Joomla CMS with common JavaScript libraries such as jQuery and includes modern cookie consent management via Klaro. Analytics are handled by etracker, and social media integration is present. The site is mobile optimized with good navigation and content quality, although some accessibility features could be improved. Performance is moderate, suitable for the target audience. From a security perspective, the site uses HTTPS (implied though not explicitly confirmed), has implemented cookie consent mechanisms, and avoids exposing sensitive data. However, no advanced security headers or explicit security policies are found, and no incident response or vulnerability disclosure information is provided. The WHOIS data is transparent and consistent with the business profile, supporting legitimacy. Overall, the website presents a trustworthy and professional image with good privacy compliance and business credibility. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance the security posture and user trust.

U

Uzin Utz SE

uzin-utz.com

0

Uzin Utz SE is a well-established German manufacturer specializing in floor installation systems and related products, boasting over a century of history. The company operates a portfolio of strong brands including UZIN, WOLFF, PALLMANN, Arturo, codex, and Pajarito, serving professionals in construction, flooring, and related industries. Their website reflects a mature digital presence with comprehensive content, investor relations, and career opportunities. Technically, the site is built on TYPO3 CMS with modern analytics and consent management tools, ensuring good performance and compliance with privacy regulations. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though some security headers could be explicitly implemented. The absence of WHOIS data limits domain trust verification, but the overall professional presentation and transparent policies support legitimacy. Strategic recommendations include enhancing security headers, maintaining updated software, and improving incident response visibility.

H

Häussler Technische Orthopädie GmbH

haeussler-ulm.de

0

Häussler Technische Orthopädie GmbH is a well-established healthcare provider specializing in orthopaedic and rehabilitation technology, medical supplies, and homecare services. With over 100 years of history and multiple physical branches primarily in the Ulm region of Germany, the company offers personalized consultation and a broad range of healthcare products. Their market position is that of a trusted regional family business with a strong local presence and comprehensive service offerings. Technically, the website is built using modern frontend technologies including Vue.js and Tailwind CSS, with good mobile optimization and performance. The site integrates Google Tag Manager and Google Identity Services for analytics and marketing purposes. Security posture is solid with HTTPS enforced and cookie consent implemented, although explicit security headers and a public security policy are absent. Privacy compliance is good, with a comprehensive privacy policy and cookie consent mechanism in place. Overall, the website presents a professional, trustworthy, and user-friendly digital presence aligned with the company's business objectives.

S

Sparkasse Ulm

sparkasse-ulm.de

0

Sparkasse Ulm is a well-established regional financial institution in Germany offering a broad range of banking and financial services to private and corporate customers. The website reflects a strong market position supported by recognized awards such as Leading Employer 2024 and Best Bank locally. Their digital presence is mature, leveraging modern web technologies and a sophisticated CMS platform to deliver a comprehensive, accessible, and user-friendly online banking experience. Security practices are robust with HTTPS enforcement, session management, and cookie consent mechanisms, although explicit security policy disclosures and incident response contacts are absent. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

D9T GmbH is a German-based technology company specializing in digital transformation and Odoo ERP implementation services. As a certified Odoo Gold Partner, they provide comprehensive ERP solutions, hosting services in their own data centers, and consulting support tailored to the German market. Their market position is strengthened by multiple certifications, specialized apps, and a membership in the openfellas Gruppe, indicating strategic growth and partnership. The website reflects a professional and trustworthy business with clear service offerings aimed at enterprises seeking efficient ERP deployment and hosting. Technically, the website is built on the Odoo platform, leveraging modern web technologies such as Bootstrap and FontAwesome. It is mobile-optimized, accessible, and SEO-friendly, with moderate performance. The hosting is self-managed, indicating control over infrastructure. Security posture is good with HTTPS enforced and CSRF tokens present, but lacks some security headers and cookie consent mechanisms, which are recommended for enhanced compliance and protection. Security-wise, the site shows no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies and incident response contacts suggests room for improvement in transparency and readiness. The WHOIS data is limited due to DENIC privacy restrictions but shows an active domain with consistent registration status. Overall, the domain and website appear legitimate and professionally maintained. The overall risk is low with recommendations focusing on improving privacy compliance and security headers. Strategic enhancements in these areas will strengthen trust and regulatory adherence, supporting D9T GmbH's position as a reliable technology partner in the ERP space.

