Security Directory

S

Studierendenwerk Hamburg

campus-event-catering.de

0

Campus Event Catering, operated by Studierendenwerk Hamburg, provides specialized catering services for events, conferences, and business functions primarily targeting academic institutions and corporate clients in Germany. The website presents a professional and consistent brand image with clear service offerings and references from reputable universities and research centers. Technically, the site is built on TYPO3 CMS with Bootstrap and jQuery, and employs Google Analytics for visitor tracking. While the site is mobile responsive and well-structured, some technical improvements are recommended, including updating JavaScript libraries and enhancing security headers. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks explicit security policies and incident response information. Overall, the website is trustworthy, compliant with GDPR, and suitable for its target audience.

S

Study in Germany

study-in-germany.de

0

Study in Germany is an educational information platform targeting international students interested in pursuing higher education in Germany. The website provides comprehensive resources including study programs, visa guidance, and cultural information, positioning itself as a key resource in the education sector focused on Germany. Technically, the site employs modern JavaScript frameworks such as Vue.js and Nuxt.js, ensuring a responsive and user-friendly experience with good SEO and accessibility features. Security-wise, the site enforces HTTPS and includes standard security headers, but lacks a publicly available security policy or incident response contact, which could be improved to enhance trust. The absence of WHOIS data reduces domain trustworthiness, though the website content and structure indicate a legitimate and professional operation. Overall, the site scores well in content quality and security posture but could benefit from improved business credibility transparency and explicit security disclosures.

A

allotropia software GmbH

zetaoffice.net

0

ZetaOffice is a technology-focused company offering a LibreOffice-based office suite accessible via web browsers, desktop, and soon mobile platforms. The company operates under allotropia software GmbH, based in Hamburg, Germany, and positions itself as a niche provider enabling businesses to leverage LibreOffice with options for self-hosting or CDN deployment. Their business model combines open source software with paid professional support and CDN services. Technically, the website employs modern web technologies and integrates privacy-friendly analytics, but lacks some advanced security headers and cookie consent mechanisms. The security posture is moderate with room for improvement in DNS security and explicit security policies. Overall, the website is professional, trustworthy, and well-aligned with the company's business goals.

S

StatusPal UG

statuspal.eu

0

StatusPal UG operates a professional SaaS platform specializing in hosted status pages and incident communication solutions targeted primarily at CTOs, DevOps/SRE teams, and support engineers. The company positions itself as a reliable and trusted provider with a focus on automating incident reporting, multi-language support, and seamless integrations. The website demonstrates a strong market presence with endorsements from notable customers and a comprehensive feature set including monitoring, notifications, and a powerful API. Technically, the site is built on modern frameworks such as Next.js and React, with good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though privacy and terms of service pages are missing, representing compliance gaps. Overall, the site is trustworthy and professionally maintained, with a moderate risk profile primarily due to limited WHOIS transparency and missing legal pages.

C

CasinoSpot.de

casinospot.de

0

CasinoSpot.de is a German online casino guide established in 2018, offering detailed comparisons, reviews, and exclusive bonuses for online casinos. The website targets German-speaking adults interested in online gambling and positions itself as a leading casino guide in Germany. Technically, the site is built on WordPress, uses Cloudflare for DNS and CDN services, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized with a professional design and clear navigation. Security-wise, the site enforces HTTPS and uses Cloudflare, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the site is legitimate and trustworthy but could improve transparency on privacy and security policies.

C

Casinobernie

casinobernie.com

0

Casinobernie operates as a German-language online casino comparison and review platform, targeting players in Germany seeking trustworthy information about online casinos. The website offers extensive reviews, bonus comparisons, and payment method overviews for over 500 online casinos, positioning itself as a reliable affiliate partner in the gambling sector. Technically, the site is built using modern frameworks such as Astro, employs structured data for SEO, and integrates tracking tools like Google Tag Manager and Zaraz for analytics and marketing. Security-wise, the site enforces HTTPS and follows good practices but lacks explicit security headers and visible privacy or cookie policies, which are important for compliance and user trust. The absence of WHOIS data for the domain is a notable concern, potentially indicating recent registration or privacy protection, which slightly diminishes trust. Overall, the site is professional, well-structured, and optimized for its target audience but should improve transparency and compliance documentation.

T

Travis CI

travis-ci.community

0

Travis CI Community is an official community forum platform for users of Travis CI, a continuous integration service. The site provides categorized discussion areas for announcements, environment-specific questions, integrations, deployment, language support, enterprise discussions, and product feedback. The platform is built on Discourse, a modern forum software, and is hosted with CDN support for performance. The domain is registered to Travis CI in Germany, consistent with the business identity. The website is well-structured, mobile-optimized, and provides a good user experience for its target audience of developers and CI users. However, it lacks visible privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security posture is generally good with HTTPS and domain transfer protection, but DNSSEC is not enabled and no explicit security or incident response policies are published.

