Security Directory

W

Wohnungsbaugenossenschaft Wankendorfer

wankendorfer.de

0

Wohnungsbaugenossenschaft Wankendorfer is a large housing cooperative based in Schleswig-Holstein, Germany, providing modern and affordable rental apartments, commercial leasing, and property management services. The company emphasizes social solidarity and excellent tenant service, supported by a professional and well-structured website. Their market position is strong as one of the largest cooperatives in the region, targeting tenants, property owners, and prospective renters. The website offers comprehensive information about their services, locations, and digital tenant tools such as a dedicated app.

S

Stadtwerke Kiel AG

stadtwerke-kiel.de

0

Stadtwerke Kiel AG is a regional energy utility provider serving Schleswig-Holstein and Hamburg, offering electricity, gas, district heating, water, photovoltaic solutions, and e-mobility services. The company positions itself as a local, customer-focused energy supplier with comprehensive service offerings and a strong regional presence. The website reflects a mature digital infrastructure built on TYPO3 CMS, integrating modern technologies such as Google Maps API, Google Tag Manager, and Usercentrics for consent management. The site is well-optimized for mobile and accessibility, providing a professional user experience with clear navigation and rich content. Security posture is strong with HTTPS enforcement, security headers, and secure form handling, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the domain registration data aligns well with the business identity, indicating a trustworthy and legitimate online presence.

E

Evangelisch-Lutherische Kirche in Norddeutschland

nordkirche.de

0

The Evangelisch-Lutherische Kirche in Norddeutschland (Nordkirche) operates as a large non-profit religious organization serving the regions of Hamburg, Schleswig-Holstein, and Mecklenburg-Vorpommern in Germany. The website provides comprehensive information about their religious services, community engagement, pastoral care, and digital initiatives. It targets Christians and residents in Northern Germany, positioning itself as a leading regional Protestant church organization. The content is well-structured, professionally designed, and consistent with the organization's mission and audience. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including JavaScript and CSS, with good mobile optimization and accessibility features. SEO practices are well implemented, including meta tags, Open Graph, and JSON-LD structured data. The site uses Piwik (Matomo) for analytics, indicating moderate user tracking with basic privacy compliance. No blocking or WAF challenges were detected, and the site is fully accessible. From a security perspective, HTTPS is implied though explicit security headers are not detected in the provided data. No exposed sensitive data or vulnerabilities were found in the HTML content. However, the site lacks explicit security policies and incident response information. Privacy compliance is good with a detailed privacy policy but lacks a cookie consent mechanism. Contact information is clearly provided, enhancing trust and credibility. Overall, the website demonstrates a solid digital presence with good content quality, technical implementation, and business credibility. Security posture is adequate but could be improved with enhanced headers and documented policies. Privacy compliance is mostly met but would benefit from explicit cookie consent. The domain registration data aligns well with the organization's identity, supporting legitimacy and trustworthiness.

W

Waldemar Behn GmbH

behn.de

0

Waldemar Behn GmbH is a well-established beverage wholesaler and retailer based in Schleswig-Holstein, Germany, with a history dating back to 1892. The company offers a wide assortment of beverages including spirits and operates an online shop alongside employer branding initiatives. The website is professionally designed, mobile-optimized, and provides clear navigation with multilingual support (German and English). The digital infrastructure is built on Silverstripe CMS with Matomo analytics for privacy-conscious visitor tracking. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks explicit security headers and published security policies. Overall, the site is trustworthy and compliant with GDPR, though contact information is not directly visible in the provided content.

F

Freie und Hansestadt Hamburg

hamburg.de

0

Hamburg.de is the official city portal of the Free and Hanseatic City of Hamburg, Germany. It serves as a comprehensive information and service platform for residents and visitors, providing access to public services, news, events, and city-related information. The website is positioned as a trusted government resource with a clear focus on serving the local community and stakeholders. Technically, the site employs modern web technologies including HTML5, CSS3, JavaScript, and accessibility tools such as the eyeAble plugin, alongside analytics via eTracker. The hosting is managed through mcs.de, with secure HTTPS connections ensuring data privacy during user interactions. Security posture is solid with no evident vulnerabilities or exposed sensitive data, although the absence of explicit security policies and vulnerability disclosure mechanisms suggests room for improvement. Privacy compliance is moderate due to the lack of visible privacy and cookie policies in the provided content. Overall, the site demonstrates a high level of business credibility and technical maturity appropriate for a government portal.

D

Dataport AöR

dataport-kommunal.de

0

Dataport.kommunal is a large, government-sector focused IT service provider dedicated to supporting municipalities in Germany with digital transformation solutions. Their offerings include specialized IT applications, cloud services, IT security, and consulting to improve citizen services and administrative efficiency. The website is professionally designed using TYPO3 CMS and modern web technologies, providing excellent user experience, accessibility, and mobile optimization. Security posture is strong, evidenced by ISO 27001 certification and proper security headers, with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Contact information and social media presence further enhance trust and credibility.

