Security Directory

T

Tuchfabrik Gebr. Pfau Crimmitschau

tuchfabrik-crimmitschau.de

0

The Tuchfabrik Gebrüder Pfau Crimmitschau is a cultural heritage museum located in Germany, focusing on the history and future of the textile industry in Saxony. The website serves as an informational portal for visitors, offering details on exhibitions, events, educational programs, and visitor services such as a museum shop and café. The target audience includes families, education institutions, and individuals interested in technology and fashion history. The museum operates as a small-sized entity with a regional focus. Technically, the website is built on TYPO3 CMS, utilizing modern web technologies such as Bootstrap for responsive design and Slick Slider for interactive content. Hosting is provided by a professional German hosting provider (timmehosting.de). The site demonstrates good mobile optimization, clear navigation, and moderate performance. Analytics are handled via Matomo, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not implement a cookie consent mechanism, which is important for GDPR compliance. No explicit security policies or incident response contacts are published, which could be improved to enhance trust and compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in privacy compliance and security hardening would further strengthen its posture and user trust.

Z

Zweckverband Sächsisches Industriemuseum

saechsisches-industriemuseum.de

0

The Zweckverband Sächsisches Industriemuseum is a regional cultural institution operating four museum sites in Saxony, Germany, dedicated to preserving and presenting industrial heritage. The website serves as an informational portal for visitors and stakeholders, highlighting the museums and their offerings. The organization positions itself as a non-profit entity focused on cultural education and heritage preservation. Technically, the website is built on TYPO3 CMS, uses Matomo for analytics, and is hosted on professional infrastructure. The site is mobile-optimized with a clear navigation structure but restricts search engine indexing via meta robots tags. Security posture is moderate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but could improve privacy compliance and security best practices.

The website ratgeber-ofen.de serves as a comprehensive consumer information portal focused on wood heating, fireplaces, and related products. It is affiliated with the HKI Industrieverband Haus-, Heiz- und Küchentechnik e.V., a recognized industry association in Germany. The site provides detailed advice, product information, press releases, and support resources targeted at end consumers interested in modern heating solutions using solid fuels. The business model centers on education and industry advocacy rather than direct sales. Technically, the site employs legacy JavaScript libraries such as jQuery 1.9.0 and Modernizr 2.6.1, alongside plugins like AnythingSlider and Fancybox. Hosting appears to be managed via rzone.de. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. Cookie consent is implemented with user choice for Google Analytics tracking. From a security perspective, the site lacks explicit security headers and uses outdated JavaScript libraries, which may expose it to vulnerabilities. SSL status is not explicitly confirmed but presumed given the domain. No security policy or incident response information is provided. Privacy compliance is basic but includes a privacy policy and cookie banner. Contact information is clearly available, enhancing trust. Overall, the website is a trustworthy and professional resource for its niche audience, though technical and security improvements are recommended to enhance protection and compliance. The risk level is moderate with no critical issues detected.

K

KIDS Regio c/o Deutsche Kindermedienstiftung Goldener Spatz

kids-regio.org

0

KIDS Regio is a German non-profit organization operating under the Deutsche Kindermedienstiftung Goldener Spatz, focusing on children's media and film festivals. The website serves as a platform for events like the KIDS Regio Forum and provides publications and networking opportunities for professionals in the children's media sector. The organization targets a niche audience involved in young audience film festivals and media education. Technically, the website is built on WordPress with common plugins such as LayerSlider and Real Cookie Banner Pro, indicating a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly, with good content quality and clear navigation. Security-wise, the site uses HTTPS and a GDPR-compliant cookie consent mechanism but lacks DNSSEC and some advanced security headers, which are recommended for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, with no signs of adult or questionable content.

S

SHOTZ Production Service Germany

shotzfilm.de

0

SHOTZ Production Service Germany is a well-established film production service company based in Berlin, with over 25 years of experience and a strong market position in Germany. They specialize in organizing filming, casting, and remote production services for commercials, films, and content productions. Their business model focuses on providing Hollywood-quality production experience with versatile services to a broad creative audience. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on WordPress using Elementor and optimized with NitroPack, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking published security policies and incident response information. Overall, the site is trustworthy and well-maintained but could improve compliance by adding privacy and terms of service pages.

F

Football Agency Cup GmbH

agency-cup.com

0

Football Agency Cup GmbH operates a well-established football tournament event for Germany's marketing and creative agencies, positioning itself as the largest industry event of its kind since 1988. The website is professionally designed using the Wix platform, offering good content quality and user experience tailored to its target audience. However, the technical infrastructure is basic with moderate performance and limited advanced SEO or accessibility features. Security posture is average with no evident security headers or policies, and privacy compliance is lacking due to missing privacy and cookie policies. The absence of WHOIS data raises concerns about domain registration legitimacy, which should be addressed to enhance trust. Overall, the digital maturity is moderate with room for improvement in security and compliance.