B

basemap.de

basemap.de

0

basemap.de is a specialized provider of official cartographic products and web mapping services for Germany, targeting government agencies and GIS professionals. The website presents a professional and consistent brand image with a focus on official geospatial data products derived from centralized data sources. The technical infrastructure is based on a modern WordPress CMS with popular plugins and frameworks, hosted on German servers, indicating a mature digital presence. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks advanced security headers and incident response disclosures. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and well-positioned in its niche, though improvements in security and compliance would enhance its profile.

B

Bundesamt für Kartographie und Geodäsie

geodatenzentrum.de

0

The Bundesamt für Kartographie und Geodäsie operates the Geodatenzentrum website as a central platform for providing official geospatial data, maps, software, and web services primarily for German governmental and professional users. The site serves as a key distribution point for both free and licensed geodata, supporting compliance with national and European data standards such as INSPIRE. Technically, the website is built on a Magento eCommerce framework with legacy JavaScript libraries including Prototype.js and jQuery 1.12.4, alongside geospatial libraries like OpenLayers. While the site uses HTTPS and CAPTCHA protections, some outdated libraries and missing security headers present moderate security risks. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site is professionally designed, consistent in branding, and trustworthy as a government resource.

W

WeLocal World AG

welocal.world

0

WeLocal World AG is a specialized technology company providing a comprehensive Content Management System (CMS) tailored for media companies including TV and radio stations, as well as enterprises. Their flagship product, CMMS, is a video CMS designed to manage and publish multimedia content across multiple platforms such as websites, mobile apps, smart TVs, and streaming services. The company emphasizes full-service solutions including hardware, software, and ongoing support, positioning itself as a niche provider in the media technology sector. Their market approach includes white-label solutions for rapid deployment and customization, targeting media houses and broadcasters primarily in Germany. Technically, the website leverages modern web technologies including Vue.js, Video.js, and integrates Matomo for analytics alongside Usercentrics for consent management, reflecting a mature digital infrastructure. The site is well-optimized for performance, mobile responsiveness, and SEO, with structured data enhancing search visibility. Hosting is GDPR-compliant with servers located in Germany, underscoring their commitment to data privacy. From a security perspective, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data limits domain trust assessment, but the professional presentation and contact transparency mitigate concerns. Overall, WeLocal World AG demonstrates a strong business and technical foundation with good privacy compliance and a solid security posture. Strategic recommendations include enhancing HTTP security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

P

Parlabox

parlabox.pro

0

Parlabox is a German-based company providing a cloud-based digital whistleblower reporting system designed to help small and medium enterprises comply with the EU Whistleblower Directive and the German Hinweisgeberschutzgesetz. Their solution emphasizes legal compliance, end-to-end encryption, and ease of use, targeting companies required by law to implement internal reporting channels. The website is professionally designed using WordPress and Elementor, featuring rich media content and structured data to enhance SEO and user experience. The technical infrastructure is modern and includes performance optimizations and multilingual support. Security posture is solid with HTTPS and encryption claims, though some security headers could be improved. Privacy compliance is partially addressed with cookie consent but lacks explicit privacy and terms of service pages. WHOIS data is unavailable due to privacy protections, which is justified given the sensitive nature of the business. Overall, Parlabox presents a trustworthy and professional digital compliance solution with room for enhanced transparency and security documentation.

spin.de is a well-established German online community platform operated by Spin AG, offering chat rooms, forums, online games, personal homepages, and social networking features. It targets a broad audience interested in social interaction, gaming, and community engagement, positioning itself as one of the oldest and popular platforms in its niche since 1996. The platform provides free registration and a variety of interactive services, including mobile apps and a mobile-optimized site. Technically, the site uses standard web technologies with custom scripts and is hosted by a reputable German hosting provider, noris network. The website is moderately optimized for performance and mobile use, with good SEO practices but basic accessibility features. Security posture is adequate with enforced HTTPS and form protections, but lacks explicit security headers and published security policies. Privacy compliance is partial, with clear privacy and terms of service pages but no visible cookie consent mechanism. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

L

LEGOLAND Deutschland

legoland.de

0

LEGOLAND Deutschland operates a family-oriented theme park in Bavaria, Germany, offering numerous attractions and themed experiences centered around LEGO® bricks. The website reflects a professional digital presence with a focus on family leisure and vacation planning. The technical infrastructure includes modern analytics and marketing tools such as Google Tag Manager, Visual Website Optimizer, and Microsoft Application Insights, hosted on Microsoft Azure DNS services. The site implements GDPR-compliant cookie consent via OneTrust, indicating awareness of privacy regulations. However, explicit privacy policies and terms of service are not clearly found in the provided content, which could be improved for compliance and transparency. Security posture is generally good with HTTPS enforced, but lacks visible security headers and incident response information. Overall, the website is safe, well-branded, and trustworthy for its target audience.

