Security Directory

S

studierendenWERK BERLIN

studierendenbefragung.berlin

0

The website applicants.nqap.de hosts a student survey platform for studierendenWERK BERLIN, a public service organization focused on student welfare in Berlin. The platform collects anonymous feedback from students to improve services and offerings. The site is built with modern Angular technology and hosted on sysEleven infrastructure, indicating a mature technical setup. The content is well-structured, professional, and targeted specifically at students in Berlin, with clear instructions and contact points for data protection and press inquiries. Security posture is adequate with HTTPS implied, but lacks visible security headers and explicit incident response policies. Privacy compliance is supported by a clear privacy policy and data protection officer contact, though cookie consent mechanisms are absent. Overall, the site is trustworthy and professionally maintained, serving its educational and survey purpose effectively.

NETQUES . daten & diagnostik GmbH operates the NQAP platform, a GDPR-compliant online application management system designed primarily for public sector and educational institutions in Germany. The platform digitizes and automates application processes, reducing paperwork and accelerating decision-making. The company positions itself as a niche technology provider with a focus on secure, efficient, and user-friendly application workflows. The website is professionally designed, consistent in branding, and targets organizations requiring compliant digital application solutions. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and various UI enhancement libraries. Security is well considered with HTTPS, Content Security Policies, and secure form handling including CSRF tokens and honeypot anti-spam measures. However, some security headers could be improved, and no cookie consent mechanism was detected despite GDPR emphasis. The WHOIS data is unavailable due to registry restrictions common for .es domains, but the website content and business information indicate a legitimate and professional operation. Overall, the security posture is strong with good data protection practices and ISO-certified hosting claims. The absence of vulnerability disclosure and incident response contacts are areas for improvement. The website is safe for general audiences, with no adult or questionable content. The business credibility is high, supported by clear contact information and trust signals such as LinkedIn presence and ISO certifications. Strategically, NETQUES should enhance transparency by adding cookie consent, incident response information, and vulnerability disclosure policies. Improving accessibility and adding additional security headers would further strengthen their security posture and compliance. These steps will enhance trust and align with their GDPR-focused business model.

B

Trending - berlin.social

berlin.social

0

berlin.social is an independent Mastodon social networking instance focused on the Berlin community, providing a platform for local discussions and trending posts. It operates on the open-source Mastodon platform version 4.4.7, leveraging modern web technologies including React and ES modules. The site is accessible without WAF or security challenges and presents a good user experience with mobile optimization and clear navigation. Security posture is moderate with HTTPS likely enabled but lacking explicit security headers and cookie consent mechanisms. Privacy policy is present and GDPR compliance appears basic but adequate for the platform type. WHOIS data is unavailable due to TLD restrictions, but the site shows legitimacy through visible admin accounts and active user statistics.

The website represents a small German software provider specializing in solutions for Studentenwerke, offering products such as inventory management, dormitory management, accounting, and cash register systems. The business positions itself as the leading provider in its niche within Germany. The technical infrastructure is basic, relying on legacy HTML standards and a CMS named 'web to date 8.0'. There is no evidence of modern SEO, accessibility, or mobile optimization. Security posture is weak due to lack of HTTPS and security headers, and no visible privacy or cookie consent mechanisms. Contact information and incident response details are absent, limiting trust and compliance. Overall, the site is functional but outdated and lacking in security and privacy best practices.

R

RTL Group

rtl.com

0

RTL Group is a leading European entertainment company operating a broad portfolio of TV channels, streaming services, radio stations, and content production entities. The company holds a strong market position with a diversified media business model and extensive reach across multiple countries. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive corporate information. Technically, the site uses modern frameworks and integrates privacy management tools, indicating a good level of digital maturity. Security posture is solid with HTTPS and consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy and well-maintained, supporting RTL Group's corporate branding and business objectives.

B

Bonial

bonial.com

0

Bonial is a leading digital advertising platform specializing in retail and brand marketing in Germany and France. The company offers innovative solutions such as digital flyer alternatives and location-based marketing to over 1,500 retailers and brands, reaching 14.4 million unique users monthly. Their business model focuses on efficient, relevant, and sustainable advertising to drive retail sales. Technically, the website is built on HubSpot CMS with modern marketing tools and tracking integrations, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and consent management, though improvements in security headers and library updates are recommended. The absence of WHOIS data for the domain introduces some trust concerns, but the professional content and branding mitigate this risk. Overall, Bonial presents a credible and mature digital advertising business with room for technical and security enhancements.

studierendenWERK BERLIN is a large, well-established public service organization dedicated to supporting students in Berlin's universities with a broad range of services including housing, cafeteria (Mensa), financial aid (BAföG), counseling, cultural programs, childcare, and international student support. The website reflects a professional and comprehensive digital presence with clear navigation and rich content tailored to its target audience of students. Technically, the site uses modern frameworks such as Bootstrap and jQuery, integrates privacy-conscious analytics (Matomo), and employs a consent management platform (Usercentrics) to comply with GDPR. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is privacy protected but consistent with a legitimate entity. Overall, the site demonstrates a mature digital infrastructure and trustworthy business model.

