Security Directory

Z

Zoll (German Customs Administration)

zoll.de

0

The website www.zoll.de is the official online portal of the German Customs Administration, providing comprehensive information and services related to customs, taxes, travel regulations, vehicle tax, and career opportunities. It serves a broad audience including private individuals, businesses, and prospective employees. The site is built on the Government Site Builder CMS, reflecting a standardized government web infrastructure with consistent branding and professional design. The technical infrastructure is solid, with responsive design, good accessibility, and moderate performance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and cookie consent mechanisms are areas for improvement. Overall, the site demonstrates high trustworthiness and business credibility as a government entity.

The Region Sønderjylland-Schleswig website serves as an informational platform for a regional government cooperation entity focused on bridging the German-Danish border region. It provides comprehensive details about organizational structure, working fields, press releases, and cross-border initiatives. The site targets citizens, local authorities, employers, and media representatives interested in regional collaboration and public services. The business model is centered on public administration and regional cooperation, positioning itself as a key facilitator of cross-border dialogue and projects. Technically, the website employs a mature but somewhat traditional technology stack including jQuery, Matomo for analytics, and Monsido for accessibility and heatmap tracking. The CMS appears to be webEdition, a specialized content management system. The site is moderately optimized for performance and mobile devices, with good SEO practices and basic accessibility features. Hosting details are not explicit but the domain uses ns14.net nameservers, indicating professional hosting. From a security perspective, the site uses HTTPS and disables cookies in analytics to enhance privacy. However, it lacks explicit security headers and published security or incident response policies. No vulnerability disclosure or security.txt files are present. The privacy and cookie policies are present and GDPR compliant, reflecting a good privacy posture. No critical vulnerabilities or suspicious elements were detected. Overall, the website is trustworthy, professional, and well-aligned with its public service mission. It demonstrates a solid privacy and compliance stance but could improve in security transparency and technical modernization. The risk level is low, with recommendations focusing on enhancing security headers, incident response readiness, and adding terms of service documentation.

I

INFOBEST

infobest.eu

0

INFOBEST operates as a regional network providing multilingual, free, and independent information and advisory services on cross-border issues in the Upper Rhine region, covering Germany, France, and Switzerland. The website serves residents and cross-border workers with topics including social security, employment, taxes, family benefits, and relocation. The organization appears to be a public or non-profit entity with a clear regional focus and no commercial intent. Technically, the website is built on TYPO3 CMS, uses modern web technologies including jQuery and Google Analytics with privacy-conscious configurations such as IP anonymization and cookie consent mechanisms. The site is accessible, bilingual, and well-structured, with good navigation and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie management. WHOIS data is unavailable due to EURid privacy restrictions, but the domain appears legitimate and consistent with the website's public service nature. Overall, the website demonstrates a good balance of usability, compliance, and security for its informational mission.

B

Branchentag Windenergie NRW

nrw-windenergie.de

0

Branchentag Windenergie NRW is a well-established professional event organizer focused on the wind energy sector in North Rhine-Westphalia, Germany. The website serves as a comprehensive landing page for their annual congress and networking event, targeting industry leaders, decision makers, and exhibitors. The event offers a broad range of services including expert talks, workshops, exhibition stands, and networking opportunities, positioning itself as a leading platform in the regional wind energy market. Technically, the website is built on WordPress using modern tools like Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. Overall, the site reflects a professional and credible business with clear contact information and event details.

V

vgbe

vgbe.energy

0

vgbe.energy is a professional energy sector association website focused on providing industry events, seminars, publications, and technical services primarily in Germany. The site targets energy professionals and companies involved in various energy technologies such as hydrogen, wind, photovoltaics, and carbon capture. The technical infrastructure is based on WordPress with modern plugins and frameworks, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal policies. The absence of WHOIS registrant data reduces trust slightly but the website content and external references support legitimacy. Overall, the site is well-positioned in its niche but could improve transparency and security compliance.

W

Wärmewende durch Geothermie

waermewende-durch-geothermie.de

0

The website 'Wärmewende durch Geothermie' represents a collaborative initiative of geothermal energy companies and municipal/private energy suppliers in Germany. It promotes the use of deep geothermal energy for district heating and green electricity production as a key solution for the country's CO2-neutral heating goals. Supported by industry partners and research institutes like Fraunhofer, the initiative targets municipalities, energy providers, government bodies, and the general public interested in sustainable energy solutions. The site features comprehensive content, partner logos, testimonials, and active social media engagement, reflecting a mature and professional business presence. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including popular plugins such as Smart Slider 3, Contact Form 7, and Complianz GDPR for privacy compliance. The hosting is provided by rzone.de, and the site is well-optimized for mobile devices with good SEO practices. Performance is moderate, with no critical technical issues detected in the HTML content. From a security perspective, HTTPS is enforced, and cookie consent mechanisms are implemented, indicating good privacy compliance. However, security headers like Content-Security-Policy and HSTS are not evident in the HTML, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found, but regular updates and security audits are recommended to maintain a strong security posture. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, with an overall AI score of 81. There are no signs of WAF blocking or malicious content. Strategic recommendations include enhancing security headers, maintaining plugin updates, and adding a security.txt file for vulnerability disclosures to further strengthen trust and security.