C

Center for the Cultivation of Technology gGmbH

techcultivation.org

0

The Center for the Cultivation of Technology is a small non-profit organization based in Germany that provides fiscal sponsorship and backend organizational support for international Free Software and open source projects. Their services include donation processing, budget management, asset stewardship, and expert knowledge sharing, enabling developers to focus on software development while the Center handles administrative and financial tasks. The website clearly communicates their mission and services, targeting open source projects and developers seeking a legal and financial host. Technically, the website is built using the Hugo static site generator with Bootstrap 3, jQuery, and Font Awesome for styling and interactivity. The site is mobile-optimized and presents a professional design with clear navigation. However, some technical aspects such as DNSSEC are not enabled, and no advanced security headers were detected. The site does not appear to use analytics or tracking scripts, indicating a privacy-conscious approach. From a security perspective, the website uses HTTPS and has domain transfer protections in place, but lacks published privacy and cookie policies, security policies, and incident response information. No direct contact emails or phone numbers are provided, only contact forms. These gaps reduce privacy compliance and security transparency. No suspicious or malicious content was detected, and the domain registration data is consistent with the organization's claims. Overall, the website is trustworthy and professional but would benefit from improved privacy compliance, enhanced security headers, and more transparent contact and security policy information to strengthen user trust and regulatory adherence.

The Northern Institute of Technology Management (NIT) is a private business school affiliated with the Hamburg University of Technology (TUHH) in Germany. It specializes in offering MBA and Master's degree programs in Technology Management and Business Analytics & AI, targeting engineers and technology professionals globally. The institution emphasizes practice-oriented education with international faculty and a strong focus on leadership and innovation. The website reflects a mature digital presence built on the HubSpot CMS platform, featuring modern design, mobile responsiveness, and comprehensive content. Security posture is solid with HTTPS and Content-Security-Policy headers, though additional security headers could enhance protection. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. The absence of WHOIS data limits domain trust assessment, but the website's professional branding, accreditation, and academic partnerships strongly indicate legitimacy.

S

Studierendenwerk Hamburg

stwhh.de

0

Studierendenwerk Hamburg is a non-profit public institution supported by the city of Hamburg, providing comprehensive services to over 73,000 students and higher education institutions. Their offerings include student housing, financial aid, counseling, gastronomy, family services, and international student support. The website is built on TYPO3 CMS and employs Matomo analytics for privacy-conscious user tracking. The site demonstrates good technical maturity with fast performance, mobile optimization, and clear navigation. However, explicit privacy policies, terms of service, and contact information are not clearly presented in the accessible content, which could be improved for better compliance and user trust. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks some security headers and vulnerability disclosure mechanisms.

T

Technische Universität Hamburg (TU Hamburg)

stuhhdium.de

0

Technische Universität Hamburg (TU Hamburg) is a reputable public university specializing in engineering and technology education with a strong emphasis on addressing climate change challenges. The website provides comprehensive information about their Bachelor and Master programs, dual study options, research focus, and student life. It targets prospective students, including international candidates, offering detailed program descriptions and support resources. The university maintains an active presence on major social media platforms and integrates modern web technologies to deliver a professional and engaging user experience. The site is GDPR compliant with a clear cookie consent mechanism and privacy policy. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the website reflects a trustworthy and well-established educational institution with a strong digital presence.

Meetingcpp GmbH operates Meeting C++, a specialized platform dedicated to the C++ programming community. The website serves as a hub for news, blogs, events, and an annual conference, positioning itself as a key player in the niche C++ ecosystem. The business model revolves around community engagement, event organization, training, job postings, and advertising, targeting C++ developers worldwide. The company has a strong social media presence and a decade-long history, reinforcing its market position. Technically, the website is built using standard web technologies (HTML, CSS, JavaScript) without a detected CMS, indicating a custom or static site approach. Hosting appears to be managed by Cronon GmbH. The site demonstrates moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. No analytics or tracking scripts were detected in the provided content. From a security perspective, the site lacks visible security headers and cookie consent mechanisms, and DNSSEC is not enabled on the domain. There is no published security policy or incident response information. However, the domain is well-registered with consistent WHOIS data and no privacy protection, supporting legitimacy. Overall, the security posture is moderate but could be improved significantly. The overall risk is low given the nature of the site as an informational and community platform with no sensitive data collection evident. Strategic recommendations include implementing security headers, enabling DNSSEC, adding privacy and cookie policies with consent mechanisms, and publishing security and incident response policies to enhance trust and compliance.

