Security Directory

A

Alamode Film

bachmannfilm.com

0

Alamode Film is a specialized film distribution and production company focused on high-quality and sophisticated cinema releases, primarily serving German-speaking audiences. The company maintains a professional online presence with detailed film promotion, social media engagement, and a dedicated e-commerce platform for DVD sales. Their market position is niche but well-defined, targeting cinephiles and cultural film enthusiasts. Technically, the website is built on WordPress with modern plugins and APIs, offering a responsive and content-rich experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some advanced security headers and policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious content or vulnerabilities.

N

novomind

novomind.com

0

novomind AG is a technology company specializing in software solutions for digital commerce and customer service. Their portfolio includes products for digital commerce platforms, customer service software, AI agents, and data platforms, targeting businesses seeking to enhance their digital sales and customer interaction capabilities. The company positions itself as a comprehensive provider offering both software products and professional services such as integration, long-term support, and custom software development. The website reflects a professional and modern digital presence, indicating a medium-sized enterprise based in Germany with a clear B2B focus. Technically, the website is built on WordPress using the Elementor page builder, incorporating modern web technologies such as jQuery and Google Tag Manager for analytics and marketing. The site is mobile-optimized and includes GDPR-compliant cookie consent management via Usercentrics. Performance is moderate with good SEO and accessibility basics, though some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and uses consent management for tracking scripts, but lacks explicit published security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain reduces the overall trust score, as it prevents verification of domain ownership and age, which is unusual for a professional business domain. Overall, novomind AG presents a trustworthy and professional digital commerce software provider with a solid technical foundation and good privacy compliance. Strategic recommendations include enhancing security transparency, publishing incident response and vulnerability disclosure policies, and improving WHOIS data transparency to strengthen trust and compliance posture.

B

BVMW - Bundesverband mittelständische Wirtschaft

bvmw.de

0

BVMW (Bundesverband mittelständische Wirtschaft) is a prominent German association representing small and medium-sized enterprises (SMEs) and self-employed professionals. The organization focuses on networking, advocacy, and providing support services to the Mittelstand sector in Germany. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored to their target audience of SMEs. The business model centers on membership services, events, and industry representation, positioning BVMW as a leading voice for the German Mittelstand.

E

ECON TEL GmbH

econ-tel.de

0

ECON TEL GmbH is a well-established German company specializing in sales outsourcing and customer acquisition services primarily for the technical and construction-related industries. With over 30 years of experience, they provide tailored solutions including telephone acquisition, LinkedIn networking, market analysis, and customer management to help SMEs and mid-sized companies expand their market reach and increase sales. The company positions itself as a trusted partner with a strong focus on transparency, real-time reporting, and personalized service teams. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies such as jQuery and embedded Vimeo videos. The site is well-optimized for mobile devices, offers good accessibility features, and includes a robust cookie consent mechanism via CookieFirst. Hosting is managed through Webflow's CDN, ensuring fast load times and reliable performance. From a security perspective, the site enforces HTTPS and employs cookie consent management, but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data indicates consistent domain registration practices with no privacy protection, supporting the legitimacy of the business. Overall, ECON TEL's digital presence reflects a professional, trustworthy, and mature business with strong compliance to privacy regulations and a solid technical foundation. Strategic improvements could include publishing a formal security policy, adding vulnerability disclosure information, and enhancing security headers to further strengthen their security posture.

K

Kanne Brottrunk

kanne-brottrunk.de

0

Kanne Brottrunk is a German company specializing in the production and sale of organic fermented bread drink products, with a history spanning approximately 35 years. The website targets health-conscious consumers interested in vegan and organic beverages. The business operates primarily in the retail sector, emphasizing natural and alcohol-free products. The website demonstrates consistent branding and good content quality, supporting its market position as an established organic health beverage provider. Technically, the website employs modern technologies including Google Tag Manager, Cookiebot for GDPR-compliant cookie management, and Google reCAPTCHA for bot protection. The site is served over HTTPS, ensuring secure communication. While no explicit CMS or hosting provider is identified, the site shows moderate performance and good mobile optimization. SEO and accessibility features are basic to good. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. However, some common security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected, representing an area for improvement. No vulnerabilities or exposed sensitive data were found. The site lacks a published security policy or incident response contact, which could enhance trust and compliance. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. The domain registration data is consistent with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and providing clearer contact information to improve user trust and compliance.

O

OFFICE Partner

office-partner.de

0

OFFICE Partner is a German-based e-commerce retailer specializing in office technology and supplies, including printers, monitors, and consumables. The website targets business customers and office supply purchasers within Germany, offering convenient payment options such as invoice and installment purchases. The company appears to have been established around 2014 and maintains a consistent brand presence with integration of trusted third-party services like Trusted Shops and Amazon Payments. Technically, the website is built on the Shopware CMS platform and utilizes modern JavaScript libraries and analytics tools including Google Tag Manager, econda, and Microsoft UET. The site demonstrates good mobile optimization and accessibility features, with a moderate performance profile. Hosting is provided via Creoline Server, as indicated by the nameservers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partial, with cookie consent present but no visible privacy or terms of service pages. Overall, OFFICE Partner presents a professional and trustworthy e-commerce platform with room for improvement in privacy disclosures and security transparency. Strategic enhancements in these areas would strengthen compliance and customer trust.