H

Hopp Foundation for Computer Literacy & Informatics gGmbH

hopp-foundation.de

0

The Hopp Foundation for Computer Literacy & Informatics gGmbH is a small non-profit organization based in Germany focused on promoting digital education in the Rhein-Neckar metropolitan region. Their website offers comprehensive information about workshops, teaching materials, and support services for teachers, school leaders, students, and parents. The foundation emphasizes practical and innovative learning formats to foster digital literacy and informatics skills. Technically, the website is built on a modern stack with Kirby CMS, uses JavaScript libraries for UI enhancements, and is hosted on a domain managed by DomainControl. The site is mobile-optimized, well-structured, and provides clear navigation and professional design. Security-wise, the site enforces HTTPS and cookie consent but lacks explicit security policies or incident response contacts. No tracking or advertising scripts were detected, reflecting a privacy-conscious approach. WHOIS data is minimal but consistent with a legitimate educational entity. Overall, the website is trustworthy, professional, and well-suited for its educational mission.

D

Deutsche Telekom Stiftung

telekom-stiftung.de

0

Deutsche Telekom Stiftung is a large, well-established non-profit foundation founded in 2003, focused on improving STEM (MINT) education for children and youth in Germany. The foundation supports educational projects, develops free teaching materials, and fosters networks and educational steering. The website is professionally designed, mobile-optimized, and built on Drupal CMS with modern technologies such as Matomo analytics and Cookiebot for privacy compliance. Security posture is strong with HTTPS and privacy-respecting analytics, though some security headers and explicit security policies could be improved. Overall, the site is trustworthy, transparent, and compliant with GDPR, targeting educators, schools, and learners.

B

Bundesanstalt für Materialforschung und -prüfung (BAM)

bam.de

0

The Bundesanstalt für Materialforschung und -prüfung (BAM) is a German federal scientific research institute specializing in material research and testing. It operates under the Federal Ministry for Economic Affairs and Energy and serves a broad audience including researchers, industry professionals, and government entities. The website provides comprehensive scientific content, official portals, and public services related to material safety and technology transfer. Technically, the site uses modern web technologies with good mobile optimization and accessibility. Security posture is strong with HTTPS and privacy-respecting analytics (Matomo) that anonymize user data and require consent. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site reflects a professional, trustworthy government entity with excellent content quality and privacy compliance.

F

Finanz Informatik

fi-magazin.de

0

FI-Magazin is the official customer magazine of Finanz Informatik, a key IT service provider within the German Sparkassen-Finanzgruppe. The website serves as a professional platform delivering news, updates, and insights about financial IT solutions, software releases, and industry events tailored for banking professionals and IT specialists in finance. It enjoys a strong market position as a trusted communication channel backed by the Sparkassen-Finanzgruppe. Technically, the site leverages modern web technologies including React with Next.js, Bootstrap, and various JavaScript libraries, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements could be made by adding explicit security policies and cookie consent mechanisms. Overall, the site is highly professional, trustworthy, and compliant with GDPR, though some privacy compliance aspects like cookie consent could be enhanced.

Z

Zeitungsgruppe Münsterland

zgm-muensterland.de

0

Zeitungsgruppe Münsterland (ZGM) is a regional media partnership uniting several local newspapers in the Münsterland area of Germany. The group offers advertising opportunities across print and digital platforms, targeting local businesses and advertisers seeking regional reach. The website reflects a professional media group with a strong regional presence and multiple partner newspapers. Technically, the site is built on WordPress with modern frontend technologies and includes features such as a newsletter signup and social media sharing. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy, well-branded, and serves its business purpose effectively.

W

Wasted Talent

wasted-talent.com

0

Wasted Talent is a boutique music publishing and artist management company based in Berlin, Germany, founded in 2014. The company focuses on a small roster of talented writers and artists, serving a global market. Their website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site uses modern JavaScript frameworks (Vue.js), supports mobile optimization excellently, and integrates Mailchimp for newsletter management. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers are missing and DNSSEC is not enabled. Privacy compliance is good with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

C

Commerzbank

commerzbank.com

0

Commerzbank's group website serves as the corporate portal for one of Germany's major banking institutions. The site provides information about the bank's corporate identity and services, targeting corporate clients, investors, and the general public interested in the bank's operations. The website demonstrates a professional design with consistent branding and a moderate level of technical maturity, including the use of modern web technologies and a cookie consent mechanism to comply with privacy regulations. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks visible security headers and explicit security policies. The absence of explicit privacy policy and terms of service in the provided content suggests areas for improvement in privacy compliance and transparency. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and trustworthy online presence.