I

Initiative Energieeffizienz-Netzwerke

effizienznetzwerke.org

0

The Initiative Energieeffizienz-Netzwerke website represents a German government-backed program aimed at promoting energy efficiency through collaborative networks among companies. The initiative supports businesses in reducing energy consumption and costs by facilitating knowledge exchange and providing resources. The website is well-positioned as a trusted source in the energy sector within Germany, targeting companies interested in sustainable energy practices. Technically, the site is built on WordPress 6.8.2, leveraging modern libraries such as jQuery, Bootstrap, and Cookiebot for cookie consent management. The infrastructure supports good mobile optimization, accessibility, and SEO best practices, reflecting a mature digital presence. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes standard security headers, demonstrating a solid security posture. The integration of Cookiebot ensures GDPR compliance and transparent cookie management. However, the absence of explicit incident response contacts and security.txt files suggests areas for improvement in vulnerability disclosure and incident handling. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of malicious activity or content blocking. Strategic recommendations include implementing a security.txt file, publishing incident response contacts, and continuous monitoring of third-party scripts to maintain security and compliance.

B

Bundesverband Kraft-Wärme-Kopplung e.V. (B.KWK)

bkwk.de

0

The Bundesverband Kraft-Wärme-Kopplung e.V. (B.KWK) is a German non-profit association dedicated to promoting the expansion of combined heat and power technology in Germany, Europe, and globally. Their mission focuses on resource conservation through simultaneous conversion of primary energy into electricity, heat, and cooling, alongside climate protection by utilizing CO2-neutral fuels. The website is primarily targeted at stakeholders in the energy sector, including policymakers, industry participants, and environmental advocates. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a moderate level of digital maturity with good SEO practices and mobile optimization. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the site is accessible without WAF or blocking mechanisms, presenting a safe and professional online presence with moderate trustworthiness.

B

Bundesverband Fernwärmeleitungen e.V. (BFW e.V.)

bfwev.de

0

The Bundesverband Fernwärmeleitungen e.V. (BFW e.V.) is a German industry association founded in 1984, dedicated to promoting innovation, quality, and networking within the district heating sector. The organization offers certified training, examinations, expert forums, and technical support to manufacturers, planners, and service providers. It holds a central position in the German district heating industry with a strong network of members and partners. The website reflects a professional and consistent brand image, targeting industry professionals and stakeholders. Technically, the site is built on the Webflow CMS platform, leveraging modern web technologies such as Google Fonts and jQuery, hosted on Amazon CloudFront, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enabled and no exposed sensitive data, but lacks some security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the site is trustworthy and well-maintained but could improve in privacy and security transparency.

A

AGFW

fw703.de

0

AGFW is a German association dedicated to promoting energy efficiency in heating, cooling, and combined heat and power systems, with a strong focus on district heating and climate protection goals. The website provides technical guidelines, calculation tools, and supports climate-relevant projects, targeting municipalities and energy sector stakeholders. The organization is positioned as a reputable industry association with established standards and collaborations with academic and funding institutions. Technically, the website is built on TYPO3 CMS, leveraging Bootstrap and jQuery for frontend responsiveness and Google Tag Manager for analytics. The site is moderately performant, mobile-optimized, and implements a cookie consent mechanism aligned with GDPR requirements. However, some security headers and explicit security policies are not evident. From a security perspective, the site uses HTTPS and has implemented cookie consent with opt-in/out capabilities, but lacks visible incident response contacts and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. The WHOIS data is minimal but does not raise immediate concerns, though more registrant transparency would improve trust. Overall, the website is professional, trustworthy, and compliant with basic privacy and security standards. Strategic improvements in security headers, incident response transparency, and contact information would enhance its security posture and user trust.

A

AGFW - Der Energieeffizienzverband für Wärme, Kälte und KWK e.V.

fw704.de

0

AGFW is a German energy efficiency association specializing in heating, cooling, and combined heat and power systems. The website provides regulatory guidance, technical standards, and calculation tools to support subsidy applications under the KWKG legislation. The organization collaborates with regulatory bodies such as BAFA and expert committees to maintain up-to-date and practical resources for industry stakeholders. The website targets energy professionals and project developers seeking compliance and funding support. Technically, the site is built on TYPO3 CMS with Bootstrap and jQuery, integrating Google Tag Manager and Google Maps with user consent. The site is mobile-optimized and structured for good user experience, though some accessibility features are basic. Performance is moderate, and SEO is basic but functional. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks visible HTTP security headers and explicit incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR. Overall, the website is professional, trustworthy, and well-suited to its niche audience. Strategic improvements in security headers and incident response transparency would enhance its security maturity and trustworthiness.

A

AGFW e.V.

agfw-shop.de

0

AGFW e.V. operates a specialized e-commerce webshop focused on providing technical literature, brochures, guidelines, and industry statistics primarily for the energy sector, with a strong emphasis on district heating technologies. The platform targets professionals and members within this niche industry, offering differentiated pricing for members and non-members. The website is built on the Magento platform, utilizing common JavaScript libraries such as jQuery, Prototype.js, and Bootstrap, indicating a moderately modern technical infrastructure. Hosting is managed via Giordano Online, as inferred from the nameservers. Security posture is adequate with HTTPS enforced and form validation scripts present; however, the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and security best practices. Overall, the site presents a professional and trustworthy front with clear business focus but could enhance privacy compliance and security transparency.

