Security Directory

Kita Bunte Burg is a small, Christian-oriented childcare provider in Berlin, operating since 2013 under the parent organization Christburg Campus. The website is professionally built using TYPO3 CMS and modern JavaScript libraries, providing good user experience and mobile optimization. The site includes social media integration and a cookie consent mechanism, but lacks explicit privacy and terms of service pages. Security posture is adequate with HTTPS and no visible vulnerabilities, though security headers could be improved. Overall, the site is trustworthy and well-positioned for its niche audience.

Elisabeth-Abegg-Grundschule is a private primary school in Berlin offering education for grades 1 to 6 with a Christian perspective. The website is built on TYPO3 CMS and integrates modern frontend technologies such as jQuery and Parsley.js for form validation. It features a clean, professional design with good navigation and mobile optimization. Social media presence and testimonials enhance trustworthiness. However, the site lacks explicit privacy policy, terms of service, and direct contact information, which are important for compliance and user trust. Security posture is good with HTTPS and no visible vulnerabilities, but security headers and incident response details are missing. Overall, the site is suitable for its educational audience and demonstrates moderate to good digital maturity.

Kita Helles Nest is a small, modern childcare facility in Germany focused on providing early childhood education with Christian values. The website is built on TYPO3 CMS and features a professional design with good navigation and mobile optimization. It integrates Matomo analytics and includes a cookie consent mechanism, though lacks explicit privacy and terms of service pages. Social media presence is strong, enhancing community engagement. Security posture is good with HTTPS enabled but could be improved by adding security headers and explicit security policies. No contact emails or phone numbers were found in the provided content, which may impact user trust and compliance. Overall, the site is trustworthy and well-positioned in its niche market.

The Sabine-Ball-Grundschule website represents a small private primary school in Germany with a Christian educational perspective. The site provides comprehensive information about the school, its pedagogical approach, enrollment procedures, and after-school care (Hort). The school targets parents and guardians of primary school children and positions itself as a nurturing and family-oriented institution. The website is built on TYPO3 CMS and uses modern web technologies including jQuery and Parsley for form validation, with Matomo for analytics, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and includes social media integration to engage the community. Security posture is adequate with HTTPS usage and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is professional, trustworthy, and safe for general audiences.

Immanuel-Kita is a small, specialized childcare provider in Germany focusing on Christian early childhood education. The website is professionally designed using TYPO3 CMS and integrates modern web technologies such as jQuery and Parsley.js for form validation. The site includes a cookie consent mechanism and uses Matomo for analytics, reflecting a moderate level of user tracking with privacy considerations. Social media integration is strong, linking to Facebook, Instagram, and YouTube, enhancing community engagement. However, explicit privacy policies and terms of service pages are not found, which could be improved for compliance and transparency. Security posture is good with HTTPS enforced but lacks advanced security headers and a public security policy or incident response contact. Overall, the website is trustworthy, content-rich, and well-positioned within its niche educational sector.

Immanuel-Grundschule is a small, private primary school in Germany with a Christian educational perspective. The website is built on TYPO3 CMS and integrates modern JavaScript libraries and Matomo analytics for user tracking. It offers detailed information about the school, its pedagogical approach, and related services such as after-school care (Hort). Social media presence is active with links to Facebook, Instagram, and YouTube. The site lacks an explicit privacy policy and visible contact emails or phone numbers, which are areas for improvement. Security posture is moderate with HTTPS enabled but missing security headers and no published security or incident response policies. Overall, the website is professional, trustworthy, and well-structured for its audience.

K

KINDERVEREINIGUNG® LEIPZIG e. V.

spielmobilprojekt.de

0

Spielmobilprojekt is a non-profit initiative under KINDERVEREINIGUNG® LEIPZIG e. V., providing mobile play services with their Spielmobile vehicles in various Leipzig neighborhoods. Their focus is on open, generational, and pedagogical play activities, supporting community engagement and youth work. The website is well-structured, informative, and targets families, children, and educators in Leipzig. Technically, the site is built on WordPress with modern plugins and includes cookie consent mechanisms, indicating a good level of digital maturity. Security posture is adequate with HTTPS and reCAPTCHA usage, though it lacks some advanced security headers and explicit security policies. Overall, the site is legitimate, trustworthy, and compliant with GDPR, with clear contact information and partner affiliations.

K

Kulturwerkstatt KAOS

kaos-leipzig.de

0

Kulturwerkstatt KAOS is a well-established non-profit cultural center based in Leipzig, Germany, focused on providing artistic and educational programs for children, youth, and young adults. Operating since 1992 under the KINDERVEREINIGUNG® Leipzig e.V., it offers a diverse range of courses, workshops, events, and community engagement activities. The organization enjoys strong local support from city and state cultural offices and maintains a clear digital presence with comprehensive content and contact information. Technically, the website is built on WordPress with modern plugins and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected, and privacy compliance is well addressed with GDPR-aligned policies. Overall, KAOS presents a trustworthy and professional online presence aligned with its community-focused mission.