H

Hohenzollern Apotheke

hohenzollern-apotheke.de

0

Hohenzollern Apotheke operates as a local pharmacy business with three physical locations in Münster, Germany, providing retail pharmacy services and customer consultation. The website targets local customers seeking pharmaceutical products and services, emphasizing extended opening hours and good customer service. The business model is retail-focused with a clear local market presence. Technically, the website employs modern web technologies such as Google Tag Manager, Cookiebot for cookie consent management, and Google reCAPTCHA for bot protection. The CMS appears to be ProcessWire, and hosting is managed via DomainControl nameservers, likely GoDaddy. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service pages. No contact information or data protection officer details are found, which limits transparency. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

S

Stadtwerke Münster

stadtwerke-muenster.de

0

Stadtwerke Münster is a large regional public utility provider based in Münster, Germany, offering essential services such as energy supply, public transportation, water, and waste management. The company positions itself as a local solution provider addressing global challenges, targeting residents and businesses within the Münster region. The website reflects a professional and consistent brand image with good content quality and user experience tailored for its audience. Technically, the site leverages modern technologies including Pimcore CMS, Google Tag Manager, and Cookiebot for consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR-aligned consent management. Overall, the site demonstrates high trustworthiness and business credibility, with room for enhancements in security policy transparency and incident response disclosures.

L

lanius.com

lanius.com

0

lanius.com is a professional e-commerce website specializing in sustainable and fair fashion since 1999. The company positions itself as a medium-sized retailer focused on organic and ethically produced clothing, targeting environmentally conscious consumers. The website is built on the Shopify platform, leveraging modern web technologies and integrations with marketing and analytics tools such as Klaviyo and Facebook Pixel. The site demonstrates strong digital maturity with excellent design, mobile optimization, and user experience. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not found. The absence of WHOIS data for the domain reduces trustworthiness slightly but does not detract significantly from the professional presentation and compliance indicators. Overall, the website is a credible and well-maintained online retail platform with a focus on sustainability.

R

Remmers

remmers.de

0

Remmers GmbH is a well-established family-owned manufacturing company specializing in innovative system solutions for the construction and woodworking industries. With over 75 years of tradition, the company offers a broad portfolio including building protection, wood coatings, flat roof solutions, and tools. The website reflects a mature digital presence with comprehensive product information, strong branding, and multi-language support across 21 countries. Technically, the site leverages modern JavaScript libraries, SAP Commerce platform, and cloud hosting, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, secure login forms, and consent management, though explicit security headers could be improved. The absence of WHOIS data is a minor concern but does not detract significantly from the overall trustworthiness given the professional content and certifications. Strategic recommendations include enhancing security headers, publishing incident response contacts, and establishing a vulnerability disclosure policy.

R

Rapunzel Naturkost GmbH

rapunzel.de

0

Rapunzel Naturkost GmbH is a well-established German company specializing in the production and retail of organic and fair trade food products since 1974. The company operates both B2B and B2C channels, including a webshop and a visitor center called Rapunzel Welt. Their market position is strong within the organic food sector, supported by certifications such as Bio and Demeter, and a dedicated fair trade program called HAND IN HAND. The website reflects a mature digital presence with comprehensive product information, recipes, and sustainability initiatives targeting consumers interested in organic lifestyles. Technically, the website uses a modern tech stack including Bootstrap, jQuery, Font Awesome, and integrates a consent management platform (Usercentrics) alongside Google Tag Manager for analytics. The site is mobile optimized, accessible, and SEO friendly, though performance is moderate. Security posture is good with HTTPS enforced and privacy compliance mechanisms in place, but lacks explicit security policies or vulnerability disclosure channels. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. The WHOIS data aligns with the business claims, showing a consistent and legitimate domain registration. The website is safe for general audiences with no adult or questionable content detected. Strategically, Rapunzel Naturkost should enhance its security transparency by publishing a security policy and incident response contacts, implement security headers, and consider a vulnerability disclosure program to further strengthen trust and compliance.

ibau GmbH operates a specialized information service focused on tenders and contracts within the construction industry in Germany. The company provides subscription-based access to relevant business opportunities, targeting decision makers in the construction sector. The website is professionally designed, with good content quality and clear navigation, catering to business professionals seeking procurement information. Technically, the site employs modern JavaScript libraries, Google Tag Manager, Cookiebot for consent management, and integrates marketing and analytics tools such as HubSpot and Hotjar. The site is mobile optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not published. The domain registration uses privacy and brand protection name servers, which is typical for such businesses and does not raise concerns. Overall, the website is trustworthy, compliant with GDPR, and provides a professional user experience.

E

EGN Entsorgungsgesellschaft Niederrhein mbH

entsorgung-niederrhein.de

0

EGN Entsorgungsgesellschaft Niederrhein mbH is a regional full-service provider specializing in waste disposal and recycling services for commercial, industrial, municipal, and private sectors. The company emphasizes sustainable and resource-efficient circular economy solutions, offering a broad range of services including container rental, construction site services, hazardous waste disposal, and event services. Their market position is strong within the Niederrhein region, supported by a network of subsidiaries and partners that enhance their service offerings. Technically, the website is built on modern frameworks such as React and Next.js, ensuring fast performance, mobile optimization, and good SEO practices. The infrastructure appears professionally managed with no signs of blocking or WAF interference, and the site includes a cookie consent mechanism compliant with GDPR requirements. From a security perspective, the site enforces HTTPS, includes standard security headers, and avoids exposing sensitive data. However, explicit security policies and incident response information are not published, representing an area for improvement. The absence of a vulnerability disclosure or security.txt file also suggests opportunities to enhance transparency and trust. Overall, the website presents a professional, trustworthy, and well-maintained digital presence aligned with the company's business objectives. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and explicitly listing data protection officer contacts to strengthen compliance and user trust.