A

AGFW - Der Energieeffizienzverband für Wärme, Kälte und KWK e.V.

agfw-regelwerk.de

0

AGFW is a German industry association specializing in standardizing minimum requirements across the heat and cold supply sector. The website serves as a professional portal providing access to technical rulebooks and regulatory documents primarily for members and subscribers. The organization positions itself as a key standard-setter in the energy sector, supporting operational companies with up-to-date technical guidelines. Technically, the site employs modern web technologies including Bootstrap, jQuery, and FontAwesome, with Google Analytics and Tag Manager integrated for analytics and marketing purposes. The site is hosted on servers associated with giordano-online.net and uses HTTPS with privacy-conscious configurations such as IP anonymization. Security posture is moderate with good practices like CSRF tokens and cookie consent, though lacking explicit security policies or incident response contacts. Overall, the website is professional, well-structured, and compliant with GDPR, targeting industry professionals and members. No blocking or WAF mechanisms were detected, and no adult or questionable content is present.

A

Agentur2020

2020.de

0

Agentur2020 is a small German agency specializing in sustainability and sustainability communication services. The website presents a professional and well-structured digital presence built on WordPress with the Divi theme and enhanced by Yoast SEO for search optimization. The technical infrastructure includes Cloudflare for DNS and CDN services, and integration with HubSpot and Google Tag Manager for marketing and analytics purposes. Security posture is adequate with HTTPS enabled and Cloudflare usage, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, the website is functional and professional but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

M

MANDARIN CARE

mandarin-care.de

0

MANDARIN CARE is a specialized digital transformation partner focused on the healthcare and social economy sectors in Germany. The company offers services including employer branding, digital recruiting, digital communication, marketing, and IT services tailored to organizations such as social welfare associations, healthcare providers, municipalities, and public administration. Their market position is that of a niche provider with a professional and consistent brand presence supported by a well-structured and mobile-optimized website. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrating comprehensive cookie consent management aligned with GDPR requirements. The site demonstrates good SEO, accessibility, and performance characteristics, with active use of analytics and marketing tools such as Google Analytics and Facebook Pixel, managed through a granular consent mechanism. From a security perspective, the site enforces HTTPS and integrates consent-based tracking controls but lacks explicit security policy documentation and incident response contacts. No critical vulnerabilities or suspicious patterns were detected, though security headers could be improved. WHOIS data is minimal but consistent with the business identity, supporting legitimacy. Overall, the website and business demonstrate a mature digital presence with strong privacy compliance and professional credibility. Strategic improvements could focus on enhancing security transparency and incident response readiness to further strengthen trust and compliance.

S

sweet & salty

sweet-and-salty.de

0

sweet & salty is a specialized German agency focused on content marketing and corporate journalism, delivering high-quality, data-driven storytelling services to businesses with a strong value orientation. The company positions itself as a premium provider emphasizing handcrafted content and deep research, targeting clients who seek meaningful and sustainable content strategies. Technically, the website is built on Drupal 10, employs Google Tag Manager for analytics, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and anti-bot measures, though lacks explicit security headers and incident response information. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site presents a professional and trustworthy digital presence with moderate technical and security maturity.

M

MANDARIN

mandarin.digital

0

MANDARIN is a German one-stop agency specializing in marketing, digital transformation, employer branding, and IT services. The company positions itself as a holistic partner for change and transformation, targeting businesses seeking to improve their digital presence and internal processes. The website reflects a mature digital infrastructure using modern technologies such as Next.js and React, with excellent mobile optimization and SEO practices. Security posture is strong with HTTPS, security headers, and a comprehensive cookie consent mechanism. Privacy compliance is well addressed with a detailed privacy policy and GDPR-aligned cookie consent. The WHOIS data is privacy protected, which is common for agencies, and does not raise immediate concerns. Overall, MANDARIN presents as a professional and trustworthy digital agency with a solid market position and a broad service portfolio.

W

WEtell

wetell.de

0

WEtell is a small German telecommunications company specializing in sustainable and fair mobile phone services. Founded in 2020, it positions itself as an ethical alternative in the telecom market, emphasizing climate neutrality, data privacy, and community engagement. The website reflects this mission with comprehensive content, clear navigation, and strong branding consistency. Technically, the site uses modern JavaScript frameworks such as Alpine.js and Swiper.js, integrates Matomo for analytics, and employs Cookiebot for GDPR-compliant cookie consent management. Security posture is solid with HTTPS enforced and CSRF protections in place, though formal security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and well-optimized for mobile and accessibility. The domain WHOIS data aligns well with the business claims, showing no suspicious patterns. Recommendations include publishing explicit security policies and incident response information to further enhance trust and compliance.