N

New Communication GmbH & Co. KG

new-communication.de

0

New Communication GmbH & Co. KG is a full-service advertising and marketing agency based in Kiel, Germany. The company offers comprehensive marketing solutions across digital, print, and crossmedia channels, positioning itself as a trusted partner for effective communication strategies. Their website reflects a professional and modern digital presence, showcasing a diverse client portfolio and active engagement on major social media platforms. The agency targets businesses seeking integrated marketing services with a focus on quality and innovation. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Modernizr, and includes advanced features like Lottie animations and responsive design. The site demonstrates good SEO practices, accessibility, and mobile optimization, providing a smooth user experience. Cookie consent and privacy compliance mechanisms are well implemented, reflecting adherence to GDPR requirements. From a security perspective, the site enforces HTTPS and employs cookie consent controls but lacks explicit security policy documentation and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent registration. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in publishing security policies and incident response information would enhance trust and compliance further.

D

DPV Deutscher Pressevertrieb GmbH

dpv.de

0

DPV Deutscher Pressevertrieb GmbH is a German full-service subscription service provider specializing in managing subscriptions, customer service, technology, logistics, and direct marketing for print and digital media products. The company targets publishers of magazines and digital magazines, offering a comprehensive CRM platform and related services. The website is professionally designed, built on WordPress with modern plugins, and hosted likely on AWS infrastructure. It features a contact form, physical address, and phone contact, supporting good business credibility. However, the site lacks explicit cookie consent mechanisms and visible security policies, which are areas for improvement. The security posture is solid with HTTPS and no visible vulnerabilities, but security headers and incident response details are missing.

Wetter.de is a prominent German weather information website providing current weather forecasts, radar maps, weather news, and travel weather information primarily targeting the German-speaking audience. The site leverages modern web technologies such as Next.js and React to deliver a responsive and content-rich user experience. It integrates advertising and tracking services including Outbrain and Google Tag Manager to monetize and analyze user interactions. However, the site lacks visible privacy and cookie policies, which is a compliance gap in the context of GDPR. Security posture is moderate with no explicit security headers detected and no visible incident response or vulnerability disclosure information. Overall, the website is professional and content-rich but would benefit from enhanced privacy compliance and security transparency.

E

EBZ Akademie

ebz4u.de

0

EBZ Akademie operates a specialized digital learning platform, EBZ4U, targeting professionals and companies in the real estate and housing sector. The platform offers MaBV-certified mandatory training, continuous education, and supports HR functions such as onboarding and knowledge management. The company positions itself as a modern education provider with a focus on flexible, technology-driven learning solutions. Technically, the website is built on WordPress with modern plugins including Yoast SEO and Borlabs Cookie for privacy compliance. The site is mobile-optimized, accessible, and integrates analytics tools like Matomo and HubSpot. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

E

EBZ Akademie

ebz-akademie.de

0

EBZ Akademie is a specialized educational and consulting institution focused on the real estate industry in Germany. It offers a comprehensive portfolio of services including learning modules, certified career building blocks, consulting in personal and organizational development, and networking opportunities. The organization positions itself as an expert and trusted partner for housing companies and real estate professionals, providing tools and knowledge to support a sustainable and future-proof real estate economy. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it leverages WordPress CMS with modern plugins such as Yoast SEO and Borlabs Cookie for compliance, alongside Matomo and HubSpot for analytics and marketing. Security posture is solid with HTTPS enforced and privacy-conscious analytics configurations, though it lacks some advanced security headers and explicit security policies. Overall, the site is safe, trustworthy, and compliant with GDPR cookie consent requirements, but could improve transparency by publishing privacy and terms of service documents and providing direct contact details. The domain WHOIS data is consistent with the business profile, showing no suspicious patterns or privacy protection that would raise concerns.

E

EBZ Akademie

ebz-training.de

0

EBZ Akademie is a reputable educational institution specializing in training and certification for the housing and real estate industry in Germany. The website serves as a comprehensive portal for their educational offerings including certificate courses, degree programs, seminars, and consulting services. Their market position is well-established within the German real estate education sector, targeting professionals and companies seeking specialized knowledge and qualifications. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with Matomo analytics for privacy-conscious tracking. The site is well-optimized for mobile and accessibility, with good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response contacts are missing. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable resource for its audience.

D

Deutscher Verband für Wohnungswesen, Städtebau und Raumordnung e. V.

deutscher-verband.org

0

The Deutscher Verband für Wohnungswesen, Städtebau und Raumordnung e. V. is a German non-profit association focused on integrated urban development and housing policy. It serves as a dialogue platform for stakeholders in politics, economy, and civil society, providing research, networking, and policy recommendations. The website reflects a professional and consistent brand presence with a clear focus on its mission and activities. Technically, the site is built on TYPO3 CMS with some legacy JavaScript components, offering moderate performance and basic mobile optimization. Security posture is generally good with HTTPS enforced, but lacks some modern security headers and cookie consent mechanisms. WHOIS data is privacy protected, which is typical and justified for this type of organization. Overall, the site is trustworthy and well-maintained, supporting the organization's credibility and outreach efforts.

A

ADM - Arbeitskreis Deutscher Markt- und Sozialforschungsinstitute e.V.

adm-ev.de

0

ADM e.V. is a leading German industry association representing private market and social research institutes. Founded in 1955, it serves as the primary voice for over 80% of the sector's revenue, providing political advocacy, member consulting, quality standards, and self-regulation. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation targeting market research professionals and stakeholders. Technically, the site is built on WordPress with modern plugins for SEO, anti-spam, and cookie compliance, hosted via INWX. Security posture is strong with HTTPS, anti-spam measures, and cookie consent mechanisms, though some security headers could be enhanced. Overall, the site is trustworthy, GDPR compliant, and well-positioned in its niche.