M

Meine Sternstunde | H. Everding

meine-sternstunde.de

0

Meine Sternstunde is a small, Germany-based educational service focused on astronomy and space exploration. The website offers detailed information about astronomy-themed events such as star walks, lectures, and astro-cafés, targeting general audiences including families, children, and local communities. The business model revolves around event ticket sales and donations, positioning itself as a niche local provider with a strong emphasis on educational content and community engagement. Technically, the website employs a modern and responsive design using Bootstrap 5 and jQuery, with additional libraries like Fancybox for image galleries. Hosting is provided by a German hosting company (kasserver.com). The site performs moderately well with good mobile optimization and clear navigation, though accessibility and SEO optimizations are basic. From a security perspective, the site lacks visible security headers and does not provide a cookie consent mechanism or detailed GDPR compliance information. No incident response or vulnerability disclosure policies are present. The WHOIS data is minimal but consistent with the business profile, showing no suspicious patterns. Overall, the security posture is moderate but could be improved by implementing standard security best practices. The overall risk assessment is low, with no indications of malicious or adult content. Strategic recommendations include enhancing security headers, adding cookie consent and privacy compliance details, and publishing a vulnerability disclosure policy to improve trust and compliance.

V

Verband Forschender Arzneimittelhersteller (vfa)

vfa-patientenportal.de

0

The vfa-Patientenportal is a German healthcare information portal operated by the Verband Forschender Arzneimittelhersteller (vfa), focusing on patient education, health topics, and fostering discourse on pharmaceutical and medical issues. The site targets patients, caregivers, and health-interested individuals in Germany, providing expert interviews, thematic articles, and a patient advisory board. Technically, the site uses modern web technologies including Bootstrap and jQuery, with Google Tag Manager for analytics. It is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enforced but lacks some security headers and explicit privacy and cookie policies. No direct contact emails or phone numbers are exposed, only a contact form is available. WHOIS data is minimal but consistent with the site's German healthcare focus. Overall, the site is trustworthy and professionally maintained but could improve privacy compliance and security best practices.

The Krankenhausgesellschaft Nordrhein-Westfalen e. V. (KGNW) is a non-profit association representing approximately 340 hospital operators and their umbrella organizations in the German state of Nordrhein-Westfalen. The organization advocates for hospital interests in political, financial, and public domains, providing services such as quality management, data analysis, and event organization. The website reflects a professional and consistent brand presence targeting hospital stakeholders and policymakers within NRW. Technically, the site uses modern web technologies including React (via preact compatibility), jQuery, and Slick Carousel, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly detailed. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements, serving as a credible digital platform for the healthcare sector in NRW.

Technische Universität Hamburg (TUHH) is a recognized technical university in Hamburg, Germany, offering education and research services primarily in engineering and technology fields. The website is professionally designed using TYPO3 CMS, featuring comprehensive content targeting students, researchers, and staff. It provides detailed navigation for study programs, research, international affairs, and university administration. The technical infrastructure is modern with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, though some improvements in security headers and incident response transparency are recommended. Privacy compliance is good with a comprehensive data protection page, but cookie consent mechanisms are absent. Overall, the site reflects a trustworthy and credible educational institution with a strong digital presence.

G

GLAMUS GmbH

glamus.de

0

GLAMUS GmbH is a medium-sized German technology company specializing in digital concepts and modern web technologies, including content management systems and communication applications. The company targets businesses and organizations seeking to modernize and future-proof their web presence. Their website reflects a professional and consistent brand image with clear service offerings and client references from reputable organizations. Technically, the site uses a modern JavaScript stack with jQuery and related libraries, providing good mobile optimization and accessibility features. Security posture is adequate with HTTPS usage and no visible vulnerabilities, though improvements are recommended in security headers and incident response transparency. Privacy compliance is supported by a comprehensive GDPR-compliant privacy policy, but lacks a cookie consent mechanism. Overall, the website is trustworthy and well-maintained, with a legitimacy score of 85 based on domain and content analysis.

B

Berlin Partner für Wirtschaft und Technologie GmbH

businesslocationcenter.de

0

The Business Location Center website serves as the official economic development portal for Berlin, targeting companies, investors, startups, and scientific institutions interested in establishing or expanding their presence in Berlin. It offers comprehensive information on sectors, services, and location advantages, positioning itself as a central hub for business facilitation in the region. The site is professionally designed with consistent branding and rich content, supporting a positive user experience and clear navigation. Technically, the website is built on the TYPO3 CMS platform, utilizing jQuery and third-party libraries for galleries and consent management. The site demonstrates good mobile optimization and accessibility, though performance is moderate. Consent management is implemented via Comply-App, indicating attention to privacy compliance, although explicit privacy and terms of service pages were not detected in the provided content. From a security perspective, the site uses HTTPS and includes consent management scripts but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or suspicious patterns were detected, but improvements in security headers and transparency are recommended to enhance trust and compliance. Overall, the website is a credible and professional platform with a strong business focus and good technical foundation. Strategic enhancements in privacy disclosures, security policies, and contact transparency would further strengthen its security posture and user trust.