V

Voelkel

voelkel.bio

0

Voelkel is a well-established German company specializing in the production and sale of organic and Demeter-certified juices, ginger shots, and oat drinks. The company emphasizes sustainability, fair trade, and regional sourcing, positioning itself strongly in the organic beverage market. The website is professionally designed, multilingual, and provides comprehensive information about products and company values. Technically, the site runs on WordPress with modern plugins and themes, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although no explicit security policy or incident response page was found. WHOIS data is limited due to the .bio TLD restrictions, but the domain appears legitimate and consistent with the business. Overall, Voelkel demonstrates a mature digital presence with good compliance and trust indicators.

T

thermondo

thermondo.de

0

thermondo.de is a German website offering heating installation and replacement services, positioning itself as a convenient local heating contractor with fixed pricing and comprehensive consulting including subsidy support. The website targets homeowners and property owners in Germany seeking heating system upgrades. Technically, the site employs modern marketing and analytics tools such as Visual Website Optimizer, Google Tag Manager, Usercentrics CMP for consent management, and Facebook and Microsoft advertising pixels, indicating a mature digital marketing infrastructure. The website is accessible, uses HTTPS, and implements cookie consent mechanisms, but lacks publicly visible privacy policies, terms of service, and explicit security or incident response policies. No contact information is found in the provided HTML content, which may impact user trust and compliance. Overall, the security posture is moderate with room for improvement in transparency and policy publication.

T

TheDive GmbH

thedive.com

0

TheDive GmbH is a German-based consultancy specializing in organizational development and sustainable business models. Their website targets organizations interested in adapting to modern work environments with services including change management, leadership development, and agile methodologies. The company positions itself as a niche player focused on sustainability and adaptability in business. Technically, the website employs modern JavaScript, CSS, and third-party services such as Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized with good SEO practices but lacks visible security headers and explicit contact information, which could be improved. Security posture is moderate with no detected vulnerabilities but missing some best practices like security headers and incident response contacts. The WHOIS data is missing, raising some concerns about domain legitimacy, though the professional site content and compliance with privacy regulations mitigate this risk. Overall, the site is functional and professional but would benefit from enhanced transparency and security hardening.

R

Rinn Beton- und Naturstein GmbH

rinn.net

0

Rinn Beton- und Naturstein GmbH is a German company specializing in concrete and natural stone products for garden and property landscaping, with a history spanning over 100 years. The website presents a professional and well-structured digital presence using TYPO3 CMS, featuring comprehensive product information and a clear focus on quality and sustainability. The company targets garden owners, landscapers, and construction professionals, positioning itself as a trusted provider in the landscaping materials sector. Technically, the website employs modern web technologies including Cookiebot for consent management and Google Tag Manager for analytics, ensuring compliance with GDPR and related privacy regulations. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the professional appearance and content quality of the site. Security measures such as HTTPS are implied but security headers and incident response policies are not explicitly found, indicating room for improvement in security posture. Overall, the website is functional, compliant, and trustworthy from a user perspective but requires verification of domain registration and enhancement of security policies to strengthen its risk profile.

P

Profilwerkstatt

profilwerkstatt.de

0

Profilwerkstatt is a small, owner-managed content marketing and creative agency based in the Rhein-Main region of Germany. The company specializes in producing high-quality content across print, digital, film, and campaign media, with a notable focus on sustainability communication. Their market position is that of a trusted regional agency emphasizing effective communication and relationship building to help brands grow. The website reflects a professional and modern digital presence built on WordPress, enhanced with React components and optimized for SEO and accessibility. Security measures include HTTPS, captcha integration on forms, and a comprehensive cookie consent mechanism via Borlabs Cookie, demonstrating good GDPR compliance. While explicit security policies and incident response plans are not published, the site shows no obvious vulnerabilities or exposed sensitive data. Overall, the website is well-designed, user-friendly, and trustworthy, supporting the company's business credibility and digital maturity.

Ö

Ökoring GmbH

oekoring.com

0

Ökoring GmbH operates as a specialized consultant and wholesale supplier of organic food products, targeting natural food retailers, gastronomy, social and educational institutions in Germany. The company emphasizes sustainable and fair supply chains with a focus on regional and global organic products. The website is professionally designed using WordPress and Elementor, incorporating SEO best practices and a comprehensive cookie consent mechanism, reflecting a mature digital presence. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit incident response information. The absence of WHOIS data is a notable transparency gap but does not detract significantly from the overall legitimacy given the professional website and compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and improving WHOIS transparency.

L

Landgut Stober

landgut-stober.de

0

Landgut Stober is a well-established sustainable hospitality and event venue located near Berlin, Germany. The company offers a range of services including conference hosting, weddings, corporate and private events, and accommodation in an eco-friendly and historic setting. The business is recognized for its sustainability certifications and awards, positioning it as a leader in green hospitality in the region. The website is professionally designed, content-rich, and targets corporate clients and event planners seeking environmentally responsible venues. Technically, the site uses modern web technologies and a reputable CMS (Contao), with good mobile optimization and SEO practices. Security posture is solid with HTTPS and some security headers, though improvements like CSP and HSTS are recommended. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

E

easyfeedback

easy-feedback.com

0

easy-feedback.com is a professional online survey platform offering tools for creating questionnaires, forms, and quizzes with an emphasis on GDPR compliance and AI-powered analysis. The website targets businesses and individuals seeking flexible and privacy-conscious survey solutions. The platform is built on WordPress using Elementor and Yoast SEO, hosted by Hetzner Online GmbH, and integrates modern consent management via Cookiebot and analytics through Google Tag Manager. Security posture is solid with HTTPS and cookie consent, though explicit privacy and terms of service pages are missing, representing compliance gaps. The domain is mature and legitimate, supporting the business's credibility.