P

Panoramahotel Oberjoch

panoramahotel-oberjoch.de

0

Panoramahotel Oberjoch is a 4-star superior wellness hotel located in the Allgäu region of Germany, offering services such as pools, saunas, massages, fine dining, and alpine spa experiences. The website positions the hotel as a premium destination for wellness and leisure travelers, supported by a strong customer rating and active social media presence. Technically, the site is built on TYPO3 CMS, integrates modern marketing and analytics tools like Mailchimp and Google Tag Manager, and is hosted on raidboxes.net, indicating a professional digital infrastructure. Security posture is moderate with HTTPS implied but lacks visible security headers and formal privacy or cookie policies, which are recommended for compliance and trust. Overall, the website is well-designed, content-rich, and trustworthy, with room for improvement in privacy compliance and security best practices.

P

pixx.io GmbH

pixx.io

0

pixx.io GmbH operates a German-based Digital Asset Management (DAM) platform leveraging artificial intelligence to enhance media management workflows. The company targets businesses and teams requiring secure, GDPR-compliant cloud solutions for organizing, tagging, licensing, and sharing digital media assets. With over 1,600 customers and a strong ROI claim, pixx.io positions itself as a reliable and efficient DAM provider in the German and broader European market. The website is professionally designed, mobile-optimized, and rich in content including extensive customer testimonials and detailed product information. Technically, the site uses modern frameworks such as Alpine.js and Tailwind CSS, integrates Google Tag Manager and Usercentrics for analytics and consent management, and employs reCAPTCHA for form security. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be confirmed. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. WHOIS data is unavailable due to a malformed query response, limiting domain registration transparency, but the overall business credibility and website professionalism support legitimacy. Strategic recommendations include publishing incident response contacts and vulnerability disclosure policies to enhance trust further.

T

Technische Hochschule Lübeck

th-luebeck.de

0

Technische Hochschule Lübeck is a reputable German technical university offering a broad range of applied science degree programs and research projects primarily in technology, economics, and design. The institution emphasizes practical education, industry cooperation, and innovation, positioning itself as one of Germany's top-funded universities. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-respecting analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response details are absent. Overall, the site is professional, trustworthy, and well-structured, serving students, researchers, and industry partners effectively.

A

astradirect Schließfächer GmbH

astradirect.de

0

astradirect Schließfächer GmbH is a German company specializing in providing locker rental services primarily for schools and students. They position themselves as the largest locker provider in Germany with over 6,300 satisfied schools. Their offerings include locker rentals, insurance packages for lockers and valuables, and innovative modular locker designs with digital locking systems using RFID technology. The company targets educational institutions and students, providing convenient online rental and service portals. Technically, the website is built using modern Angular framework (version 19.2.14) with good mobile optimization, accessibility, and SEO practices. Security-wise, the site enforces HTTPS, includes anti-clickjacking measures, and provides cookie consent mechanisms, although explicit security headers like CSP are not clearly visible. No critical vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the business information, indicating legitimacy and consistency. Overall, the website demonstrates a mature digital presence with good security posture and compliance, supporting a trustworthy business operation.

W

Würzburg-Dresden Cluster of Excellence ct.qmat

ctqmat.de

0

The Würzburg-Dresden Cluster of Excellence ct.qmat is a prominent academic research center specializing in topological and complex quantum matter. Established in 2019, it unites leading research hubs from Universität Würzburg and Technische Universität Dresden, focusing on advancing quantum materials research, education, and public outreach. The website reflects a professional and well-maintained digital presence with comprehensive content targeted at researchers, students, and the interested public. Technically, the site employs modern web standards, responsive design, and uses Matomo analytics for privacy-conscious tracking. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is good with a clear privacy policy but lacks a cookie consent mechanism. Overall, the site is trustworthy and authoritative within its academic domain.