Robert Schröder GmbH & Co. KG is a well-established German manufacturing company specializing in precision turned parts and quality tools, with a history dating back to 1947. The company focuses on complex machining and cold forming parts, serving industrial clients with a reputation for quality, supported by TÜV certification. The website is built on an older TYPO3 CMS platform and uses jQuery libraries, indicating a moderately mature technical infrastructure. While the site is functional and professionally designed, it shows signs of aging technology and basic mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks modern security headers and explicit incident response policies. Overall, the website is trustworthy and compliant with GDPR, but could benefit from technical modernization and enhanced security practices.

A

Avrios

avrios.com

0

Avrios is a cloud-based fleet management software provider targeting fleet managers and administrators primarily in Europe. The platform offers comprehensive tools for digitizing fleet data, automating workflows, managing compliance, and reducing costs. The website demonstrates a mature digital presence with multi-language support, professional design, and clear calls to action such as free trials and demos. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, and privacy-focused analytics tools like Usermaven and Plausible, combined with Usercentrics for consent management. Security posture is strong with HTTPS, GDPR compliance, and TÜV-certified data protection, though explicit incident response and vulnerability disclosure policies are not publicly found. The domain WHOIS data is not publicly available, likely due to privacy protection, which is common for SaaS businesses. Overall, Avrios presents a credible and professional business with a solid technical and security foundation.

SecureDataService is a small German company specializing in data protection consulting and providing external data protection officer services. The website is professionally designed, targeting businesses and organizations seeking GDPR compliance and data protection expertise. Key services include audits, training, and proprietary tools like PrivazyPlan® and TOM-Guide®. The company maintains a clear contact presence with phone, email, and physical address, enhancing trust. Technically, the website is built on the Contao Open Source CMS platform, utilizing jQuery and mediaelement.js for interactive content. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. No advanced security headers were detected, and no cookie consent mechanism is present, indicating areas for compliance improvement. From a security perspective, the site uses HTTPS and avoids exposing sensitive data or vulnerable libraries. However, the absence of security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for maturity growth. The WHOIS data is minimal but consistent with a legitimate registration, though more registrant details would improve trust. Overall, the website scores well in content quality and business credibility but should enhance privacy compliance and security posture to meet higher standards. Strategic improvements in cookie consent, security headers, and transparency documents are recommended to strengthen compliance and trust.

F

FITKO (Föderale IT-Kooperation)

fitko.de

0

FITKO (Föderale IT-Kooperation) is a central coordinating and networking organization for digitalization initiatives within the German public administration. Based in Frankfurt am Main, it supports the IT-Planungsrat by implementing its decisions and fostering cooperation among federal, state, and municipal levels. The website reflects a professional government entity with clear communication, transparency, and a focus on digital transformation in public services. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and implements a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence aligned with its governmental mission.

B

BWI GmbH

bwi.de

0

BWI GmbH is a large, professional IT service provider focused on digital transformation and IT infrastructure for the Bundeswehr and German federal government. The company positions itself as a key partner for complex IT systems and stable operations, targeting government agencies and IT professionals. The website is built on TYPO3 CMS and integrates a modern technology stack including multiple analytics and marketing tools, with a strong emphasis on privacy compliance and user consent. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR standards.

Bosch Digital, operated by Bosch.IO GmbH, is a key digital business driver within the Bosch Group, focusing on IT consulting, digital transformation, and AIoT solutions. The company supports Bosch units globally with digital project implementation and hosts the Bosch ConnectedWorld event to promote digital innovation. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting digital professionals and potential employees. Technically, the site uses WordPress with modern frameworks like React and integrates Google Tag Manager for analytics. Security posture is strong with HTTPS and no visible vulnerabilities, though security headers could be enhanced. Privacy and cookie policies are comprehensive and GDPR compliant. WHOIS data is missing, which slightly impacts domain trust, but the overall branding and external references confirm legitimacy.

R

Robert Bosch GmbH

bosch-connected-world.com

0

Bosch ConnectedWorld is a globally recognized hybrid event platform organized by Robert Bosch GmbH, focusing on AI, IoT, and digital transformation. It serves as a nexus for industry leaders, technology practitioners, and innovators to share knowledge, network, and explore new business models enabled by digital technologies. The website reflects a mature digital presence with comprehensive content, professional design, and consistent branding aligned with Bosch's corporate identity. Technically, the site is built on WordPress with modern tools like WPBakery and Google Tag Manager, ensuring a responsive and engaging user experience. Security posture is strong with HTTPS enforcement and domain transfer protections, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high business credibility and technical maturity, supporting Bosch's market leadership in technology innovation events.

