Security Directory

A

Akzente4you - Marion Sieber - Webdesign- / Internet Agentur in Offenburg

kuscheluniversum.de

0

Akzente4you is a small, professional internet agency based in Offenburg, Germany, specializing in web design, web development, SEO, and e-commerce solutions primarily for small businesses in the local region. The company offers fixed-price website packages and personalized consulting services, emphasizing responsive and modern website design. Their market position is that of a trusted local service provider with a focus on affordability and quality. Technically, the website is built on WordPress with a modern theme and plugins, including cookie consent management, and is hosted likely by 1&1 IONOS. The site is mobile-optimized and SEO-friendly, with structured data and social media integration. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. Recommendations include enhancing security headers, publishing security policies, and adding a vulnerability disclosure mechanism.

L

Lentiamo s.r.o.

lentiamo.de

0

Lentiamo.de is a professional e-commerce retailer specializing in contact lenses, prescription glasses, sunglasses, and related accessories. The company operates primarily in Germany with a strong European presence through multiple localized domains. The website offers a comprehensive product catalog, customer support, and a user-friendly shopping experience. The business model focuses on direct online sales to consumers, leveraging trusted brands and competitive pricing. The company is positioned as a reputable player in the optical retail market, supported by certifications such as Trusted Shops and high customer satisfaction ratings. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics 4, and Cloudflare for DNS and CDN services. The site is well-optimized for mobile devices, accessible, and SEO-friendly. Security measures include HTTPS enforcement, robust security headers, and secure login forms. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. The security posture is solid, with no detected vulnerabilities or exposed sensitive data. However, the site lacks a dedicated security policy or incident response page, which could enhance transparency and trust. Overall, the website is secure, professional, and compliant, making it a trustworthy platform for consumers. Strategically, Lentiamo.de should consider publishing a formal security policy and vulnerability disclosure to further strengthen its security culture and customer confidence. Regular audits of third-party scripts and continued adherence to privacy regulations will maintain its strong compliance stance.

The website www.estaregistrierung.org is a German-language service focused on assisting travelers from Visa Waiver Program countries with their ESTA (Electronic System for Travel Authorization) applications for entry into the United States. It provides detailed information about the ESTA process, requirements, costs, and FAQs, along with an online application form and status checking service. The site targets German-speaking travelers seeking a streamlined and supported ESTA application experience. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript with jQuery, and integrates third-party services such as Tawk.to for live chat support and Google Analytics for visitor tracking. The site is mobile-optimized and structured for good SEO and user navigation. Security-wise, while HTTPS is implied, the site lacks visible security headers and explicit cookie consent mechanisms, which are areas for improvement. The WHOIS data for the domain is not publicly available, indicating privacy protection, which is common but reduces transparency. Overall, the site presents a professional and trustworthy front for its niche service but could enhance its security posture and privacy compliance to increase user trust and regulatory alignment.

D

Dream Labs

dream-labs.com

0

Dream Labs is a premium escape room provider located in Bad Steben / Hof, Germany, offering immersive and high-end escape room experiences targeted at families and groups. The business is well-positioned in the hospitality sector with multiple prestigious awards and excellent customer reviews, indicating a strong market presence and customer satisfaction. The website is professionally designed using WordPress with a custom theme, providing a rich user experience with multimedia content and clear navigation. However, the absence of privacy and cookie policies and lack of visible contact information on the provided content are notable gaps in compliance and user trust. Security-wise, the site enforces HTTPS but lacks visible security headers and vulnerability disclosure mechanisms, which could be improved to enhance security posture. The WHOIS data is missing or indicates the domain may be unregistered or recently expired, which is inconsistent with the active and professional website presence, warranting further verification. Overall, Dream Labs presents a trustworthy and professional business with room for improvement in privacy compliance and security transparency.

B

Beyond Pixels

beyondpixels.de

0

Beyond Pixels is a German-language entertainment media website focusing on games, movies, manga, and related content. It serves a niche audience interested in various entertainment forms, providing news, reviews, and contests. The site uses WordPress CMS and is supported by Cloudflare DNS services, indicating a modern and reliable technical infrastructure. The presence of a cookie consent mechanism shows some attention to privacy compliance, although no explicit privacy policy or terms of service were found. Security posture is adequate with HTTPS and Cloudflare protection, but could be improved by adding explicit security headers and incident response contacts. Overall, the site is accessible, professionally designed, and targets a general audience without adult content.