The website 'gruendungsradar.de' serves as a specialized data portal operated by the Stifterverband, focusing on comparing startup funding profiles across German universities. It targets academic institutions and stakeholders interested in entrepreneurial support within higher education. The platform provides valuable insights into university startup ecosystems, supporting data-driven decision-making and policy development. Technically, the site is built on Drupal 10 CMS, leveraging modern JavaScript libraries such as lazysizes for image optimization and Usercentrics for consent management, alongside a self-hosted Matomo analytics solution, indicating a moderate level of digital maturity. Security-wise, while HTTPS is implied, explicit security headers and policies are not evident in the provided data, and no vulnerability disclosure or incident response information is available, suggesting room for improvement in security transparency and compliance. Overall, the site presents a professional and focused resource with moderate risk, primarily due to missing explicit privacy and security documentation.

B

Bayerisches Zentrum für Krebsforschung

bzkf.de

0

The Bayerisches Zentrum für Krebsforschung (BZKF) is a Bavarian non-profit organization focused on providing comprehensive cancer research, treatment information, and patient support services across Bavaria. The website serves multiple audiences including patients, relatives, healthcare professionals, and researchers. It offers detailed information on cancer prevention, diagnostics, therapies, rehabilitation, and clinical studies. The organization collaborates with prominent Bavarian universities and hospitals, reinforcing its regional leadership in oncology. Technically, the website is built on TYPO3 CMS with Bootstrap styling and integrates Google Tag Manager for analytics. It is hosted on OVH infrastructure and demonstrates good mobile optimization, accessibility, and SEO practices. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, some security best practices such as explicit security headers and incident response disclosures are missing. Security posture is moderate with HTTPS usage and anonymized IP tracking in analytics, but lacks visible advanced security headers or vulnerability disclosure mechanisms. The domain WHOIS data aligns with the organization's regional focus and shows no suspicious patterns, supporting legitimacy. Overall, the website is professional, trustworthy, and well-structured, serving its mission effectively. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security maturity and trustworthiness.

U

Universität Würzburg GmbH

uni-wuerzburg-gmbh.de

0

Universität Würzburg GmbH is a subsidiary company of the Julius-Maximilians-Universität Würzburg, founded in 2015 to provide educational and campus services acting as a bridge between the university, students, and the economy. The website presents a professional image with clear information about their services including a Uni-Shop, job fairs, further education, and career services. The target audience primarily includes students, university staff, and local businesses. Technically, the site is built on WordPress using modern themes and plugins, hosted on a professional hosting provider, and shows good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with comprehensive policies and consent management. Overall, the website is trustworthy, well-maintained, and aligned with the business's educational mission.

S

Studentenwerk Hannover

studentenwerk-hannover.de

0

Studentenwerk Hannover is a regional non-profit organization dedicated to supporting students in Hannover, Germany, by providing essential services such as affordable dining options, student housing, financial aid through BAföG, and social counseling. The website clearly targets students and offers comprehensive information about these services, positioning itself as a trusted partner in the academic journey. The business model focuses on service provision rather than commercial profit, emphasizing community support and student welfare. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Cookiebot for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization and a clear navigation structure, although accessibility features could be improved. Performance is moderate, with no major technical issues detected. The use of HTTPS and cookie consent mechanisms indicates a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and uses a reputable cookie consent platform, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partially met with cookie consent but lacks a dedicated privacy policy page. Overall, the security posture is adequate but could benefit from enhanced transparency and additional security controls. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include publishing comprehensive privacy and security policies, adding incident response contact information, implementing security headers, and improving accessibility compliance to enhance trust and regulatory adherence.

Hochschule Hannover University of Applied Sciences and Arts operates a secure Single Sign-On (SSO) portal for its students and staff, facilitating access to various academic and administrative services. The website is professionally designed with consistent branding and provides essential legal and privacy information, reflecting its role as a reputable educational institution in Germany. The target audience primarily includes students, faculty, and academic partners. Technically, the site employs a standard tech stack including jQuery, Bootstrap, and SimpleSAMLphp for authentication, hosted on academic DNS infrastructure, ensuring reliability and security. Security posture is strong with HTTPS enforced and secure form inputs, although additional security headers could enhance protection. Privacy compliance is adequate with clear privacy and legal notices, but lacks cookie consent mechanisms. Overall, the site is trustworthy, safe, and well-suited for its educational purpose.