E

ELB BUREAUX GmbH

elb-bureaux.com

0

ELB BUREAUX GmbH is a Hamburg-based branding and design agency specializing in creating exciting brand identities. The company targets businesses seeking professional branding services and positions itself as a niche player in the branding and creative design market. The website is built on TYPO3 CMS and uses Bootstrap 5.3.0, reflecting a modern and responsive technical infrastructure. The site design is professional and consistent, providing a good user experience with clear navigation and mobile optimization. However, the website lacks critical compliance documents such as privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate due to the absence of security headers and incomplete WHOIS data, which raises some trust concerns. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures to improve trust and regulatory adherence.

B

Biologische Heilmittel Heel GmbH

heel-vital.de

0

HeelVital is a German natural health portal operated by Biologische Heilmittel Heel GmbH, offering comprehensive information on natural remedies, homeopathic products, and wellness tips. The website serves a broad audience interested in health and natural medicine, positioning itself as a trusted source with strong brand association to the Heel family of products. Technically, the site is built on modern frameworks such as Next.js and React, with a CMS integration via Storyblok, ensuring a fast, mobile-optimized, and accessible user experience. The presence of Google Tag Manager, Visual Website Optimizer, and Usercentrics indicates a mature digital marketing and consent management setup. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though the site lacks explicit security and incident response policies. WHOIS data is minimal and lacks registrant transparency, which slightly impacts trust but is mitigated by the professional site and brand presence. Overall, the site is well-maintained, compliant with GDPR, and trustworthy for its intended audience.

H

Heel Vet Pro

heelvetpro.de

0

Heel Vet Pro is a specialized provider of high-quality veterinary supplements for dogs and cats, exclusively distributed through veterinary practices. The company positions itself as a trusted partner for veterinarians, emphasizing scientific formulation and targeted animal health support. The website reflects a professional and consistent brand image, targeting veterinary professionals and pet owners seeking expert-backed products. Technically, the site is built on WordPress with modern performance optimizations such as WP Rocket and lazy loading, ensuring fast and mobile-optimized user experience. Privacy compliance is robust, with GDPR-aligned cookie consent managed by Usercentrics and clear privacy policies. Security posture is strong with HTTPS enforced and CAPTCHA protections, though some HTTP security headers could be improved. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

H

Heel GmbH

heelvetplus.de

0

Heelvetplus.de is a professionally designed website operated by Heel GmbH, specializing in high-quality veterinary supplements for dogs and cats. The company positions itself as a niche provider with products developed by veterinarians, targeting pet owners in Germany. The website offers product information and e-commerce capabilities, supported by a modern WordPress infrastructure with SEO and performance optimizations. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, the site lacks explicit terms of service and security policy pages, and no direct contact emails or phone numbers are provided, relying instead on a contact form. Overall, the site is trustworthy and professionally maintained, with moderate to good digital maturity.

H

Heel GmbH

vetepedia.de

0

Vetepedia is a German-language veterinary health information portal operated by Heel GmbH, focusing on natural medicines and health topics for pets such as dogs, cats, and horses. The website offers comprehensive health information, product details, and services targeted at pet owners and veterinary professionals. The business positions itself as a niche provider in the animal healthcare sector with a medium-sized presence in Germany. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, and Usercentrics for consent management, built likely on WordPress. The site is mobile-optimized and SEO-friendly with structured data and clear navigation. Security-wise, the site enforces HTTPS and uses consent management but lacks some advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were found. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with room for improvement in security policy transparency and additional security headers.

E

ENTDECKE DEIN NEO

dein-neo.de

0

ENTDECKE DEIN NEO operates a professional e-commerce platform specializing in dietary supplements aimed at promoting health, vitality, and well-being. The website targets consumers interested in health and wellness products, offering a range of supplements with a focus on personalized nutrition. The business leverages trusted certifications such as Trusted Shops and provides customer testimonials to enhance credibility. Technically, the site is built on modern frameworks including Vue Storefront 2 and integrates a headless CMS (Storyblok) with a robust e-commerce backend (Commercetools). It employs advanced consent management via Usercentrics and uses multiple analytics and marketing tools to optimize user engagement and compliance. Security posture is strong with HTTPS enforced, Cloudflare DNS/CDN usage, and secure payment options displayed. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site presents a trustworthy, well-maintained digital presence with moderate to good performance and accessibility.