E

easyfeedback

indivsurvey.de

0

The website indivsurvey.de is a login portal for the easyfeedback survey tool, a SaaS platform focused on survey creation and feedback collection. The business operates primarily in the technology sector, targeting businesses and individuals requiring survey solutions. The site is professionally designed with consistent branding and good user experience, supporting mobile optimization and basic accessibility. The technical infrastructure leverages modern JavaScript libraries, Google Tag Manager for analytics, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and secure form handling, though the absence of explicit security policies and incident response information suggests room for improvement. Overall, the site is trustworthy and functional, with no signs of blocking or WAF interference.

E

Erblotse

erblotse.de

0

Erblotse.de is a German online platform specializing in inheritance and estate planning services. The website offers users tools to create legally compliant testaments, manage inheritance cases, and access expert advice from legal and tax professionals. It holds a strong market position supported by over 100 cooperation partners and excellent customer reviews, including a 5-star rating on Google and recommendations from Finanztip. The platform targets individuals involved in inheritance matters within Germany, providing accessible and user-friendly online solutions. Technically, the site is built on Webflow CMS, hosted on AWS infrastructure, and integrates modern analytics and marketing tools such as Google Analytics, Hotjar, and Facebook Pixel, all managed with user consent via a cookie banner. The website demonstrates excellent design quality, mobile optimization, and SEO practices, contributing to a positive user experience. Security-wise, the site enforces HTTPS and employs reputable third-party services but could improve by explicitly implementing security headers and publishing incident response contacts. Overall, Erblotse.de presents a trustworthy and professional digital presence with a solid security posture and compliance with GDPR requirements.

M

medpublico

med-publico.com

0

medpublico is a specialized full-service agency focused on medical and scientific communication, serving pharmaceutical companies, medical device manufacturers, academic institutions, and professional associations primarily in Germany. The company offers a broad range of services including strategic consulting, medical writing, PR and marketing, creative design, digital solutions, and training through its academy. With over 15 years of experience and a small but expert team, medpublico positions itself as a trusted partner in healthcare communication. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and integrating Google Analytics and Tag Manager for data insights, complemented by a cookie consent mechanism via Borlabs Cookie. Security posture is solid with HTTPS enforced and domain registration protections in place, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is basic, with cookie consent but no visible privacy policy or terms of service in the provided content. Overall, the website is professional, well-branded, and trustworthy, supporting the company's credibility in the healthcare communication sector.

K

Startseite - Konsens Booking

konsens-booking.com

0

Konsens Booking operates as an online hotel booking platform specializing in providing hotel room reservations for attendees of selected events and congresses primarily in the German-speaking DACH region. The website offers curated hotel options linked to various medical and scientific congresses, targeting event participants seeking convenient accommodation solutions. The business model focuses on acting as an intermediary between event attendees and hotel partners, facilitating bookings for niche event markets. The site content is primarily in German with an option to switch to English, indicating a regional focus with some international accessibility. From a technical perspective, the website employs common web technologies including jQuery, Google Analytics, and Google Tag Manager for tracking and analytics. The site is mobile optimized with a responsive design and includes a GDPR-compliant cookie consent mechanism. However, no CMS or hosting provider information is explicitly detectable, and no advanced frameworks are identified. Performance is moderate with good SEO practices evident through meta tags and sitemap inclusion. Security posture shows some strengths such as IP anonymization in analytics and cookie consent compliance, but lacks visible HTTP security headers and publicly available security policies or incident response contacts. The absence of WHOIS registration data raises concerns about domain legitimacy and transparency, although the professional presentation and GDPR compliance suggest a legitimate business operation. No direct contact emails or phone numbers are found on the homepage, with contact presumably via a form on a dedicated contact page. Overall, the website is functional and professional but would benefit from improved transparency regarding domain registration, enhanced security headers, and clearer direct contact information. These improvements would strengthen trustworthiness and security posture, supporting better compliance and user confidence.

B

Bertelsmann Stiftung

zukunftdernachhaltigkeit.de

0

Zukunft der Nachhaltigkeit is a German-language platform operated under the Bertelsmann Stiftung foundation, focusing on sustainability and economic transformation. The website provides research articles, podcasts, and newsletters aimed at professionals and stakeholders interested in sustainable economic systems. It holds a solid market position as a knowledge dissemination project backed by a reputable foundation. Technically, the site is built on WordPress with modern plugins and libraries, ensuring good performance and SEO optimization. Security posture is strong with HTTPS and secure forms, though some security headers and explicit policies are missing. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-maintained, with active social media engagement and clear business credibility.