S

SuperOffice

superoffice.de

0

SuperOffice is a well-established European CRM software provider offering cloud-based customer relationship management solutions aimed at helping businesses convert relationships into revenue. The website is professionally designed, mobile-optimized, and integrates modern marketing and analytics tools such as HubSpot, Google Tag Manager, and Microsoft Application Insights. Hosting and infrastructure leverage Microsoft Azure and Cloudflare, ensuring robust performance and security. The security posture is strong with HTTPS enforcement, reCAPTCHA protection, and comprehensive cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the site reflects a mature digital presence with good privacy compliance and trustworthy domain registration.

Hilscher Gesellschaft für Systemautomation mbH is a well-established German company specializing in industrial communication solutions. Their offerings span from communication controllers and embedded modules to cloud-based industrial IoT platforms, positioning them as a market leader with over 35 years of experience. The website reflects a professional B2B technology provider targeting industrial automation professionals, machine builders, and system integrators. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries like jQuery, and integrates privacy-conscious analytics tools such as Matomo and etracker. The presence of a comprehensive cookie consent mechanism and multi-language support indicates a mature digital presence. Security-wise, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and a published security policy or incident response contacts. The WHOIS data is missing, which is unusual and slightly reduces trustworthiness, but the website content and business information appear legitimate and professional overall.

T

Tender Service Deutschland

tender-service.de

0

Tender Service Deutschland operates a professional platform offering tailored public tender and procurement services primarily targeting German and international businesses. The company leverages over 20 years of experience to provide smart tools, market insights, and personal consulting to help clients efficiently win tenders. The website is built on a modern Angular framework with integrations for analytics and marketing, demonstrating a mature digital infrastructure. Security posture is good with HTTPS and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is basic with a cookie consent mechanism but no visible privacy policy or terms of service pages. Overall, the site is professional, trustworthy, and well-structured, serving a medium-sized business audience in the government and related sectors.

V

VICTOR Europe GmbH

victor-europe.com

0

VICTOR Europe GmbH operates as a specialist retailer focused on indoor sports equipment, particularly badminton, squash, and tennis products. The company targets sports enthusiasts in Europe, offering rackets, shoes, apparel, and accessories. The website is professionally designed using the Wix platform, providing a good user experience and mobile optimization. However, the absence of WHOIS registration data raises concerns about domain legitimacy. The site lacks critical privacy and cookie policies, which impacts compliance with GDPR and related regulations. Security posture is moderate with HTTPS enabled but missing advanced security headers and policies. Overall, the business appears credible with a clear market focus but would benefit from enhanced transparency and compliance documentation.

C

COSMO

cosmo-info.de

0

COSMO is a German company specializing in heating and ventilation products and services, targeting both end consumers and professional markets. Their website showcases a range of products including solar technology, radiators, underfloor heating, and air ventilation systems, supported by tools like energy saving calculators and floor planners. The company positions itself as a provider of high-quality, innovative heating and ventilation solutions with a focus on comfort and energy efficiency. Technically, the website is built on Drupal 10, leveraging modern front-end libraries such as Swiper.js for interactive elements, and integrates third-party services like Google Maps API and Adobe Launch for analytics and marketing. Usercentrics CMP is implemented for cookie consent, reflecting GDPR compliance efforts. Hosting is provided by Adacor, a reputable German hosting provider. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the website is professional, well-structured, and trustworthy, with good content quality and technical implementation. Strategic improvements include publishing comprehensive privacy and security policies, adding security headers, and providing vulnerability disclosure information to enhance trust and compliance.

I

I love Hummus s.r.o.

ilovekimchi.de

0

I love Hummus s.r.o. operates the website ilovekimchi.de, an e-commerce platform specializing in Korean fermented foods such as Kimchi. The company targets both B2B partners and retail customers, emphasizing certified quality products under strict IFS and BIO standards. The website is professionally designed, multilingual, and offers a range of products with clear pricing and availability. The business maintains a niche market position with a focus on health-conscious consumers and wholesale partnerships. Technically, the website leverages modern e-commerce infrastructure provided by Upgates, integrates multiple analytics and marketing tools including Google Analytics 4, Microsoft Clarity, and Facebook Pixel, and uses standard web technologies such as Bootstrap and jQuery. Hosting is managed via Forpsi nameservers, indicating a reliable hosting environment. The site is mobile-optimized and SEO-friendly, with proper cookie consent mechanisms in place. From a security perspective, the site enforces HTTPS and employs cookie consent management, but lacks explicit security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the analysis. WHOIS data is minimal but consistent with a small business profile. Overall, the security posture is good but could be improved with additional headers and transparency. The overall risk assessment is low, with recommendations to enhance security headers, publish incident response contacts, and maintain regular audits of third-party scripts. The website is trustworthy, compliant with GDPR, and provides clear contact channels, supporting a positive user and business experience.