K

Kompetenzzentrum Internationale Jugendarbeit und non-formale Bildung

kvleipzig-international.de

0

The Kompetenzzentrum Internationale Jugendarbeit und non-formale Bildung is a small non-profit organization based in Leipzig, Germany, focused on international youth work and non-formal education. The website presents a professional and consistent brand image, offering services such as youth exchanges, training seminars, and workshops. It targets youth and professionals in the youth work sector, supported by local and EU funding partners. Technically, the site is built on WordPress using modern themes and plugins, with good SEO and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is trustworthy and well-maintained, reflecting the organization's mission and activities effectively.

W

Wonderlink

wonderlink.de

0

Wonderlink is a German-based SaaS platform offering a GDPR-compliant 'Link in Bio' solution tailored for influencers, artists, entrepreneurs, and commercial social media users. It positions itself as a privacy-first alternative to competitors like Linktree by eliminating tracking and cookies and hosting exclusively on German servers. The platform supports legal compliance by integrating mandatory legal texts such as Impressum, Datenschutz, and AGB, appealing to commercial users concerned about regulatory adherence. With over 75,000 customers and endorsements from legal partners and media, Wonderlink holds a strong market position in the privacy-conscious segment of link management services. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and Lottie animations, delivering a fast, mobile-optimized, and accessible user experience. Hosting is managed via German-based DNS and servers, reinforcing its privacy claims. The site lacks some advanced security headers and a public vulnerability disclosure policy but maintains excellent SSL configuration and no tracking mechanisms, enhancing its security posture. From a security perspective, Wonderlink demonstrates strong GDPR compliance, no user tracking, and transparent privacy policies, making it suitable for privacy-sensitive users. However, the absence of incident response contacts and vulnerability disclosure mechanisms suggests room for improvement in security transparency and readiness. Overall, the site is professional, trustworthy, and well-aligned with its privacy-centric business model. The overall risk assessment is low, with no critical vulnerabilities or suspicious indicators detected. Strategic recommendations include publishing a security.txt file, enhancing security headers, and providing incident response contact details to further strengthen trust and security posture.

N

NEW WORK SE

onlyfy.jobs

0

onlyfy.io is a recruiting software platform operated by NEW WORK SE, a German technology company. The platform offers a SaaS solution enabling recruiters to post jobs to over 200 boards and manage candidate applications online. The website is professionally designed, integrates with the XING ecosystem, and uses modern analytics and engagement tools such as Matomo and Braze. The technical infrastructure is hosted on AWS with DNS managed via Amazon's DNS services. Security posture is moderate with HTTPS enforced and CSRF tokens in forms, but lacks DNSSEC and explicit security headers. Privacy and cookie policies are not publicly visible on the login page, indicating room for compliance improvement. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

O

OPUS Fashion

opus-fashion.com

0

OPUS Fashion is a well-established European women's fashion brand offering a wide range of casual and feminine clothing through its e-commerce platform. The company emphasizes sustainability, fair working conditions, and provides a seamless shopping experience with multiple payment options and international shipping. Technically, the website is built on modern frameworks such as Spryker and uses Storyblok CMS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response information are absent. The lack of WHOIS domain registration data is a concern but does not detract significantly from the professional presentation and trustworthiness of the site. Overall, the site is safe, compliant with GDPR, and targets a general audience interested in fashion.

Y

yomma GmbH

sqat.eu

0

SQAT is a service product of yomma GmbH focused on providing a barrier-free feedback mechanism for websites by translating German Sign Language videos into written language and vice versa. The service targets both website operators seeking to enhance accessibility and deaf users who prefer sign language communication. The website is professionally designed, uses modern WordPress infrastructure, and complies with GDPR and cookie consent regulations. It features partnerships with reputable German government and non-profit organizations, enhancing its credibility. Technically, the site employs common plugins and SEO tools, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent, though explicit security headers and incident response policies are not published. WHOIS data is unavailable due to privacy protection, but the domain and business information align with the website content and market positioning. Overall, SQAT presents a trustworthy and professional digital presence in the niche of accessibility services.

F

FH Münster

fh.ms

0

FH Münster is a well-established university of applied sciences in Germany, providing a range of degree programs and educational services primarily targeting students and the academic community. The website reflects a professional educational institution with a clear focus on higher education. The site offers key services such as course listings and a student portal (myFH-Portal), positioning itself as a regional higher education provider. The content is primarily in German with an option for English, catering to a broad academic audience. Technically, the website uses modern web technologies including JavaScript ES modules and CSS, with SVG graphics for branding. The site is moderately performant and optimized for mobile devices, though accessibility features are basic. Security is addressed with HTTPS and a Content-Security-Policy header, but additional security headers and policies are lacking. There is no evidence of analytics or advertising scripts, indicating a focus on privacy and minimal tracking. From a security perspective, the site demonstrates a good baseline with HTTPS and CSP but lacks comprehensive privacy policies, cookie consent mechanisms, and incident response information. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns well with the academic nature of the institution, showing consistent domain registration with German academic network name servers, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, additional security headers, and published policies to improve user trust and regulatory adherence.