B

Bertelsmann Stiftung

change-learning.de

0

Change Learning is a German educational project affiliated with the Bertelsmann Stiftung, focusing on transforming the school system into a learning-oriented environment that fosters participation, well-being, and equitable opportunities for children and youth. The website serves as a knowledge platform offering articles, project themes, awards, and publications aimed at educators, policymakers, and stakeholders in education. Technically, the site is built on WordPress with modern optimization plugins and uses HTTPS with moderate performance and good mobile optimization. Security posture is solid with HTTPS and secure forms but lacks explicit security headers and incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and content-rich, with a strong brand association to Bertelsmann Stiftung.

R

reframe[Tech]

reframetech.de

0

reframe[Tech] is a German non-profit project affiliated with the Bertelsmann Stiftung focused on promoting the ethical development and deployment of digital technologies, particularly algorithms and AI, for the common good. The website provides research, policy briefs, educational content, and newsletters targeting political decision-makers, public administration employees, and socially-oriented organizations. The project positions itself as a niche thought leader in ethical AI within Germany. Technically, the site is built on WordPress with modern plugins for SEO and multilingual support, and uses HTTPS with moderate performance and good mobile optimization. Security posture is solid with HTTPS and secure forms but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and content-rich, with moderate user tracking via Etracker analytics.

B

Bertelsmann Stiftung

transforming-economies.de

0

Transforming-economies.de is a professionally maintained blog platform operated by the Bertelsmann Stiftung, a large non-profit foundation based in Germany. The website focuses on the transformation towards a sustainable social market economy, providing research insights, policy analysis, and public engagement content primarily targeted at academics, policymakers, and the interested public. The platform leverages modern web technologies including WordPress, Vue.js, Bootstrap, and Yoast SEO to deliver a high-quality user experience with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in implementing security headers and cookie consent mechanisms. The website demonstrates strong business credibility with consistent branding and professional content, though lacks explicit terms of service and incident response policies. Overall, the site is safe, trustworthy, and well-positioned as a knowledge dissemination platform in the sustainability and economic transformation sector.

J

JessenLenz GmbH

jessenlenz.com

0

JessenLenz GmbH is a medium-sized German technology company specializing in IT infrastructure management, data center services, and enterprise software development. They also operate as an Apple Premium Reseller through a partner site, targeting businesses and educational institutions. The website reflects a professional business presence with clear service offerings and partner affiliations. Technically, the site is built on WordPress with the Astra theme, employing modern web standards and responsive design, though some SEO and accessibility features are basic. Security posture is adequate with HTTPS enforced but lacks advanced security headers and incident response disclosures. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and business-focused but could improve transparency and security practices.

W

Wölfel-Gruppe

dbel.cloud

0

dBEL GmbH + Co. KG is a German-based company specializing in cloud-based acoustic planning software solutions. As a young subsidiary of the Wölfel Group, which has over 50 years of expertise in acoustics and building physics, dBEL leverages scientific data and expert knowledge to provide accessible, professional tools for a broad range of industries including HVAC, event planning, and architecture. The company positions itself as a knowledge platform enabling users to independently plan and optimize acoustic projects efficiently. Technically, the website is built on TYPO3 CMS with modern frameworks like Bootstrap and integrates analytics and consent management tools such as Google Tag Manager, Hotjar, and CCM19. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website is professional, well-structured, and trustworthy, reflecting a mature digital presence aligned with its business goals.

Jahn, Mack & Partner architektur und stadtplanung mbB is a medium-sized German firm specializing in architecture and urban/regional planning. Founded in 2003, the company offers a broad range of services including architectural design, project and funding management, and communication consulting. Their interdisciplinary team and network of specialized partners position them well in the real estate and planning sector. The website reflects a professional image with clear service descriptions and contact information, targeting public and private investors as well as municipal clients. Technically, the website is built on WordPress with a modern theme and plugins, including Contact Form 7 and GDPR-compliant cookie consent mechanisms. Hosting is provided by 1984hosting.com, and the site uses HTTPS with good SSL configuration. Performance and mobile optimization are adequate, though some improvements in accessibility and security headers could be made. From a security standpoint, the site enforces HTTPS and cookie consent but lacks explicit security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows consistent domain registration with no privacy protection, supporting legitimacy. Overall, the security posture is solid but could benefit from enhanced headers and formal policies. The overall risk is low with no signs of malicious activity or content safety concerns. Strategic recommendations include implementing additional security headers, publishing security and incident response policies, and maintaining up-to-date software to ensure ongoing compliance and protection.

W

WTSH Wirtschaftsförderung und Technologietransfer Schleswig-Holstein GmbH

partner-sh.de

0

The website partner-sh.de represents the Partnerprogramm of WTSH Wirtschaftsförderung und Technologietransfer Schleswig-Holstein GmbH, a regional economic development organization focused on promoting Schleswig-Holstein as a prime location for business, work, and living. The platform serves as a network hub for over 600 partner companies and institutions, facilitating collaboration, marketing, and talent acquisition. The site offers job and training portals, partner showcases, and event information, targeting businesses and prospective employees in the region. Technically, the website is built on the gradwerk CMS 6 platform, utilizing modern JavaScript libraries such as jQuery, Slick Carousel, and Tiny Slider for interactive UI components. The site is mobile-optimized, accessible, and SEO-friendly, with a comprehensive cookie consent mechanism and privacy policy compliant with GDPR. Hosting details are consistent with professional standards, and no blocking or WAF interference was detected. From a security perspective, HTTPS is enforced, and cookie consent is properly managed. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly implemented, and no public security policy or incident response information is provided. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website demonstrates a strong business credibility and digital maturity with excellent content quality and user experience. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and compliance.