K

KM2 >>

km2.de

0

KM2 >> is a professional digital agency based in Düsseldorf, Germany, specializing in web development, design, and online marketing services. The company positions itself as a trusted TYPO3 Gold Member and certified Solutions Partner, offering comprehensive digital solutions to businesses seeking enhanced online visibility. Their website reflects a mature digital presence with clear service offerings and client references, targeting businesses aiming to improve their digital footprint. Technically, the site is built on TYPO3 CMS, hosted behind Cloudflare, and integrates modern tracking and consent management tools such as Google Tag Manager and Usercentrics CMP. Security is well-managed with HTTPS, appropriate security headers, and privacy compliance mechanisms in place. No critical vulnerabilities or suspicious patterns were detected. Overall, KM2 >> demonstrates a strong security posture and digital maturity appropriate for a small to medium-sized digital agency.

F

Freie Universität Berlin

fu-berlin.de

0

Freie Universität Berlin is a leading German excellence university established in 1948, offering over 150 academic programs across twelve faculties and three central institutes. The website serves a diverse audience including students, researchers, staff, and international partners, providing comprehensive information on study programs, research, international cooperation, and campus services. The site is well-structured, professionally designed, and supports accessibility and mobile optimization. Technically, it is built on a Ruby on Rails framework with Infopark CMS Fiona, leveraging modern web standards and security best practices such as HTTPS and security headers. However, it lacks a visible cookie consent mechanism and explicit security or incident response policies, which are areas for improvement. Overall, the website demonstrates a strong security posture with no detected vulnerabilities or suspicious content, reflecting the institution's credibility and trustworthiness.

H

Hitzerot Shop

hitzerot.com

0

Hitzerot Shop is a niche e-commerce business based in Berlin specializing in print publications related to graffiti and urban culture. The website offers a curated selection of books, zines, exhibition catalogues, and prints, targeting collectors and enthusiasts of this art form. The business has been active since 2015, aligning with the domain registration date, and maintains a focused market position within the retail and media sectors. The website is professionally designed with consistent branding and good content quality, supporting a positive user experience.

Unlock Book Fair is a niche cultural event organizer specializing in graffiti books and zines, hosting international exhibitors and collaborating with cultural institutions in Germany. The website is built on WordPress with a modern tech stack including Yoast SEO and UIkit, providing a good user experience and mobile optimization. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security practices.

C

campoint AG

campoint.net

0

Campoint AG is a technology company specializing in e-commerce and digital business process solutions. Positioned as a pioneer and expert in the value chain of online portals, the company offers a comprehensive range of services including software development, design, hosting, payment processing, and customer service. They also operate a training campus to nurture talent, emphasizing innovation and digital freshness. The website reflects a professional and consistent brand image targeting businesses and professionals seeking digital entertainment solutions and e-commerce support. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and GDPR cookie consent mechanisms, ensuring good SEO and privacy compliance. The site is mobile-optimized and uses HTTPS with valid SSL certificates, indicating a mature digital infrastructure. However, the absence of detailed hosting information and some advanced security headers suggests room for technical improvements. From a security perspective, the site enforces HTTPS and cookie consent but lacks visible security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected, but the missing WHOIS data raises concerns about domain legitimacy. The company demonstrates good privacy compliance with GDPR and provides clear contact information, enhancing trust. Overall, Campoint AG presents a solid business and technical profile with a professional web presence. The main risk lies in the lack of WHOIS transparency, which should be addressed to improve domain trustworthiness. Strategic recommendations include publishing security policies, implementing security headers, and establishing vulnerability disclosure channels to strengthen security posture and compliance.

E

Energiequelle

energiequelle.com

0

Energiequelle is an established international company specializing in renewable energy project development, focusing on wind, solar, substations, and energy storage since 1997. The company operates across multiple European countries and South Africa, emphasizing partnership and stakeholder participation in the energy transition. The website is built on the Neos CMS platform using the Flow PHP framework, with a moderate technical maturity and good content quality. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks visible security headers and explicit privacy policies. The absence of WHOIS data for the domain reduces trustworthiness, although the professional content and international presence support legitimacy. Overall, the website is professional, safe, and well-structured but would benefit from enhanced transparency and security practices.

E

Energiequelle International

energiequelle-dev.de

0

Energiequelle International is a well-established company specializing in renewable energy project development, focusing on wind, solar, substations, and energy storage systems. Operating since 1997, it serves markets across Europe and South Africa, emphasizing partnership and stakeholder participation. The website reflects a professional and consistent brand presence with clear business descriptions and international reach. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, with jQuery for client-side scripting. The hosting is managed via agenturserver, indicating a German hosting provider. The site implements GDPR-compliant cookie consent mechanisms but lacks visible privacy and terms of service pages. Security posture is moderate with HTTPS enabled but missing key security headers and published security policies. Overall, the site is safe, professional, and business-focused with room for improvement in privacy and security transparency.