F

FeWo-Touristik GmbH

urlaub-mit-hund-sylt.de

0

Urlaub-mit-hund-sylt.de is a niche travel information website focused on providing dog owners with detailed tips and guidance for vacationing on the island of Sylt, Germany. The site is powered by FeWo-Touristik GmbH and offers curated content about dog-friendly locations, beaches, and accommodations, targeting a specialized audience of pet owners. The business model centers on content provision and referral to partner accommodation platforms such as hundeurlaub.de. Technically, the website is built with standard HTML5 and CSS3, with moderate mobile optimization and basic SEO practices. No advanced CMS or frameworks are detected, indicating a simple but effective infrastructure. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the site is trustworthy and professional but could improve in security and privacy compliance.

F

FeWo-Touristik GmbH

fewo-von-privat.de

0

Fewo-von-privat.de is a German-based online platform specializing in vacation rental listings, offering over 7,200 private holiday apartments and houses across Germany and Europe. The website targets private travelers seeking affordable and diverse accommodation options, providing a user-friendly search and booking interface along with travel information and tips. The business operates in the hospitality sector with a medium-sized footprint and has been established since at least 2008. Technically, the site uses a Joomla CMS with a modern tech stack including Bootstrap, jQuery, and Matomo analytics, hosted on AWS infrastructure. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content.

B

Bundesrechnungshof

bundesrechnungshof.de

0

The Bundesrechnungshof website serves as the official online presence of the German Federal Audit Office, responsible for external financial control of the federal government. It provides comprehensive information about its auditing activities, reports, and international cooperation. The site targets government officials, parliamentarians, and the general public interested in federal financial oversight. The business model is a government entity focused on transparency and accountability in public finance. Technically, the site uses a specialized Government Site Builder CMS and integrates Matomo analytics for privacy-conscious user tracking. The infrastructure is hosted on German federal IT servers, ensuring reliability and compliance with national standards. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, reflecting its authoritative government role.

D

Dataport

dataport.de

0

Dataport is a prominent IT service provider specializing in digital transformation for public administration in Germany. The company offers a broad range of services including consulting, project management, software development, and IT infrastructure tailored for governmental bodies, municipalities, and citizens. Their market position is strong within the public sector, supported by a large organizational size and a focus on digital sovereignty and security. The website reflects a professional and comprehensive digital presence with clear navigation, modern design, and extensive content relevant to their audience. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and frameworks such as jQuery and Foundation. It demonstrates good mobile optimization, accessibility, and SEO practices. The presence of a cookie consent mechanism and detailed privacy policies indicates a mature approach to privacy compliance. Security-wise, the site enforces HTTPS and holds ISO 27001 certification, reflecting a robust security posture, although some security headers could be improved. Overall, the security posture is strong with no evident vulnerabilities or exposed sensitive data. The company maintains transparent contact channels and social media presence, enhancing trustworthiness. The domain registration data aligns well with the company's public identity, supporting legitimacy. No WAF or blocking mechanisms were detected, allowing full content accessibility. Strategic recommendations include enhancing security headers, publishing an incident response policy, and establishing a vulnerability disclosure program to further strengthen security and compliance. The website scores highly across content quality, technical implementation, security, privacy compliance, and business credibility, making it a reliable and professional digital asset for Dataport.

The Duale Hochschule Baden-Württemberg (DHBW) is a leading German state dual university specializing in praxis-integrated higher education. Founded in 2009, it continues the successful dual education model of the former Berufsakademie Baden-Württemberg. The website serves a broad audience including prospective students, current students, dual partners, lecturers, and alumni. It offers comprehensive information on dual bachelor's and master's programs, scientific continuing education, and research initiatives. The institution holds multiple certifications reflecting quality and diversity commitments. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics, and uses Cookiefirst for consent management, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is professional, trustworthy, and well-optimized for users.

I

IHK-Bildungszentrum Karlsruhe GmbH

ihk-biz.de

0

IHK-Bildungszentrum Karlsruhe GmbH operates as a key educational institution focused on professional development and continuing education in the Technologieregion Karlsruhe, Germany. The website offers a broad range of courses including Praxisstudiengänge, IHK-certified exams, seminars, and online training, targeting professionals, trainees, leaders, founders, and trainers. The company is positioned as a competence center affiliated with the IHK Karlsruhe, providing trusted and comprehensive educational services. Technically, the website is built on WordPress CMS with modern JavaScript libraries such as jQuery and Slick Slider, and employs Borlabs Cookie for GDPR-compliant consent management. The site is mobile-optimized, accessible, and SEO-friendly, with integrations for Google Analytics and Facebook Pixel for marketing and analytics purposes. Hosting appears to be managed via your-server.de nameservers, indicating a professional hosting environment. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism, but lacks a publicly available dedicated security policy or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The domain WHOIS data is limited but consistent with the business profile, showing no suspicious patterns. Overall, the security posture is good but could be enhanced by adding explicit security policies and incident response information. The website content is safe for general audiences, with no adult or questionable content. Contact information is clearly provided, including phone, email, and physical address, alongside active social media channels. The site demonstrates a high level of professionalism, trustworthiness, and user experience quality, making it a reliable resource for professional education in the region.

