Security Directory

C

NetFed LimeSurvey

corporate-survey.de

0

The website www.corporate-survey.de is a LimeSurvey-based platform primarily designed for hosting online surveys with multilingual support. It targets survey participants and administrators, offering a basic service model centered on survey distribution and data collection. The site is modest in content and design, reflecting a small-scale operation likely focused on internal or niche survey needs within Germany. Technically, the site employs common web technologies including jQuery, Bootstrap, Font Awesome, and Moment.js, all integrated within the LimeSurvey CMS framework. While the platform is functional and moderately optimized for mobile devices, it lacks advanced SEO and accessibility features. Performance is moderate, with no evident critical technical issues but also no advanced optimizations. From a security perspective, the site lacks visible security headers and does not provide HTTPS status information in the provided data, indicating potential gaps in secure configuration. There are no privacy or cookie policies, and no incident response or security contact information is available, which limits compliance with GDPR and best security practices. The domain WHOIS data shows standard European name servers consistent with the German domain but lacks detailed registrant information, resulting in a moderate legitimacy score. Overall, the site is safe and suitable for general audiences but requires significant improvements in privacy, security, and compliance to enhance trustworthiness and professional standing. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, improving security headers, and providing clear contact and incident response information.

N

NetFederation GmbH

net-federation.de

0

NetFederation GmbH is a German consulting firm specializing in digital corporate communication, offering website consulting and market benchmarking services. The company positions itself as a trusted advisor with annual market benchmarks to provide clients with top market insights. The website is professionally designed, primarily targeting businesses seeking digital communication solutions in Germany. Technically, the site is built on WordPress and integrates modern tools such as Google Tag Manager, Cookiebot for cookie consent, and Piwik (Matomo) for analytics, reflecting a moderate level of digital maturity. Security-wise, the website uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published privacy or security policies, indicating room for improvement in compliance and transparency. Overall, the site is accessible without WAF or blocking mechanisms, but the absence of direct contact information and formal policy pages slightly reduces trust and compliance scores.

S

Schindler

senkrechtstarter-blog.de

0

The website magazin.schindler.de is an official online magazine by Schindler, a global leader in vertical transportation solutions. It focuses on vertical mobility topics including elevators, skyscrapers, urban culture, architecture, travel, and technology. The site serves as a content marketing platform targeting professionals and enthusiasts interested in these areas, reinforcing Schindler's brand and thought leadership. The business model centers on publishing engaging editorial content and offering a newsletter to maintain audience engagement. Technically, the site is built on a modern Laravel PHP framework with Tailwind CSS and Alpine.js for frontend interactivity. It uses Google Analytics and Google Tag Manager for analytics and tracking, with a clear cookie consent mechanism in place. The site is mobile-optimized and demonstrates good SEO and accessibility basics, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses Laravel's CSRF protection. However, explicit security headers and a published security policy or incident response contacts are not found, representing areas for improvement. No vulnerabilities or suspicious patterns were detected. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service on the provided content. Overall, the website is professional, trustworthy, and well-branded, with a good security posture but room for enhanced privacy transparency and security disclosures. It poses low risk and aligns well with Schindler's corporate identity.

dpa GmbH is Germany's leading press agency providing trusted, accurate, and independent news along with digital and multimedia content to support media outlets domestically and internationally. The company maintains a strong market position with key subsidiaries such as news aktuell, picture alliance, and dpa-infocom, offering a broad range of editorial and corporate communication services. The website reflects a mature digital infrastructure leveraging modern technologies like React, Next.js, and Storyblok CMS, supported by AWS Cloudfront CDN for performance and scalability. Security posture is robust with HTTPS enforcement and comprehensive security headers, although visible cookie consent mechanisms are absent. The WHOIS data is unavailable, which is unusual but does not detract significantly from the site's legitimacy given the professional content and external trust signals. Overall, dpa GmbH demonstrates a high level of digital maturity and business credibility.

I

IMAGO Informationstechnologie GmbH

imago.de

0

IMAGO Informationstechnologie GmbH is a small German technology company specializing in the development and distribution of lead management software, notably their product autocrm, which is positioned as a leading solution in Germany. Founded in 1995 and based in Kaiserslautern, the company employs around 20 staff with diverse IT and business qualifications. Their business model focuses on providing affordable, user-friendly, and internet-accessible software solutions alongside IT system services and research activities. The website reflects a professional and consistent brand image with clear business and legal information, targeting IT professionals and customers in Germany. Technically, the website is built on the OCMS content management system and uses common JavaScript libraries such as jQuery and cookieconsent.js for cookie management. The site is mobile-optimized with a responsive design and includes basic accessibility features. SEO practices are adequately implemented with meta tags and structured navigation. However, no advanced frameworks or analytics tools are detected, indicating a moderate level of digital maturity. From a security perspective, the site shows basic good practices such as cookie consent implementation and no visible exposure of sensitive data or vulnerable libraries. However, there is a lack of explicit security headers and no published security or incident response policies. The WHOIS data is consistent with the website's business claims, showing a legitimate and stable domain registration without privacy protection, supporting trustworthiness. Overall, the website presents a low-risk profile with good business credibility and privacy compliance but could improve its security posture by implementing security headers, publishing security policies, and enhancing incident response readiness.