The website roemhild.de serves as a minimalistic personal domain dedicated exclusively to email and XMPP chat communications. It does not operate as a commercial business but rather as a private communication channel, emphasizing privacy and voluntary communication. The site explicitly states that no personal data, log files, IP addresses, cookies, or analytics tools are used, reflecting a strong privacy stance. The provision of an OpenPGP key further supports encrypted communication, indicating a privacy-conscious user or owner. From a technical perspective, the website is simple, built with basic HTML and CSS, without any detected CMS, frameworks, or advanced technologies. There are no forms, scripts, or tracking mechanisms, which reduces the attack surface but also limits functionality. The site appears to have moderate performance and basic mobile optimization but lacks SEO and accessibility enhancements. No security headers or HTTPS status were provided, suggesting room for improvement in security hardening. Security-wise, the site demonstrates good privacy practices by not collecting user data and encouraging encrypted communication. However, the absence of formal privacy and cookie policies, security headers, and incident response information indicates gaps in compliance and security posture. The WHOIS data is minimal but consistent with the domain's personal use, showing no suspicious patterns. Overall, the site is low risk but could benefit from improved security and compliance documentation. Strategically, the site is a personal or small-scale communication platform with limited business relevance. Recommendations include implementing HTTPS, publishing formal privacy and cookie policies, adding security headers, and considering incident response contacts to enhance trust and compliance.

T

Traffective GmbH

traffective.com

0

Traffective GmbH is a German-based technology company specializing in digital advertising monetization platforms for publishers, media houses, and website owners. Established in 2009, the company has built a solid market position with over 350 publishers, reaching 45 million unique users monthly and generating 1 billion page impressions. Their platform focuses on maximizing advertising revenue while ensuring compliance with data protection regulations such as GDPR. Key services include programmatic marketing, publisher tools, reporting, and technical setup support. The website reflects a professional and consistent brand image with clear contact channels and multilingual support.

The website www.testdaf.de represents the official platform for the TestDaF examination, a key German language proficiency test for international students and researchers aiming to study or conduct research at German universities. Operated by the organization g.a.s.t., the site offers comprehensive information about the test formats (digital and paper-based), test centers worldwide, registration, and preparation resources. The platform also supports educators and test centers with training and licensing services. The website is well-positioned as a trusted educational service with recognized certifications such as the ALTE Q-Mark, indicating high quality and reliability in language testing. Technically, the site is built on TYPO3 CMS with modern web technologies, ensuring good performance, mobile responsiveness, and accessibility. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms, although some advanced security headers and explicit security policies are not publicly disclosed. Overall, the site demonstrates a professional, trustworthy, and user-friendly digital presence aligned with its educational mission.

T

Termine.de AG

termine.de

0

Termine.de AG operates a German-language online platform focused on event discovery and appointment booking services. The website positions itself as a leading calendar and event service in Germany, offering users the ability to find events, book appointments online, and create or share calendars. The business model includes services for both consumers and companies, such as online booking tools and location/event publishing. The platform targets a broad general audience in Germany, emphasizing ease of use and comprehensive event coverage. Technically, the website is built using Angular 14, leveraging modern web technologies including Google Fonts, Google Adsense, Google Tag Manager, and Leaflet.js for interactive maps. The site demonstrates good mobile optimization and a professional design, although accessibility features are basic. Performance is moderate, with proper meta tags and SEO considerations in place. From a security perspective, the site enforces HTTPS and uses secure Google services for advertising and analytics. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident in the HTML, and no dedicated security or incident response policies are published. The cookie consent mechanism is implemented via Google Funding Choices, indicating some level of GDPR compliance, though no explicit privacy or terms of service pages were found in the provided content. Overall, the website presents a trustworthy and professional front with moderate security maturity. The lack of explicit privacy and security policies, as well as missing direct contact information, are areas for improvement. Strategic recommendations include publishing comprehensive privacy and terms documents, enhancing security headers, and providing clear contact channels for security incidents to strengthen compliance and user trust.

S

Sächsische Aufbaubank

sn-cz2027.eu

0

The website www.sn-cz2027.eu represents the official Interreg Sachsen - Tschechien 2021-2027 program, a European Union funded initiative supporting cross-border cooperation projects between Saxony (Germany) and the Czech Republic. The site is managed by the Sächsische Aufbaubank and provides comprehensive information, project details, event calendars, and application guidance for stakeholders. The platform targets project applicants, beneficiaries, and interested parties in regional development and cooperation. Technically, the website is built on modern web standards with HTML5, CSS3, JavaScript, and uses Matomo analytics for privacy-conscious visitor tracking. It is mobile optimized and features a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and client-side form validation, though HTTP security headers and incident response information are not visibly published. WHOIS data is unavailable due to EURid privacy policies for .eu domains, which is typical and justified for official entities. Overall, the site is professional, trustworthy, and well-aligned with its governmental and non-profit mission.