G

gastroevents GmbH & Co. KG

ulmmesse-catering.de

0

The website www.ulmmesse-catering.de represents gastroevents GmbH & Co. KG, a small hospitality business specializing in catering services for the Ulm Messe trade fair. The site provides information about catering offerings, job opportunities, and accommodation partnerships, targeting event organizers and visitors. The business operates locally with a clear focus on event catering and hospitality services. Technically, the website is built on WordPress using the Divi theme, with jQuery and a cookie consent plugin. Hosting is provided by cloudpit, as indicated by the nameservers. The site is moderately performant, mobile-optimized, and has basic accessibility and SEO features. Security posture is good with HTTPS enforced and a cookie consent mechanism, but lacks security headers and explicit security policies. Privacy compliance is strong with a clear privacy policy and GDPR-compliant cookie consent. Contact information is available with a physical address and company email. No social media or phone contact is explicitly provided. Overall, the site is professional, trustworthy, and safe for general audiences.

S

servier.bar - Self Ordering

servier.bar

0

servier.bar is a German-based digital ordering and payment platform tailored for the hospitality industry. The company offers self-ordering, kiosk, and webshop solutions that enable guests to order and pay via smartphones, aiming to reduce staff workload, minimize errors, and increase revenue. The website is professionally designed using WordPress with modern SEO and analytics integrations, targeting hospitality businesses in Germany. The technical infrastructure includes WordPress CMS, WPBakery Page Builder, Usercentrics for cookie consent, and analytics tools such as Matomo and Facebook Pixel. Security posture is moderate with HTTPS enabled and cookie consent implemented; however, the absence of security headers and explicit privacy and terms policies indicates room for improvement. Overall, the website is trustworthy and functional but lacks some compliance and security best practices.

The website 'Parken in Ulm' serves as an informational platform providing live updates on parking availability across multiple parking facilities in Ulm, Germany. It targets drivers and cyclists looking for parking options, offering real-time data, route guidance, and facility details. The business behind the site appears to be the Ulmer Parkbetriebs-GmbH, a local parking management entity. The site is well-branded, consistent, and provides clear contact information, enhancing its credibility. Technically, the site is built on the Odoo CMS platform and leverages modern web technologies including MapLibre GL for interactive maps and FontAwesome for icons. The site is mobile-optimized with good navigation and SEO practices. Hosting is managed via the d9t.de infrastructure, consistent with the domain's nameservers. Performance is moderate with no major technical issues detected. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks visible HTTP security headers and a cookie consent mechanism, which are areas for improvement. No forms or data collection points are present on the main page, reducing immediate data exposure risks. No incident response or security policies are published, which could be enhanced to improve trust. Overall, the website is safe, professional, and trustworthy with a solid business focus on transportation services. Strategic improvements in privacy compliance and security headers would elevate its security posture and regulatory adherence.

E

Evangelische Gesamtkirchengemeinde Ulm

ulmer-muenster.de

0

The Evangelische Gesamtkirchengemeinde Ulm operates the Ulmer Münster, serving as a religious and community organization in Ulm, Germany. The website provides comprehensive information about visiting hours, tours, church services, music ensembles, and community activities. It targets local residents, visitors, and church members, positioning itself as a key cultural and religious institution in the region. The business model is non-profit, focusing on community engagement and cultural preservation. Technically, the website is built on the ChurchDesk CMS platform, which is tailored for church organizations. It uses modern web technologies including JavaScript and jQuery, and integrates Cookiebot for GDPR-compliant cookie consent management. The site is hosted on servers associated with kasserver.com, with good mobile optimization and accessibility features. Performance is moderate, with a well-structured navigation system and SEO-friendly metadata. From a security perspective, the site enforces HTTPS and employs a robust cookie consent mechanism. However, explicit security headers are not detected, and no dedicated security policy or incident response information is published. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies in German, reflecting GDPR adherence. Overall, the website presents a low-risk profile with a professional and trustworthy online presence. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen security posture and trust.