C

CyberForum e.V.

cyberforum.de

0

CyberForum e.V. is a well-established non-profit organization founded in 1997, serving as Europe's largest regional high-tech entrepreneur network with over 1,200 members. It focuses on connecting IT companies, startups, and research institutions primarily in the Karlsruhe region, offering services such as networking, mentoring, training, and startup acceleration through its CyberLab. The website is professionally designed using TYPO3 CMS and modern frontend technologies, providing a good user experience with clear navigation and mobile optimization. Security posture is strong with HTTPS enforced and secure form handling, though some security headers and policies could be improved. Privacy and cookie policies are present and GDPR compliant, but no explicit terms of service or vulnerability disclosure policies were found. Overall, the domain and WHOIS data align well with the business claims, indicating high legitimacy and trustworthiness.

K

Koloo

koloo.de

0

Koloo.de is a German-language website offering a marketing widget/plugin called Koloo /Rad/ designed to increase conversions, sales, and profits for e-commerce shops and websites. The company targets small to medium-sized businesses including internet cafes, restaurants, guesthouses, fitness centers, hairdressers, and beauty salons. The business model is subscription-based SaaS with multiple pricing tiers. Technically, the site uses a custom-built platform with jQuery, Modernizr, Google reCAPTCHA, and third-party analytics tools such as Google Analytics, Facebook Pixel, and Smartlook for session recording. Hosting is provided by Wedos, a Czech hosting provider. Security posture is moderate with HTTPS enabled and spam protection on forms, but some outdated libraries and missing security headers are noted. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-structured, but could improve in security and privacy transparency.

G

Gruß vom Weihnachtsmann

anrufvornweihnachtsmann.de

0

The website www.anrufvornweihnachtsmann.de offers a unique personalized service where children receive a magical call from the Christmas figure, powered by an AI voicebot developed in partnership with Vocalls. The service is targeted primarily at German-speaking parents who want to surprise their children with a memorable holiday experience. The site is well-positioned in a niche market of personalized holiday greetings and leverages multiple language versions to expand its reach across Europe. Technically, the website is built on modern frameworks such as Next.js and React, ensuring good performance and mobile optimization. It integrates popular analytics and marketing tools like Google Analytics and Facebook Pixel, although it lacks a cookie consent mechanism which is a minor compliance gap. Security posture is generally good with HTTPS enforced, but some security headers are missing, and no formal security policy is published. Overall, the domain and website content are consistent and legitimate, with strong trust signals from customer reviews and clear contact information. Strategic improvements in privacy compliance and security headers would enhance the site's trustworthiness and regulatory adherence.

M

Mama Labels

mamalabels.de

0

Mama Labels operates an e-commerce platform specializing in personalized name labels for children attending school and daycare, as well as household labeling products. The website targets parents and caregivers in German-speaking countries and offers a variety of products including clothing labels, name stamps, and combination packages. The business positions itself as a niche market leader with a focus on quality, customer satisfaction, and fast delivery. Technically, the website is built on the PrestaShop CMS platform, utilizes Cloudflare for DNS and CDN services, and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and Smartlook. The site is mobile-optimized and demonstrates good SEO practices with proper meta tags and structured data. Security-wise, the website enforces HTTPS and uses asynchronous loading of scripts but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. No blocking or WAF challenges were detected, and the domain registration appears consistent with the business profile. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security practices.

B

bringe Informationstechnik GmbH

bringe.net

0

bringe Informationstechnik GmbH is a small, owner-managed IT service provider based in Karlsruhe, Germany, founded in 2000. The company specializes in comprehensive IT solutions including managed hosting, IT support tailored for small and medium-sized enterprises (KMU), and custom web development. Their market position is strengthened by an ISO 27001/2022 certification and a clear focus on B2B clients, emphasizing quality and data protection compliance. The website reflects a professional and consistent brand image with detailed business and contact information, targeting German-speaking SME customers. Technically, the website employs modern web technologies such as PHP frameworks (Laravel, Symfony) and JavaScript frameworks (Vue.js). The site is moderately performant with good mobile optimization and basic accessibility features. Hosting is managed by InterNetX GmbH, a reputable registrar. However, some security best practices like DNSSEC and HTTP security headers are not enabled, which could be improved to enhance security posture. From a security perspective, the company demonstrates maturity through ISO 27001 certification and appointing a dedicated data protection officer. The privacy policy is comprehensive and GDPR compliant, though the site lacks an explicit cookie consent mechanism and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the security posture is solid but could benefit from additional technical controls and transparency. The overall risk assessment is low, with the company showing strong legitimacy and trustworthiness. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent mechanisms, publishing a vulnerability disclosure policy, and enhancing accessibility. These steps will further strengthen the company's security, compliance, and user trust, supporting sustainable business growth.

D

Die Bundesregierung

bundesregierung.de

0

The website www.bundesregierung.de is the official online presence of the German federal government, providing political information, news, livestreams, and public service offerings. It serves a broad audience including citizens, media, and political stakeholders. The site is well-branded, consistent, and professionally designed, reflecting its authoritative government status. Technically, it uses CoreMedia CMS and Piwik analytics, with a moderate performance profile and good mobile and accessibility features. Security-wise, the site enforces HTTPS, respects user consent for tracking, and employs nonce-based script loading, indicating a mature security posture. However, explicit privacy and cookie policies are not clearly linked in the provided content, and no incident response contacts are visible, which are areas for improvement. Overall, the domain registration and DNS setup align with a legitimate government entity, supporting high trustworthiness.