W

WTSH GmbH

digitalhub.sh

0

DigitalHub.SH, operated by WTSH GmbH, is a government-affiliated initiative focused on promoting digital sovereignty and open source solutions within Schleswig-Holstein's public administration, non-profit, and business sectors. The website serves as a central hub for information, networking, and support services, emphasizing sustainable digital transformation and innovation. The organization positions itself as a key intermediary between the state government, municipalities, and regional digital enterprises, fostering collaboration and knowledge exchange. Technically, the website is built on the gradwerk CMS platform with standard web technologies including HTML5, CSS3, JavaScript, and jQuery. It demonstrates good mobile optimization, accessibility, and SEO practices, though some modern security enhancements like DNSSEC are not yet implemented. The site employs HTTPS and a cookie consent mechanism aligned with GDPR requirements, reflecting a mature approach to privacy compliance. From a security perspective, the site shows a solid baseline with HTTPS and domain transfer protections but lacks explicit security policies or incident response contacts. No critical vulnerabilities or suspicious patterns were detected. The WHOIS data aligns well with the business entity and domain age is appropriate for the organization's recent founding. Overall, DigitalHub.SH presents a professional, trustworthy, and well-structured digital presence supporting its mission. Strategic improvements could include enhancing DNS security, publishing formal security policies, and expanding incident response transparency to further strengthen trust and resilience.

W

WTSH GmbH

wasserstoffwirtschaft.sh

0

The website represents the Landeskoordinierungsstelle Wasserstoffwirtschaft SH, operated by WTSH GmbH, a government-affiliated entity focused on promoting and coordinating the green hydrogen economy in Schleswig-Holstein, Germany. It serves as a regional hub for supporting hydrogen projects, facilitating funding, knowledge transfer, and networking among stakeholders. The site is professionally designed, content-rich, and targeted at businesses, policymakers, and researchers involved in the hydrogen sector. Technically, it uses the gradwerk CMS platform with modern web technologies and demonstrates good mobile optimization and accessibility. Security posture is adequate with HTTPS enforced and domain management best practices observed, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong with clear policies and cookie consent mechanisms. Contact information is complete and transparent, enhancing business credibility. Overall, the site is trustworthy, well-maintained, and aligned with its stated mission.

The website 'Der echte Norden' serves as the official regional marketing and informational platform for Schleswig-Holstein, Germany. It promotes the region's economic sectors such as renewable energy, maritime industry, digital economy, and healthcare, targeting residents, businesses, investors, students, and workforce. The site provides rich multimedia content including videos and podcasts to engage its audience. Technically, it is built on TYPO3 CMS, employs Matomo for analytics with privacy-conscious configurations, and uses a cookie consent mechanism compliant with GDPR. The site is mobile-optimized and accessible with clear navigation and professional design. From a security perspective, the website enforces HTTPS and disables cookies in analytics to enhance privacy. However, it lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or suspicious elements were detected. The WHOIS data is privacy protected, which is common for such public-facing regional websites, and no suspicious registration patterns were found. Overall, the site demonstrates a good security posture and compliance with privacy regulations. The risk assessment is low with no critical issues identified. Strategic recommendations include implementing security headers, publishing security policies, and maintaining up-to-date third-party scripts. The website is trustworthy, professional, and serves its purpose effectively as a regional promotional platform.

C

co2online

co2online.de

0

co2online is a German nonprofit organization providing independent and free energy saving advisory services focused on electricity, heating, and energy-efficient modernization. The website targets private households and individuals interested in climate protection and energy savings. It offers key services such as energy saving tips, funding information, and online energy checks. Technically, the site is built on TYPO3 CMS with modern web technologies and integrates a comprehensive accessibility tool (digi·access) supporting multiple languages, reflecting a strong commitment to inclusivity. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and formal privacy or cookie policies. No contact information or incident response details are found in the provided content, which limits transparency. Overall, the site is professional, trustworthy, and well-structured but would benefit from enhanced privacy compliance and security disclosures.

K

KlimAktiv gemeinnützige Gesellschaft zur Förderung des Klimaschutzes mbH

co2-rechner.de

0

The CO2-Rechner website is an official environmental tool operated by KlimAktiv on behalf of the German Umweltbundesamt (UBA). It provides a comprehensive CO2 footprint calculator that includes multiple greenhouse gases and covers various lifestyle aspects. The site targets private individuals, municipalities, and event organizers, offering detailed calculation tools and educational resources. The platform is well-positioned as a government-backed, scientifically supported service with strong trust signals and consistent branding. Technically, the website employs modern frameworks such as Bootstrap 5 and Alpine.js, integrates advanced charting libraries (AmCharts 5), and uses Klaro for GDPR-compliant cookie consent. Hosting is managed via DomainControl nameservers, and analytics are handled by Matomo with anonymized IP tracking, reflecting a privacy-conscious approach. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and uses secure cookie management. However, no explicit security policy or incident response contact is published, and HTTP security headers are not evident in the provided data. No vulnerabilities or suspicious content were detected. Privacy compliance is strong, with a detailed privacy policy and data protection officer contact provided. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government environmental service. Strategic improvements could include publishing a formal security policy, adding security headers, and establishing a vulnerability disclosure process to further enhance security posture and user trust.