E

ELITEDOMAINS

hamburghandball.de

0

The website hamburghandball.de is a domain sales landing page operated through the ELITEDOMAINS marketplace platform. It offers the domain for sale with an escrow service and provides a contact form embedded via iframe for potential buyers to submit offers. The site is minimalistic, focusing on promoting the advantages of premium domain ownership. The technical infrastructure is based on Angular framework with modern font usage and responsive design, but lacks advanced SEO and accessibility features. Security posture is moderate with no explicit security headers detected and no direct contact emails or phone numbers provided. WHOIS data is privacy protected as per DENIC policy, consistent with domain resale practices. Overall, the site is legitimate but basic in content and security features.

D

Dyn - Handball, Basketball, Tischtennis, Volleyball live streamen und auf Abruf

dyn.sport

0

Dyn Sport is a specialized streaming service offering live broadcasts and highlight coverage of various German and European sports leagues including handball, basketball, volleyball, table tennis, and hockey. The platform targets sports fans interested in these niche markets, providing subscription-based access to live and on-demand content. The website is professionally designed with a consistent brand presence and good content relevance, optimized for mobile devices and featuring modern web technologies such as React and SVG graphics. However, the site lacks visible privacy and cookie policies, as well as explicit contact information, which are important for compliance and user trust. Security headers and detailed security policies are also not evident, indicating room for improvement in security posture. Overall, the domain is privacy protected in WHOIS, which is typical for commercial streaming services, and the website appears legitimate and safe for general audiences.

E

Escape Maniac

escape-maniac.com

0

Escape Maniac is a German-language niche blog dedicated to escape room enthusiasts, providing reviews, podcasts, and curated lists of escape rooms primarily in Germany and other European countries. The website is built on WordPress, utilizing popular plugins for SEO, analytics, and GDPR compliance, reflecting a moderate level of digital maturity. The technical infrastructure is standard for content publishing, with a focus on user experience and mobile optimization. Security posture is adequate with HTTPS enabled and anonymized IP tracking in analytics, but lacks advanced security headers and DNSSEC, which could be improved to enhance protection. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages in the analyzed content. Overall, the website presents a trustworthy and professional front for its target audience but would benefit from enhanced security and compliance documentation.

Kinzig.News is a regional news website serving the Main-Kinzig-Kreis area in Germany, operated by Medienkontor M. Angelstein GmbH & Co. KG. The site provides local news, event information, job postings, and advertising opportunities, targeting residents and stakeholders of the region. The business model is primarily advertising-supported, with a focus on regional content. The website demonstrates consistent branding and good content quality, with a professional design and clear navigation.

The website rserver.de is a minimalistic site used exclusively for private services, with no commercial or public business operations evident. The content is in German and clearly states that no personal data, cookies, or analytics are collected, emphasizing privacy and voluntary communication via email or Jabber/XMPP with OpenPGP encryption. The site lacks formal privacy, cookie, or terms of service policies, and no phone numbers or physical addresses are provided. Technically, the site is built with basic HTML and CSS, without any detected CMS or advanced frameworks. There is no evidence of analytics or advertising tools, and the site appears to have basic mobile optimization and accessibility. Security headers and HTTPS status are not confirmed from the data, but the use of encrypted communication methods is a positive indicator. From a security perspective, the site demonstrates a privacy-conscious approach by not collecting user data and encouraging encrypted communication. However, the absence of security headers, privacy policies, and cookie consent mechanisms are gaps that could be improved. The WHOIS data is consistent with the website's private use, showing no suspicious patterns or privacy protection that would raise concerns. Overall, the site presents a low-risk profile focused on privacy and minimal data exposure but would benefit from enhanced security practices and formalized compliance documentation.

I

InternetWerk GmbH

internetwerk.de

0

InternetWerk GmbH is a small German technology company specializing in professional webhosting, domain registration, and managed server services primarily targeting customers in Germany, Austria, and Switzerland. Established in 2007, the company manages over 7500 domains and serves a diverse clientele including professionals, institutions, and SMEs. Their website reflects a consistent and professional brand image with clear service offerings and contact information. Technically, the website is built on WordPress with jQuery libraries, delivering moderate performance and good mobile optimization. The site uses HTTPS with a good SSL configuration but lacks advanced security headers and cookie consent mechanisms. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site demonstrates basic best practices such as HTTPS and no exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is limited due to DENIC privacy restrictions but aligns with the business claims and domain usage. Overall, the website is trustworthy and professionally maintained with room for improvement in security headers, privacy compliance (cookie consent), and publishing security policies. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing incident response information to strengthen trust and compliance.

E

Escape Room Theater - OPOLUM

opolum.com

0

OPOLUM is a specialized entertainment company operating in Hamburg, Germany, offering modern escape room experiences with live actors and interactive puzzles. The business targets both tourists and locals, providing indoor and outdoor escape games for groups ranging from 2 to 120 participants. The company holds a strong market position as a leading escape room provider in Hamburg, supported by over 1,700 positive Google reviews and an ADAC tourism award. Technically, the website is built on WordPress with Elementor, leveraging modern marketing and tracking tools such as Google Tag Manager, Facebook Pixel, and Sendinblue, with a cookie consent mechanism in place. Security posture is solid with HTTPS enforced and domain registration consistent with business claims, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is basic, lacking explicit privacy policy and terms of service pages. Overall, the website is professional, trustworthy, and safe for general audiences.