E

Entsorgungsgesellschaft Krefeld GmbH & Co. KG

egk.de

0

The Entsorgungsgesellschaft Krefeld GmbH & Co. KG (EGK) is a regional municipal waste management and environmental services company based in Krefeld, Germany. The company operates a unique combination of waste incineration and sewage treatment plants, generating electricity and district heating for thousands of households. Additionally, EGK maintains an accredited laboratory for water and waste analysis and serves as a significant local employer with approximately 250 staff members. The website reflects a well-structured and professional digital presence, targeting local residents, businesses, and potential employees. It emphasizes environmental responsibility, energy production, and community engagement. Technically, the site is built on modern frameworks such as Next.js and React, with integrations for cookie consent (Usercentrics) and analytics (Google Tag Manager, Microsoft Application Insights). Security best practices are observed with HTTPS enforcement and security headers, although explicit security policies and incident response information are not published. Overall, the site is trustworthy, compliant with GDPR, and provides clear information about services and career opportunities.

D

Digital Campus Zollverein

campus-zollverein.de

0

Digital Campus Zollverein is an educational and innovation hub based in Germany, focusing on digital transformation and technology development. The website presents a professional and well-structured platform built on WordPress with the Divi theme, targeting students, researchers, and digital professionals. The business model revolves around providing digital education, innovation projects, and community engagement at the Zollverein site. Technically, the site uses modern web technologies and plugins, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is credible and trustworthy but would benefit from enhanced privacy and security measures.

W

Westfälische Hochschule

w-hs.de

0

Westfälische Hochschule is a German university of applied sciences with campuses in Gelsenkirchen, Bocholt, and Recklinghausen. The institution focuses on practical education in engineering, business, and natural sciences, offering degree programs, research, and cooperation with industry partners. The website is built on TYPO3 CMS and features a modern, accessible design with active news and event updates. Security posture is adequate with HTTPS enabled but lacks visible security headers and explicit privacy or cookie policies. No contact emails or phone numbers were found in the provided content, which may impact user trust and compliance. WHOIS data confirms the domain's legitimacy and institutional affiliation. Overall, the website is professional and trustworthy but could improve privacy compliance and security best practices.

S

Stadt Gelsenkirchen

gelsenkirchen.de

0

The website www.gelsenkirchen.de serves as the official digital portal for the city government of Gelsenkirchen, Germany. It provides extensive information and services related to municipal administration, education, culture, tourism, social services, and citizen engagement. The site targets residents, businesses, and visitors, offering a comprehensive range of online services and up-to-date news. The business model is that of a public sector entity focused on transparent communication and service delivery to its community. The website demonstrates consistent branding and high content quality, reflecting its authoritative position as a government resource. Technically, the site is built on ASP.NET WebForms with a modern frontend leveraging jQuery, Leaflet for mapping, Bootstrap grid for layout, and Klaro for cookie consent management. The infrastructure appears stable and moderately performant, with good mobile optimization and accessibility features. The use of HTTPS and cookie consent mechanisms indicates a mature approach to privacy and security compliance. From a security perspective, the site enforces HTTPS and employs secure form handling via ASP.NET viewstate. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident and should be implemented to enhance protection. No vulnerabilities or exposed sensitive data were detected. Privacy policies and terms of service are clearly linked and comprehensive, supporting GDPR compliance. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and maintaining up-to-date third-party libraries to sustain security posture and trustworthiness.

V

VEXO Lichttechnik GmbH & Co. KG

vexo-licht.de

0

VEXO Lichttechnik GmbH & Co. KG is a German company specializing in manufacturing and designing outdoor lighting solutions, including object lighting, park and square lighting, and municipal lighting concepts. The company targets public and municipal sectors primarily within Germany, positioning itself as a regional and national supplier of high-quality outdoor lighting products. The website content is primarily in German and focuses on showcasing their lighting products and services with a basic but functional design. Technically, the website employs older JavaScript libraries such as jQuery 1.10.0, along with Slick Carousel and Fancybox for UI elements. The site shows basic mobile optimization and moderate performance but lacks modern CMS identification or advanced frameworks. There is no evidence of analytics or tracking tools, and no social media integration is visible. The hosting appears to be managed via servers indicated by the domain's nameservers. From a security perspective, the site lacks visible HTTPS confirmation and security headers, which lowers its security posture. The use of outdated JavaScript libraries may expose it to vulnerabilities. Privacy compliance is minimal, with a privacy policy page present but no cookie consent mechanism or terms of service found. Contact information is not directly visible on the homepage, which may affect user trust and compliance. Overall, the website is functional but basic, with moderate business credibility but room for improvement in security, privacy compliance, and technical modernization. Strategic recommendations include implementing HTTPS, updating libraries, adding cookie consent, and improving contact transparency to enhance trust and compliance.