S

Sitejet (part of WebPros International GmbH)

sitejet.io

0

Sitejet Studio is a professional SaaS platform focused on providing website building, project management, and client collaboration tools primarily for agencies and freelancers. The company operates under WebPros International GmbH and has been established since 2013, positioning itself as a competitive player in the web design technology sector. The platform offers a comprehensive suite of services including a no-code website builder, integrated project management, customer portals, SEO tools, and e-commerce capabilities, aiming to streamline workflows and reduce design time significantly. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Tag Manager, Microsoft Clarity, and Visual Website Optimizer, alongside a consent management platform (Usercentrics) to comply with privacy regulations. The site is well-optimized for mobile devices, SEO-friendly, and demonstrates good accessibility practices. Hosting details are not explicitly disclosed, but the platform includes secure hosting features as part of its offering. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies or incident response information. The WHOIS data is unavailable due to privacy protection or query failure, which slightly reduces trust but is justified for this business type. No critical vulnerabilities or suspicious content were detected. Overall, Sitejet Studio presents a trustworthy and professional web presence with strong business credibility and technical maturity. Strategic improvements include publishing explicit privacy and security policies, enhancing security headers, and providing vulnerability disclosure information to further strengthen trust and compliance.

G

Gaia-X Hub Germany

gaia-x-hub.de

0

Gaia-X Hub Germany operates as a central coordination and information platform for the Gaia-X initiative, focusing on creating interconnected data spaces through open standards and collaboration. The website serves as a resource hub for stakeholders in the German and broader European digital ecosystem, providing project information, events, publications, and community engagement opportunities. The business model centers on ecosystem facilitation rather than direct commercial services, positioning Gaia-X Hub Germany as an important player in the technology sector focused on data infrastructure. Technically, the website is built on WordPress using the Divi theme, enhanced with SEO tools like Rank Math and event management plugins. The hosting is managed by a German provider, netcup GmbH, ensuring regional compliance and performance. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be improved. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and shows basic security best practices but lacks some advanced headers like Content-Security-Policy and Referrer-Policy. There is no visible security policy or incident response contact, which could be improved to enhance trust and compliance. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, Gaia-X Hub Germany's website is professional, trustworthy, and well-aligned with its business purpose. However, it would benefit from enhanced privacy compliance documentation and improved security header implementation to strengthen its security posture and regulatory adherence.

K

Knipp Medien und Kommunikation GmbH

knipp.de

0

Knipp Medien und Kommunikation GmbH is a medium-sized German company specializing in domain registration, IT enterprise services, and print solutions. Established in 1996, the company positions itself as a reliable provider for businesses seeking integrated media and communication services. Their website reflects a professional and consistent brand image, supported by ISO 27001 certification and comprehensive privacy and cookie policies aligned with GDPR requirements. Technically, the site employs modern JavaScript libraries and frameworks such as RequireJS, jQuery, and Bootstrap, and uses Matomo analytics with IP anonymization to balance user tracking and privacy. Security measures include HTTPS, CSRF protection, CAPTCHA on forms, and two-factor authentication support, although some security headers are not explicitly detected. Overall, the website demonstrates a solid security posture and good digital maturity.

P

Procter & Gamble

for-me-online.de

0

ForMe is a consumer-oriented platform operated under the Procter & Gamble umbrella, designed to help users save time and money through cashback offers, product testing, free samples, and sweepstakes. The website targets consumers interested in family, wellness, and household products, leveraging strong brand partnerships and a well-established corporate backing. Technically, the site is built on modern frameworks including React and Sitecore, hosted on Microsoft Azure, and employs advanced security measures such as HTTPS, security headers, and reCAPTCHA Enterprise. The security posture is strong, with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through comprehensive policies linked to official Procter & Gamble domains. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity, making it a reliable platform for its users.

O

Oral-B Germany

oralb.de

0

Oral-B Germany operates a comprehensive e-commerce and brand marketing website focused on oral health products including electric and manual toothbrushes, replacement brush heads, toothpaste, and oral hygiene accessories. The site targets German consumers and is part of the global Procter & Gamble portfolio, positioning Oral-B as a leading trusted brand in dental care. The website demonstrates a high level of digital maturity, utilizing modern technologies such as Next.js and React, hosted on Microsoft Azure infrastructure, and integrates advanced marketing and analytics tools like Google Analytics and Bazaarvoice. The site is well-optimized for mobile and SEO, providing an excellent user experience with clear navigation and rich content. Security posture is strong with HTTPS, security headers, and secure forms, though explicit security policies and incident response contacts are not published. Privacy compliance is robust with GDPR-aligned policies and cookie consent mechanisms. Overall, the website reflects a professional, trustworthy, and secure online presence for a major consumer brand.

F

Fachverband Sanierung und Umwelt, FSU e. V.

bbw-ev.de

0

The Fachverband Sanierung und Umwelt, FSU e. V., is a well-established German professional association specializing in damage restoration services including fire, water, mold, and hazardous substance remediation. With over 30 years of experience and a network covering more than 65% of the market, the FSU provides quality assurance, training seminars, and industry representation for its members. The website reflects a mature digital presence built on WordPress with Elementor, offering comprehensive information and contact options. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though formal security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

I

Industriemuseum Chemnitz

industriemuseum-chemnitz.de

0

Industriemuseum Chemnitz is a regional museum dedicated to the industrial, economic, and social history of Saxony from the beginning of the industrial age to the present. The museum offers permanent and special exhibitions, educational programs, events, and visitor services including a museum shop and gastronomy. It targets a broad audience including families, education institutions, and culture enthusiasts. The website is built on TYPO3 CMS and uses Matomo for analytics, reflecting a moderate level of digital maturity. The site is well-designed, mobile-optimized, and provides clear navigation and rich content. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks some advanced security headers and explicit security policies. Privacy compliance is partial due to absence of a cookie consent mechanism. Overall, the website and domain registration are trustworthy and professionally managed.