Handball Sport Verein Hamburg operates as a professional sports club focused on handball, providing comprehensive information about its Bundesliga team, youth development programs, ticketing, and fan engagement. The website serves as the official digital presence, targeting handball fans, families, and youth players primarily in Germany. The business model revolves around sports management, marketing, and community engagement with a medium-sized organizational footprint. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Facebook Pixel, and advertising integrations, hosted likely by a German provider. The site is mobile-optimized and SEO-friendly with structured data implemented. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or privacy compliance issues were detected. Overall, the site is professional, trustworthy, and well-maintained, supporting the club's market position and fan base effectively.

B

Burg-Waechter Gmbh & Co. KG

burg.biz

0

Burg-Wächter Gmbh & Co. KG operates a professional e-commerce website specializing in manufacturing and retailing security products such as locks, safes, electronic door locks, and video security solutions. The company is well-established with a domain age dating back to 2001 and a strong presence in the German market. The website is built on the Shopify platform, leveraging modern technologies and third-party integrations for analytics, consent management, and SEO optimization. The site demonstrates good technical maturity with fast performance, mobile optimization, and accessibility features. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status; however, DNSSEC is not enabled and no explicit security policy or incident response information is published. Privacy compliance is supported by a consent management platform, though no explicit privacy policy page was detected in the provided content. Overall, the website is trustworthy, professional, and suitable for its target audience.

S

SOHO Creative Group

sohocreativegroup.com

0

SOHO Creative Group is a Berlin-based creative agency specializing in branding, UX/UI, web design, web development, SEO, and eCommerce solutions. Established in 2015, the company has built a solid market position with a portfolio of diverse projects and recognized external endorsements. Their target audience includes businesses seeking comprehensive digital branding and development services. Technically, the website is built on WordPress with modern tools such as Yoast SEO, Google Analytics, and Google Tag Manager, reflecting a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the website uses HTTPS and has domain transfer protections, but lacks DNSSEC and explicit security policies, which are areas for improvement. Overall, the website is professional, trustworthy, and well-maintained, though it lacks some compliance documentation such as privacy and cookie policies.

S

Superbude

superbude.com

0

Superbude operates as a boutique hotel and hostel chain with locations in Hamburg and Vienna, targeting travelers seeking affordable and design-oriented accommodations. The website presents a professional and user-friendly interface with clear branding and multilingual support. The business model focuses on hospitality services with online booking capabilities. Technically, the site employs modern JavaScript libraries, cookie consent management via Cookiebot, and Google Tag Manager for analytics and marketing. Performance and mobile optimization are good, though accessibility could be improved. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place; however, security headers and explicit security policies are lacking. The absence of WHOIS data reduces transparency and trust slightly, but the overall presentation and compliance with GDPR through privacy and cookie policies are positive indicators. Contact information is not explicitly provided, which may affect user trust and business credibility. Strategic improvements include enhancing security headers, publishing incident response information, and providing clearer contact details.

T

The Code Agency

thecodeagency.de

0

The Code Agency operates premium live escape rooms and outdoor escape games primarily in Düsseldorf with an additional location in Hamburg. Their offerings include immersive adventure missions, interactive crime games for home, and a café/bar facility, targeting a broad audience including families, friends, corporate teams, and students. The company enjoys a strong market position supported by multiple awards and excellent customer reviews on platforms like Google, ProvenExpert, and TripAdvisor. Technically, the website is built on TYPO3 CMS with modern JavaScript integrations and asynchronous tracking scripts, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and secure form handling, though improvements are recommended in security headers and incident response transparency. Privacy compliance is adequate with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-structured, supporting the company's business credibility effectively.

S

Sparkasse Osterode am Harz

sparkasse-osterode.de

0

Sparkasse Osterode am Harz operates as a regional savings bank in Germany, providing a broad range of financial services including retail banking, corporate banking, investment products, insurance, and real estate financing. The website targets both private and corporate customers, offering secure online banking and comprehensive product information. The bank maintains a strong regional presence with consistent branding and a professional digital interface. Technically, the website is built on Adobe Experience Manager CMS, featuring modern web technologies, good mobile optimization, and accessibility compliance. Security posture is solid with HTTPS enforcement, session management, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. The domain registration data aligns well with the business, indicating legitimacy and trustworthiness. Overall, the website demonstrates a mature digital presence suitable for a financial institution.