B

Bremedia Produktion GmbH

bremedia-produktion.de

0

Bremedia Produktion GmbH is a media production company based in Bremen, Germany, specializing in the creation of fictional and non-fictional formats, innovative radio productions, and award-winning TV shows. The company targets a general audience interested in high-quality media content and operates primarily within the media industry. Their website reflects a professional and consistent brand image, showcasing their key services and productions effectively. Technically, the website is built on WordPress using popular plugins such as WPBakery, Elementor, and Slider Revolution, indicating a modern and flexible digital infrastructure. The site is moderately performant, mobile-optimized, and incorporates basic accessibility and SEO best practices. Cookie consent is managed via Borlabs Cookie, demonstrating attention to privacy compliance. From a security perspective, the site uses HTTPS with good SSL configuration and employs reCAPTCHA for form protection. However, explicit security headers and published security policies are lacking, which could be improved to enhance the security posture. No vulnerabilities or malicious content were detected, and no WAF or blocking mechanisms interfere with content accessibility. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in privacy policy publication, security headers, and incident response information would further strengthen trust and compliance.

R

Radio Bremen

radiobremen-brandportal.de

0

The Radio Bremen Brandportal serves as a centralized platform for managing and distributing brand assets related to Radio Bremen and its associated channels. It targets internal users and partners involved in brand management, providing access to logos, channel branding, and related resources. The site is professionally designed using Drupal 10 and includes multiple branded channels with consistent branding and official logos. Technically, the site uses modern CMS technology and jQuery, hosted likely on German servers, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and secure login forms, though some security headers and cookie consent mechanisms are missing. Overall, the site is trustworthy and aligned with a public broadcaster's standards, but could improve privacy compliance and security transparency.

ndrb sales & services GmbH is a specialized media sales company focused on radio advertising in Northern Germany. The company markets advertising slots on prominent radio stations such as NDR 2, Bremen Eins, Bremen Vier, and Bremen NEXT, positioning itself as a market leader in the regional radio advertising sector. Their website clearly targets advertisers and marketers seeking effective radio campaign solutions, emphasizing tailored advertising strategies to meet client goals. The business model revolves around media sales and advertising services, leveraging strong brand associations with well-known radio stations in the region. Technically, the website is built on WordPress 5.7.2, utilizing jQuery and the Borlabs Cookie plugin for cookie consent management. Hosting is supported by Google Cloud DNS infrastructure, indicating a reliable and scalable backend. The site demonstrates good mobile optimization and SEO practices, with structured metadata and JSON-LD for enhanced search engine understanding. Performance is moderate, with room for improvement in accessibility features. The cookie consent mechanism is comprehensive, offering granular user control over essential and external media cookies. From a security perspective, the site enforces HTTPS with an excellent SSL configuration and employs cookie consent best practices. However, no explicit security headers were detected, and there is no published security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data aligns well with the website content, showing consistent domain registration and legitimate use of Google nameservers. Social media presence on Facebook, LinkedIn, and Xing further supports business credibility. Overall, the website presents a professional and trustworthy digital presence with solid privacy compliance and a clear business focus. Strategic improvements in security headers, incident response transparency, and accessibility could enhance the security posture and user trust further.

R

Radio Bremen

butenunbinnen.de

0

The website www.butenunbinnen.de is a regional news portal operated by Radio Bremen, providing news, videos, live streams, and local updates for Bremen and Bremerhaven. It serves a regional audience with a focus on current events, politics, sports, and societal topics. The business model is media and broadcasting with digital content delivery, positioning itself as a trusted regional news source. Technically, the site uses modern web technologies including lazy loading, asynchronous JavaScript, and a specialized video player, indicating a mature digital infrastructure with good mobile optimization and accessibility. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks explicit security headers and formal security policies. Privacy compliance is limited due to absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve in privacy transparency and security hardening.

W

Westdeutscher Rundfunk (WDR)

wdr.de

0

Westdeutscher Rundfunk (WDR) operates a comprehensive regional public broadcasting website offering news, video, audio, and cultural content primarily targeting the population of Nordrhein-Westfalen, Germany. The site demonstrates a mature digital infrastructure with modern streaming technologies, structured metadata, and good SEO and accessibility practices. Security posture is solid with HTTPS and no evident vulnerabilities, though explicit security headers and policies are not fully disclosed. Privacy compliance is weak due to missing privacy and cookie policies and lack of consent mechanisms. The domain appears legitimate and consistent with a public media entity, though WHOIS data is minimal. Overall, the website is professional, content-rich, and trustworthy but could improve transparency in privacy and security policies.