S

Spätschicht

spaetschicht.eu

0

Spätschicht.eu is a German regional event website that organizes open company tours for students, job seekers, and employees to explore career and training opportunities in various cities such as Görlitz, Weißwasser/O.L., Zittau, and others. The platform is supported by local economic development agencies and chambers of commerce, emphasizing regional economic promotion and workforce development. The website is built on WordPress, utilizing popular plugins like Yoast SEO, LayerSlider, and Borlabs Cookie for SEO, content presentation, and GDPR-compliant cookie management. Matomo analytics is used with cookies disabled to respect user privacy. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though no explicit security policy or incident response information is provided. Contact is primarily via a contact form, with no direct emails or phone numbers found. Overall, the site is professional, well-structured, and trustworthy, serving a clear business purpose in the manufacturing and regional event sector.

O

Olsberg Gruppe

koenigshuette-ofen.com

0

Kaminöfen Königshütte is a German heating stove brand operating under the Olsberg Group, specializing in wood-burning and pellet stoves with a focus on quality and elegant design. The website presents a professional and user-friendly interface with product finders, dealer search, and downloadable resources, targeting consumers and retailers interested in heating solutions. Technically, the site is built on WordPress with modern libraries and enforces HTTPS with a robust cookie consent mechanism, reflecting a mature digital presence. However, the absence of WHOIS data for the domain raises concerns about domain legitimacy and ownership transparency. Security practices are generally good, but the lack of explicit security headers and incident response information suggests room for improvement. Overall, the site is trustworthy and well-maintained but would benefit from enhanced transparency and security hardening.

O

Olsberg GmbH

olsberg-karriere.com

0

Olsberg GmbH is a historic German family-owned manufacturing company with over 440 years of history, specializing in casting technology, fine sheet metal processing, and heat technology including design-oriented stoves. The company operates through three main business units and serves industrial clients primarily in Germany and internationally. The website is professionally designed using WordPress with modern technologies and provides comprehensive information about the company, its services, and career opportunities. Privacy and cookie policies are implemented with GDPR compliance, and contact information is clearly presented. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency but does not detract from the professional presentation and trust signals on the site.

G

GWA Gesamtverband Kommunikationsagenturen

gwa.de

0

The GWA website represents the Gesamtverband Kommunikationsagenturen, a leading German association for communications agencies. It provides comprehensive information about its services, including marketing effectiveness awards, networking, events, and educational resources. The site targets agencies, marketing professionals, and related stakeholders, positioning itself as a central industry hub. Technically, the site is built on WordPress with modern plugins and scripts, optimized for mobile and accessibility, and uses Cloudflare for DNS and CDN services. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, with room for improvement in security transparency and terms of service availability.

U

Universität Münster

uni-muenster.de

0

Universität Münster is a large, well-established public university in Germany, offering high-quality interdisciplinary research and education. It serves a broad academic audience including students, researchers, and alumni, with a strong emphasis on excellence clusters and international cooperation. The website reflects a professional and comprehensive digital presence with clear navigation and relevant content. Technically, the site uses a mature CMS (IMPERIA), modern JavaScript libraries, and respects privacy with Matomo analytics configured to honor Do Not Track. Security posture is solid with HTTPS and no visible vulnerabilities, though some improvements in security headers and cookie consent mechanisms are recommended. Overall, the domain registration and hosting align with the university's identity, supporting high legitimacy and trust.

C

Code for Germany

klimawatch.de

0

Klimawatch is a German civic technology project focused on providing transparency and information about climate protection efforts in local municipalities. It is a non-profit initiative supported by organizations such as Code for Germany and the Open Knowledge Foundation Germany. The website offers educational content about climate goals and allows users to explore climate protection data for various German cities. Technically, the site is built using the Hugo static site generator, leveraging modern web technologies including Google Fonts and Font Awesome icons, and is hosted on rzone.de servers. It employs privacy-friendly Fathom Analytics for minimal user tracking. Security-wise, the site uses HTTPS but lacks advanced security headers and a cookie consent mechanism, which are recommended for GDPR compliance. The WHOIS data is limited but consistent with a small civic tech project. Overall, the site is professional, trustworthy, and well-structured, serving a niche audience interested in local climate action.