D

DONAU 3 FM

donau3fm.de

0

DONAU 3 FM is a regional radio station serving the Schwaben region in Germany, providing music and important local news from cities such as Ulm, Neu-Ulm, Biberach, Günzburg, and Heidenheim. The website is professionally designed with consistent branding and targets local residents and listeners interested in regional content. The business model focuses on radio broadcasting and news dissemination, positioning itself as a key media outlet in its region. Technically, the website uses a modern technology stack including Google Tag Manager, Matomo Analytics, Google Adsense for advertising, and hCaptcha for bot protection. It is hosted on Hetzner servers, a reputable German hosting provider. The site is mobile optimized and SEO friendly, with structured data implemented for better search engine understanding. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, it lacks explicit security headers and does not provide visible security or incident response policies. Privacy compliance is basic, with no clear privacy or cookie policy pages found, although a cookie consent mechanism is present. No contact information for security or data protection officers is available. Overall, the website is safe, professional, and trustworthy for general audiences, with no adult or explicit content. The main risks relate to privacy compliance and security policy transparency, which could be improved to enhance user trust and regulatory adherence.

R

RADIO 7 Hörfunk GmbH & Co. KG

radio7.de

0

RADIO 7 is a regional private radio broadcaster based in Ulm, Germany, offering a variety of services including live radio streaming, podcasts, regional news, entertainment, and event ticketing. The website reflects a strong local media presence with multiple regional studios and a broad content offering targeting general audiences in southern Germany. The business model centers on media broadcasting and advertising, supported by partnerships with ticketing and advertising platforms. The site is professionally designed, mobile-optimized, and provides clear contact channels and social media integration. Technically, the website leverages modern JavaScript frameworks (Nuxt.js/Vue.js), integrates a consent management platform (Usercentrics), and uses Google Analytics and Tag Manager for analytics. Hosting and media assets are served via Amazon AWS infrastructure, ensuring good performance and scalability. The site demonstrates good SEO and accessibility practices. From a security perspective, the site enforces HTTPS, employs standard security headers, and anonymizes IP addresses in analytics. Consent mechanisms for cookies and privacy are implemented, aligning with GDPR requirements. However, no explicit security policy or incident response information is publicly available, and no vulnerability disclosure policy is found. The WHOIS data is minimal, lacking detailed registrant information, which slightly reduces trust but is not uncommon for media companies using managed DNS services. Overall, RADIO 7's website is a well-maintained, secure, and privacy-conscious platform that effectively serves its regional audience. Strategic improvements could include publishing dedicated security and incident response policies and enhancing transparency around vulnerability disclosures.

U

Ulmer City Marketing e.V.

ulmercity.de

0

Ulmer City Marketing e.V. is a local economic association dedicated to supporting and promoting the retail, service, hospitality, and gastronomy sectors in Ulm, Germany. The organization focuses on marketing the city center, organizing events, and managing voucher programs to enhance the local business environment. The website reflects a professional and consistent brand image, targeting local businesses and consumers with relevant content and services. Technically, the site is built on Webflow with modern animation libraries and includes cookie consent mechanisms, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response information. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the site is trustworthy and functional but could improve in compliance and security transparency.

V

VMV GmbH

vmvgmbh.com

0

VMV GmbH is a specialized event management company focused on organizing and marketing Volksfeste, markets, and related events primarily in the Ulm region of Germany. With nearly two decades of experience, the company positions itself as a trusted partner for municipalities and event organizers, offering comprehensive services from concept development to execution and marketing. The website reflects a professional and consistent brand image, emphasizing their expertise and long-standing event references. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for GDPR-compliant cookie management. Hosting is provided by Hetzner Online GmbH, a reputable German hosting provider. The site is mobile-optimized and performs moderately well, with room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Cookie consent is implemented thoroughly, reflecting good privacy compliance. However, the site lacks explicit security policies or incident response contacts, which could enhance trust further. Overall, VMV GmbH presents a credible and professional online presence with strong compliance and a clear business focus. Strategic improvements in security headers and incident response transparency are recommended to further strengthen their security posture and trustworthiness.

U

Ulm-Messe GmbH

ulm-messe.de

0

Ulm-Messe GmbH is a regional event venue and event management company based in Ulm, Germany. The company offers a wide range of event spaces and professional services for trade fairs, congresses, open-air events, and seasonal markets such as the Ulm Christmas market. Their strong local partnerships and comprehensive service offerings position them as a key player in the hospitality and event sector in southern Germany. The website is well-structured, professionally designed, and targets event organizers and businesses seeking venue rental and event coordination services. Technically, the site is built on RapidWeaver CMS using the Foundation framework and includes modern JavaScript libraries and a consent management platform, reflecting a moderate to advanced digital maturity. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are lacking. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information, supporting a positive business credibility profile.

B

BlaBlaCar

blablacar.de

0

BlaBlaCar is a leading European transportation platform specializing in ridesharing and long-distance bus travel. The website www.blablacar.de offers users a comprehensive and user-friendly interface to find and book affordable travel options across Europe, primarily targeting German-speaking customers. The platform emphasizes trust and safety through member verification and ratings, supported by modern identity verification technologies such as Onfido. The company maintains a strong digital presence with mobile apps and active social media channels. Technically, the site leverages modern web frameworks, cloud hosting, and integrates analytics and marketing tools to optimize user experience and business insights. Security posture is robust with HTTPS, CSP, and secure data handling practices, though explicit security policies and incident response contacts are not publicly detailed. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy business with a mature digital infrastructure.