G

Gemeinsam-Online

gemeinsamonline.de

0

The Gemeinsam-Online Serviceportal is a German government digital platform providing citizens with access to a wide range of administrative services online. It facilitates processes such as adoption applications, hazard substance notifications, housing registration, and social benefits applications. The portal is part of a broader federal initiative to unify digital public services across Germany's federal, state, and municipal levels. The website targets German residents seeking convenient, accessible government services digitally. Technically, the portal employs modern JavaScript frameworks including Dataport's UISystem and ODControls, along with libraries like jQuery, Bootstrap, and Kendo UI. The site is hosted on INWX infrastructure, uses HTTPS with strong SSL configuration, and incorporates session management and anti-forgery tokens to enhance security. Accessibility and mobile optimization are well addressed, supporting a broad user base. From a security perspective, the portal demonstrates good practices such as HTTPS enforcement, session timeout warnings, and secure form handling. However, it lacks explicit security headers (e.g., CSP, HSTS) and published incident response contacts or vulnerability disclosure policies. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. No critical vulnerabilities or suspicious WHOIS data were detected, indicating a trustworthy and stable domain. Overall, the portal is a professional, secure, and user-friendly government service platform with room for improvement in privacy consent and security policy transparency. Strategic enhancements in these areas would strengthen user trust and regulatory compliance.

F

Freie und Hansestadt Hamburg Senatskanzlei

verstoss-geldwaeschegesetz.de

0

The website www.verstoss-geldwaeschegesetz.de is an official German government service provided by the Freie und Hansestadt Hamburg Senatskanzlei, supported by the federal government. It offers an online platform for citizens and authorities to report suspected violations of the money laundering law anonymously and securely. The service aims to protect the informant's identity while facilitating compliance and enforcement efforts against money laundering activities. The site is clearly targeted at German residents and government entities involved in compliance and law enforcement. Technically, the website employs modern JavaScript libraries including Shaka Player and ContentFlow SDK, and uses eTracker for analytics with cookie blocking enabled to respect privacy. The site is hosted on PlusServer infrastructure, indicating reliable hosting. The design is professional, mobile-optimized, and accessible, with clear navigation and relevant content. However, no explicit cookie consent mechanism was found, and security headers are not visibly configured in the HTML. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries in the HTML. No forms are present in the provided HTML, suggesting data collection is handled via external portals or other mechanisms. The absence of a security.txt file and incident response contacts indicates room for improvement in vulnerability disclosure and incident management. Overall, the security posture is good but could be enhanced with additional headers and transparency. The domain WHOIS data is consistent with the website's government affiliation, with nameservers pointing to a reputable hosting provider. No suspicious patterns or privacy protection are present, supporting the legitimacy of the domain. The site does not contain any adult or questionable content and is safe for general audiences. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, publishing a security.txt file, and providing incident response contact information to improve trust and compliance. Regular audits of third-party scripts and ongoing security assessments are also advised.

F

Freie und Hansestadt Hamburg Senatskanzlei

leistungen-fuer-arbeitgeber.de

0

The website 'Leistungen für Arbeitgeber' is an official German government service provided by the Freie und Hansestadt Hamburg Senatskanzlei. It supports employers who employ or wish to employ people with severe disabilities by offering online application services for individual assistance and funding through the Integration Office. The site targets employers across Germany and is positioned as a trusted, accessible, and official resource. Technically, the site uses modern web technologies including JavaScript libraries for video playback and sliders, and is hosted on PlusServer infrastructure. The site is mobile-optimized and accessible, with clear navigation and professional design. Security posture is adequate with HTTPS usage and no visible vulnerabilities, but lacks explicit security headers and incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, serving an essential government function.

The website justiz.de serves as the official justice portal for the German federal government and its states, providing comprehensive legal and judicial information and digital services. It offers key services such as court directories, electronic legal communication, public announcements, forms, and updates relevant to citizens, legal professionals, and government entities. The portal is positioned as a central authoritative source for justice-related information in Germany, reflecting a large-scale government operation. Technically, the site employs modern web technologies including Bootstrap for responsive design, Font Awesome for icons, jQuery for scripting, and Matomo for privacy-focused analytics. The site is mobile-optimized, accessible, and well-structured, ensuring a good user experience. The use of HTTPS and cookie consent mechanisms demonstrates adherence to privacy and security best practices, although some security headers are not explicitly detected. From a security perspective, the portal maintains a good posture with encrypted connections and privacy-respecting analytics. However, it lacks visible security policies or incident response contacts, and no vulnerability disclosure mechanisms such as security.txt are present. No vulnerabilities or suspicious content were detected, and the domain registration aligns well with the official government entity, enhancing trust. Overall, the website is a trustworthy, professional government platform with strong content quality and privacy compliance. Strategic recommendations include enhancing security headers, publishing explicit security policies, and adding vulnerability disclosure information to further strengthen security and transparency.

I

IT-Planungsrat

it-planungsrat.de

0

The IT-Planungsrat website represents a central political steering committee for the digitalization of public administration in Germany. It serves as a coordination and governance body for federal, state, and municipal digital initiatives, targeting government entities, institutions, businesses, and society at large. The website provides comprehensive information about its mission, organizational structure, projects, and current news, reflecting a well-established government entity with a clear mandate. Technically, the website is built on TYPO3 CMS, a robust open-source content management system widely used in government and enterprise environments. It employs modern web technologies including JavaScript and CSS, and integrates Matomo analytics hosted on its own server, ensuring privacy-conscious data collection. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and consistent branding. From a security perspective, the site enforces HTTPS, uses session cookies securely, and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy documentation and incident response contact details. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration data aligns with the website's governmental purpose, indicating legitimacy and trustworthiness. Overall, the IT-Planungsrat website demonstrates a strong digital presence with good security and privacy practices appropriate for a government institution. Strategic improvements could include publishing dedicated security policies and incident response contacts to enhance transparency and trust.