I

i+m NATURKOSMETIK BERLIN

iplusm.berlin

0

i+m NATURKOSMETIK BERLIN is a small German company specializing in natural, fair, organic, and vegan cosmetics. The website serves as an e-commerce platform targeting consumers interested in ethical and natural skincare products. The business appears to be well-established with a domain age since 2014, consistent with its market presence. Technically, the website is built on WordPress, utilizing Yoast SEO for optimization and Google Tag Manager for analytics, indicating a moderate level of digital maturity. Performance and mobile optimization are adequate, though accessibility features could be improved. Security posture is basic with HTTPS enabled but lacking DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but would benefit from improved security and privacy practices.

F

FORSTORY

forstory.de

0

FORSTORY is a small Munich-based film agency specializing in storytelling with a focus on sustainability. The company positions itself as a niche player in the media industry, offering film production, impact films, workshops, and social business consulting. The website is professionally designed with clear navigation and good mobile optimization, reflecting a moderate level of digital maturity. The technical infrastructure includes modern web technologies such as HTML5, CSS3, JavaScript, and integration of Vimeo for video content. Matomo analytics is used for user tracking, indicating some privacy-conscious choices. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and a privacy policy page, which are recommended for compliance and trust. No contact emails or phone numbers are explicitly provided on the site, which may affect user trust and business credibility. WHOIS data is minimal but consistent with the hosting provider, with no suspicious indicators. Overall, the website is safe, professional, and targeted at a general audience interested in sustainability storytelling.

C

crossworks projects GmbH

cw-p.com

0

crossworks projects GmbH is a small German-based event management company specializing in live, digital, and hybrid events. Their website presents a professional image with a clear focus on providing reliable event services from concept to execution. The company targets businesses seeking comprehensive event solutions. Technically, the website is built on WordPress with Yoast SEO and employs Usercentrics for cookie consent management, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly but lacks some accessibility features and explicit privacy and terms of service documentation. Security posture is adequate with HTTPS enabled, but the absence of security headers and incident response information suggests room for improvement. The domain WHOIS data is missing, which raises concerns about domain legitimacy and transparency. Overall, the website is functional and professional but would benefit from enhanced compliance and security disclosures.

CoCreatingFuture UG (haftungsbeschränkt) is a small German company specializing in holistic organizational transformation processes, leveraging the Theory U methodology. The company offers process facilitation, workshops, coaching, and transformation courses aimed at organizations, teams, and individuals seeking sustainable change. Their market position is that of an innovative service provider focused on deep transformation and co-creative future design. The website is professionally designed using WordPress with the Astra theme and includes clear navigation and contact information, reflecting a good level of digital maturity. Technically, the site uses modern web technologies and plugins but lacks some advanced security headers and cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security policy transparency and incident response readiness are recommended. Overall, the website is trustworthy and safe, with no adult or questionable content detected. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security headers, publishing security policies, and enhancing incident response information to improve trust and compliance.

B

ba tax

ba-tax.de

0

ba tax is a digital and agile tax consultancy firm specializing in serving fast-growing technology companies and innovative digital businesses in Germany. The company emphasizes societal value and ecological sustainability, positioning itself as a modern partner for startups and companies in growth or transformation phases. The website reflects a professional and consistent brand image with strong client references and testimonials, indicating a solid market position. Technically, the site is built on WordPress with Elementor and uses modern plugins for SEO and cookie management, showing a good level of digital maturity. Security posture is adequate with HTTPS and cookie consent implemented, but lacks published security policies and incident response information. Overall, the site is trustworthy and professional, though improvements in privacy compliance documentation and security transparency are recommended.

B

Bauck Mühle

bauck.de

0

Bauck Mühle is a German-based company specializing in organic and health food products, including gluten-free and vegan options. Their website is built on TYPO3 CMS and features a professional design with good mobile optimization and clear navigation. The business targets consumers interested in wholesome, organic food products and operates primarily in the retail and e-commerce sectors. The company maintains a moderate market position within the niche organic food market. Technically, the website employs modern technologies such as Google Analytics 4, Google Tag Manager, and Cookiebot for consent management, indicating a mature digital infrastructure. Security-wise, the site uses HTTPS and implements cookie consent mechanisms but lacks explicit security headers and published security policies, which could be improved. Overall, the website is trustworthy, with no signs of blocking or WAF interference, and maintains good privacy compliance through detailed cookie consent dialogs. However, the absence of visible privacy policy and terms of service pages is a notable gap.

B

Bertelsmann Stiftung

bertelsmann-stiftung.de

0

Bertelsmann Stiftung is a well-established non-profit foundation based in Germany, focusing on societal change through projects, studies, and events. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content aimed at a broad audience including policymakers, researchers, and the general public. Technically, the site is built on TYPO3 CMS with modern web technologies and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and basic security headers, though explicit security policies and incident response information are not publicly disclosed. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy and professionally managed, with no signs of malicious activity or vulnerabilities.