S

Stackbox GmbH

stackbox.co

0

Stackbox GmbH is a specialized software solutions and consulting company focused on the eMobility sector, primarily serving businesses in energy and transportation. The company offers tailored services including business process design, IT solution architecture, system integrations, and operations support. Their market position is strengthened by a decade of experience and notable clients such as IONITY and Hubject. The website reflects a professional and consistent brand image with clear communication of services and team expertise. Technically, the website employs modern frameworks like Bootstrap and integrates analytics tools such as Amplitude with session replay capabilities, indicating a mature digital infrastructure. The site is mobile-optimized and well-structured, though some accessibility features could be enhanced. Performance is moderate with good SEO practices. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy. Overall, the website presents a low-risk profile with strong business credibility and good privacy practices. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance trust and compliance.

O

Okeanos Smart Data Solutions GmbH

okeanos.ai

0

Okeanos Smart Data Solutions GmbH is a small German company specializing in water and environmental data solutions aimed at climate adaptation and hydrological hazard management. Their services include consulting, research collaboration, and tailored technological solutions for water cycle understanding, early detection of natural hazards, blue-green infrastructure monitoring, and wastewater treatment optimization. The company targets water management professionals, municipalities, and research institutions. The website is professionally designed with clear navigation and mobile optimization, reflecting a moderate level of digital maturity. The technical stack includes Bootstrap and several JavaScript libraries, but no CMS or advanced analytics tools were detected. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, the website is trustworthy and functional but would benefit from improved privacy and security practices.

K

K-TEL Communications GmbH

ktel.de

0

K-TEL Communications GmbH is a German telecommunications consulting and service company with over 20 years of experience. They specialize in providing independent advice and transparent brokerage for business IT and telecommunications infrastructure, targeting a broad range of clients from global enterprises to regional startups. Their key services include strategic consulting, contract management, cloud solutions, mobile services, and smart IoT and 5G network deployments. The company positions itself as a trusted partner for modern, secure, and scalable communication solutions. Technically, the website is built on WordPress with a modern tech stack including jQuery and various plugins for user interaction, cookie compliance, and content management. Hosting appears to be with a German provider, and the site demonstrates good mobile optimization and SEO practices. The site uses HTTPS with strong SSL configuration and implements GDPR-compliant cookie consent mechanisms, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent management but lacks explicit security headers and a public incident response or vulnerability disclosure policy. No vulnerabilities or exposed sensitive data were detected. WHOIS data is consistent with the business claims, and no privacy protection obscures registrant information, supporting legitimacy. Overall, the website is professional, secure, and compliant with privacy regulations, making it a trustworthy digital presence for K-TEL Communications GmbH. Strategic improvements could include adding security headers, publishing an incident response contact, and establishing a vulnerability disclosure policy to enhance security posture further.

G

GELSENWASSER AG

gelsenwasser.de

0

Gelsenwasser AG is a large German infrastructure company specializing in sustainable water supply, wastewater management, energy procurement and distribution, digital infrastructure, and circular economy solutions. The company targets municipalities, businesses, and consumers primarily in Germany, positioning itself as a regional leader with a strong sustainability focus. The website is professionally designed, mobile-optimized, and provides comprehensive information about the company's business fields, services, and customer offerings. Technically, the site uses TYPO3 CMS, integrates Google Tag Manager for analytics, and employs a robust cookie consent mechanism ensuring GDPR compliance. Accessibility features such as Eye-Able tools enhance usability. Security posture is good with HTTPS enforced and no visible vulnerabilities, though the site lacks a dedicated security policy or incident response information. Overall, the website reflects a mature digital presence with strong business credibility and compliance adherence.

A

Aachen-Termine

aachen-kalender.de

0

Aachen-Kalender.de is a localized event calendar platform focused on providing comprehensive listings of cultural, sports, and community events in Aachen and its surrounding region. The website targets residents and visitors interested in staying informed about local happenings. It leverages WordPress CMS with popular plugins such as The Events Calendar and Yoast SEO to deliver structured event data and optimized search engine presence. The platform offers event search, filtering, and calendar export features, enhancing user engagement and utility. Technically, the website is built on a modern WordPress infrastructure with Elementor for design and jQuery for interactivity. It employs HTTPS with proper security headers, ensuring secure data transmission and basic protection against common web threats. The site is mobile-optimized and provides good accessibility and SEO features, although some accessibility enhancements could be beneficial. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and security headers but lacks explicit privacy and cookie policies, as well as incident response contact information. No vulnerabilities or suspicious activities were detected in the provided content. The absence of cookie consent mechanisms and privacy documentation represents compliance gaps, particularly under GDPR regulations. Overall, Aachen-Kalender.de is a trustworthy and professionally maintained local event platform with solid technical foundations. To enhance its security posture and regulatory compliance, it should implement comprehensive privacy and cookie policies, introduce consent mechanisms, and provide clear incident response contacts.

Senckenberg Gesellschaft für Naturforschung is a well-established non-profit research institute founded in 1817, specializing in biodiversity and natural sciences. It holds a strong market position as a leading research entity in Germany and internationally. The website reflects a mature digital infrastructure built on WordPress with comprehensive multilingual support and integration of various media and social platforms. Security measures include HTTPS, Wordfence, Google reCAPTCHA, and a robust cookie consent mechanism, indicating a strong security posture. No critical vulnerabilities or compliance gaps were detected. Overall, the website demonstrates professionalism, trustworthiness, and compliance with GDPR requirements.

itrium is a small German software development company specializing in custom software solutions to support organizational processes across various industries. The company emphasizes combining IT and business expertise to improve workflow efficiency and has been active for approximately 15 years with a stable team based in Wuppertal. The website is built on the Contao CMS platform and uses modern JavaScript libraries like Isotope for UI enhancements. While the site is accessible and professionally designed with clear navigation, it lacks visible contact information and advanced privacy or security features. No forms or data collection mechanisms are evident on the main page, and no social media presence is linked. Security posture is moderate but could be improved by implementing HTTPS verification, security headers, and cookie consent mechanisms. The WHOIS data aligns well with the website's claims, showing consistent domain ownership and appropriate domain age.