R

Radio Bremen

bremenvier.de

0

The website www.bremenvier.de represents Bremen Vier, a regional public radio station operated by Radio Bremen in Germany. It offers radio broadcasting, online streaming, event coverage, and multimedia content such as videos targeting a general and family-oriented audience. The site is professionally designed with consistent branding and good content quality, reflecting its position as a trusted media outlet in the Bremen region. Technically, the site uses modern web technologies including responsive design, lazy loading, and video streaming, ensuring a good user experience across devices. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though some security headers are missing and privacy compliance could be improved by adding explicit policies and consent mechanisms. WHOIS data confirms the legitimacy of the domain and its alignment with the Radio Bremen organization. Overall, the site is trustworthy, well-maintained, and suitable for its audience.

R

Radio Bremen

bremenzwei.de

0

Bremen Zwei is a public radio broadcasting program operated by Radio Bremen, targeting a German-speaking audience with a focus on culture, music, events, and news. The website presents a professional and consistent brand image with a variety of multimedia content including videos, podcasts, and live talks. The technical infrastructure uses modern web technologies with responsive design and lazy loading for performance optimization. However, explicit privacy and cookie policies are not detected, which is a compliance gap. Security posture is moderate with HTTPS usage but lacks visible security headers and incident response information. Overall, the domain registration and WHOIS data align well with the business identity, indicating legitimacy and trustworthiness.

R

Radio Bremen

bremeneins.de

0

Bremen Eins is a regional public radio station operated by Radio Bremen, offering a broad range of music, news, events, and podcasts targeted at the Bremen area and general German-speaking audience. The website presents a professional and content-rich platform with consistent branding and a clear focus on music and local culture. The business model is typical for public broadcasters, focusing on content delivery and community engagement rather than commercial sales. Technically, the site uses modern web technologies including lazy loading and responsive design, ensuring good user experience across devices. However, no explicit CMS or hosting provider details are evident. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Contact information is available primarily via phone and contact forms, with social media presence on Facebook. Overall, the site is trustworthy and well-positioned in its market segment but could improve in privacy and security transparency.

R

Radio Bremen

bremennext.de

0

Bremen NEXT is a youth-oriented media platform operated by Radio Bremen, focusing on music, lifestyle, podcasts, and events for young people in Bremen and Bremerhaven. The website offers a variety of content including radio shows, podcasts, event listings, and interactive features such as contact forms and social media engagement. The platform positions itself as a regional leader in youth media, leveraging the credibility and resources of its parent company, Radio Bremen. Technically, the website employs modern web technologies including lazy loading images, SVG graphics, and asynchronous JavaScript loading. It uses a custom framework likely developed by Radio Bremen and integrates slick carousel for content sliders. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured content. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers such as Content-Security-Policy and does not provide a vulnerability disclosure or security.txt file. Privacy compliance is limited, with no visible privacy or cookie policies or consent mechanisms, which is a notable gap given GDPR requirements. Overall, the website is professional, content-rich, and trustworthy, but could improve its privacy and security posture to enhance user trust and regulatory compliance.

Z

zolar Installer Services

zolar.com

0

The website zolar.com presents itself as a service platform focused on optimizing photovoltaic (PV) installations, targeting installers and professionals in the energy sector primarily in Germany. The site offers services including planning, installation, and customer acquisition support for PV installers. The business appears to be established, with a domain age dating back to 2002, consistent with a mature company in the energy industry. The website is built using Framer CMS and hosted with AWS DNS services, incorporating Google Analytics for visitor tracking. The design and user experience are good, with mobile optimization and clear navigation, although accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks security headers and DNSSEC. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. No explicit contact information or incident response details are found on the site. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

D

DataGuard

dataguard.de

0

DataGuard is a German-based technology company specializing in data protection, GDPR compliance, and information security solutions. The company offers a comprehensive SaaS platform combined with expert consulting services to help over 4,000 businesses across various industries achieve certifications such as ISO 27001 and TISAX, and comply with regulations like GDPR and NIS2. Their platform emphasizes automation, risk management, and integration with existing tools, targeting medium-sized to larger enterprises. Technically, the website is built on HubSpot CMS with modern JavaScript frameworks like Vue.js and integrates multiple analytics and marketing tools with user consent management. Security posture is strong, with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Business credibility is supported by certifications, testimonials, and consistent branding. Overall, the website demonstrates a mature digital presence with a strong focus on compliance and security.

I

IONOS SE

ionos.at

0

IONOS SE is a well-established European technology company specializing in web hosting, domain registration, cloud services, and online shop solutions. With over 30 years of experience, it serves a broad audience including businesses and individuals seeking reliable and scalable digital infrastructure. The company maintains a strong market position in Europe, supported by a comprehensive portfolio of services and a professional online presence. Technically, the website leverages modern frameworks such as Next.js and React, ensuring fast performance, mobile optimization, and good SEO practices. Security posture is robust with HTTPS enforcement, multiple security headers, and monitoring tools like Sentry. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site reflects a mature digital infrastructure and business credibility.