P

PROFIBUS Nutzerorganisation e.V. (PNO)

profibus.de

0

PROFIBUS Nutzerorganisation e.V. (PNO) is a leading industrial association based in Germany focused on the development, standardization, and dissemination of industrial communication and automation technologies including PROFIBUS, PROFINET, IO-Link, and others. The organization serves a global community of members and experts, providing certification, training, and technology services to support industrial production sectors. The website reflects a mature digital presence with comprehensive content and professional design. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and implements privacy-conscious analytics and cookie consent mechanisms. Security posture is strong with HTTPS and privacy features, though additional security headers and a security.txt file would enhance trust. Overall, the domain and website present a credible, professional, and trustworthy industrial association with a clear focus on technology standards and community support.

I

IO-Link Community

io-link.com

0

IO-Link Community operates a professional and comprehensive website dedicated to the globally standardized IO-Link technology for industrial automation. The site serves as a central hub for information, training, events, and community engagement focused on sensors, actuators, and communication standards. The business is well-established with a domain age since 2005 and is supported by a reputable registrar. The website is built on TYPO3 CMS with modern front-end technologies and includes GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Overall, the site demonstrates high professionalism, trustworthiness, and technical maturity.

A

Admitad

artfut.com

0

Admitad is a German IT company specializing in online advertising and affiliate marketing services, providing a platform for media buying, sales growth, and customer acquisition. The website analyzed is minimalistic, serving primarily as an informational placeholder indicating domain ownership by Admitad. The technical infrastructure is basic, with limited use of modern web technologies and no detected CMS or advanced frameworks. Security posture is moderate but lacks critical elements such as HTTPS verification and security headers. The absence of WHOIS registration data raises concerns about domain legitimacy, although the business information and contact email for abuse reporting lend some credibility. Overall, the site requires enhancements in security, privacy compliance, and content richness to better serve its audience and establish trust.

L

Loxxess AG

loxxess.com

0

Loxxess AG operates as a contract logistics provider specializing in solutions for E-Commerce, Omnichannel, Pharma, and Healthcare sectors. The company positions itself as reliable, efficient, scalable, and transparent, targeting business clients requiring dedicated logistics services. The website is professionally designed, primarily in German, and reflects a mature digital presence with SEO optimization and cookie consent mechanisms in place. Technically, the site runs on WordPress with modern plugins such as Yoast SEO and Cookiebot, and integrates Google Tag Manager and hCaptcha for analytics and security respectively. Security posture is good with HTTPS enforced and consent management implemented, though explicit security headers and incident response information are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and structure suggest a legitimate and established business. Overall, the site is well-maintained, with moderate to good technical and security maturity, but could improve transparency and security best practices.

P

PI International

profinews.com

0

PROFINEWS is a specialized online publication operated by PI International, focusing on industrial communication technologies such as PROFINET, PROFIBUS, IO-Link, and omlox. The website serves a professional audience involved in industrial automation and manufacturing sectors by providing news, product updates, training information, and event announcements. The site is well-established, with a domain age dating back to 2006, reflecting a mature presence in its niche market. The business model centers on media publication and information dissemination, supported by partnerships with technology providers and industry organizations. Technically, the website is built on WordPress using the OceanWP theme and incorporates modern web technologies including jQuery and multiple analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted behind Cloudflare, providing CDN and DNS services, although DNSSEC is not enabled. Performance and mobile optimization are good, with a professional design and clear navigation enhancing user experience. From a security perspective, the site enforces HTTPS and uses domain transfer protection, but lacks advanced security headers and a published security policy or incident response contacts. Cookie consent is implemented, and privacy policies are comprehensive and GDPR compliant. No critical vulnerabilities or exposed sensitive data were detected. The site uses multiple third-party scripts for advertising and tracking, indicating moderate user tracking levels. Overall, PROFINEWS presents a trustworthy and professional online presence with good content quality and business credibility. Security posture is adequate but could be improved by enabling DNSSEC, adding security headers, and publishing a vulnerability disclosure policy. The site is safe for general audiences and does not contain any adult or questionable content.

P

PROFIBUS Nutzerorganisation e.V.

profibus.com

0

PROFIBUS & PROFINET International (PI) is a globally recognized industry association specializing in the development and promotion of industrial communication standards such as PROFIBUS, PROFINET, IO-Link, and others. The organization supports a large community of over 1,800 member companies and more than 10,000 certified experts worldwide, offering comprehensive training, certification, consulting, and software services. PI's market position is strong, serving as a key driver for interoperability and innovation in industrial automation. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and frameworks, including Bootstrap and Matomo analytics for privacy-conscious user tracking. The site is well-optimized for mobile and accessibility, with good SEO practices and a professional design that supports a positive user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, though it lacks explicit HTTP security headers. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is notable but does not detract from the site's legitimacy given the organization's established reputation and comprehensive content. Overall, the website demonstrates a mature digital presence with strong business credibility and good privacy compliance. Strategic recommendations include enhancing HTTP security headers, increasing visibility of incident response contacts, and maintaining regular security audits to ensure ongoing protection.