Y

Your-Run GmbH

your-run.com

0

Your-Run GmbH operates a specialized community app focused on running and triathlon sports, offering a comprehensive event calendar, social community features, and detailed competition statistics. The business targets active runners and triathletes primarily in Germany but with a global event database. The company uses a freemium business model with a premium subscription unlocking advanced features. The website is professionally designed, mobile-optimized, and integrates modern SEO and performance tools.

R

RideBee

ridebee.com

0

RideBee is a German-based platform founded in 2012 that facilitates ride-sharing and sustainable commuting solutions primarily targeting commuters, companies, universities, and event organizers. The platform offers services including carpooling, bike-sharing, shuttle services, and features such as intelligent matching, digital payments, and in-app communication. The company positions itself as a niche player in the sustainable transportation sector within Germany, emphasizing environmental benefits and cost savings for users. Technically, the website is built on Angular 13 with integrations for Google Tag Manager and Hotjar for analytics and user behavior tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the domain is secured with HTTPS, and domain registration is stable and consistent with the business history. However, the site lacks visible privacy and cookie policies, security.txt, and explicit contact information, which are areas for improvement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security disclosures.

A

ASC Ulm/Neu-Ulm

asc-ulm-neu-ulm.de

0

ASC Ulm/Neu-Ulm is a well-established German sports club founded in 2011, focusing on running, swimming, and cycling training courses primarily to prepare participants for the Einstein-Marathon. The club offers a variety of courses and community events, serving approximately 2,000 members as of 2016. The website is professionally designed using WordPress and Elementor, providing rich content about training programs, events, and membership details. It integrates with partner event sites and promotes sustainability initiatives. Technically, the site uses modern web technologies and SEO tools but lacks explicit privacy and cookie policies, which are compliance gaps. Security posture is adequate with HTTPS but could be improved by adding security headers and formal policies. Overall, the site is trustworthy and serves its community well but should enhance privacy compliance and security best practices.

B

Bernd Hummel

eurotour25-28.de

0

EuroTour25–28 is a multi-year endurance and climate awareness project led by Ulm-based extreme athlete Bernd Hummel, aiming to connect key European regions through sporting challenges and sustainability advocacy from 2025 to 2028. The project is positioned as a niche initiative promoting European unity and environmental responsibility, supported by partners such as the Einstein-Marathon and Technische Hochschule Ulm. The website is built on WordPress using modern tools like Elementor and Yoast SEO, providing a good user experience with mobile optimization and clear navigation. However, it lacks critical compliance elements such as privacy and cookie policies, and no direct contact information is provided, which limits user trust and GDPR compliance. Security posture is generally good with HTTPS and no visible vulnerabilities, but the absence of security headers and incident response details are areas for improvement.

X-treme Battle is a small-scale event organizer specializing in obstacle and cross runs in Heroldstatt, Germany. The website provides detailed event information, registration links via a trusted third-party platform (Datasport), and multimedia content to engage participants. The site is built on WordPress using Themify Ultra theme and includes modern web technologies such as lazy loading and video embedding. Security posture is adequate with HTTPS and cookie consent, but lacks comprehensive security headers and formal privacy or terms policies. Contact information is limited to an email address, with no phone or physical address provided. Overall, the site is functional and professional for its niche audience but could improve compliance and security transparency.

E

Einstein-Marathon

ulmer-jugendlaeufe.de

0

The website ulmer-jugendlaeufe.de represents the Einstein Jugendläufe, a well-established youth running event held annually in Ulm, Germany. The site is professionally designed using WordPress and Elementor, providing comprehensive information about the event, registration, and results. The business operates in the education and sports event sector, targeting children, youth, families, and schools in the region. The site integrates with partner domains and services such as einsteinmarathon.de and datasport.de for event management and registration. Technically, the website employs modern web technologies including WordPress 6.8.3, Elementor, and Rank Math SEO, hosted behind Cloudflare DNS and CDN services. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is good with HTTPS enforced, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements are recommended in privacy compliance and security header implementation. The domain WHOIS data aligns with the website's business purpose, showing legitimacy and consistency. No WAF or blocking mechanisms interfere with content access. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, establishing a vulnerability disclosure policy, and enhancing user consent mechanisms to improve compliance and trust.