I

IONOS SE

ionos.de

0

IONOS SE is a well-established German technology company specializing in web hosting, domain registration, cloud services, and e-commerce solutions. With over 30 years of experience, it holds a strong market position in Europe, offering a broad portfolio of digital services tailored to businesses and individuals. The website reflects a professional and comprehensive digital presence, targeting customers seeking reliable and scalable hosting and cloud infrastructure. The company operates under the parent company United Internet AG, reinforcing its enterprise scale and credibility. Technically, the website is built using modern web technologies including Next.js and React, ensuring fast performance, mobile optimization, and good accessibility. The use of asynchronous scripts and web fonts enhances user experience. The site is hosted likely on IONOS's own infrastructure, supporting its claims of high availability and performance. From a security perspective, the website employs HTTPS with excellent SSL configuration and implements key security headers. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance transparency and trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, IONOS SE demonstrates a mature and secure online presence with strong business credibility. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and providing direct security contact channels to further strengthen its security posture and customer trust.

1

13 Agentur für Werbung und Kommunikation GmbH

13agentur.de

0

13 Agentur für Werbung und Kommunikation GmbH is a well-established, owner-operated marketing and communication agency based in Hannover, Germany. Founded in 1971 originally as a photography studio, it has evolved into a full-service agency offering graphic design, web development, SEO/SEA, and proprietary media database software (ImagePlant) for clients across Germany and the DACH region. The company emphasizes reliability, quality, and long-term partnerships with its clientele. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. The infrastructure uses professional hosting with multiple nameservers and CDN resources. Security posture is adequate with HTTPS enabled and cookie consent implemented, though security headers and explicit privacy policies are missing. Overall, the site is professional, well-branded, and provides clear contact channels, supporting a high trust level.

S

STRATO GmbH

strato.com

0

STRATO GmbH appears to be a German web hosting and domain registration company, as indicated by the website title and metadata. However, the WHOIS data for the domain www.strato.com is unavailable, showing 'No match' in the registry, which raises questions about the domain's registration status or WHOIS privacy restrictions. The website content is minimal and truncated, with no visible privacy, cookie, or terms of service policies, and no contact information or security policies are found. Technically, the site uses older JavaScript libraries such as jQuery 2.2.4 and AngularJS 1.5.6, and the CMS is identified as IMPERIA 8.6.0. There is no evidence of modern security headers or SSL configuration details. Overall, the site shows basic technical implementation but lacks critical compliance and security information, resulting in a low trust and legitimacy score.

N

NetCologne

netcologne.de

0

NetCologne is a regional telecommunications provider offering high-speed fiber internet, telephone, TV, and mobile services primarily targeting private customers in Cologne and the surrounding region. The website presents a professional and consistent brand image with clear service offerings and localized focus. The technical infrastructure is modern, leveraging React and Next.js frameworks, with performance optimizations such as Baqend SpeedKit and cookie consent management via Cookiebot. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the website is accessible, well-structured, and compliant with GDPR requirements, reflecting a mature digital presence for a large regional telecom operator.

T

Technische Universität München

tum.de

0

Technische Universität München (TUM) is a leading German university specializing in natural sciences and engineering education and research. The website serves a broad academic audience including prospective and current students, researchers, and alumni. It offers comprehensive information on study programs, research initiatives, innovation, and community engagement. The site is built on TYPO3 CMS, indicating a mature technical infrastructure with good content organization and navigation. However, the site lacks visible privacy and cookie policies, security headers, and incident response information, which are important for compliance and trust. No WAF or blocking mechanisms were detected, and the content is safe and appropriate for a general audience.

V

VALID Digitalagentur GmbH

valid-digital.com

0

VALID Digitalagentur GmbH is a Berlin-based digital agency specializing in digital strategy, UX design, development, and performance marketing. The company targets businesses seeking comprehensive digital transformation and customer experience consulting. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site uses Contao CMS, integrates privacy-focused analytics (Matomo with cookies disabled), and employs Cookiebot for GDPR-compliant consent management. Security posture is strong with HTTPS and CSRF protections, though explicit security headers are not detected. The absence of WHOIS registration data raises concerns about domain legitimacy, but the website's professionalism suggests a legitimate business. Contact is primarily via a web form, with no direct emails or phone numbers visible. Overall, the site is well-structured, privacy-conscious, and suitable for its target audience.

U

Ulisses Spiele

ulisses-spiele.de

0

Ulisses Spiele is a German media company specializing in publishing tabletop role-playing games and related content. The website serves as a digital storefront and information hub for their products, targeting gaming enthusiasts primarily in Germany. The site is built on WordPress with a modern tech stack including Bootstrap and uses Cookiebot for GDPR-compliant cookie management and Matomo for analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and consent-based analytics tracking, though explicit security headers and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with privacy norms, but could improve transparency by publishing privacy policies and contact information.