F

freieFarbe e.V.

freiefarbe.de

0

freieFarbe e.V. is a small non-profit organization based in Germany dedicated to promoting color communication and freeing color from constraints. The website serves as an educational platform targeting professionals and enthusiasts interested in color standards and communication. It offers resources and advocacy services related to color communication. Technically, the website is built on WordPress with a modern plugin ecosystem including Real Cookie Banner for GDPR-compliant consent management, and uses reputable third-party services such as Google Fonts, YouTube, and Vimeo. The site is hosted on kasserver.com and employs HTTPS with good security headers, indicating a solid security posture. However, no explicit security policy or incident response information is published, which could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and safe for general audiences.

dtp studio is a small, specialized media design and print prepress company based in Oldenburg, Germany, with over 25 years of experience. They provide web design, print prepress services, and develop color software products, including founding the non-profit freieFarbe e.V. Their market position is niche with a focus on quality and expertise in color management and media design. The website is professionally designed with clear navigation and responsive layout, using modern frontend technologies such as Bootstrap and jQuery. Hosting is provided via kasserver.com. Security posture is moderate with no visible security headers and unknown SSL configuration, but no critical vulnerabilities or exposed sensitive data were found. Privacy compliance is partial, with a privacy policy linked but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and safe for general audiences.

ByteHive operates the PlayoutBee website, offering software that enables users to add videos to livestreams by converting PCs or Raspberry Pi devices into Hyperdeck-compatible playout systems. The company targets livestreamers and video producers with a niche product sold via online licensing through Gumroad. The website is professionally designed with a clear focus on its technology product and includes features such as API access and Bitfocus Companion compatibility. The technical infrastructure leverages Bootstrap for frontend styling, Gumroad for e-commerce, and Pirsch for analytics, hosted behind Cloudflare. The site is mobile optimized and provides a good user experience, though accessibility and SEO are basic. From a security perspective, the website uses HTTPS (implied by Cloudflare hosting), but lacks DNSSEC and security headers, which lowers its security posture. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is limited to an email address, with no phone or physical address provided. No incident response or security policy information is published, which could impact trust and readiness for security events. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy compliance measures. The domain registration is consistent with the business claims, showing a domain age appropriate for a company founded in 2020. No WAF or blocking mechanisms were detected, allowing full content access for analysis.

The Libre Graphics Meeting 2025 website represents an established annual conference focused on Free/Libre and Open Source graphics software. The event targets developers, artists, and community members interested in libre graphics technologies. The website provides comprehensive event information, sponsor announcements, and community engagement channels, reflecting a well-positioned niche event with a history dating back to 2005. Technically, the site uses modern web standards including ES modules and Leaflet.js for interactive maps, hosted on a domain registered with NameCheap and using tuxfamily.net nameservers. The site is accessible, mobile-optimized, and professionally branded, though it lacks some compliance elements such as privacy and cookie policies. Security posture is moderate with domain transfer protection but missing DNSSEC and security headers. Overall, the site is trustworthy and functional but could improve privacy compliance and security hardening.

Bosch Digital is a key division within the Bosch Group focused on driving digital and AIoT business transformation. They provide consulting and implementation services to Bosch units worldwide, fostering an agile, customer-centric culture that supports innovation and digital talent growth. The company also hosts Bosch ConnectedWorld, a leading event for digital transformation. Technically, the website is built on WordPress with modern frameworks like React and uses SEO and analytics tools such as Yoast SEO and Google Tag Manager. Security posture is solid with HTTPS and no visible vulnerabilities, though additional security headers and explicit policies could enhance protection. The WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency, but the website's professional presentation and official Bosch branding support its legitimacy. Overall, Bosch Digital presents a strong digital presence aligned with its corporate parent, Robert Bosch GmbH.

K

KAMAX

kamax.com

0

KAMAX is a globally operating manufacturing company specializing in the development and production of high-strength fasteners, complex cold-formed parts, precision components, and assemblies primarily for the automotive and mobility industries. The company positions itself as a pioneer in its sector with a presence across Europe, America, and Asia, serving industrial clients with tailored solutions. The website is professionally designed using TYPO3 CMS, featuring multilingual support and modern web technologies including consent management and Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and privacy compliance evident through comprehensive privacy and cookie policies. However, the absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and external partner links suggest a credible business. No direct contact emails or phone numbers were found in the HTML content, and no explicit security or incident response policies are published, indicating areas for improvement.

C

Cyber Innovation Hub der Bundeswehr

cyberinnovationhub.de

0

The Cyber Innovation Hub der Bundeswehr is a government-affiliated innovation unit focused on driving digital transformation and innovation within the German Bundeswehr. It acts as a bridge between the military and the startup ecosystem, fostering collaboration to solve military challenges and accelerate modernization. The website reflects a professional and consistent brand presence, targeting Bundeswehr personnel, startups, reservists, and civilian applicants. The business model centers on innovation facilitation, intrapreneurship, and reservist engagement, positioning itself as a pioneering digital innovation unit in Europe.