S

SUN Sportmanagement GmbH

ulmer-klimalauf.de

0

Ulmer Klimalauf is a virtual running event organized by SUN Sportmanagement GmbH, focused on climate protection through community participation. The event encourages participants to collect kilometers by running, walking, or hiking, supporting climate-related projects such as water supply initiatives in Uganda. The website is well-branded, professionally designed, and provides comprehensive information about the event, partners, and sustainability efforts. Technically, the site is built on WordPress with Elementor and uses Cloudflare DNS for performance and security. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and cookie consent mechanisms could be improved. Contact information and privacy policies are clearly presented, supporting GDPR compliance. Overall, the site is trustworthy and serves its target audience effectively.

Y

yorkwachter

ulmer-muensterturmlauf.de

0

Ulmer Münsterturmlauf is a specialized event website promoting the annual tower running race held in Ulm, Germany. The site provides detailed event information, registration links, news updates, and partner information, targeting runners and sports enthusiasts. The business operates as a small, niche event organizer with a focus on local and regional participants, emphasizing sustainability and community engagement. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices. The site is hosted with Cloudflare DNS and uses HTTPS, ensuring secure connections. Security posture is good but could be improved with additional security headers and explicit privacy and cookie policies. No direct contact emails or phone numbers are published, relying on contact forms and newsletter signups. Overall, the website is professional, trustworthy, and safe for general audiences.

U

Ulmer Frauenlauf

ulmer-frauenlauf.de

0

Ulmer Frauenlauf is a regional event organizer focused on women's running events in southern Germany. The website provides comprehensive event information, partner promotion, and registration details, targeting female runners and sports enthusiasts. The site is built on WordPress with Elementor and uses modern SEO practices including structured data. Hosting and DNS are managed via Cloudflare, ensuring good performance and security at the infrastructure level. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are detected, which may pose compliance risks under GDPR. Security posture is moderate with HTTPS enforced but missing security headers and vulnerability disclosure. Overall, the site is professional and trustworthy but could improve privacy compliance and security transparency.

U

Ulmer Firmenlauf

firmenlauf-ulm-neu-ulm.de

0

The Ulmer Firmenlauf website represents a regional corporate running event organizer in southern Germany, focusing on the popular AOK Firmenlauf event. The site provides event information and branding but lacks comprehensive business and contact details. Technically, the website is built on WordPress with Elementor and uses Cloudflare DNS for performance and security. SEO is supported by Rank Math, and analytics are implemented via WordPress.com Stats. Security posture is moderate with HTTPS enabled but missing advanced security headers and policies. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional and professional but could improve transparency and security practices.

Datasport Germany GmbH operates a professional website focused on sports event timing and registration services, primarily targeting event organizers and participants in Germany. The company offers key services including event timing, registration management, live result publishing, and event organization support. The website is well-branded and consistent with the company's identity, reflecting a medium-sized business with a solid market position in the sports event sector. Technically, the website employs modern frameworks such as Bootstrap and Material Design Bootstrap, uses jQuery for interactivity, and leverages Cloudflare for DNS and CDN services. Analytics are handled via Matomo, indicating a moderate level of user tracking. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses Cloudflare services, but lacks explicit security headers and published security policies. Privacy compliance is addressed with clear privacy and cookie policies, though a cookie consent mechanism is absent. No incident response or vulnerability disclosure information is provided, which could be improved. Overall, the website is trustworthy, professional, and safe for general audiences, with no adult or questionable content. The domain registration data aligns with the business identity, supporting legitimacy. Strategic improvements in security policy transparency and privacy consent mechanisms would enhance compliance and trust.

anonystats.de is a small-scale, internal-use web analytics service focused on anonymous and GDPR-compliant web logging. The website content is minimal, indicating the service is not publicly marketed but used internally. The technical infrastructure is simple, leveraging Bootstrap for styling and a custom JavaScript analytics script. There is no evidence of complex CMS or third-party analytics services, reflecting a lightweight and privacy-conscious approach. Security posture is moderate; while no security headers or cookie consent mechanisms are detected, the absence of forms and minimal external dependencies reduce attack surface. The WHOIS data shows consistent domain registration and legitimate name servers, supporting the domain's trustworthiness. Overall, the website is safe, with no adult or questionable content, but lacks public business and contact information, limiting external trust signals.

S

SoftTec GmbH

softtec.de

0

SoftTec GmbH operates a professional website offering hotel software and cloud-based hotel management solutions primarily targeting the hospitality sector in Germany. The website is built on WordPress using Elementor and incorporates modern web technologies such as jQuery and WPRocket for performance optimization. The site is accessible without any WAF or security challenges, indicating a stable hosting environment. However, the website lacks explicit privacy and cookie policies, as well as clear contact information for security incidents or data protection officers, which are critical for GDPR compliance and user trust. Security best practices such as security headers are not evident, suggesting room for improvement in the security posture. Overall, the website presents a good business credibility and technical foundation but requires enhancements in privacy compliance and security transparency.