L

Lovecraft Mythen

lovecraftmythen.de

0

Lovecraft Mythen is a niche German website dedicated to exploring and explaining the mythos surrounding H.P. Lovecraft and Cosmic Horror. It offers thematic content, video analyses, and a merchandise shop focused on Lovecraftian themes. The site targets fans and readers interested in this literary genre and related cultural phenomena. Technically, the website is built on the cm4all platform hosted by Strato AG, utilizing older JavaScript libraries such as jQuery 1.7 and Prototype.js 1.7.3, with modern UI elements like Font Awesome and Photoswipe for media display. The site is moderately optimized for mobile and accessibility, with basic SEO and privacy compliance features including a cookie consent mechanism and a privacy policy page. Security posture is moderate but could be improved by adding HTTP security headers and updating legacy libraries. No critical vulnerabilities or blocking mechanisms were detected, and the domain WHOIS data is consistent with the website's content and purpose.

D

Die Würfelgötter e.V.

wuerfelgoetter.de

0

Die Würfelgötter e.V. is a well-established German non-profit club dedicated to board games, tabletop gaming, trading card games, and chess. Founded in 2015, it has grown to over 200 members and offers extensive facilities including 20 gaming tables, a crafting room, and a lounge. The club organizes regular tournaments and social events, positioning itself as one of the largest clubs in its niche in Germany. Technically, the website is built on WordPress with modern plugins for SEO, events management, and GDPR compliance, reflecting a mature digital presence. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and published policies. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

D

Daniel Krause

brettspiel-news.de

0

Brettspiel-News.de is a German-language online magazine focused on board games, card games, analog and digital games. It offers news, reviews, podcasts, videos, and premium subscription content targeting board game enthusiasts and families. The site is built on Joomla CMS and uses common web technologies such as Bootstrap, Uikit, and jQuery. Hosting and DNS are managed via Cloudflare, providing performance and security benefits. Advertising is integrated primarily through Google Adsense and affiliate links. Privacy and terms of service pages are present, but cookie consent mechanisms are not implemented. Social media presence is strong across multiple platforms. Security posture is moderate with HTTPS enabled but lacking security headers and explicit incident response information.

I

ImagePlant

bilddatenbanksoftware.de

0

ImagePlant is a specialized provider of web-based image database software tailored for companies, municipalities, and organizations. The company offers a comprehensive digital asset management solution featuring intuitive user interfaces, AI-powered tagging, rights management, and efficient sharing capabilities. Positioned as a niche player in the technology sector, ImagePlant targets business clients seeking centralized media management solutions. The website reflects a small-sized, Germany-based company with a founding date around 2014 and is supported by its parent company, 13 Agentur für Werbung und Kommunikation GmbH.

E

EDITION F

editionf.com

0

EDITION F is a well-established German media platform founded in 2013, focusing on social, cultural, and political topics. It offers rich editorial content including interviews, podcasts, and event information targeting a socially conscious adult audience. The website demonstrates a mature digital presence with modern frontend technologies and integrated analytics and consent management tools. Privacy compliance is strong, with comprehensive GDPR-aligned privacy and cookie policies and an active consent mechanism. Security posture is good, with HTTPS enforced and domain registration locked, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and well-positioned in its niche media market.

A

ARD Audiothek

ardaudiothek.de

0

ARD Audiothek is a large-scale podcast platform operated by the German public broadcaster ARD, offering a wide range of podcasts from ARD and Deutschlandradio. The platform targets German-speaking podcast listeners and provides free streaming and download services. It holds a strong market position as a leading public media podcast provider in Germany. The website is built with modern web technologies including Next.js and React, optimized for both desktop and mobile users, and integrates analytics tools like Piano Analytics and Google Tag Manager. Security posture is strong with HTTPS and multiple security headers implemented, though some improvements in privacy compliance such as cookie consent mechanisms and security policies could be made. Overall, the platform is professional, trustworthy, and well-branded, serving a broad audience with high-quality content.

P

PTV Group

ptvgroup.com

0

PTV Group is a well-established company specializing in transportation and mobility software solutions, offering products and consulting services that empower smarter, cleaner, and safer mobility. Their website demonstrates a mature digital presence with a professional design, comprehensive content, and strong GDPR compliance evidenced by a detailed privacy policy and cookie consent mechanism. The technical infrastructure is modern, leveraging Drupal CMS and contemporary frontend technologies, with integration of Google Tag Manager and Didomi for privacy management. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, although explicit security headers should be verified. The absence of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional website and legal documentation. Overall, PTV Group presents a credible and trustworthy online presence aligned with their business domain.

Z

ZOLAR GmbH

zolar.de

0

ZOLAR GmbH operates a professional platform connecting customers in Germany with local experts for solar energy solutions including photovoltaic systems, balcony power plants, wallboxes, and solar storage. The company maintains a strong market position supported by a vetted installer network and recognition in press and comparison portals. Technically, the website is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, and optimized for performance, mobile, and SEO. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy and cookie policies are present and GDPR compliant. Overall, the website reflects a mature digital presence with high trustworthiness and user experience.