G

GOLD.DE - Deutschlands Nr. 1 Gold-Vergleichsportal

gold.de

0

GOLD.DE operates as Germany's leading gold price comparison portal, offering consumers a platform to compare prices from over 40,000 gold coins and bars sold by certified dealers. The website targets German-speaking investors and collectors interested in purchasing or selling gold securely and at competitive prices. Its market position is strong within the niche of precious metals price comparison in Germany. Technically, the website leverages Cloudflare for DNS and likely CDN services, ensuring reliable hosting and performance. It employs Cookiebot for cookie consent management, Google Fonts for typography, FontAwesome for icons, and Google Ads for monetization. The site is mobile-optimized and includes proper SEO meta tags and Open Graph data, contributing to good digital maturity. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism, but lacks visible advanced security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is supported by the Cookiebot consent banner, though no explicit privacy policy or terms of service were found in the analyzed content. Overall, GOLD.DE presents a professional and trustworthy online presence with moderate to good technical and security posture. Strategic improvements in publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact information would further strengthen its compliance and trustworthiness.

EscapeDiem is a specialized live escape room provider based in Hamburg, Germany, offering immersive and professionally designed escape room experiences. The company holds a strong market position locally, supported by multiple awards and a top Tripadvisor ranking. Their target audience includes friends, families, and teams seeking entertainment and team-building activities. Technically, the website is built on a modern stack using UIkit and ProcessWire CMS, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and published security policies. Privacy compliance is basic with visible cookie consent and privacy policy, but no explicit data protection officer or incident response contacts. Overall, the website is professional, trustworthy, and content-rich, supporting the business's credibility and customer engagement.

O

OWL-GAMES

owl-games.de

0

OWL-GAMES is a small hospitality business based in Paderborn, Germany, specializing in indoor leisure and entertainment activities such as escape rooms, laser tag, virtual reality, and mind games. The company targets a broad audience including families, friends, and corporate clients seeking team-building events. Their website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content about their offerings. Technically, the site is built on WordPress with modern JavaScript libraries and SEO plugins, ensuring good performance and search visibility. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, though it lacks explicit security policy disclosures and some security headers. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

R

Ravensberg Basecamp GmbH

ravensbergbasecamp.de

0

Ravensberg Basecamp GmbH operates a multi-faceted business in Bad Sachsa, Germany, combining an indoor climbing arena (Clip 'n Climb Harz), a burger restaurant (Backwood Burger), a coffee shop (Backwood Coffee), and an outdoorshop retail store. The company targets families, outdoor enthusiasts, and local visitors, offering entertainment, food, and retail products. The website is well-structured, professionally designed, and provides clear information about services, pricing, and contact details. Social media integration and SEO optimization are evident, supporting digital presence and customer engagement. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring a good user experience and mobile responsiveness. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though explicit security headers and incident response policies are absent. Privacy compliance is partial, with a comprehensive privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, suitable for its business scope.

E

enigmania - Escape Room Center

enigmania.de

0

enigmania is a prominent live escape room entertainment provider operating primarily in North Rhine-Westphalia, Germany, with physical locations in Dortmund and Duisburg. The company offers immersive team-based puzzle experiences, including a unique battle mode allowing two teams to compete simultaneously. Their market position is strong as the largest escape room provider in the region, catering to a wide audience including families, corporate groups, and enthusiasts. The website reflects a professional and modern digital presence built on WordPress with Elementor, optimized for performance and mobile devices. Security posture is solid with HTTPS and Cloudflare DNS, though there is room for improvement in security headers and incident response transparency. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site demonstrates good business credibility and user trust.

HarzGames Live Adventures operates as a small hospitality entertainment business specializing in live escape rooms and virtual reality experiences located in Wernigerode, Germany. The company offers multiroom escape adventures and VR games targeting general audiences including families and team-building groups. Their market position is regional with a focus on unique, immersive entertainment in the Harz region. Technically, the website is built on a modern JavaScript stack with integrations for booking (Quinbook), analytics (Google Analytics), and error monitoring (Sentry). The site is hosted by 1&1 IONOS and uses HTTPS with good SSL configuration. Security posture is adequate but could be improved by adding security headers and publishing formal privacy and terms policies. The site includes a cookie consent mechanism compliant with GDPR principles but lacks a dedicated privacy policy page. Contact information is clearly presented and verified via structured data. Overall, the website is professional, user-friendly, and trustworthy with moderate technical maturity and compliance gaps.

T

try2escape Bünder GmbH

try2escape.events

0

try2escape Bünder GmbH operates a specialized live escape game business based in Rheine, Germany, offering immersive indoor escape rooms and outdoor adventure tours targeting families, children, and corporate groups. The company has established a strong local presence with a well-designed website that facilitates online bookings and provides detailed information about their offerings. The technical infrastructure is built on WordPress with Elementor, ensuring a modern and responsive user experience. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partially met with a comprehensive privacy policy but missing cookie consent mechanisms. Overall, the business demonstrates legitimacy and professionalism with clear contact channels and social media engagement.