D

Deutscher Steuerberaterverband e.V.

dstv.de

0

The Deutscher Steuerberaterverband e.V. (DStV) is a well-established professional association representing tax advisors in Germany. The website serves as an information hub for members and interested parties, offering updates on tax law, professional standards, and association activities. The organization is positioned as a key player in the German tax advisory sector with a focus on member services, education, and advocacy. The site targets tax professionals and related stakeholders, providing relevant content and resources in German. Technically, the website employs a modern but straightforward technology stack centered around jQuery and related plugins for UI and interactivity. It uses Matomo for privacy-conscious analytics and implements a robust cookie consent mechanism aligned with GDPR requirements. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured navigation. From a security perspective, the site enforces HTTPS and respects user privacy by disabling cookies until consent is given. However, it lacks some advanced security headers and explicit security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected. Overall, the security posture is solid but could be improved with additional headers and transparency. The risk assessment is low given the professional nature of the site, absence of suspicious content, and compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security.txt file, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

G

govdigital eG

govdigital.de

0

govdigital eG is a German cooperative focused on providing sovereign IT solutions for the public sector, emphasizing digital sovereignty and modern digital public services. The organization operates a collaborative platform for public IT service providers and supports initiatives such as the Deutsche Verwaltungscloud, cybersecurity solutions, and AI ecosystems. The website reflects an active and professional organization with a medium-sized membership base and a clear government sector focus. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use, and employs HTTPS with no visible security blocking mechanisms. Security posture is solid but could be improved by adding explicit security headers and incident response disclosures. Privacy compliance is good with a comprehensive privacy policy and GDPR consent on newsletter forms, though a cookie consent mechanism is missing. Overall, the site is trustworthy, professional, and well-maintained, serving a specialized government IT audience.

V

Vimcar

vimcar.com

0

Vimcar is a German-based company specializing in digital vehicle management solutions, including digital logbooks, GPS tracking, and fleet management software. The company targets self-employed individuals, fleet managers, and tax consultants, offering automated and tax-compliant vehicle documentation services. Vimcar holds reputable certifications such as TÜV and KPMG and is recommended by DATEV and DStV, positioning itself as a trusted player in the transportation software market. The website is professionally designed, mobile-optimized, and uses modern technologies like Webflow CMS, Google Tag Manager, and Usercentrics for consent management. Security posture is solid with HTTPS and data redaction enabled, though some security headers and explicit policies are missing. Overall, Vimcar demonstrates a mature digital presence with good privacy compliance and business credibility.

The website www.privacy-regulation.eu is a specialized platform providing a readable and annotated version of the EU General Data Protection Regulation (GDPR) text. It targets businesses and individuals seeking to understand and implement GDPR compliance, offering tools such as cross-references, corrections, and a dossier functionality under the PrivazyPlan® brand. The business operates as a small entity based in Germany, with clear contact information and a focused niche in GDPR compliance support. Technically, the site is built on simple HTML and CSS without modern JavaScript frameworks or CMS detected. The performance and mobile optimization are basic but functional. SEO is adequately addressed through meta tags and multilingual support. However, there is no evidence of advanced security headers or HTTPS status from the provided data, indicating room for improvement in technical security measures. From a security perspective, the site lacks visible security headers, cookie consent mechanisms, and incident response information. The WHOIS data is privacy protected, which is reasonable given the business focus, but limits transparency. No vulnerabilities or tracking technologies were detected, and the content is safe for general audiences. Overall, the site demonstrates moderate security posture but would benefit from enhanced HTTPS implementation and privacy compliance features. The overall risk assessment is moderate with a legitimacy score of 75. Strategic recommendations include implementing HTTPS, adding security headers, publishing a cookie consent banner, and providing incident response contacts to improve trust and compliance.

I

Input Objects GmbH

inputobjects.eu

0

Input Objects GmbH is a small technology company based in Berlin, Germany, specializing in SaaS product development and bespoke software consulting services. Their website presents a professional image with clear branding and a focus on delivering innovative software solutions to business clients. The company emphasizes long-term partnerships and continuous improvement in their offerings. Technically, the website is built using modern frameworks such as Nuxt.js and PrimeVue, with Tailwind CSS for styling, resulting in a fast and mobile-optimized user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. Privacy compliance is partially addressed via an external privacy policy, but lacks a cookie consent mechanism. Overall, the site is trustworthy and well-maintained, suitable for its target audience of businesses seeking software development expertise.

L

Lukas Hermann

stagetimer.io

0

Stagetimer.io is a technology company founded in 2020 by Lukas Hermann in Germany, offering a remote-controlled countdown timer service primarily targeting video producers, event organizers, and presenters. The platform provides a browser-based fullscreen timer controlled remotely, with additional features such as messaging, agenda sharing, and API integrations with popular production tools. The business model is SaaS with free and paid tiers, trusted by over 21,000 users including major global brands. Technically, the website uses modern frameworks like Astro and Firebase, hosted on Google Cloud with Cloudflare DNS, delivering fast and mobile-optimized performance. Security posture is strong with HTTPS, security headers, and privacy compliance, though DNSSEC is not enabled and no public vulnerability disclosure is found. Overall, the site is professional, trustworthy, and well-positioned in its niche.