B

Buena GmbH

home.ht

0

Buena GmbH operates a modern property management platform focused on the German real estate market. The company offers digital-first property management services including condominium and rental management, supported by proprietary AI-driven software. With over 65,000 managed units and a strategy of acquiring existing property management firms, Buena positions itself as a consolidator in a fragmented market. The website is professionally designed, mobile-optimized, and provides comprehensive service information and customer testimonials, enhancing trust and user experience. Technically, the site uses modern frameworks such as Next.js and React, hosted on Vercel, with Google Tag Manager for analytics. Security posture is generally good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is missing, which raises concerns about domain registration transparency and reduces trustworthiness. Overall, the site is credible and professional but would benefit from improved transparency and security practices.

B

BASIC thinking GmbH

basicthinking.de

0

BASIC thinking GmbH operates a well-established German online magazine focused on technology, social media, marketing, business, and green energy topics. The website serves a broad audience of tech enthusiasts and business professionals, delivering daily tech news and insights via a newsletter with over 10,000 subscribers. The company maintains a strong market position as a trusted media source with consistent branding and professional content quality. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted on kasserver.com nameservers. It employs modern web technologies and optimization techniques, including mobile responsiveness and SEO best practices. Analytics and advertising are implemented transparently with Google Analytics, Jetpack Stats, and Advanced Ads, alongside affiliate marketing. From a security perspective, the site uses HTTPS with a valid SSL certificate and anonymizes IPs in analytics. Privacy and cookie policies with consent mechanisms are present, indicating GDPR compliance. However, explicit security headers and incident response policies are not clearly published, representing areas for improvement. Overall, the website is accessible without WAF or blocking mechanisms, has no detected vulnerabilities, and maintains a high level of trustworthiness. Strategic recommendations include enhancing security header implementation, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen security posture.

E

Ecosia GmbH

ecosia.org

0

Ecosia GmbH operates a green search engine that dedicates 100% of its profits to climate action, primarily through tree planting projects worldwide. The company positions itself as a transparent and environmentally responsible alternative to mainstream search engines, with a strong community of over 20 million users. Their business model leverages advertising revenue to fund sustainability initiatives, supported by monthly financial reports and certifications such as B-Corporation. The website is professionally designed, mobile-optimized, and provides clear navigation and calls to action to engage users in their mission. Technically, Ecosia employs modern web technologies including JavaScript frameworks (likely Vue.js), Google Tag Manager for analytics, and Didomi for consent management, ensuring compliance with privacy regulations such as GDPR. The site is served over HTTPS with strong security headers, reflecting a mature security posture. No critical vulnerabilities or exposed sensitive data were detected, and the site includes mechanisms for cookie consent and privacy transparency. Security-wise, Ecosia demonstrates good practices with HTTPS enforcement, consent management, and transparent data processing disclosures. However, no explicit incident response or security policy pages were found, suggesting an opportunity to enhance security communication. The lack of publicly listed contact emails or phone numbers may limit direct user support but aligns with privacy considerations. Overall, Ecosia presents a trustworthy and credible online presence with a clear environmental mission, solid technical infrastructure, and good security hygiene. The absence of WHOIS data limits domain registration insights but does not detract from the evident legitimacy and professionalism of the site. Strategic recommendations include enhancing incident response visibility, maintaining up-to-date technology stacks, and possibly providing more direct contact channels for security or support inquiries.

Adblock Plus is a well-established ad blocking software product developed by eyeo GmbH, founded in 2006. It offers free, open source browser extensions and mobile apps that block intrusive ads, tracking, and malware, while supporting websites through an Acceptable Ads program. The company holds a strong market position as the leading ad blocker with a broad user base across major browsers and platforms. The website is professionally designed, mobile optimized, and provides comprehensive privacy and cookie policies with user consent mechanisms. Technically, the site uses modern JavaScript and web standards, with good performance and accessibility. Security posture is strong with HTTPS enforced and error logging implemented, though some improvements like DNSSEC and security headers could be added. No critical vulnerabilities or suspicious content were detected. Overall, the site and business demonstrate high credibility and trustworthiness.