P

PROFIBUS Nutzerorganisation e.V.

profinet.com

0

PROFINET.com is the official website for PROFINET, the leading Industrial Ethernet protocol used globally in industrial automation systems. The site is operated by PROFIBUS Nutzerorganisation e.V., a recognized standards organization based in Germany. The website serves as a comprehensive resource offering protocol information, certification details, training events, and a vibrant community forum to support industrial automation professionals and technology providers. The site is well-branded, professionally designed, and optimized for multiple languages and devices, reflecting a mature digital presence. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as Swiper.js for interactive content and Matomo for privacy-conscious analytics. The site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR, demonstrating a strong commitment to user privacy and security best practices. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not publicly available, representing areas for improvement. Security posture is solid with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data for the domain is unusual and warrants further verification to confirm domain registration legitimacy. Despite this, the website's content quality, trust signals, and external partnerships strongly support its authenticity and reliability. Overall, PROFINET.com is a high-quality, authoritative resource for industrial Ethernet technology, with recommendations to enhance transparency around security policies and contact information to further strengthen trust and compliance.

A

AUMOVIO SE

continental-mobility-services.com

0

AUMOVIO SE is a German-based technology company specializing in advanced automotive and mobility solutions, including software-defined mobility, electric mobility, vehicle electrical/electronic architectures, safety systems, driver assistance, user experience, and cybersecurity. The company targets automotive manufacturers and industry partners, positioning itself as a medium-sized enterprise with a comprehensive portfolio of services and solutions. The website reflects a professional corporate presence with consistent branding and a clear navigation structure, although the accessed page is a 404 error page indicating missing content at the requested URL. Technically, the website leverages modern web technologies such as Adobe Helix CMS, Google Tag Manager, and LinkedIn Insight Tag for analytics and marketing. The site is mobile optimized and uses SVG graphics for logos and icons. Performance is moderate with basic SEO and accessibility features. Security posture is good with HTTPS enforced, but lacks explicit security headers and incident response information on the site. No critical vulnerabilities or security issues were detected in the analyzed content. Privacy and cookie policies are present and appear comprehensive, indicating GDPR compliance. However, no terms of service or vulnerability disclosure policies were found. Social media presence is active on Facebook, LinkedIn, and YouTube, enhancing trust and engagement. Overall, the website demonstrates a solid business credibility and technical foundation, though improvements in security transparency and content completeness are recommended to enhance user trust and compliance.

ATE is a globally recognized brand specializing in automotive brake technology and aftermarket products. The company offers a wide range of braking components including disc brakes, drum brakes, brake fluids, hydraulic parts, and related services such as partner finder and certified brake centers. The website reflects a mature business with a consistent brand presence and a focus on both B2B and B2C markets. Technically, the website employs modern web technologies including Google Tag Manager, reCAPTCHA Enterprise, and ConsentManager for cookie compliance, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and bot protection in place, though there is room for improvement in security headers and published security policies. Overall, the site is professional, well-structured, and compliant with GDPR requirements, supporting a trustworthy online presence.

G

German Professional Services Alliance (GPSA) GmbH & Co. KG

gpsa-international.com

0

The German Professional Services Alliance (GPSA) is an international alliance of independent audit and consulting firms providing tailored services in audit, tax consulting, legal advisory, and business process outsourcing. The company targets international businesses seeking professional services worldwide and positions itself as a trusted network of high-quality firms. The website is built using modern Angular technology and hosted on Microsoft Azure DNS, reflecting a moderate level of digital maturity. The site is mobile optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and cookie consent mechanisms, which are recommended for enhanced compliance and protection. Overall, the domain registration and WHOIS data are consistent with the business claims, indicating legitimacy and trustworthiness.

E

EUROIMMUN Medizinische Labordiagnostika AG

euroimmun.info

0

Euroimmun Medizinische Labordiagnostika AG is a large, internationally recognized manufacturer of medical diagnostic products, specializing in reagents and test systems for autoimmune, infectious, and allergy diagnostics. The company operates globally with multiple country-specific domains and is part of the Revvity, Inc. portfolio. The website is built on TYPO3 CMS, employs Piwik analytics, and offers a comprehensive product portfolio with a professional and modern design. However, the absence of explicit privacy and cookie policies and lack of WHOIS registration data reduce the overall trust and compliance posture. Security headers are not detected, and incident response information is missing, indicating areas for improvement in security maturity. Overall, the website is well-structured and serves its target audience effectively but would benefit from enhanced transparency and security practices.

G

Gerresheimer

gerresheimer.com

0

Gerresheimer is a global leader in manufacturing pharmaceutical primary packaging and drug delivery systems, serving the pharma, biotech, cosmetics, diagnostics, and medical device industries. The company operates over 40 production sites worldwide and emphasizes sustainability, quality, and innovation. Their website reflects a mature digital presence built on TYPO3 CMS, with modern design and good mobile optimization. The site includes investor relations and compliance information, indicating a transparent corporate posture. Security-wise, the site enforces HTTPS and uses a consent management platform for GDPR compliance, but lacks explicit security headers and a public security policy. The absence of WHOIS data is unusual but the website content and branding strongly support legitimacy. Overall, the site is professional, secure, and compliant with privacy regulations, though improvements in security transparency and WHOIS clarity are recommended.