I

in2code GmbH

notfallwebsite.com

0

The website www.notfallwebsite.com is operated by in2code GmbH, a German company specializing in providing a robust, cloud-hosted TYPO3 emergency website solution designed to maintain communication capabilities during cyberattacks or IT infrastructure incidents. The service targets universities, public institutions, and private companies, offering a scalable, hardened platform that serves static HTML content to minimize attack surfaces. The business model is SaaS-based, focusing on emergency communication continuity. Technically, the site leverages modern compression algorithms (Brotli, GZip), a CDN, and AWS cloud infrastructure to ensure performance and resilience. Privacy compliance is well addressed with GDPR-aligned cookie consent and a comprehensive privacy policy. Security posture is solid with hardened CMS usage and scalable hosting, though explicit HTTP security headers and published security policies are absent. WHOIS data is missing, which raises some legitimacy concerns, but the professional presentation and clear contact details mitigate risk. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with recommendations to enhance security headers and domain registration transparency.

E

Entrepreneurship Hub

entrepreneurship-hub.org

0

The Entrepreneurship Hub is an educational initiative focused on fostering entrepreneurship and innovation among students, primarily affiliated with the TU Braunschweig and Ostfalia Hochschule in Germany. It offers a range of teaching formats, research projects, and support services aimed at enabling students to successfully found innovative companies. The website is professionally designed using WordPress and Elementor, with a clear structure and good mobile optimization. It integrates GDPR-compliant cookie consent and uses Matomo for analytics, reflecting a mature approach to privacy and data protection. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of WHOIS data is likely due to privacy protection, which is justified for this type of educational entity. Overall, the site presents a trustworthy and professional image with strong business credibility in the education sector.

H

Hochschulallianz für den Mittelstand

hochschulallianz.de

0

Hochschulallianz für den Mittelstand is a German nationwide alliance of application-oriented universities focused on supporting small and medium-sized enterprises (SMEs). The organization facilitates networking, research collaboration, and knowledge exchange among universities and the Mittelstand sector. The website reflects a professional and consistent brand presence, targeting educational institutions and SMEs in Germany. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, ensuring good SEO and user experience. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, GDPR compliant, and well-structured, serving its educational and networking mission effectively.

C

Carl von Ossietzky Universität Oldenburg

uni-oldenburg.de

0

Carl von Ossietzky Universität Oldenburg is a well-established public university in Germany, founded in 1973, offering a broad range of academic programs and research activities. The website serves as an information portal for students, researchers, staff, and international visitors, providing access to study programs, research news, events, and administrative resources. The university emphasizes research excellence, international cooperation, and lifelong learning. Technically, the site is built on TYPO3 CMS with modern frontend libraries and is served securely over HTTPS. The site is well-structured, mobile-optimized, and accessible, with good SEO practices. However, explicit privacy and cookie policies are not clearly presented, and no incident response or vulnerability disclosure information is available, which are areas for improvement. Overall, the site reflects a professional and trustworthy academic institution with a solid digital presence.

H

Hanse Werbeshop

hanse-werbeshop.com

0

Hanse Werbeshop is a small German e-commerce retailer specializing in advertising and promotional products such as signs, stickers, stamps, textile advertising, business prints, and banners. The website is built on the Shopware 6 platform and integrates PayPal for payment processing and Matomo for analytics. The technical infrastructure is modern and moderately optimized for performance and mobile use, with good accessibility features. However, the site lacks explicit privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. The domain registration is consistent with the business profile, indicating legitimacy. Overall, the site presents a basic but functional online retail presence with room for improvement in privacy and security compliance.

U

Unglaublich wichtig

unglaublich-wichtig.de

0

Unglaublich wichtig is an informational platform highlighting the contributions of German Universities of Applied Sciences (HAWs) in various sectors such as energy, mobility, healthcare, and digital innovation. The website serves as a knowledge hub providing educational content, news, and insights into applied sciences research and practical solutions. It targets a general audience interested in the future of technology and society, emphasizing the importance of HAWs in addressing contemporary challenges. Technically, the website is built on WordPress using the Enfold theme, leveraging modern web technologies including jQuery, FontAwesome, and Borlabs Cookie for consent management. The site is mobile-optimized with good SEO practices and moderate performance. It integrates marketing tools like CleverReach for newsletter management but avoids intrusive tracking or advertising. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie management in place. Overall, Unglaublich wichtig presents a professional, trustworthy, and well-maintained digital presence with a clear educational mission. Strategic improvements in security headers, incident response policies, and accessibility could further enhance its posture and user trust.