T

Teambreakout Hamburg

teambreakout.de

0

Teambreakout Hamburg operates as a well-established live escape game provider offering immersive indoor and outdoor escape experiences, as well as interactive crime games for home use. The company targets a broad audience including families, friends, and corporate teams, positioning itself as a leading entertainment venue in Hamburg with multiple positive customer reviews and awards. The business model centers on event-based entertainment with online ticket sales and team event hosting. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Modernizr, and integrates Google Analytics and Facebook Pixel for marketing and analytics. Hosting is provided by rzone.de, with proper HTTPS encryption and moderate performance. The site is mobile-optimized and SEO-friendly, with clear navigation and professional design. From a security perspective, the site enforces HTTPS, uses secure forms with validation, and maintains good privacy compliance including GDPR-aligned privacy and cookie policies. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the website demonstrates a strong security posture, good privacy compliance, and high business credibility. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and continuous monitoring of third-party scripts.

E

Escape Stories

escape-stories.de

0

Escape Stories is a small hospitality business based in Germany specializing in live and online escape games. The company offers a variety of immersive escape room experiences including adventure, fantasy, horror, outdoor, and online games. Their market position is strong locally in Wuppertal with multiple themed rooms and positive customer feedback. The website is professionally designed, mobile optimized, and provides clear navigation and comprehensive content about their services. Technically, the site uses WordPress with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies are not published. WHOIS data aligns with the website's claims, supporting legitimacy. Overall, the site is trustworthy and well-maintained, suitable for its target audience of general public and groups seeking entertainment.

T

THE ROOM

the-room-berlin.com

0

THE ROOM is a small hospitality business based in Germany specializing in immersive escape room experiences in Berlin. The company has established a strong market position with multiple industry awards and a professional online presence. Their website is built on WordPress with Elementor and includes modern tracking and consent management technologies. The site is well-designed, mobile-optimized, and provides clear information about their escape room offerings, targeting groups of 2-6 players interested in live entertainment. Security posture is good with HTTPS and cookie consent, though some security headers and policies could be improved. No privacy policy or terms of service were found, which is a compliance gap. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

A

Adventurebox Karlsruhe

adventurebox-karlsruhe.de

0

Adventurebox Karlsruhe is a specialized event service provider offering escape rooms, outdoor exit games, city challenges, home games, and remote events primarily targeting groups and individuals in Karlsruhe, Germany. Founded in 2021, the company has established a strong local market presence with a focus on team-building and entertainment experiences. Their website is professionally designed, mobile-optimized, and rich in relevant content, providing users with clear navigation and comprehensive event filtering options. Technically, the website is built on WordPress using modern plugins such as Revolution Slider, PixelYourSite for tracking, and Borlabs Cookie for consent management. The hosting appears to be managed via UI-DNS nameservers, and performance is moderate with caching enabled. Security best practices are observed, including HTTPS enforcement and security headers, although no explicit security policy or incident response information is published. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The business credibility is reinforced by numerous positive customer reviews and trust signals such as the ProvenExpert widget and TripAdvisor award mentions. Overall, the website and business demonstrate a mature digital presence with good security hygiene and privacy awareness, suitable for their hospitality and entertainment sector. Strategic improvements could include publishing formal security and incident response policies and enhancing accessibility features.

N

Nexus Exit

nexus-exit.de

0

Nexus Exit is a specialized entertainment provider offering next-level escape room experiences in Gelnhausen, Germany. The company holds a strong market position as the highest-rated escape room provider in the Hessen region, supported by excellent customer reviews on Tripadvisor, Facebook, and Google. Their services include a variety of escape rooms, outdoor adventures, online games, group offers for companies, schools, bachelor parties, and consulting services under Nexus Creations. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, enhancing user experience and trust. Technically, the website is built on the Webflow CMS platform, utilizing modern web technologies such as Google Fonts, Matomo analytics, and Google reCAPTCHA for security. Hosting is provided by a reputable German provider (Netcup), and the site employs HTTPS with good SSL configuration. While security headers are not explicitly detected, the site follows good security practices including cookie consent and bot protection. Analytics usage is moderate with privacy compliance considered good. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. However, there is room for improvement by implementing additional security headers and publishing a security policy or incident response contact. The absence of terms of service and vulnerability disclosure pages are minor gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. The overall risk assessment is low, with the site presenting a professional and secure front to customers. Strategic recommendations include enhancing security headers, formalizing security policies, and maintaining up-to-date software to sustain and improve security posture.