I

Initiative D21

initiatived21.de

0

Initiative D21 is a well-established German non-profit network focused on advancing the digital society and accompanying the digital transformation for over 25 years. The organization provides research, events, and working groups targeting government, industry, and the public to foster digital competencies and digital governance. Their website reflects a professional and consistent brand with comprehensive content relevant to their mission. Technically, the website uses modern web technologies including JavaScript ES modules, SVG icons, and Matomo analytics configured to disable cookies, indicating a privacy-conscious approach. The site is mobile-optimized, fast-loading, and accessible, though no explicit CMS or framework is identified. Hosting is likely via a professional provider associated with domaincontrol.com. Security posture is solid with HTTPS enforced and privacy-aware analytics, but lacks some advanced security headers and a visible security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy, but no cookie consent mechanism was found. Overall, the website is trustworthy, professional, and well-aligned with the organization's mission. Recommendations include adding cookie consent, security headers, and publishing a security policy to enhance compliance and security posture.

The website digitale-verwaltung.de is an official digital administration portal operated by the Bundesministerium für Digitales und Staatsmodernisierung, Germany's Federal Ministry for Digital and State Modernization. It serves as a central information hub for the Digital Dachmarke initiative, which aims to provide a unified branding system for government digital services across federal, state, and municipal levels. The site targets citizens, government entities, and stakeholders involved in digital public services, offering detailed information, contact points, and resources to support the initiative. Technically, the site is built using the Government Site Builder CMS, employs modern web standards including HTML5, CSS3, and JavaScript, and integrates accessibility tools such as ReadSpeaker. Hosting is provided via a reputable provider with nameservers indicating European hosting. The site demonstrates good mobile optimization, accessibility, and SEO practices, with structured data enhancing search engine understanding. From a security perspective, the site enforces HTTPS and incorporates accessibility and privacy best practices. However, it lacks explicit security policy documentation, incident response contacts, and vulnerability disclosure mechanisms. No security headers were detected in the provided data, and no cookie consent mechanism was observed despite GDPR applicability. The WHOIS data aligns with the official government use, indicating a legitimate and trustworthy domain. Overall, the website presents a professional, trustworthy, and well-maintained digital government service portal with minor gaps in explicit security and privacy disclosures. Strategic improvements in these areas would enhance user trust and compliance posture.

]

]init[ AG

init.de

0

The website www.init.de represents ]init[ AG, a medium-sized German technology company specializing in digital services for government and enterprise sectors. Their business model focuses on consulting, creating, implementing, and operating digital solutions that facilitate societal progress through digitalization. The company holds a C5:2020 certification, demonstrating a high standard of cloud security compliance. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility features. Analytics are implemented via etracker, with moderate user tracking. Security posture is strong with HTTPS and cloud certification, though some security headers and explicit incident response contacts are missing. Privacy compliance is adequate but could be improved with a more explicit cookie consent mechanism. Overall, the site is trustworthy, professional, and well-positioned in its market niche.

B

BMBF Medienverwaltung

bmbf-bilddatenbank.de

0

The website bmbf-bilddatenbank.de serves as a digital asset management platform primarily for the German Federal Ministry of Education and Research (BMBF). It provides authenticated access to media resources such as photos, videos, and audio files, leveraging the open-source ResourceSpace software. The platform targets internal or authorized users, facilitating media management, annotation, and transformation services. The site is professionally branded and consistent with government digital services, though it lacks publicly accessible privacy or cookie policies on the login page. Technically, the site employs a modern JavaScript stack including jQuery, CKEditor, and various plugins for enhanced media handling and UI features. It is served over HTTPS, ensuring encrypted communications, but lacks visible security headers such as CSP or HSTS, which could improve its security posture. The site is moderately optimized for performance and mobile use, with basic accessibility features. From a security perspective, the platform demonstrates good practices like CSRF token usage in forms and no exposed sensitive data in the HTML. However, the absence of explicit privacy, cookie consent mechanisms, and security policies reduces compliance with GDPR and best practices. No WAF or blocking mechanisms are detected, and the domain appears legitimate though WHOIS data is limited. No contact information or incident response channels are publicly available. Overall, the site is a secure and professional government media management portal with room for improvement in privacy compliance and security header implementation. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

OpenTable Germany operates as a leading online restaurant reservation platform, enabling users to discover and book tables at top restaurants across Germany. The website is well localized for the German market, featuring comprehensive restaurant listings, reservation management, and marketing solutions for restaurateurs. The platform targets general consumers seeking convenient dining experiences and restaurants looking to optimize bookings and customer engagement. Technically, the site leverages modern web technologies including React, Apollo GraphQL, and integrates analytics and consent management tools such as Mixpanel and OneTrust. Hosting and CDN services are provided by Akamai, ensuring robust performance and security. Security posture is strong with HTTPS enforcement, security headers, and CSRF protections, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates high professionalism, excellent content quality, and good privacy compliance, positioning it as a trustworthy and mature digital service in the hospitality sector.