The website represents the 39th International A+A Congress 2025 organized by the Bundesarbeitsgemeinschaft für Sicherheit und Gesundheit bei der Arbeit e. V. (Basi), a German non-profit focused on occupational safety and health. The site serves as a portal for conference participants to manage their accounts and access event information. The technical infrastructure is based on the Converia conference management system hosted on Schlundtech servers, with a modern but basic tech stack including JavaScript and CSS. Accessibility and mobile optimization are good, though SEO is basic. Security posture is moderate with CSRF protection on login forms but lacks visible security headers and cookie consent mechanisms. The site is fully accessible with no WAF or blocking detected. Contact information is clearly provided, enhancing business credibility.

M

meinebghm.de

meinebghm.de

0

The website meinebghm.de appears to be a digital portal for a statutory accident insurance institution in Germany, providing services such as insurance account management, seminar booking, and administrative functions for insured persons and companies. The site is built using modern web technologies including React and Next.js, indicating a contemporary technical infrastructure. However, the visible content is minimal, with no user-facing text or metadata such as privacy or cookie policies, contact information, or terms of service. Security posture is moderate but lacks visible security headers and explicit SSL/TLS configuration details. No signs of WAF or blocking mechanisms were detected, and the site appears accessible. Overall, the site demonstrates basic digital maturity but requires improvements in content completeness, privacy compliance, and security best practices to enhance trust and usability.

The BGHM Magazin website serves as an informational platform for the Berufsgenossenschaft Holz und Metall, a German statutory accident insurance institution focused on occupational safety and health in the wood and metal sectors. The site provides news, research, and educational content aimed at employees, employers, and safety professionals. The organization is well-established with a history dating back to 1925, positioning itself as a trusted authority in workplace safety within Germany. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies such as Bootstrap and jQuery. It integrates Matomo for analytics and includes accessibility features like ReadSpeaker. The site is mobile-optimized and demonstrates good SEO practices. Hosting appears stable with domain control via GoDaddy DNS services. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. While no advanced security headers were detected in the provided data, no vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its target audience with relevant content and maintains a solid security posture. Strategic enhancements in security transparency and legal documentation could further strengthen its position.

F

Fairtrade Deutschland

fairtrade-deutschland.de

0

Fairtrade Deutschland operates as a non-profit organization focused on promoting fair trade principles and products within Germany. The website serves as an educational and advocacy platform, providing detailed information about fair trade standards, products, campaigns, and business engagement opportunities. It targets consumers, businesses, and activists interested in ethical and sustainable trade practices. The organization holds a strong market position in the fair trade sector in Germany, supported by consistent branding and comprehensive content. Technically, the website is built on Adobe Experience Manager, leveraging modern JavaScript libraries and consent management tools such as Usercentrics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Tracking and analytics are implemented primarily through Google Tag Manager, with user consent mechanisms in place. From a security perspective, the site uses HTTPS and includes consent management but lacks visible security headers and explicit security policies or incident response contacts. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and branding strongly suggest legitimacy. No critical vulnerabilities or adult content were detected. Overall, the website is professional and trustworthy but would benefit from improved transparency in domain registration, explicit privacy and security policies, and clearer contact information to enhance user trust and compliance.

The website www.kaiserwagenticket.de is operated by Wuppertal Marketing GmbH and serves as a ticketing and information platform for cultural and historical tours in Wuppertal, Germany. It offers services such as historic Kaiserwagen rides, city tours, and guided walks, targeting tourists and local visitors interested in cultural experiences. The site is well-branded, with consistent design and good content quality focused on its niche market. Technically, the site uses a CMS called itrium .datentechnik, with client-side technologies including jQuery 1.11.0 and a comprehensive accessibility tool from digiAccess, enhancing usability for users with disabilities. Hosting is provided via rzone.de nameservers, indicating a stable infrastructure. Security posture is moderate with HTTPS enabled and secure login forms, but the use of an outdated jQuery version and lack of security headers present potential vulnerabilities. Privacy compliance is basic, with a privacy policy and terms of service present but no visible cookie consent mechanism. Overall, the site is functional, accessible, and trustworthy but could improve security and privacy features.

S

Stadt Köln

offenedaten-koeln.de

0

Offene Daten Köln is the official open data portal of the City of Cologne, Germany, providing public access to a wide range of municipal datasets to promote transparency and digital engagement. The portal is built on the Drupal 7 CMS with the DKAN open data platform, offering datasets in formats such as CSV, ZIP, WFS, and WMS. The site targets citizens, developers, researchers, and businesses interested in municipal data. It features search functionality, a blog, and user login capabilities. Technically, the website uses a mature but outdated technology stack including Drupal 7 and jQuery 3.1, hosted likely by NetCologne, with Matomo analytics hosted on a city domain to ensure privacy-conscious tracking. The site is mobile optimized with good navigation and consistent branding. However, the use of Drupal 7, which is end-of-life, presents security risks that should be addressed. From a security perspective, the site enforces HTTPS and uses secure forms, but lacks modern security headers and published security or incident response policies. Privacy compliance is basic, with a privacy policy and cookie policy present but no explicit cookie consent mechanism. No vulnerability disclosure or security.txt files were found. Overall, the website is trustworthy and professional, serving as a valuable government resource. Strategic improvements include upgrading the CMS, enhancing security headers, implementing cookie consent, and publishing security policies to strengthen compliance and security posture.