E

Escape Room Theater - OPOLUM

twistedrooms.com

0

OPOLUM is a specialized entertainment business operating in Hamburg, Germany, offering modern escape room experiences with live actors. The company targets groups ranging from small parties to large groups (2-120 persons) and provides both indoor and outdoor escape games. It holds a strong market position supported by over 1,700 positive Google reviews and an award (1. Platz ADAC Tourismuspreis), indicating high customer satisfaction and recognition. The business model focuses on immersive, interactive entertainment experiences, appealing to tourists and locals alike. Technically, the website is built on WordPress using Elementor, with integrations including Google Tag Manager, Sendinblue, and Borlabs Cookie for marketing and consent management. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Hosting and domain registration are stable and consistent with the business profile, registered through IONOS SE. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms, but lacks advanced DNS security (DNSSEC) and security policy disclosures. No critical vulnerabilities or exposed sensitive data were detected. Tracking and marketing tools are extensively used, with a moderate to extensive user tracking level. Privacy compliance is basic, with no explicit privacy policy found in the provided content. Overall, OPOLUM presents a professional, trustworthy online presence with strong business credibility and good technical implementation. Strategic improvements include publishing a privacy policy, enhancing DNS security, and adding security and incident response information to strengthen compliance and trust.

S

Skurrilum St. Pauli

skurrilum.de

0

Skurrilum St. Pauli is a well-established, award-winning escape room business located in Hamburg, Germany, operated by the creative team behind the Hamburger Schmidt Theater. The company offers five uniquely themed escape rooms targeting families, friends, and corporate groups for events and team building. The website is professionally designed, mobile-optimized, and provides comprehensive information about the business and its offerings. Technically, the site is built on WordPress with modern plugins and integrates third-party services such as Vimeo, Google Analytics, and Facebook Pixel. Security posture is solid with HTTPS enforced, cookie consent management, and use of reCAPTCHA, though some security headers could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site reflects a credible and trustworthy business with a good digital presence.

C

Contabo

contabo.com

0

Contabo GmbH is a Germany-based cloud and dedicated server hosting provider established in 2003, offering affordable VPS and bare metal servers across multiple global regions. The company positions itself as a cost-effective hosting solution with a strong uptime record and award-winning customer support. The website reflects a mature digital presence with good content quality and consistent branding. Technically, the site employs modern JavaScript libraries and tracking tools, including Google Tag Manager, LinkedIn Insight, and Bing Ads, supported by a cookie consent mechanism. Security posture is adequate with HTTPS enabled and domain transfer protection, though DNSSEC is not enabled and security headers are not evident in the provided data. The WHOIS data aligns well with the business claims, indicating legitimacy and stable domain ownership. However, the absence of explicit privacy and terms of service policies in the analyzed content suggests room for improvement in privacy compliance. Overall, the website is professional, trustworthy, and serves its target audience effectively.

W

WOIZZER AG

quinbook.com

0

QuinBook, powered by WOIZZER AG, is a specialized SaaS platform offering comprehensive booking and management solutions tailored for the escape room industry. With over eight years of industry-specific expertise and two decades of IT experience, QuinBook positions itself as a leading solution for escape room operators worldwide. The platform provides features including escape game management, ticketing, staff coordination, and integrated payment processing, targeting small to medium-sized businesses primarily in Germany and internationally. The business model is subscription-based with flexible monthly billing and no long-term contracts, appealing to operators seeking scalable and professional management tools. Technically, the website employs a custom-built infrastructure leveraging established front-end libraries such as Bootstrap, FontAwesome, and jQuery, alongside modern UI components like Slider Revolution and hCaptcha for security. While the site is mobile-optimized and presents a professional user experience, some technical debt is evident with the use of an outdated jQuery version and lack of explicit security headers. Hosting is claimed to be German-based, supporting data sovereignty and compliance. From a security perspective, the site enforces HTTPS, uses encrypted communication, and integrates hCaptcha to mitigate spam on contact forms. Payment transactions are handled via external trusted providers, enhancing transactional security. However, the absence of explicit security headers and a cookie consent mechanism indicates areas for improvement in compliance and defense-in-depth. No incident response or vulnerability disclosure information is publicly available, which could be enhanced to build trust. Overall, QuinBook demonstrates a solid business and technical foundation with a high trustworthiness level. Strategic improvements in security headers, privacy compliance, and modernization of libraries would elevate its security posture and regulatory adherence, further strengthening its market position and customer confidence.

V

Verein Deutscher Ingenieure e.V.

vdi.de

0

Verein Deutscher Ingenieure e.V. (VDI) is the largest technical-scientific association in Europe, serving approximately 130,000 engineers and technical professionals. The organization provides membership services, technical publications, career advice, and hosts events and conferences, targeting engineers primarily in Germany and Europe. The website is professionally designed, consistent in branding, and offers comprehensive content relevant to its audience. Technically, the site is built on TYPO3 CMS with modern libraries and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms, although explicit security policies and incident response information are not published. Overall, the site demonstrates a mature digital presence with good privacy and security practices, supporting the organization's credibility and trustworthiness.