Campus Halensis serves as the official news and information portal for Martin-Luther-Universität Halle-Wittenberg, providing timely updates on academic events, research, and campus life primarily targeting students, faculty, and researchers. The website is well-branded and consistent with the university's identity, offering content in German with an English language option. It functions as a communication channel to keep the university community informed and engaged. Technically, the site uses a moderate technology stack including jQuery, Magnific Popup, Slick Carousel, and Piwik/Matomo for analytics, hosted likely on university infrastructure. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a clear privacy policy and cookie banner. The WHOIS data aligns well with the university's domain infrastructure, indicating legitimacy and trustworthiness. Overall, the website is a professional, trustworthy academic portal with good content quality and privacy practices. However, improvements could be made in security header implementation, incident response transparency, and accessibility compliance to enhance the security posture and user experience.

A

AUC - Akademie der Unfallchirurgie GmbH

auc-online.de

0

AUC - Akademie der Unfallchirurgie GmbH is a well-established healthcare service provider specializing in medical education, certification, and management of medical registers primarily in the field of trauma surgery. The company operates under the auspices of the Deutsche Gesellschaft für Unfallchirurgie (DGU) and offers a broad range of services including continuing education for medical professionals, certification of clinics, and support for scientific studies. Their market position is strong within Germany and Europe, targeting medical professionals and institutions. The website reflects a professional and consistent brand image with clear navigation and relevant content.

The QS-Akademie website serves as a specialized educational platform offering training and continuing education for companies involved in the fresh food supply chain, including sectors such as feed production, animal husbandry, meat processing, trade, and the fruit and vegetable industry. The platform targets professionals and businesses seeking sector-specific knowledge and certification. Technically, the site is built on the ILIAS LMS platform, utilizing a modern tech stack including jQuery, Bootstrap, and various UI and calendar libraries, hosted by Schlund Technologies. The website is well-structured, mobile-optimized, and includes essential privacy and cookie consent mechanisms, reflecting a moderate to high level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the site presents a professional and trustworthy educational service with room for improvement in security transparency and accessibility.

M

MTM ASSOCIATION e.V.

mtm.org

0

MTM ASSOCIATION e.V. is an established organization founded in 1997, specializing in training, consulting, software, and research focused on human work design. The website presents a professional image with consistent branding and targets businesses and professionals interested in productivity and work design standards. Technically, the site is built on TYPO3 CMS, employs modern web technologies, and integrates comprehensive cookie consent management via Cookiebot, alongside analytics and marketing tools from Google, Facebook, LinkedIn, and YouTube. Security posture is solid with HTTPS enforced and domain registration consistent with a legitimate business, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is well addressed through detailed cookie declarations and GDPR-aligned consent mechanisms. Overall, the website is trustworthy, professional, and safe for general audiences.

T

TOTAL E-QUALITY Deutschland e.V.

total-e-quality.de

0

TOTAL E-QUALITY Deutschland e.V. is a German non-profit organization dedicated to promoting equal opportunities across genders in business, science, and government sectors. The organization offers an award recognizing commitment to equal opportunity policies and provides membership and informational services to interested parties. The website is professionally designed, multilingual, and includes clear navigation and relevant content targeted at organizations and individuals interested in gender equality advocacy. Technically, the website is built on Django CMS with modern frontend technologies including jQuery, Bootstrap, and FontAwesome. It employs Matomo analytics for user tracking, reflecting a privacy-conscious approach. The site is mobile-optimized and accessible, with good SEO practices. However, some security best practices such as security headers and cookie consent mechanisms are missing. From a security perspective, the site uses HTTPS with excellent SSL configuration and no visible vulnerabilities or exposed sensitive data. The absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and readiness. Overall, the website is trustworthy and professional, with a solid business credibility score. The main risks relate to privacy compliance gaps and missing security headers. Strategic improvements in these areas would enhance the site's security posture and regulatory compliance.