P

Politik in Wuppertal

politik-in-wuppertal.de

0

Politik in Wuppertal is a German civic engagement and informational website focused on local politics in the city of Wuppertal. It provides educational content, guides on political participation, and links to official city and partner organizations. The platform is positioned as a local government-related resource aimed at residents interested in municipal governance and civic involvement. Technically, the site runs on WordPress 6.8.3, uses jQuery, and includes accessibility enhancements via a dedicated plugin. Hosting is provided by the German company manitu, ensuring regional compliance and reliability. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and cookie consent mechanisms are areas for improvement. Privacy compliance is supported by a GDPR-compliant privacy policy, but cookie consent is missing. No contact emails or phone numbers are explicitly provided, which may affect user trust and engagement. Overall, the website is professional, accessible, and trustworthy, serving its purpose as a local government information portal effectively.

W

wer denkt was GmbH

werdenktwas.de

0

Wer denkt was GmbH operates a professional digital platform focused on facilitating citizen participation and engagement for municipalities and government entities in Germany. The company offers software tools, consulting, and facilitation services to enable effective public dialogue and participation in local governance. The website is well-structured, with clear navigation and relevant content targeting its audience. The business is positioned as an established provider in the government sector with a focus on digital engagement solutions. Technically, the website is built on WordPress CMS with modern plugins such as Yoast SEO, WPBakery Page Builder, and Slider Revolution, indicating a mature digital infrastructure. The site is mobile-optimized and implements GDPR-compliant cookie consent mechanisms, reflecting good digital maturity and privacy awareness. From a security perspective, the site enforces HTTPS and uses privacy plugins but lacks explicit security headers and a public security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business claims, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers and incident response transparency would further enhance its security posture.

M

mymuesli

mymuesli.com

0

mymuesli is a German-based e-commerce company specializing in customizable organic muesli products. The company targets health-conscious consumers who value organic ingredients and personalized food options. The website is professionally designed, leveraging the Shopify platform with integrations for loyalty programs, customer reviews, and marketing automation. The site is well-optimized for performance and mobile devices, providing a seamless user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Overall, mymuesli presents a trustworthy and mature online retail presence with room for improvement in transparency around security and incident handling.

S

Sparkasse

sparkassen-kundenportal.de

0

The website www.sparkassen-kundenportal.de serves as a customer portal for the Sparkasse banking group in Germany, providing users access to regional banking services, offers, and advantages. The portal is designed primarily for Sparkasse customers and supports login functionality to access personalized services. The site is built using modern web technologies including Angular 18 and ASP.NET WebForms, with a CMS identified as onpublix 7. The design is professional, mobile-optimized, and accessible, supporting a good user experience for its target audience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers such as CSP or HSTS are not evident in the provided data, and no published security policy or incident response contacts are found. The site uses Google Tag Manager and TradeDoubler for analytics and affiliate marketing, with moderate user tracking levels. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the domain and website appear legitimate and consistent with a regional banking service portal. The WHOIS data shows the domain uses third-party DNS providers but no privacy protection or suspicious patterns. The site maintains good privacy compliance and business credibility but could improve security posture by publishing security policies and implementing additional HTTP security headers. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and continuing to maintain GDPR compliance and user trust through transparent privacy practices.

S

S-Kreditpartner

skpk.de

0

S-Kreditpartner is a German financial services company specializing in consumer and auto loans, operating fully online and in partnership with Sparkassen banks. The website presents a professional and modern interface built with Next.js and React, integrating Google Tag Manager for analytics. Security posture is strong with HTTPS and security headers implemented, though explicit privacy and cookie policies are not found in the provided content. Contact information and incident response details are not clearly visible, which could impact user trust and compliance. Overall, the business appears legitimate and well-positioned in the finance sector, targeting private customers and Sparkassen partners with streamlined online loan services.

B

Bundesverband Gebäudemodernisierung e.V.

bvgem.de

0

The Bundesverband Gebäudemodernisierung e.V. operates a professional German-language website focused on promoting affordable and rapid modernization of residential buildings, particularly single and two-family homes built before 1994. The association provides a network of certified modernization consultants, digital tools such as building quick checks and economic calculators, and educational seminars through its BVGeM-Akademie. The website positions itself as a national non-profit entity dedicated to energy efficiency and climate protection through building modernization. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities, using modern front-end technologies including Bootstrap, jQuery, and Swiper.js. Hosting appears to be provided by 1&1 IONOS, inferred from the nameservers. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate with no critical errors detected. From a security perspective, the site enforces HTTPS and uses secure login forms but lacks visible security headers and a vulnerability disclosure policy. No cookie consent mechanism was detected, which is a GDPR compliance gap. No contact information or incident response channels are explicitly provided, limiting transparency. No suspicious or vulnerable libraries were found in the HTML content. Overall, the website is trustworthy and professional with a solid business focus but could improve privacy compliance and security posture by implementing cookie consent, security headers, and incident response information. The domain WHOIS data aligns with the business profile, showing no suspicious patterns. The site is safe for general audiences with no adult or questionable content.