T

Thomas Werner

spassmitdaten.de

0

Spass mit Daten is a German-language curated link directory and blog focused on data science, data visualization, and open data. The site provides categorized links to data sources, tools, background information, and guides, targeting data professionals, researchers, and hobbyists interested in open data. The business operates as a small, content-driven resource without direct commercial offerings. Technically, the site is built using the Hexo static site generator with the Icarus theme, leveraging modern web technologies such as HTML5, CSS3, JavaScript, and libraries like jQuery and Moment.js. Hosting is provided by Schlund Technologies, and the site uses HTTPS with good SSL configuration. Security posture is moderate with room for improvement, particularly in implementing security headers and cookie consent mechanisms. Privacy compliance is basic with a privacy policy present but no cookie banner. No contact information or formal security policies are published, limiting direct user engagement and incident response readiness. Overall, the website is professional, trustworthy, and safe, with minimal tracking and no advertising. The domain registration is consistent with the website's history and hosting provider, supporting legitimacy. Strategic improvements in security and privacy compliance would enhance trust and resilience.

C

Code for Germany

codefor.de

0

Code for Germany is a non-profit civic tech network focused on promoting open data, open government, and digital sustainability in Germany. It operates through a community of approximately 300 volunteers organized in local labs and an online platform. The organization is coordinated by the Open Knowledge Foundation Deutschland e.V. and is part of the global Code for All network. Their key services include developing open source software and hardware projects, supporting municipalities in digital transformation, and advocating for transparent and sustainable digital policies. Technically, the website is built using the Hugo static site generator, employs Matomo for privacy-conscious analytics, and is well-optimized for performance and mobile devices. Security posture is solid with HTTPS and minimal tracking, though improvements are recommended in security headers and explicit cookie consent. Overall, the website is professional, trustworthy, and serves a clear community and civic purpose.

W

WECHANGE eG

wechange.de

0

WECHANGE eG operates the platform wechange.de, a solidarity-based online collaboration and community platform targeting individuals, associations, initiatives, companies, and organizations committed to social change. The platform integrates multiple collaboration tools such as Nextcloud for file management, Etherpad and Collabora for real-time document editing, chat, videoconferencing, and calendar functionalities, all accessible via a single login. The business model is based on voluntary contributions rather than data monetization, emphasizing transparency and user data control through open source and self-hosted services. The platform has a significant user base with over 60,000 users and 10,000 groups, positioning it as a notable player in the social collaboration technology space in Germany.

M

muenster.im

muenster.im

0

muenster.im operates as an independent Mastodon server providing a federated social media platform primarily targeting users in Münster, Germany, and the broader fediverse community. The platform offers microblogging services with a focus on community engagement and decentralized social networking. The website content reflects active user participation with trending posts and a visible admin presence, indicating a small but engaged user base. Technically, the site leverages modern web technologies including React and ES modules, ensuring a responsive and user-friendly experience across devices. However, the hosting provider is not explicitly identified, and media assets are served from third-party object storage, suggesting a cloud-based infrastructure. Security posture is moderate; HTTPS is enforced, but critical security headers are missing, and the domain registration is expired, posing a risk to service continuity. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms and terms of service. Overall, the site is functional and trustworthy for general audiences but requires urgent domain renewal and enhanced security and compliance measures to improve resilience and user trust.

DELFI e.V. operates as a cooperative network focused on providing unified electronic passenger information and route calculation services for public transport across Germany. It serves as a key organizational and technological hub facilitating data harmonization among federal states and partners, supporting cross-regional travel chains and future-oriented information services. The website reflects a mature digital presence with a clear focus on public transport stakeholders and end users. Technically, the site employs a modern but traditional web stack including jQuery, Bootstrap, and various UI libraries, hosted on German infrastructure. The site is mobile-optimized and accessible, with good SEO practices and a professional design. Analytics are handled via Matomo with cookies disabled, indicating privacy-conscious implementation. Security posture is moderate; HTTPS is implied but no explicit security headers or policies are published. No forms collect sensitive data on the homepage, reducing attack surface. Privacy compliance is partial with a privacy policy present but lacking a cookie consent mechanism. Business credibility is high with transparent contact details, organizational information, and trust signals such as government references. Overall, the website is a reliable and professional resource for public transport information in Germany, with room for improvement in security and privacy compliance to enhance trust and regulatory adherence.

HausExperte24.de is a small, regionally focused professional service provider specializing in certified real estate valuation, mold inspection, and building biology consulting in northern and central Germany. The company is led by a highly certified expert, Hartmut Häusler, and operates from two offices with comprehensive contact options. The website is well-structured, professionally designed, and provides clear service descriptions and trust signals such as certifications and memberships. Technically, the site uses a cm4all CMS platform with older JavaScript libraries but maintains good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and a vulnerability disclosure policy could enhance trust. Overall, the site is trustworthy, GDPR compliant, and suitable for its target audience.