Landefeld Druckluft und Hydraulik GmbH operates a professional B2B e-commerce platform specializing in pneumatics, hydraulics, and industrial supplies. The company positions itself as a leading Europe-wide wholesaler with a large product catalog and technical consulting services. The website supports multiple languages and offers a comprehensive online shopping experience targeting industrial and commercial customers. Technically, the site uses modern frontend technologies including Vue.js and Bootstrap, integrates Google Tag Manager and consent management tools, and maintains good SEO and mobile optimization standards. Security posture is solid with HTTPS and cookie consent, though explicit security headers and incident response information are absent. The lack of WHOIS data reduces domain trustworthiness, but the website content and business information appear legitimate and professional. Overall, the site is well-designed, user-friendly, and compliant with GDPR requirements, making it a trustworthy platform for its target audience.

E

Energiequelle GmbH

energiequelle.de

0

Energiequelle GmbH is a well-established family-owned company founded in 1997, specializing in the development, construction, and operation of renewable energy projects including wind energy, photovoltaic systems, substations, hybrid solutions, and energy storage. With over 600 employees and international presence across Europe and South Africa, the company positions itself as a reliable partner in the energy transition sector. The website reflects a professional and comprehensive digital presence, leveraging the Neos CMS and modern web technologies to deliver content effectively. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though explicit privacy and security policies are not directly found in the provided content. Overall, the company demonstrates strong business credibility and technical maturity, with room for improvement in transparency of security and privacy documentation.

P

PNE AG

pne-ag.com

0

PNE AG is a German renewable energy company specializing in project development and services related to wind energy (onshore and offshore), photovoltaics, green hydrogen, and other sustainable energy solutions. The company targets investors, landowners, and energy sector stakeholders with a professional and well-structured website that highlights its key services and projects. The website is built on TYPO3 CMS and integrates modern technologies such as Cookiebot for cookie consent management and Google Tag Manager for analytics and marketing. Technically, the website demonstrates a moderate to good performance with mobile optimization and SEO best practices in place. The security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, although some security headers and explicit security policies are missing. Privacy compliance is strong, with a detailed privacy policy and cookie consent banner that aligns with GDPR requirements. The WHOIS data for the domain www.pnegroup.com is missing, which is unusual for a commercial entity and introduces some uncertainty regarding domain registration legitimacy. However, the professional website and privacy compliance mechanisms suggest the business is legitimate. No critical security vulnerabilities or suspicious content were detected. Overall, the website presents a trustworthy and professional digital presence for PNE AG, with room for improvement in transparency around security policies and contact information.

B

BayWa r.e.

baywa-re.com

0

BayWa r.e. is a globally recognized renewable energy company specializing in the development, trading, and servicing of sustainable energy projects including solar, wind, and bioenergy. The company operates under the parent company BayWa AG and maintains a strong market position in the energy sector with a focus on innovation and sustainability. Their website reflects a professional and comprehensive digital presence, targeting investors, industry professionals, and commercial clients. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, with good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS and employs standard security headers, though it lacks a publicly available security policy or incident response details. The absence of WHOIS data for the domain is a notable anomaly that slightly impacts trust but does not overshadow the overall professionalism of the site. Strategic recommendations include publishing detailed security and vulnerability disclosure policies and improving transparency around incident response.

V

Viessmann Generations Group GmbH & Co. KG

viessmann.family

0

Viessmann Generations Group GmbH & Co. KG operates as an impact-driven investment ecosystem focused on sustainable and long-term investments across multiple thematic fields including energy transition, health, education, and democratic values. The company positions itself as a strategic investor with a diversified portfolio of majority, minority, generational, and early-stage innovation investments, complemented by ecosystem partnerships and philanthropic initiatives. Their market position is that of a large, reputable player in the energy and sustainability sectors, with a strong emphasis on systemic change and climate impact. Technically, the website is built on modern web technologies such as Webflow CMS, Google Tag Manager, and Usercentrics for consent management, ensuring a smooth user experience with excellent mobile optimization and accessibility. The site is well-structured, professionally designed, and optimized for SEO, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policy documentation and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture, though improvements are recommended in security header implementation and vulnerability disclosure. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. The absence of WHOIS data limits domain registration trust assessment, but the professional presentation and detailed business information support legitimacy. Strategic recommendations include enhancing security transparency, adding incident response information, and improving WHOIS data accessibility.