The website internationale-hochschulkooperationen.de is an official information portal managed by the Stiftung zur Förderung der Hochschulrektorenkonferenz (HRK), providing comprehensive data on international university cooperation involving German higher education institutions. It serves as a trusted resource for students, academics, and institutional partners, offering detailed insights into over 37,000 agreements with partners in more than 150 countries. The platform supports the internationalization of German universities by facilitating transparency and access to cooperation data. Technically, the site is built on TYPO3 CMS, leveraging common web technologies such as jQuery and Bootstrap for responsive design and user experience. The website demonstrates good mobile optimization and SEO practices, although some improvements in accessibility and security headers could enhance its technical maturity. The cookie consent mechanism is robust and GDPR-compliant, reflecting a strong commitment to privacy. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit published security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for transparency and trust. No signs of WAF or blocking mechanisms were detected, allowing full content access. Overall, the website presents a professional, trustworthy, and well-maintained digital presence aligned with its educational mission. Strategic enhancements in security policy transparency and accessibility would further strengthen its posture.

L

Landesregierung Brandenburg

brandenburg.de

0

The website is the official online portal of the Landesregierung Brandenburg, the state government of Brandenburg, Germany. It serves as a comprehensive information hub for citizens and stakeholders, providing access to government news, services, and thematic content related to the state's administration and public affairs. The site is well-branded, consistent, and targets a broad audience including residents, businesses, and government officials. The business model is that of a government information and service portal, with no commercial intent. Technically, the site uses a custom CMS with a modern tech stack including HTML5, CSS3, JavaScript, jQuery, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and accessible, with good SEO practices. Hosting details are not explicit but the domain uses a nameserver consistent with the Brandenburg region. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. However, no explicit security headers were detected in the HTML content, and no published security policies or incident response contacts were found. The site does not expose sensitive data or use vulnerable libraries visibly. Overall, the security posture is good but could be improved by adding security headers and formal vulnerability disclosure information. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It poses low risk and serves its purpose effectively as a government portal. Strategic recommendations include enhancing security headers, publishing security policies, and improving contact transparency for incident response.

M

Musikkultur Rheinsberg gGmbH

schlosstheater-rheinsberg.de

0

Musikkultur Rheinsberg gGmbH operates the Schlosstheater Rheinsberg, a year-round cultural venue offering concerts, theater, dance, film, and opera in Rheinsberg, Germany. The organization targets a broad audience including families and culture enthusiasts, providing diverse programming and venue rental services. The website reflects a well-established regional cultural institution with a professional online presence and clear event information. Technically, the website is built on WordPress with modern plugins and libraries such as jQuery, Slick Slider, and Yoast SEO, indicating a mature digital infrastructure. The site is mobile-optimized and uses HTTPS with good SEO practices, although some accessibility features could be improved. Cookie consent is managed via Borlabs Cookie, showing attention to privacy compliance. From a security perspective, the site uses HTTPS and nonce tokens for AJAX calls but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The absence of a privacy policy page is a notable compliance gap. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The risk assessment is low given the site's cultural and non-profit nature, absence of sensitive data exposure, and legitimate domain registration. Strategic recommendations include publishing a comprehensive privacy policy, implementing security headers, and adding vulnerability disclosure information to improve trust and compliance.

S

schmidtroeder

schmidtroeder.de

0

schmidtroeder is a small, agile cross-media agency based in Stuttgart, Germany, specializing in concept, design, print, and online media services. The company targets a diverse clientele ranging from regional businesses to international corporations, emphasizing flexible and cost-effective solutions. Their website reflects a professional but basic digital presence with a portfolio of client references and clear contact information. Technically, the site uses older JavaScript libraries and lacks modern security headers and cookie consent mechanisms, which could expose it to vulnerabilities and compliance risks. Analytics are handled via a self-hosted Piwik (Matomo) instance, indicating some level of privacy awareness but missing full GDPR cookie compliance. Overall, the security posture is moderate with room for improvement in library updates, HTTPS verification, and security best practices. The domain WHOIS data is consistent but limited, with no privacy protection or suspicious patterns detected.

F

Familienpark Schwäbische Alb in Westerheim

familienpark-westerheim.de

0

Familienpark Schwäbische Alb in Westerheim operates a small leisure and family park located in Germany, offering attractions such as a fun park, museum, safari bobbahn, gastronomy, and a traffic school. The website is built on WordPress with Yoast SEO plugin, indicating a moderate level of digital maturity. The site is primarily targeted at families and local visitors interested in recreational activities. Technically, the site uses standard web technologies including jQuery and is hosted via domaincontrol.com nameservers, likely GoDaddy. The website performance and mobile optimization are basic but functional. Security posture is moderate with HTTPS enabled but lacking important security headers and cookie consent mechanisms. No explicit contact emails or phone numbers are present on the homepage, though a contact page exists. Overall, the site is safe, family-friendly, and compliant with basic privacy policies but lacks advanced security and privacy features.