H

Heinlein Support GmbH

jpberlin.de

0

JPBerlin is a well-established German web hosting provider specializing in secure, privacy-focused services for politically engaged individuals and organizations. Operated by Heinlein Support GmbH since 1989, it offers web hosting, mailing lists, email services, and domain registration with a strong emphasis on open source technology, GDPR compliance, and eco-friendly hosting. The website is professionally designed using Drupal 10, with good mobile optimization and clear navigation. Security practices include HTTPS enforcement and spam/virus protection, though explicit security policies and incident response contacts are not publicly detailed. The domain registration data is consistent and supports the legitimacy of the business. Overall, JPBerlin presents a trustworthy and niche-focused hosting provider with a solid technical and business foundation.

O

OSBA – Open Source Business Alliance

osb-alliance.de

0

The OSBA – Open Source Business Alliance is a German non-profit organization dedicated to promoting digital sovereignty through open source software. The website serves as a hub for advocacy, member engagement, and dissemination of news and events related to open source and digital sovereignty in Germany and Europe. The organization targets public sector entities, enterprises, and open source communities, positioning itself as a leading voice in the open source ecosystem. The site is professionally designed, well-structured, and regularly updated with relevant content. Technically, the website is built on WordPress using the Enfold theme and several plugins to support event management and user interaction. It employs modern web technologies and is optimized for mobile devices with good SEO practices. Security-wise, the site uses HTTPS and follows basic best practices but lacks explicit security headers and incident response information. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional image consistent with its mission and audience.

O

Open Source Business Alliance (OSBA)

open-source-wettbewerb.de

0

The Open Source Wettbewerb website represents a professional initiative focused on promoting and awarding innovative Open Source software projects within public administrations across Germany. The competition is organized by the Open Source Business Alliance (OSBA) and supported by notable partners such as SUSE, Capgemini, and govdigital eG. The site effectively communicates its mission to foster digital sovereignty and innovation in the public sector through Open Source solutions. Technically, the site is built on a modern WordPress platform using Elementor and Astra theme, with GDPR-compliant cookie and privacy policies implemented. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be enhanced. No critical vulnerabilities or blocking mechanisms were detected, and the site maintains a high level of professionalism and trustworthiness.

R

Runder Tisch Reparatur e.V.

runder-tisch-reparatur.de

0

Runder Tisch Reparatur e.V. is a German non-profit organization dedicated to promoting the right to repair and fostering a culture of repair in Germany. The website serves as a hub for advocacy, networking, event information, and educational resources related to repair initiatives. It targets consumers, repair professionals, and policy makers interested in sustainability and repair rights. The organization positions itself as a key player in the repair advocacy space within Germany, leveraging partnerships and community engagement to advance its mission. Technically, the website is built on WordPress with common plugins for forms, events, and forums, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and includes cookie consent mechanisms, reflecting good privacy compliance. Security posture is adequate with HTTPS enforced, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and aligned with its non-profit mission, with no signs of malicious activity or content blocking.

R

Right to Repair Europe

repair.eu

0

Right to Repair Europe is a non-profit coalition advocating for the right to repair products across Europe, emphasizing sustainability and longer product lifespans. The organization targets consumers, repairers, and policymakers to promote legislative and systemic changes. Their website serves as an information hub and campaign platform, featuring news updates, resources, and a newsletter signup to engage supporters. Technically, the site is built on WordPress with modern SEO and analytics tools, hosted by domainfactory GmbH. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and Google Tag Manager but lacks explicit security headers and public security policies. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and a consent mechanism. Overall, the website is trustworthy, professional, and aligned with its advocacy mission.

D

Digitale Gesellschaft e.V.

digitalegesellschaft.de

0

Digitale Gesellschaft e.V. is a German non-profit organization founded in 2010 dedicated to advocating for digital fundamental rights and consumer protection in the digital space. The organization engages its target audience of netpolitically interested individuals and activists through monthly events, campaigns, and educational content. Their business model relies on donations, memberships, and grants, positioning them as a recognized entity within the digital rights advocacy sector in Germany. Technically, the website is built on WordPress with a modern theme and plugins, hosted by OVH, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in security headers and formal security policies. Privacy compliance is good with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and safe for general audiences.