I

Information und Technik Nordrhein-Westfalen

statistik.nrw

0

Statistik.NRW is the official statistical office for North Rhine-Westphalia, Germany's most populous state. It provides comprehensive social and economic data, serving government bodies, researchers, businesses, and the public. The website is professionally designed, well-structured, and offers extensive statistical content and services including databases, publications, and regional profiles. The parent organization is the Landesbetrieb IT.NRW, ensuring strong institutional backing. Technically, the site is built on Drupal CMS with modern JavaScript libraries and privacy-conscious analytics (Matomo). It is mobile-optimized and accessible, with a clear cookie consent mechanism. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. WHOIS data confirms legitimacy and consistency with the official entity. Overall, the site demonstrates a mature digital infrastructure and strong compliance with privacy regulations. It is trustworthy and reliable for users seeking official statistical information about NRW. Recommendations include enabling DNSSEC, publishing explicit security policies, and adding a vulnerability disclosure channel to further enhance security transparency.

D

Droptop GmbH

linevast.de

0

Linevast Hosting, operated by Droptop GmbH since 2013, is a German-based web hosting provider offering a range of services including web hosting, managed servers, domain registration, and various add-ons such as Redis and Elasticsearch. The company emphasizes quality, reliability, and personalized customer service, supported by an ISO 27001 certified data center. Their market position is that of a trusted, small-sized technology provider focused on the German market. Technically, the website uses modern web technologies including Bootstrap, jQuery, and FontAwesome, with Cloudflare DNS services. The site is mobile-optimized and well-structured, though it lacks a CMS and advanced analytics tools. Security posture is strong with ISO certification and HTTPS, but could be improved by adding security headers and a vulnerability disclosure policy. Privacy compliance is good, with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

F

FUNKE Works GmbH

trainee-gefluester.de

0

Trainee-Gefluester.de is a German online platform operated by FUNKE Works GmbH, specializing in trainee job listings and career advice for graduates and young professionals. The website offers a comprehensive range of services including job search, career tips, application templates, podcasts, and a career check tool, positioning itself as a niche job portal in the education sector. The platform targets job seekers in Germany looking for trainee programs and related career resources. Technically, the website employs modern web technologies such as Tailwind CSS, StimulusJS, Turbo, and uses CDNs like Amazon CloudFront and Imgix for performance optimization. It integrates Google Tag Manager, Plausible Analytics, and a consent management platform to ensure GDPR compliance. Security-wise, the site enforces HTTPS and uses a consent mechanism for cookies, but lacks explicit security headers and published incident response policies. Overall, the site is professional, secure, and trustworthy with good privacy compliance, but could improve by publishing security policies and contact information for security incidents.

F

FUNKE Works GmbH

praktikum.info

0

Praktikum.info is a German internship marketplace operated by FUNKE Works GmbH, targeting students, pupils, and career entrants seeking internships in Germany and abroad. The platform offers a large selection of internship listings, career check tools, application tips, templates, and a podcast for career advice. The website is well-positioned in the education sector with a medium-sized market presence and a professional, user-friendly design. Technically, the site uses modern frameworks such as Turbo (Hotwire), Tailwind CSS, and is hosted on Amazon Cloudfront CDN, ensuring fast performance and mobile optimization. Privacy compliance is strong, with GDPR-compliant cookie consent and a comprehensive privacy policy. Security posture is good with HTTPS enforced and use of security best practices, though explicit security headers could be verified further. WHOIS data is privacy protected, which is justified for this business type. Overall, the site is trustworthy, professional, and well-maintained.

F

FUNKE Works GmbH

azubi.de

0

Azubi.de is a leading German online platform specializing in apprenticeship and dual study program listings, operated by FUNKE Works GmbH. The website targets students and young adults seeking vocational training opportunities in Germany, offering comprehensive job listings, employer profiles, and career advice. The platform enjoys a strong market position supported by partnerships with prominent companies and a professional, user-friendly design. Technically, the site leverages modern frameworks and CDNs, ensuring fast performance and mobile optimization. Security posture is robust with HTTPS enforcement, GDPR-compliant cookie consent, and secure form handling, although explicit security headers could be further verified. No critical vulnerabilities or suspicious content were detected. Overall, Azubi.de demonstrates a mature digital presence with good privacy compliance and business credibility.

A

Ad Alliance GmbH

winario.de

0

winario.de is an official online sweepstakes platform affiliated with major German TV channels RTL and VOX, operated by Ad Alliance GmbH. It offers users free participation in TV-related contests and votings, providing chances to win cash prizes, trips, and electronics. The platform targets a general German-speaking audience interested in TV sweepstakes and interactive contests. Technically, the site employs modern JavaScript libraries including jQuery and Swiper.js, integrates Google Tag Manager for analytics, and uses Sourcepoint for GDPR-compliant consent management. Hosting is managed via EuroDNS nameservers, indicating a professional infrastructure. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response information are not clearly presented. Privacy compliance is strong with dedicated privacy and cookie policies accessible. Business credibility is high due to official affiliations and consistent branding. Overall, the website is well-designed, user-friendly, and trustworthy, with no signs of blocking or malicious content.

Studierendenwerk Dortmund AöR is a regional non-profit organization providing essential student services including financial aid (BAföG), housing, food services (Mensa), and counseling for seven universities in and around Dortmund, Germany. The website reflects a well-established institution with a clear focus on supporting students' academic and social needs. The presence of multiple university logos and social media channels reinforces its credibility and community engagement. Technically, the site is built on TYPO3 CMS, employs privacy-conscious Matomo analytics, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS and privacy-respecting tracking, though it lacks explicit security policies and headers. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations.