F

fnordserver.eu

fnordserver.eu

0

fnordserver.eu is a small managed hosting provider based in Germany, offering full-service managed hosting solutions focused on high performance and support for the latest web technologies. The website presents a professional and well-structured digital presence built on modern frameworks such as Vue.js and Nuxt.js, ensuring good performance and mobile optimization. Contact information is clearly provided, including a support email and phone number, enhancing business credibility. However, the site lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with no detected security headers or incident response information, indicating room for improvement in security best practices. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures.

chemeurope.com is a well-established international information portal serving the chemical industry, providing news, product catalogs, white papers, market overviews, and educational resources. The platform targets professionals in industry, research, and science, offering a comprehensive suite of services to facilitate knowledge sharing and procurement processes. The website is operated by LUMITOS AG, a German company, which is reflected in the branding and linked legal documents. Technically, the website employs modern web technologies including jQuery, Bootstrap, Google Tag Manager, and Matomo for analytics, alongside a consent management platform to ensure GDPR compliance. The site is mobile-optimized with good navigation and SEO practices, delivering a positive user experience. However, some improvements in accessibility and security headers could enhance the technical posture. From a security perspective, the site uses HTTPS and secure form submissions, with no visible vulnerabilities or exposed sensitive data. The presence of a consent management platform and clear privacy policies indicates a strong commitment to privacy compliance. The lack of WHOIS registration data is a concern, potentially indicating privacy protection or domain registration issues, which slightly lowers the trust score. Overall, chemeurope.com presents a professional, trustworthy, and content-rich platform with moderate technical and security maturity. Strategic recommendations include enhancing security headers, verifying domain registration details, and improving accessibility features to further strengthen the platform's credibility and compliance.

L

LUMITOS AG

lumitos.com

0

LUMITOS AG operates as a leading B2B online media and marketing service provider focused on sectors including chemistry, life sciences, laboratory, pharmaceuticals, analytics, and food & beverage. The company offers a suite of six market-leading portals and newsletters that inform over 17 million users globally, enabling informed decision-making and business success. Their services encompass online marketing strategies, campaign development, lead generation, SEO/SEA, content marketing, and digital presence creation. The website reflects a mature digital infrastructure built on WordPress with modern analytics and consent management tools, indicating a solid digital maturity level. Security posture is good with HTTPS, CAPTCHA protections, and GDPR compliance, though additional security headers could enhance defenses. The absence of WHOIS data reduces transparency but does not negate the professional and trustworthy appearance of the business. Overall, the site is well-designed, content-rich, and compliant with privacy regulations, supporting a strong market position in the B2B marketing domain.

F

FGTC Investment GmbH

fgtc-investment.com

0

FGTC Investment GmbH is an independent asset management firm based in Germany, specializing in wealth management for affluent private clients, entrepreneurial families, foundations, and conservative institutions. Established in 2011 from the single family office of Silvius Dornier, the company focuses on capital market investments and agrarian/forestry assets, operating independently and free from third-party influences. It is part of the Viessmann Generation Group, emphasizing long-term generational wealth management. The website presents a professional image with clear business descriptions and structured data supporting SEO and accessibility.

E

Encavis

encavis.com

0

Encavis is a large European renewable energy company specializing in solar parks and wind farms, with over 3.8 GW installed capacity. The company targets institutional investors, energy-intensive companies, and partners such as landowners and project developers. The website is professionally designed, mobile-optimized, and provides comprehensive information about their services and recent business activities. Technically, the site uses modern web technologies including JavaScript libraries, consent management, and self-hosted analytics, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though there is room for improvement in publishing dedicated security policies and incident response contacts. WHOIS data is unavailable, which slightly reduces trust but does not outweigh the professional presentation and business legitimacy. Overall, the site is safe, trustworthy, and well-positioned in the renewable energy sector.

Landefeld Druckluft und Hydraulik GmbH operates a leading German B2B e-commerce platform specializing in pneumatic, hydraulic, and industrial supply products, prominently featuring Festo components. The company targets industrial and commercial customers, offering fast, flexible shipping and technical consultation services. Their market position is strong within their niche, supported by a comprehensive product catalog and multilingual website presence. Technically, the website employs modern frameworks such as Vue.js and Bootstrap, hosted on AWS infrastructure, with integrated consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and GDPR compliance, though explicit security headers and incident response policies are not publicly documented. Overall, the website is professional, trustworthy, and well-optimized for its audience.

Etanomics Service GmbH is a German-based energy consulting company specializing in energy efficiency, energy management, and decarbonization services. Founded in 2012, the company has established itself as a leading service provider with over 1000 projects, focusing on helping businesses reduce energy consumption, lower costs, and minimize their carbon footprint. Their service portfolio includes energy audits, feasibility studies, ISO 50001 energy management systems, and funding advisory, targeting companies seeking sustainable and economically viable energy solutions. Technically, the website employs a moderate technology stack including jQuery, Modernizr, Google Analytics, and LinkedIn Insight tags. The site is well-structured with good SEO and mobile optimization, though it lacks advanced CMS indicators and some modern security headers. Performance is moderate, and the site uses HTTPS with anonymized IP tracking for privacy. From a security perspective, the site shows good baseline practices such as HTTPS and cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and DNSSEC. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company’s founding date and no privacy protection, enhancing trustworthiness. Overall, Etanomics.com presents a professional and trustworthy digital presence with solid business credibility and compliance with GDPR. Recommendations include enhancing security headers, enabling DNSSEC, updating legacy libraries, and publishing formal security and incident response policies to further strengthen their security posture and trust.