C

Computertruhe e. V.

computertruhe.de

0

Computertruhe e. V. is a German non-profit association dedicated to refurbishing donated computers and hardware to provide free devices to financially disadvantaged individuals and other non-profit organizations. Founded as a project in 2015 and established as a registered non-profit in 2016, it operates across multiple German regions with a volunteer membership base. The website reflects a clear mission focused on social inclusion, environmental sustainability, and community support. Technically, the site is built on WordPress with modern plugins and uses privacy-conscious analytics (Matomo). It is hosted by a green energy provider, indicating environmental awareness. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. Contact is primarily via web forms, with no direct emails or phone numbers published. Overall, the site is professional, trustworthy, and well-aligned with its non-profit mission.

B

Bits & Bäume

bits-und-baeume.org

0

Bits & Bäume is a German non-profit coalition advocating for sustainable and socially just digitalization. Founded in 2018, it unites 13 organizations from environmental, climate, digital, development policy, and scientific sectors, alongside a growing community. The website serves as a hub for community engagement, events, publications, and political advocacy focused on digital sustainability and social justice. The organization targets activists, academics, and policy stakeholders interested in shaping digital transformation for the common good. Technically, the website is built using the Eleventy static site generator with modern CSS frameworks (likely Tailwind CSS), delivering fast performance and good mobile optimization. The site is well-structured with clear navigation and professional design, though accessibility features are basic. No analytics or tracking scripts were detected, reflecting a privacy-conscious approach. Security posture is solid with HTTPS enforced and domain transfer protections in place; however, DNSSEC is not enabled and no explicit security headers or policies are published. Privacy compliance is partially met with a privacy policy present but lacking a cookie consent mechanism. Contact information is limited to email addresses without phone numbers or physical addresses. Overall, the website is trustworthy, professional, and aligned with its non-profit advocacy mission. Recommendations include enabling DNSSEC, adding security headers, publishing security and incident response policies, and implementing a cookie consent mechanism to enhance GDPR compliance.

A

Die besten Online Casinospiele Deutschlands für 2025

automatenspielex.com

0

AutomatenspieleX.com is a German-language online platform specializing in providing information, demos, and reviews of online casino games, particularly slot machines and casino bonuses. Established in 2013, the site targets German-speaking users interested in online gambling entertainment. The business model appears to be affiliate and informational, offering users access to free game demos and curated casino bonus offers. Technically, the site is built on WordPress with Yoast SEO plugin, uses Cloudflare for DNS and likely CDN services, and integrates Google Tag Manager for analytics. The website demonstrates good SEO practices and mobile optimization but lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled and domain transfer lock, but no DNSSEC or security headers detected. Overall, the site is accessible without WAF blocking and shows consistent domain registration data, indicating legitimacy. However, the absence of privacy and cookie policies and contact information reduces trust and compliance scores.

ByteHive is a small technology-focused business offering unique solutions for unique problems, as indicated by their website content. The site is minimalistic, with limited information and a single contact email, suggesting a small or early-stage company. The website uses Cloudflare for DNS and likely hosting, indicating a basic level of infrastructure maturity. The technical implementation is simple, relying on standard HTML, CSS, and JavaScript with no detected CMS or advanced frameworks. Security posture is minimal, with no visible security headers or privacy policies, and no cookie consent mechanisms, which indicates room for improvement in compliance and security best practices. Overall, the website is accessible and functional but lacks comprehensive business and security information, which impacts trust and credibility.

T

The Document Foundation

documentfoundation.org

0

The Document Foundation is a German charitable foundation dedicated to the development and promotion of free office software, primarily LibreOffice, and the Document Liberation Project. It operates as a community-driven, meritocratic entity with a strong emphasis on open source values and corporate sponsorship. The foundation provides certification, professional support, and fosters a global volunteer community. The website reflects a mature digital presence with clear governance and community engagement information. Technically, the site is built using the Hugo static site generator, employs privacy-conscious analytics (Matomo), and demonstrates good mobile optimization and accessibility. However, some security best practices such as security headers and cookie consent mechanisms are missing, which could be improved to enhance user trust and compliance. WHOIS data is unavailable, likely due to privacy protection, but the overall legitimacy is supported by consistent branding and community trust. Strategic recommendations include enhancing security headers, publishing security policies, and improving privacy compliance mechanisms.

P

Phosh

phosh.mobi

0

Phosh.mobi is a website dedicated to an open source user interface project for mobile phones, primarily targeting Linux mobile users and developers. The project is relatively new, founded in 2022, and operates within the technology sector focusing on mobile UI development. The website serves as an informational and community hub linking to code repositories, social platforms, and documentation. Technically, the site is a static website built with Hugo and uses modern web technologies including CSS and JavaScript with FontAwesome icons. It is well-structured, mobile-optimized, and fast loading, though accessibility features are basic. Security posture is moderate; the domain is protected with clientTransferProhibited status but lacks DNSSEC and security headers. No privacy or cookie policies are present, and no contact information is provided, which impacts compliance and trust. Overall, the site is professional and trustworthy within its niche but could improve in security and compliance documentation.