M

Deutschlands grösstes Online Trainings- und Informationsportal für Immobilienmakler

makler-wissen.de

0

Makler-Wissen.de is Germany's largest online training and information portal dedicated to real estate agents. It offers hundreds of professional training and educational videos with certification to support the success of real estate professionals. The platform targets aspiring and active real estate agents seeking continuous education and certification. Technically, the website is built on the Contao Open Source CMS, hosted likely by netcup, and employs modern web technologies including JavaScript, CSS, and integrates marketing and analytics tools such as Facebook Pixel, Google Analytics, and Cookiebot for consent management. The site is mobile optimized and SEO friendly, providing a good user experience. Security-wise, the site uses HTTPS and implements CSRF protection cookies, but lacks explicit security headers and published incident response or vulnerability disclosure information. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and a detailed privacy policy in German, aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-positioned in its niche, though it could improve security posture by adding security headers and incident response contacts.

BVFI operates as a professional real estate association in Germany, providing networking, training, and marketplace services to real estate professionals including brokers and investors. The website is well-structured, professionally designed, and integrates modern web technologies such as PWA features and service workers. Marketing and analytics tools like Google Tag Manager, Facebook Pixel, and Zoho SalesIQ are actively used, supported by a cookie consent mechanism to comply with privacy regulations. However, explicit privacy policy and terms of service pages are not found, which is a compliance gap. Security posture is solid with HTTPS and some best practices, but could be improved by adding security headers and incident response information. Overall, the domain registration is consistent and trustworthy, aligning with the business's German real estate focus.

T

Trustsiegel

trustsiegel.de

0

Trustsiegel.de is a German-based service specializing in aggregating customer reviews from multiple online portals into a unified trust badge and expert status score displayed on client websites. The company targets businesses, particularly in the real estate sector, aiming to enhance customer acquisition and trust through visible online reputation management. Their offerings include expert profile pages, integration of Google review stars in search results, and direct customer review collection. The website is built on WordPress with modern SEO and performance optimizations, hosted on kasserver.com. Contact information and partner associations are clearly presented, supporting business credibility. However, the site lacks a cookie consent mechanism and explicit security policies, which are areas for improvement.

The website www.costablancamakler.com represents a real estate brokerage business specializing in property sales, rentals, and management in the northern Costa Blanca region of Spain. The company behind the site is DA VINCI IMMOBILIEN GmbH, a German entity. The site targets buyers and renters interested in properties along the Costa Blanca coast, emphasizing the region's mild climate and lifestyle benefits. Technically, the website uses a modern frontend stack including jQuery, Bootstrap, and LayerSlider, with mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy or cookie policies, which are compliance gaps. The WHOIS data for the domain is missing or unavailable, raising concerns about domain registration legitimacy. Contact information is clearly presented, but no social media or security incident contacts are provided. Overall, the site is professional and content-rich but requires improvements in privacy compliance and domain legitimacy verification.

L

LOFT Köln

loftkoeln.de

0

LOFT Köln operates as a specialized music venue and recording studio in Cologne, Germany, focusing on jazz and contemporary music events. The website highlights its recognition as Deutscher Jazzpreis Club of the Year in 2021 and 2023, underscoring its strong market position within the cultural and music event sector. The business model revolves around hosting concerts, live recordings, and renting studio space, targeting jazz enthusiasts and musicians. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

D

d.velop AG

foxdox.de

0

d.velop AG offers the d.velop postbox, a cloud-based digital mailbox solution designed to securely receive, store, and manage personal and business documents digitally. The platform targets employees, customers, insured persons, and citizens, providing a unified digital mailbox accessible via web and mobile apps. The company positions itself as a trusted technology provider in Germany with a strong emphasis on security, compliance, and user convenience. The service includes encrypted document delivery, AES-256 encryption for storage, GDPR compliance, and ISO 27001 certification, ensuring high data protection standards. The website is professionally designed, mobile-optimized, and integrates modern technologies such as WordPress, React, and Usercentrics for consent management.

tiny.li is a URL shortening service operated by Börsenmedien AG, a German media company. The service provides a simple utility to convert long URLs into short, easy-to-use links. The website content is minimal but functional, with clear branding aligned to the parent company. The technical infrastructure appears basic, relying on standard HTML and CSS without advanced frameworks or analytics. Security posture is limited, with no detected security headers or privacy policies on the site itself, though the parent company provides terms of service. Overall, the site is legitimate and trustworthy but could improve in privacy compliance and security features.