F

FUNKE Services GmbH

funkemediasales.de

0

FUNKE MediaSales operates as the primary media sales arm of the FUNKE Mediengruppe, offering comprehensive crossmedia advertising solutions across digital, print, and audio channels. The company targets businesses and marketing professionals seeking regional and national advertising reach. The website demonstrates a mature digital infrastructure built on WordPress with modern frameworks and includes advanced cookie consent management and tracking technologies. Security posture is solid with HTTPS and consent-based loading of tracking scripts, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

kitconcept GmbH

kitconcept.com

0

kitconcept GmbH is a specialized service provider focused on delivering high-quality open source web and intranet solutions, primarily leveraging the Plone CMS platform. Their market position is that of a niche expert and active contributor to the Plone community, serving research institutions, universities, government agencies, and public organizations. The company offers services including website development, intranet solutions, open source contributions, and consulting. Founded in 2014 and based in Germany, kitconcept GmbH maintains a professional and content-rich website that reflects their expertise and client base. Technically, the website is built on modern technologies including Plone 6 and React-based Volto frontend, hosted by Hetzner Online GmbH with DNS managed via Cloudflare. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is solid with HTTPS enforced and no exposed sensitive data, but could be improved by enabling DNSSEC and adding explicit security headers. Privacy compliance is generally good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the security posture is mature with no critical vulnerabilities detected. The website shows strong business credibility through client logos, testimonials, and detailed project case studies. Recommendations include enhancing DNS security, implementing security headers, and adding cookie consent to improve GDPR compliance. The site is safe for general audiences with no adult or questionable content detected.

atalanda.com is a well-established German e-commerce platform founded in 2012, offering a broad range of over 2 million products across categories such as fashion, beauty, toys, electronics, books, home and garden, pets, sports, food, and baby products. The platform targets general consumers in Germany and positions itself as one of the leading online retailers with over 150,000 satisfied customers and strong ratings on Idealo and Google. The business model aggregates products from multiple retailers, providing a marketplace experience. Technically, the website employs modern technologies including Vue.js, Stripe for payments, Google reCAPTCHA for bot protection, and Amazon Cloudfront CDN for content delivery. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, although DNSSEC is not enabled and no explicit security.txt or incident response contacts are found. Privacy and cookie policies are comprehensive and GDPR compliant, with a clear consent mechanism. No adult or questionable content is present, making the site safe for general audiences. Overall, the website is professional, trustworthy, and technically mature, with room for minor security enhancements.

M

Max-Planck-Gesellschaft zur Förderung der Wissenschaften

max-planck.de

0

The Max-Planck-Gesellschaft website represents a leading German non-profit research organization focused on fundamental scientific research across 84 institutes. The site targets researchers, academics, students, and the general public interested in science. It offers extensive information on research, career opportunities, publications, and innovation initiatives. Technically, the website employs modern JavaScript frameworks, a modular AMD architecture, and a professional CMS (JustRelate CX Cloud). It is hosted on infrastructure consistent with the organization's domain and uses HTTPS with cookie consent managed by Usercentrics. Security posture is strong with no critical vulnerabilities detected, though some security headers could be improved. Privacy compliance is moderate due to the absence of explicit privacy and terms of service pages in the provided content, but cookie consent mechanisms are in place. Overall, the website is professional, trustworthy, and well-structured, reflecting the organization's high credibility and market position.

4

4P.de

4players.de

0

4P.de is a well-established German online media portal specializing in gaming news, reviews, previews, and hardware coverage for PC and consoles including PS5, Xbox, Switch, and VR. The site targets gaming enthusiasts primarily in the German-speaking market and operates under the FUNKE Mediengruppe umbrella, a reputable media conglomerate. The business model is based on advertising revenue complemented by subscription options for ad-free experiences. The website demonstrates a high level of professionalism with consistent branding, excellent content quality, and active engagement through social media channels.

FeWo-Touristik GmbH operates a specialized online platform for vacation rental listings, focusing on Ferienwohnungen and Ferienhäuser primarily in Germany and Europe. The company manages over 10,000 listings and offers niche portals targeting dog owners and regional markets such as Sylt. The business model emphasizes direct control for property owners without commission fees, positioning the company as a trusted intermediary in the hospitality sector. Technically, the website is built with standard HTML5 and CSS3, is mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, which are recommended for compliance and protection. WHOIS data confirms domain legitimacy with consistent registration details and no privacy protection, aligning with the company's transparency. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

F

FUNKE Mediengruppe GmbH & Co. KGaA

funke.fun

0

FUNKE FUN is a German media portal operated by FUNKE Mediengruppe GmbH & Co. KGaA, offering daily free sweepstakes, browser games, and discount vouchers from trusted brands. The website targets a broad general audience interested in entertainment and savings. It leverages partnerships with well-known brands such as HÖRZU and Tchibo to provide engaging content and promotional offers. Technically, the site uses modern JavaScript frameworks including Alpine.js and Livewire, integrates consent management tools, and employs Google Tag Manager for analytics. The site is mobile optimized and presents a professional user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS, uses security headers, and manages cookie consent effectively, though it lacks explicit security policy or incident response contact details. Overall, the website demonstrates a mature digital presence with good privacy compliance and trustworthy business information, though improvements could be made in providing direct contact channels and terms of service documentation.