E

eyeo GmbH

eyeo.com

0

eyeo GmbH is a technology company specializing in ad-filtering solutions that enhance advertising effectiveness and user experience. Established since 1999, the company targets advertisers, publishers, retailers, tech partners, and end users with its innovative technology. The website reflects a mature digital presence with comprehensive privacy and security policies, supported by a cookie consent mechanism via OneTrust. The company maintains active social media channels on LinkedIn, Twitter, and YouTube, reinforcing its market position and engagement. Technically, the website employs modern JavaScript frameworks and libraries, including htmx, Google Analytics, and Sentry for error monitoring. The site is hosted with a reputable registrar and uses UltraDNS for DNS services, though DNSSEC is not enabled. Performance and mobile optimization are good, with accessibility and SEO features well implemented. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, but could be improved by enabling DNSSEC and adding explicit security headers. Security-wise, the site shows good practices such as encrypted connections, cookie consent, and error monitoring. However, there is no public vulnerability disclosure or security.txt file, and incident response contact details are not explicitly provided. No vulnerabilities or exposed sensitive data were detected. Overall, the risk profile is low, with recommendations to enhance DNS security and transparency. In summary, eyeo.com is a professional, secure, and privacy-conscious website representing a legitimate and established technology business. Strategic improvements in DNS security and incident response transparency would further strengthen its security posture and trustworthiness.

M

myVeeta

myveeta.com

0

myVeeta operates as a technology company specializing in Talent Relationship Management (TRM) systems, offering a SaaS platform to help companies build and manage talent pools efficiently. The website presents a professional and modern interface, targeting HR professionals and companies interested in innovative recruiting and employer branding solutions. The platform emphasizes ease of use, mobile communication, and long-term talent engagement, supported by client testimonials from notable companies. Technically, the site is built on WordPress with Elementor and integrates common analytics and marketing tools. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and explicit policies are lacking. The absence of WHOIS data for the domain is a concern and should be investigated to confirm domain legitimacy. Overall, the site is credible and well-positioned in its niche but would benefit from enhanced privacy and security disclosures.

V

VALID Digitalagentur GmbH

validserver.de

0

VALID Digitalagentur GmbH is a Berlin-based digital agency specializing in digital strategy, UX design, development, and performance marketing. The company targets businesses seeking comprehensive digital transformation and customer experience consulting. Their website presents a professional and consistent brand image with clear service offerings and a focus on methodical digitalization. Technically, the site is built on the Contao CMS platform, employs Matomo analytics with privacy-conscious configurations, and integrates Cookiebot for GDPR-compliant cookie management. The website is well-structured, mobile-optimized, and provides a good user experience, although explicit contact details like emails and phone numbers are not directly visible, relying instead on contact forms.

S

Schindler Deutschland AG & Co. KG

schindler-kontakte.de

0

Schindler Deutschland AG & Co. KG operates a regional contact management portal designed primarily for internal use or partner access. The website facilitates contact searches and user login, supporting the company's operational needs in the transportation sector, specifically elevators and escalators. The site is professionally branded and consistent with Schindler's corporate identity, targeting employees and partners rather than the general public. Technically, the website employs modern web technologies including React and Material-UI, providing a responsive and user-friendly interface. However, SEO optimization is minimal, and accessibility features are basic. Performance is moderate, with no major issues detected in the HTML structure or scripts. From a security perspective, the site uses HTTPS and secure login forms but lacks visible security headers such as CSP or HSTS. No cookie consent mechanism is present, which may be a GDPR compliance gap. No incident response or vulnerability disclosure information is provided. The WHOIS data indicates a legitimate domain with no privacy protection, consistent with corporate transparency. Overall, the website is a secure and professional internal tool with room for improvement in security headers, privacy compliance, and SEO. The risk level is moderate with no critical vulnerabilities detected, but enhancements in security posture and compliance would strengthen trust and resilience.

N

NetFederation GmbH

netfed.de

0

NetFederation GmbH is a German-based consulting company specializing in digital corporate communication. Their services include website consulting, digital presence solutions, and providing annual benchmarking reports to offer market insights. The website targets business clients seeking expert advice on digital communication strategies. Technically, the website is built on WordPress and integrates modern tools such as Google Tag Manager, Cookiebot for cookie consent, and Piwik PRO for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and presents a professional design with consistent branding. Security-wise, the website enforces HTTPS and uses cookie consent management, but lacks visible security headers and explicit security or incident response policies. No critical vulnerabilities or suspicious content were detected. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

Deutsche Telekom AG operates the website www.telekom.de, providing a comprehensive range of telecommunications services including mobile telephony, fixed-line internet, fiber optic connections, and TV offerings under the MagentaTV brand. The website targets both private and business customers in Germany, positioning itself as a leading telecommunications provider with a strong market presence. The content is professionally presented, with clear navigation and a focus on current offers and customer services. Technically, the site employs modern web technologies such as React, uses advanced analytics and tag management tools like Dynatrace and Tealium, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS enforced and consent mechanisms for GDPR compliance implemented, although explicit privacy and security policies are not prominently linked. Overall, the domain registration data aligns well with the business identity, indicating a legitimate and trustworthy online presence.

E

EQS Group GmbH

eqs.com

0

EQS Group GmbH is a well-established German technology company founded in 2000, specializing in compliance, corporate governance, ESG reporting, and investor relations solutions. Their business model focuses on providing SaaS platforms and services to regulated companies and compliance professionals, positioning themselves as a trusted partner in the European market. The website reflects a mature digital presence with professional design, comprehensive content, and strong SEO implementation. Technically, the site leverages WordPress CMS, modern lazy loading scripts, HubSpot forms, and Google Tag Manager for analytics and marketing, indicating a robust and modern infrastructure. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance mechanisms, though explicit security policies and incident response details are not publicly disclosed. Overall, the site is trustworthy and professional, but the absence of WHOIS data for the domain reduces domain registration transparency and trust slightly.