BANTLEON is a German-based company specializing in high-performance lubricants and industrial services tailored to meet demanding production processes. Their website reflects a professional B2B supplier model targeting industrial and manufacturing sectors with a comprehensive range of products including lubricants, oils, cooling lubricants, corrosion protection, and related services. The company positions itself as a specialized provider with a focus on quality and integration into industrial workflows. Technically, the website is built on the webEdition CMS platform, utilizing modern JavaScript libraries such as jQuery and third-party services like Cookiebot for cookie consent and TrustCaptcha for bot protection. The site is hosted with domaincontrol.com name servers, indicating a standard commercial hosting setup. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No privacy policy or terms of service pages were detected in the provided content, which is a compliance gap. Overall, the website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. The absence of direct contact information and detailed business registration data slightly reduces business credibility. No WAF or blocking mechanisms were detected, and the content is safe for general audiences.

K

KESLAR

keslar.de

0

KESLAR is a German energy supplier specializing in heating oil, fuels, lubricants, natural gas, electricity, and AVIA pellets, targeting private individuals, agriculture, and commercial sectors. The company operates a professional website built on WordPress with the Divi theme, enhanced by SEO and accessibility tools. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and formal security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the business appears legitimate and regionally focused with room for improvement in transparency and security practices.

Alb-Werbung GmbH is a small, family-owned business established in 1999 and located in Westerheim, Germany. The company specializes in lettershop services, printing (digital and offset), graphic design, manual packaging, and full-service advertising solutions. The website reflects a well-established regional player with a clear focus on quality and customer service. The target audience primarily consists of businesses and organizations seeking comprehensive printing and advertising services. The company emphasizes flexibility, quality, and reliability, supported by over 26 years of experience.

M

McDonald's Gerhard Schmid

mcdonalds-ulm.de

0

McDonald's Gerhard Schmid operates a regional franchise network of McDonald's restaurants across multiple towns in Germany. The website serves as an informational and promotional platform for the franchise, offering details on locations, job opportunities, delivery services, and current offers. The site is built on the Squarespace platform, leveraging its CMS and hosting capabilities, with a moderate level of technical sophistication and mobile optimization. Security posture is strong with HTTPS and HSTS enabled, though cookie consent mechanisms and detailed security policies are lacking. Overall, the site reflects a professional local franchise business with consistent branding and good user experience.

B

Brauerei Gold Ochsen Ulm

goldochsen.de

0

Brauerei Gold Ochsen Ulm is a regional brewery based in Ulm, Germany, specializing in brewing and selling beer. The website serves as a digital presence showcasing their products and services, targeting beer consumers and the hospitality sector. The site is built on WordPress with WooCommerce integration, indicating e-commerce capabilities. Technical infrastructure includes performance optimizations via WP Rocket and SEO enhancements through Yoast SEO and Google Site Kit. Security posture is moderate with HTTPS enabled and some security best practices observed, but lacks comprehensive security headers and explicit privacy and cookie policies. The absence of contact information and privacy compliance elements reduces trust and compliance scores. Overall, the website is functional and professional but requires improvements in privacy compliance and security transparency.

K

Kirsamers-Backstube GmbH

kirsamers-backstube.de

0

Kirsamers-Backstube GmbH is a regional German bakery business established in 1927, specializing in fresh, handmade bakery products including spelt (Dinkel) breads, rolls, and cakes. The company emphasizes quality, regional ingredients, and traditional craftsmanship, targeting general consumers seeking healthy and artisanal baked goods. The website reflects a medium-sized retail bakery with consistent branding and a clear business model focused on quality and regionality. Technically, the site is built on WordPress using modern plugins such as WPBakery Page Builder and Slider Revolution, hosted on rzone.de servers. The site is mobile optimized and performs moderately well with good SEO and accessibility basics. Security posture is adequate with HTTPS enabled and GDPR-compliant cookie consent mechanisms, though explicit security policies and incident response contacts are not present. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the company's credibility and customer engagement.