S

Sparkasse.de

s.de

0

Sparkasse.de serves as the central information portal for the Sparkassen-Finanzgruppe, a major financial institution in Germany. The website provides comprehensive information about banking products, services, and branch locations, targeting a broad general audience primarily within Germany. The business model focuses on delivering accessible financial information and facilitating customer engagement with local Sparkasse branches. The site demonstrates a strong market position as part of a well-established financial group. From a technical perspective, the website employs modern web technologies including React and Next.js, indicating a mature digital infrastructure. The site is well-structured, mobile-optimized, and exhibits good SEO practices. However, there is limited evidence of advanced security headers or explicit privacy and cookie policies, which are critical for compliance and user trust in the financial sector. Security posture analysis reveals gaps such as the absence of visible security headers and lack of published security policies or incident response contacts. While HTTPS is presumed given the domain and modern setup, explicit confirmation is not available in the provided data. The lack of privacy and cookie policies also indicates potential compliance risks with GDPR requirements. Overall, Sparkasse.de is a professionally designed and credible financial information portal with strong business credibility and technical implementation. To enhance security and compliance, it is recommended to implement comprehensive privacy and cookie policies, security headers, and vulnerability disclosure mechanisms. These improvements will strengthen user trust and regulatory adherence.

C

Commerzbank

commerzbank.de

0

Commerzbank is a major German bank serving private and business customers with a comprehensive online banking portal. The website provides access to banking services and information tailored to its target audience of private individuals and entrepreneurs. The bank holds a strong market position in the German financial sector, offering a wide range of financial products and services. The website's technical infrastructure includes modern JavaScript-based analytics and monitoring tools such as Dynatrace and Google Analytics, indicating a mature digital presence. Security measures include HTTPS enforcement and CSRF token usage, although visible security headers and explicit security policies are not present in the provided content. Privacy compliance is partially addressed through a cookie consent mechanism, but no explicit privacy or terms of service pages were detected in the analyzed HTML snippet. Overall, the website is professional, secure, and trustworthy, with room for improvement in privacy transparency and security header implementation.

V

Vermittlerregister | Herzlich Willkommen beim Vermittlerregister

vermittlerregister.info

0

The website www.vermittlerregister.info serves as the official German registry for insurance intermediaries, financial investment intermediaries, fee-based financial advisors, and real estate loan intermediaries. It provides a centralized platform for professionals in these sectors to register and verify their credentials, positioning itself as a key authoritative source within the German financial services industry. The site targets industry professionals and regulatory bodies, emphasizing transparency and compliance within the financial intermediary market. Technically, the website is built using modern web technologies including Angular and Material Design components, ensuring a responsive and user-friendly interface. The presence of a cookie consent mechanism via Klaro indicates attention to privacy compliance, although explicit privacy and terms of service documents were not detected in the provided content. Performance and accessibility are rated as good, with mobile optimization well addressed. From a security perspective, the site uses HTTPS, but lacks visible security headers and explicit security policies or incident response contacts. The WHOIS data is privacy protected, which is common for such official domains, and does not raise immediate concerns. No vulnerabilities or suspicious patterns were detected in the content or technical setup. Overall, the security posture is moderate but could be improved by implementing additional security headers and publishing clear privacy and security policies. The overall risk assessment is low, with the site appearing legitimate and professionally maintained. Strategic recommendations include enhancing transparency with published privacy and terms policies, improving security headers, and providing clear contact information for security incidents to strengthen trust and compliance.

T

Thomas Mohn

thomasmohn.de

0

Thomas Mohn is a professional photographer and videographer based in Münster, Germany, specializing in business photography, image films, drone footage, advertising films, and event videos. The website presents a well-established small business with a strong regional presence and a focus on authentic visual storytelling for corporate and private clients. The site features positive customer testimonials and showcases client logos, reinforcing trust and credibility. Technically, the website is built on WordPress using Elementor, with modern plugins for enhanced user experience and cookie consent management. Hosting is provided by kasserver.com, and the site is well-optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Bundesministerium für Digitales und Verkehr

mobilithek.info

0

Mobilithek.info is a German government-operated platform under the Bundesministerium für Digitales und Verkehr, providing open mobility data and serving as a national access point and marketplace for mobility data in Germany. The platform targets businesses, municipalities, data providers, and mobility enthusiasts from various sectors including economy, science, and public administration. It offers services such as data searching, data delivery facilitation, and community networking through a professional and well-maintained website. Technically, the website employs modern web technologies including JavaScript ES modules and Vue.js framework, with a responsive and accessible design optimized for mobile devices. The site demonstrates good SEO practices and fast performance, although no common CMS or hosting provider details are evident. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and explicit incident response or vulnerability disclosure mechanisms. Overall, the security posture is solid but could be improved by implementing additional security headers and publishing a security.txt or vulnerability disclosure policy. The WHOIS data is limited due to TLD restrictions and privacy, but the domain's association with a federal ministry strongly supports legitimacy. No signs of malicious activity or suspicious content were found, and the site maintains high standards of professionalism and trustworthiness.