D

Deka Investments

deka.de

0

Deka Investments is a well-established financial services provider in Germany, focusing on investment products for private customers. The website presents a professional and consistent brand image, targeting private investors with asset management and investment fund services. The technical infrastructure leverages modern JavaScript frameworks such as Vue.js with PrimeVue and Tailwind CSS, alongside marketing and analytics tools like Adobe Launch and Google Tag Manager, indicating a mature digital presence. Security posture is adequate with HTTPS enforced and nonce attributes on scripts, but lacks explicit security headers and publicly available security policies, which are areas for improvement. Privacy compliance is weak due to the absence of visible privacy and cookie policies, which could impact user trust and regulatory compliance. Overall, the website is trustworthy and professionally maintained, but enhancing privacy disclosures and security headers would strengthen its security and compliance posture.

M

mymuesli

mymuesli.de

0

mymuesli is a German-based e-commerce company specializing in personalized organic muesli products. The website offers a high-quality user experience with a focus on organic ingredients and customization, targeting health-conscious consumers. The company leverages Shopify as its e-commerce platform, integrating various third-party services for customer reviews, loyalty programs, and marketing automation. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly available. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with consent mechanisms. The absence of publicly available WHOIS data slightly impacts business credibility but does not detract from the overall legitimacy of the site. Strategic recommendations include publishing security and incident response policies and enhancing transparency around domain registration.

The website 'Offene Daten Wuppertal' is an official open data portal operated by the city government of Wuppertal, Germany, and hosted by the city of Cologne. It provides public access to a wide range of datasets across multiple categories such as population, geography, infrastructure, health, and environment. The platform is built on Drupal 7 and DKAN, leveraging open source technologies to deliver structured and accessible data to citizens, developers, and researchers. The site features a dataset search, categorized data listings, blog entries, and social media integration, supporting community engagement and transparency. Technically, the site uses a mature but somewhat dated CMS (Drupal 7) with Bootstrap for responsive design and Piwik (Matomo) for analytics. The performance is moderate with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though it lacks some modern security headers and explicit security policies. Privacy compliance is partial, with privacy and terms pages present but no visible cookie consent mechanism. Overall, the website demonstrates a high level of trustworthiness and professionalism consistent with a government entity. It effectively serves its purpose as an open data platform but could improve in areas of privacy compliance, security best practices, and explicit contact information to enhance user trust and regulatory adherence.

T

Talbeteiligung

talbeteiligung.de

0

Talbeteiligung.de is an official government platform dedicated to facilitating citizen participation in the city of Wuppertal, Germany. It offers citizens access to current and past participation projects, news updates, and multiple channels to stay informed and engaged with local governance. The platform is designed to encourage democratic involvement and community collaboration, targeting residents and stakeholders within Wuppertal. The website is professionally maintained with consistent branding and clear contact information, reinforcing its legitimacy as a municipal service.

W

Wuppertal Marketing GmbH

wuppertalshop.de

0

Wuppertal Shop is an e-commerce platform operated by Wuppertal Marketing GmbH, offering souvenirs, tickets for city tours, and free downloadable tourist brochures focused on the city of Wuppertal, Germany. The website targets tourists and local residents interested in regional products and cultural experiences. The business operates in the retail and tourism sectors with a local market focus. Technically, the site uses the epages e-commerce platform with Sage Storefront technology, leveraging JavaScript and jQuery libraries, and is hosted likely by 1&1 IONOS based on nameservers. The site implements HTTPS and cookie consent but lacks advanced security headers and explicit security policies. Analytics are performed via etracker, indicating moderate user tracking. Overall, the website is professionally designed with good navigation and content relevance, though mobile optimization and accessibility are basic. Contact information and legal pages are clearly provided, enhancing trustworthiness.

D

Deutscher Wildgehege-Verband e.V.

wildgehege-verband.de

0

The Deutscher Wildgehege-Verband e.V. is a German non-profit specialist association representing 175 members managing private, municipal, and state wildlife enclosures across Germany. It focuses on animal welfare, species conservation, and environmental education, serving approximately 18 million visitors annually. The organization is supported by a scientific advisory board and recognized by environmental foundations, positioning it as a reputable entity within its sector. Technically, the website is built on the DZIRCMS platform, uses standard web technologies, and is hosted on German servers. It features a cookie consent mechanism and maintains a good level of mobile optimization and SEO. Security-wise, the site enforces HTTPS but lacks advanced security headers and explicit security policies. No critical vulnerabilities or blocking mechanisms are detected, indicating a stable and trustworthy online presence. Overall, the website demonstrates good content quality, business credibility, and privacy compliance, suitable for its non-profit educational mission.