P

Pegasus Spiele

pegasus.de

0

Pegasus Spiele is a German-based game publisher and retailer specializing in board games, card games, role-playing games, and related accessories. The company maintains a well-structured e-commerce website built on the Shopware platform, offering a broad product catalog and community engagement through events and news. The website demonstrates a good level of technical maturity with modern technologies, mobile optimization, and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit privacy policies and security headers are lacking. The absence of direct contact information and formal security policies suggests room for improvement in transparency and compliance. Overall, the site is professional, trustworthy, and serves a general audience with family-friendly content.

D

Deep Print Games

deep-print-games.com

0

Deep Print Games is a specialized board game publisher based in Berlin, Germany, founded in 2020 by experienced industry professionals. The company focuses on developing and publishing innovative board games, managing the entire process from prototype to global distribution through partnerships. Their website reflects a professional and consistent brand image, targeting board game enthusiasts and retailers. Technically, the site is built on WordPress with WooCommerce, employing modern plugins and analytics tools, and demonstrates good mobile optimization and SEO practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though lacking a dedicated security policy or incident response information. Overall, the website is trustworthy, compliant with GDPR, and provides a positive user experience.

S

SIMBA-DICKIE-Vertriebs-GmbH & Co. KG

zoch-verlag.com

0

Zoch Verlag operates an official e-commerce platform specializing in games for children and adults, offering a wide range of family and board games. The company is part of the Simba-Dickie Group, a reputable manufacturer and distributor in the toy industry. The website presents a professional and user-friendly shopping experience with clear navigation, multilingual support, and detailed terms and conditions. The business model focuses on direct online sales with manufacturer-backed service and fast delivery options.

S

SIMBA-DICKIE-Vertriebs-GmbH & Co. KG

noris-spiele.de

0

Noris Spiele operates as an official e-commerce platform specializing in games for children and adults, under the umbrella of the Simba Dickie Group. The website offers a broad catalog of games, emphasizing manufacturer service, fast shipping, and free returns, positioning itself as a trusted brand store in the retail toy and game market. The site targets families and game enthusiasts, providing a professional shopping experience with clear product categories and promotional deals. Technically, the site leverages modern web technologies including Vue.js, Google Analytics, and Usercentrics for consent management, ensuring a contemporary and responsive user interface. Security measures such as HTTPS, security headers, and IP anonymization in analytics are implemented, reflecting a solid security posture. However, the absence of a dedicated privacy policy page and incident response contact details are minor compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing privacy disclosures, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen compliance and user trust.

Schmidt Spiele is a well-established German game manufacturer with a history dating back to 1907. The company offers a broad range of products including puzzles, games for all ages, and wooden toys under multiple brands. Their website reflects a medium-sized retail business with a focus on family-friendly entertainment products. Technically, the site is built on the Contao CMS and uses common JavaScript libraries such as jQuery and Slick Carousel. The site includes multilingual support and basic accessibility features. Security-wise, the site implements cookie consent mechanisms and restricts third-party scripts until consent is given, but lacks explicit security headers and incident response information. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

H

HABA

haba-play.com

0

HABA is a well-established German company specializing in the retail of children's toys and games, including high-quality wooden toys. The website serves as a direct sales platform offering products, spare parts, and game instructions, targeting families and children. The company maintains a strong brand presence with consistent branding and comprehensive content. Technically, the website is built on modern frameworks such as Angular and SAP Commerce Cloud's Spartacus storefront, ensuring a responsive and performant user experience. Security measures are robust, with HTTPS enforced and multiple security headers implemented, although a dedicated security policy page is absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy. Overall, the website is professional, secure, and trustworthy, with minor areas for improvement in transparency and incident response readiness.

S

SMV Schätz mal Verlag GmbH

schaetz-mal.de

0

SMV Schätz mal Verlag GmbH operates the website schaetz-mal.de, a German e-commerce platform specializing in quiz and party games. The company offers a variety of colorful editions and products designed for entertainment and social gatherings, targeting a broad audience interested in fun and interactive games. The business is positioned as a niche publisher and retailer with a focus on engaging, family-friendly content. Technically, the website is built on WordPress with WooCommerce and uses modern plugins and themes such as Themify Shoppe and Borlabs Cookie for cookie consent management. The hosting appears to be provided by NetCologne, consistent with the German market focus. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are lacking. Tracking technologies include Google Analytics and Facebook Pixel, with consent denied by default, indicating some privacy awareness. Overall, the site is professional, well-branded, and trustworthy, though it would benefit from publishing clear privacy and security policies to enhance compliance and user trust.