P

PEWO

pewo.com

0

PEWO is a German company specializing in compact and modular plant technology for the transfer and distribution of building heat, combined with comprehensive network knowledge and service offerings. The website presents a professional and focused business presence targeting B2B customers in the energy and building technology sector. Technically, the site is built using modern frameworks such as Gatsby and Bootstrap, offering a responsive and well-structured user experience. However, the absence of WHOIS domain registration data raises concerns about the domain's legitimacy and registration status. Security posture is moderate with no visible advanced security headers or policies, and privacy compliance is minimal due to the lack of privacy and cookie policies. Overall, the site is functional and professional but requires improvements in transparency, security, and compliance to enhance trust and credibility.

ISOPLUS is a European manufacturer specializing in pre-insulated piping systems that support the energy transition across Europe. The company serves sectors including district heating and cooling, bioenergy, agriculture, solar heating, industry, and carbon capture and storage (CCS). With a presence in over 30 countries and multiple production sites, ISOPLUS offers a comprehensive product portfolio and extensive service support, positioning itself as a key player in sustainable energy infrastructure. Technically, the website is built on TYPO3 CMS and employs modern web technologies including Bootstrap, Google Analytics, and Google Tag Manager. The site is well-optimized for mobile devices, features clear navigation, and implements cookie consent mechanisms aligned with GDPR requirements. Performance is moderate with good accessibility and SEO practices. From a security perspective, the site enforces HTTPS and uses cookie consent to manage tracking. However, explicit security headers are not detected in the HTML, and no public security or incident response policies are published. The WHOIS data is unavailable due to privacy protection, which is justified for a business of this scale. No critical vulnerabilities or exposed sensitive data were found in the site content. Overall, ISOPLUS presents a professional and trustworthy online presence with strong business credibility and compliance posture. Strategic improvements in security header implementation and transparency around security policies could further enhance trust and security maturity.

G

GRITEC GmbH

gritec.com

0

GRITEC GmbH is a well-established German company specializing in technical buildings and metal components for infrastructure sectors such as energy, transport, and telecommunications. With over 60 years of experience and a recent brand relaunch from Betonbau to GRITEC, the company positions itself as a full-service provider offering products like walk-in concrete stations, compact substations, and metal components including doors and ventilation systems. Their business model focuses on manufacturing combined with technical services including planning, testing, logistics, and assembly, targeting infrastructure clients requiring customized technical building solutions. The website reflects a mature digital presence with multilingual support and professional design.

D

DISH Digital Solutions GmbH

eatbu.com

0

DISH Digital Solutions GmbH operates a specialized SaaS platform focused on enabling hospitality businesses such as restaurants, cafes, bars, bakeries, and delivery services to quickly build their own websites without coding knowledge. The platform is integrated with the broader dish.co digital club ecosystem, offering additional community and business improvement resources. The website is professionally designed with good content quality, multi-language support, and clear navigation. Technically, it employs modern web technologies including Google Tag Manager, Adobe DTM, and Usercentrics for cookie consent, ensuring a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy policies clearly linked, although explicit security policies and incident response contacts are absent. Overall, the site demonstrates high trustworthiness and business credibility with no signs of malicious content or vulnerabilities.

R

Ridgidgear

ridgidgear.eu

0

Ridgidgear is a small-sized e-commerce retailer specializing in branded promotional products, primarily under the RIDGID brand. The website offers a range of products including textiles, giveaways, and accessories targeted at businesses and professionals seeking promotional merchandise. The platform is built on Shopware 6, indicating a modern e-commerce infrastructure with basic to moderate performance and mobile optimization. The site presents a professional design with clear navigation and consistent branding, although some SEO and accessibility features could be improved. Security posture is solid with HTTPS and standard security headers implemented, but lacks published security policies and incident response information. Privacy compliance is partial, with a privacy policy present but no explicit cookie policy or GDPR compliance indicators visible. Contact information is limited to an email address without phone or physical address details. Overall, the site appears legitimate and trustworthy but could enhance transparency and compliance to improve user trust and regulatory adherence.

A

AJ Produkte

ajprodukte.de

0

AJ Produkte is a medium-sized European e-commerce company specializing in office furniture, workshop equipment, and industrial supplies, primarily targeting business customers and general consumers in Germany and neighboring countries. The company emphasizes Swedish design, offering products with a 7-year warranty and a 30-day return policy, positioning itself as a reliable and customer-focused supplier in its market segment. Technically, the website employs modern web technologies including React, Google Tag Manager, Cookiebot for consent management, and Raygun for error monitoring, hosted behind Cloudflare for performance and security. The site is well-structured, mobile-optimized, and integrates multiple marketing and analytics tools, reflecting a mature digital presence. Security-wise, the site uses HTTPS, a strong Content Security Policy, and cookie consent mechanisms, but lacks explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and compliant with basic privacy regulations, though it could improve transparency by publishing privacy and security policies. The domain registration is consistent with the business claims, showing no suspicious patterns or privacy protection that might obscure legitimacy.