B

Bundesverband Deutscher Finanzberater e.V.

bdf24.de

0

The Bundesverband Deutscher Finanzberater e.V. (BDF) is a professional association representing financial advisors, investment consultants, insurance brokers, and related experts in Germany. The organization offers membership benefits including certifications, professional development, and a rating system to enhance the credibility and market position of its members. The website targets both finance professionals seeking membership and consumers looking for qualified advisors. Technically, the website employs a modern JavaScript stack with user consent management and Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response transparency are recommended. Overall, the site is professional, well-structured, and compliant with GDPR, supporting a trustworthy online presence for the association.

N

NOZ/mh:n MEDIEN

noz-mhn.de

0

NOZ/mh:n MEDIEN is a large regional media group in Germany offering a diverse portfolio of print and digital media products including newspapers, magazines, and audio content. The company positions itself as a leading regional news provider with a focus on delivering timely and valuable information to its audience. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. The technical infrastructure includes modern plugins and analytics via Matomo, hosted on servers associated with basecom.de. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit security policies and incident response information are not published. Overall, the site is trustworthy and compliant with GDPR requirements.

R

Rheinische Post Mediengruppe

rheinischepostmediengruppe.de

0

Rheinische Post Mediengruppe is a major German media company ranked among the top five newspaper publishers in Germany. The company operates a broad portfolio including daily newspapers, advertising papers, digital media, radio, and specialized media, employing approximately 3,000 staff domestically and internationally. Their business model centers on regional and national media production and distribution, supported by various service offerings such as call centers, printing, IT, and logistics. The website reflects a professional corporate presence with consistent branding and comprehensive business information. Technically, the site is built on TYPO3 CMS with modern web technologies and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and secure form handling, though some improvements are recommended in security headers and cookie consent mechanisms. Overall, the site is trustworthy and well-maintained, supporting the company's strong market position.

W

webbar GmbH

webbar.dev

0

webbar GmbH is a small technology company specializing in digital transformation services delivered as SaaS, focusing on empowering developers and CTOs within small to medium-sized businesses. Their offerings include CTO fellowship programs, DevOps and cloud-native consulting, and educational content via blogs and videos. The company positions itself as a niche provider in the German market, emphasizing cloud-native methodologies and digital innovation. Technically, the website is built using modern frameworks such as Next.js and React, with a clean, professional design optimized for mobile devices. The site loads with moderate performance and includes standard SEO meta tags and Open Graph data. However, no CMS or hosting provider details are explicitly detected. The site lacks visible analytics or tracking scripts, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS but lacks several recommended security headers and does not provide explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service found. Overall, the website presents a professional and trustworthy front with room for improvement in security best practices and privacy compliance. Strategic enhancements in these areas would strengthen the company's digital trust and regulatory adherence.

N

netzwerk n e.V.

plattform-n.org

0

netzwerk n e.V. operates plattform n, a specialized online community platform dedicated to sustainability initiatives at German higher education institutions. The platform offers a comprehensive suite of collaboration and networking tools including real-time chat, document collaboration, file storage, event management, and a marketplace, all integrated within a user-friendly and open source environment. The organization positions itself as a non-profit entity focused on fostering sustainable development through digital community engagement. Technically, the website is built on WordPress with modern plugins and integrates open source tools like Rocket.Chat and Nextcloud, reflecting a mature and well-maintained infrastructure. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is strong with clear policies and GDPR adherence, though cookie consent mechanisms could be enhanced. Overall, the platform demonstrates high professionalism, trustworthiness, and a clear mission aligned with its target audience of sustainability-focused academic groups.

A

ASW gGmbH

asw-berufsakademie.de

0

ASW gGmbH is a well-established educational institution based in Saarland, Germany, specializing in dual study programs and professional continuing education. The organization offers state-recognized and accredited bachelor degrees with a strong emphasis on practical and scientific learning. Their market position is supported by accreditations such as AQAS and recognition in the CHE ranking, positioning them as a reputable player in the education sector. The website targets prospective students and professionals seeking advanced training, providing comprehensive information and personalized counseling services. Technically, the website is built on TYPO3 CMS with Bootstrap 5, leveraging modern web technologies including jQuery and Leaflet.js for interactive maps. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience. Hosting is managed via DomainControl, and the site uses HTTPS with a cookie consent mechanism to comply with privacy regulations. From a security perspective, the site enforces HTTPS and includes cookie consent management, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Tracking is limited and consent-based, primarily using Google Tag Manager and OnSite tracking. Overall, the security posture is solid but could be enhanced by implementing additional security headers and formalizing incident response disclosures. The overall risk assessment is low, with the website presenting a professional, trustworthy, and compliant digital presence. Strategic recommendations include adding security headers, publishing a security policy, and introducing a vulnerability disclosure program to further strengthen trust and security culture.