Tierparkfreunde Chemnitz is a small non-profit organization dedicated to supporting the Tierpark Chemnitz and Wildgatter Oberrabenstein through various projects focused on animal welfare, environmental education, and community engagement. The website serves as an information hub for members, donors, and visitors, offering news, event calendars, and project details. The organization has a regional presence with a history of over fifteen years, indicating established community trust and involvement. Technically, the website is built on WordPress with a modern version and uses common plugins such as Complianz for GDPR cookie consent and WPFront Scroll Top for usability. The site is hosted on rzone.de nameservers and uses HTTPS, ensuring secure communication. The design is responsive and accessible with good navigation and content relevance, though some technical improvements like security headers could enhance the security posture. From a security perspective, the site enforces HTTPS and cookie consent mechanisms, reflecting good privacy compliance. However, no explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present, which could be improved to strengthen trust and readiness. No vulnerabilities or suspicious indicators were detected in the content or WHOIS data. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. Strategic enhancements in security headers, incident response transparency, and contact information visibility would further improve the site's security and credibility.

WSW Netz GmbH operates as the regional electricity and gas network operator in Wuppertal, Germany, providing secure and efficient energy distribution services. The company is a 100% subsidiary of Wuppertaler Stadtwerke (WSW) and serves a broad customer base including private consumers, businesses, and installers. Their digital presence is built on TYPO3 CMS with modern web technologies and includes comprehensive service portals for network connections, meter readings, and customer support. The website demonstrates good GDPR compliance with integrated Usercentrics consent management and privacy-aware analytics via Matomo. Security posture is solid with HTTPS enforcement and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-structured, supporting the company's role as a critical regional utility provider.

Z

Zoologische Gesellschaft für Arten- und Populationsschutz e.V.

zootierdesjahres.de

0

The website 'Zootier des Jahres' is a German non-profit initiative focused on the conservation of endangered and lesser-known animal species, with a current campaign highlighting armadillos for the year 2025. It operates under the Zoologische Gesellschaft für Arten- und Populationsschutz e.V., providing educational content, conservation project details, and partnership information. The site targets zoos, conservationists, and environmentally conscious audiences, leveraging social media and newsletters for outreach. Technically, the site is built on Joomla CMS with the Yootheme template and UIkit framework, incorporating modern web technologies such as jQuery and Web Components. It features responsive design, good accessibility, and SEO optimization. Cookie consent mechanisms are implemented in compliance with GDPR, and the site uses tracking pixels from major providers for analytics and marketing. From a security perspective, the site enforces HTTPS and includes CSRF tokens, but lacks visible security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the site's German non-profit nature, though registrant details are minimal. Overall, the website presents a professional, trustworthy, and compliant digital presence with room for improvement in security policy transparency and header implementation. It is well-positioned to support its conservation mission effectively.

C

Clees Unternehmensgruppe

clees.net

0

Clees Unternehmensgruppe is a medium-sized, owner-managed real estate company specializing in the construction, development, rental, and management of residential and commercial properties across Germany. The company has a long-standing market presence of approximately 50 years, offering a portfolio of well-maintained apartments, houses, commercial spaces, and land. Their business model focuses on both new developments and revitalization of existing properties, targeting tenants, property owners, and business partners. The website is professionally designed using TYPO3 CMS and modern frontend libraries, providing good user experience and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Privacy policy and terms of service are present, indicating basic GDPR compliance. Contact information is clearly provided, enhancing business credibility.

F

Fairtrade Deutschland e.V.

fairtrade-kampagnen.de

0

Fairtrade Deutschland e.V. operates as a non-profit organization dedicated to promoting fair trade campaigns across Germany. The website serves as a hub for information and coordination of local initiatives such as Fairtrade-Towns, Fairtrade-Schools, and Fairtrade-Universities, supporting producers in developing countries. The organization maintains a strong market position within the fair trade advocacy sector in Germany, leveraging a network of over 1,800 local groups and providing resources, news, and event information to its audience. Technically, the website is built on TYPO3 CMS with a modern and well-maintained technology stack including jQuery, Bootstrap, and various UI libraries. The site demonstrates good mobile optimization, clear navigation, and a professional design. Hosting is provided by Timme Hosting, inferred from the nameservers. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism with granular user controls. However, it lacks explicit security headers and does not publish a security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the analysis. Privacy compliance is strong, with a clear privacy policy and cookie banner aligned with GDPR requirements. Overall, the website is trustworthy, professionally managed, and compliant with privacy standards. Strategic improvements could include adding security headers, publishing a security policy, and providing a vulnerability disclosure channel to enhance security posture and user trust.

P

Pfeifer & Langen

liz-online.de

0

LIZ-Online is a specialized agricultural information platform operated under the parent company Pfeifer & Langen, focusing on sugar beet cultivation. The website provides a range of services including advisory tools, news updates, decision support programs, and access to a dedicated business portal (Rübenportal). The target audience primarily consists of farmers, agricultural advisors, and stakeholders involved in sugar beet production. The platform maintains a consistent brand presence and offers multilingual support in German, Dutch, and French. Technically, the website is built on TYPO3 CMS and leverages modern front-end technologies such as jQuery, Bootstrap, and FriendlyCaptcha for security and user interaction.

S

Stadtwerke Heiligenhaus GmbH

stadtwerke-heiligenhaus.de

0

Stadtwerke Heiligenhaus GmbH is a regional municipal utility company providing electricity, gas, water, and energy-related services to the Heiligenhaus community in Germany. The company emphasizes regional presence and customer proximity, offering services such as photovoltaics, electric mobility, and an online customer portal. The website is built on TYPO3 CMS and uses modern web technologies including jQuery and Bootstrap, with good mobile optimization and responsive design. Security posture is adequate with HTTPS enforced and secure form handling, though improvements are recommended in security headers and cookie consent mechanisms. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional, trustworthy, and serves its target audience effectively.