The Justus-Liebig-Universität Gießen (JLU) is a large, well-established public university in Germany, offering a broad range of academic programs and conducting internationally recognized research. The website reflects a professional and comprehensive digital presence, targeting students, researchers, and academic partners. It leverages the Plone CMS platform with modern web technologies and integrates Matomo analytics for user tracking. Security posture is solid with HTTPS and secure forms, though improvements in security headers and published policies are recommended. Privacy compliance is partially met with a comprehensive privacy policy but lacks explicit cookie consent mechanisms. Overall, the site is trustworthy and well-maintained, supporting the university's strong market position in education and research.

V

Vitos GmbH

vitos.de

0

Vitos GmbH is a large, publicly supported healthcare and social services provider in Germany, specializing in psychiatric care, psychosomatics, neurology, orthopedics, and youth and disability assistance. The organization operates multiple subsidiaries and clinics, offering comprehensive treatment and support services. Their website is built on TYPO3 CMS and demonstrates a mature digital infrastructure with modern technologies such as jQuery, Matomo analytics, and Usercentrics for consent management. Security posture is strong with HTTPS enforcement and privacy compliance, although some security headers could be improved. Overall, the website reflects a professional and trustworthy organization with a clear focus on healthcare and social welfare. No critical vulnerabilities or suspicious activities were detected.

D

Databay AG

seminarcatalog.de

0

Databay AG operates the SeminarCatalog platform, a comprehensive seminar and e-learning management software tailored for educational providers in Germany. The platform integrates booking management, participant administration, CRM and payment interfaces, and offers a professional online shop experience. The company positions itself as a specialized provider in the education sector, focusing on seamless integration with ILIAS LMS and blended learning scenarios. The website is professionally designed, content-rich, and targets educational institutions and training providers seeking unified seminar management solutions. Technically, the site is built on TYPO3 CMS with Bootstrap, delivering a responsive and accessible user experience with moderate performance. Security posture is solid with HTTPS, captcha protection on forms, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the domain registration aligns well with the company identity, indicating legitimacy and trustworthiness.

B

Berliner Philharmoniker

berliner-philharmoniker.de

0

The Berliner Philharmoniker website represents a prestigious cultural institution focused on classical music performances, education, and digital streaming services. The site offers comprehensive information about concerts, ticketing, educational programs, and related media, targeting a broad audience including families, youth, and classical music enthusiasts. The business model centers on live event ticket sales, digital content distribution, and educational outreach, supported by strong partnerships such as Deutsche Bank and dedicated streaming platforms. Technically, the website is built on TYPO3 CMS with modern JavaScript integrations, including Vimeo for video content and Usercentrics for GDPR-compliant consent management. The site is well-optimized for mobile and accessibility, with good SEO practices and a professional design. Security posture is solid with HTTPS and consent management, though explicit security headers and incident response policies are absent. Overall, the site is trustworthy, professional, and compliant with privacy regulations, though it lacks explicit privacy and terms of service pages in the analyzed content. Recommendations include enhancing security headers, publishing security policies, and providing clearer contact information for security and privacy concerns.

D

Deutscher Musikrat gGmbH / Bundesjugendorchester

bjo-alumni.de

0

The Bundesjugendorchester Alumni website serves as a dedicated networking and information platform for former members of the Federal Youth Orchestra in Germany. It provides alumni with tools to connect, access event information, subscribe to newsletters, and purchase merchandise. The platform is supported by the Deutscher Musikrat gGmbH and leverages a specialized CMS by Paulbergman GmbH (Alumnii). The site is well-structured, mobile-optimized, and integrates modern web technologies including Bootstrap, jQuery, and Matomo analytics. Security measures include HTTPS, CAPTCHA protection, and a comprehensive cookie consent mechanism. Privacy policies are detailed and GDPR compliant, with clear data protection officer contact information. However, no explicit terms of service or security policy pages were found.

DIE VIELEN is a German non-profit organization dedicated to promoting an open, solidaric, diverse, and democratic society. The website serves as a platform to present their advocacy campaigns, cultural projects, event calendar, and press resources. The organization targets a general audience interested in social justice and anti-right-wing extremism initiatives. The website is built on WordPress with modern frontend technologies such as Vue.js, indicating a moderate level of digital maturity. Hosting is managed via domaincontrol.com name servers, commonly associated with GoDaddy. From a security perspective, the website enforces HTTPS and uses secure form submission endpoints, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The site does not appear to use analytics or tracking services, suggesting minimal user tracking. Overall, the security posture is adequate but could be improved with additional headers and compliance documentation. The website content is safe for general audiences with no adult or questionable content detected. Navigation and design quality are good, providing a professional user experience. Contact options are limited to forms without direct email or phone contacts. The WHOIS data is minimal but consistent with a legitimate domain registration. No WAF or blocking mechanisms were detected, allowing full content access for analysis.