The DRK-Blutspendedienste website serves as a comprehensive platform for blood donation appointment scheduling and information dissemination in Germany. It is operated under the Deutsches Rotes Kreuz (DRK) umbrella, a well-established non-profit organization. The site targets potential and existing blood donors, providing educational content, campaign information, and access to donor services. The platform enjoys a strong market position as a key coordinator of blood donation services in Germany, supported by official branding and partnerships with regional blood donation organizations. Technically, the website employs a modern tech stack including Ruby on Rails, Matomo analytics, and Cookiefirst for consent management. It is hosted on reputable providers and demonstrates good mobile optimization and SEO practices. The site uses HTTPS with strong SSL configuration and includes CSRF protection in forms, indicating a solid security foundation. However, some security headers are missing, and no explicit security policy or incident response contacts are published. From a security perspective, the site maintains a good posture with encrypted communications and privacy compliance, including GDPR-aligned cookie consent. No vulnerabilities or exposed sensitive data were detected. The absence of a vulnerability disclosure policy and security.txt file is noted as an area for improvement. Overall, the site is trustworthy, professional, and safe for general audiences. Strategically, the website could enhance its security transparency by publishing incident response contacts and security policies. Adding security headers and a vulnerability disclosure mechanism would further strengthen its security maturity. The business credibility is high, supported by consistent branding, partner links, and clear contact channels.

The website www.drk-haemotherapie.de serves as a specialized digital magazine dedicated to transfusion medicine, targeting medical professionals and users of blood products. It is affiliated with the German Red Cross Blood Donation Services (DRK-Blutspendedienste), providing authoritative and up-to-date scientific content, regulatory updates, and practical guidance. The platform offers digital subscriptions and hosts a variety of articles authored by experts in the field, reinforcing its position as a trusted resource within the healthcare sector. Technically, the site employs modern web technologies including Ruby on Rails, Bootstrap, and Hotwired frameworks, ensuring a responsive and accessible user experience across devices. Privacy and cookie compliance are well implemented with a consent management system, and the site uses Matomo for analytics, reflecting a moderate level of user tracking with respect to privacy. Security posture is strong with HTTPS enforced and CSRF protections in place, although explicit security headers and incident response policies are not publicly documented. Overall, the domain and website content align with a reputable healthcare entity, with no signs of malicious activity or content blocking. Strategic recommendations include publishing a terms of service, security policy, and incident response contacts to enhance transparency and trust.

The Deutsche Stammzellspenderdatei (DSSD) website serves as an informational and engagement platform for a German non-profit initiative focused on stem cell and bone marrow donation. Affiliated with the German Red Cross blood donation services, it targets potential donors, patients' families, and medical professionals. The site provides educational content, donation registration pathways, event organization support, and fundraising opportunities. Technically, the website employs common web technologies including jQuery, Bootstrap, and Matomo analytics, with a cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized with good navigation and content quality. Security posture is solid with HTTPS and CSRF protections, though it lacks explicit security policies and some security headers. Overall, the domain and website present a trustworthy and professional image consistent with a healthcare non-profit organization.

T

talentsconnect

talentsconnect.com

0

talentsconnect is a German-based HR software and consulting company specializing in recruiting and employee retention solutions for medium to large enterprises. Their offerings include innovative products such as JobShop, Conversational AI, and Internal JobShop, designed to optimize the talent acquisition and retention lifecycle. The company has a strong market presence with over 600 corporate clients and is recognized on independent review platforms like OMR Reviews. Technically, the website is built on Webflow CMS, uses modern web technologies, and integrates privacy-respecting analytics via Matomo. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response information are not publicly available. The WHOIS data is unavailable, which limits domain trust verification, but the professional website content and business indicators suggest legitimacy. Overall, talentsconnect demonstrates a mature digital presence with good compliance and security practices.

A

ALBIXON a.s.

albixon.de

0

ALBIXON a.s. is a well-established European manufacturer specializing in swimming pools, pool enclosures, bioclimatic pergolas, and related pool technology and accessories. Founded in 1985 by the Smetana brothers, the company has grown to become a leading player in the European market with a strong export footprint in over 70 countries. Their business model leverages both direct manufacturing and a network of partners in Germany, Austria, and Switzerland to provide comprehensive customer support from planning to maintenance. The website reflects a mature digital presence with multilingual support, a B2B portal, and extensive product and reference information. Technically, the website employs modern web technologies including Bootstrap, lazy loading images, and JavaScript libraries for enhanced user experience and performance. The site is mobile-optimized and SEO-friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although explicit security policies and incident response contacts are not publicly disclosed. Analytics and marketing tools such as Google Analytics, Smartlook, and Facebook Pixel are used with appropriate consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements. The WHOIS data aligns with the business claims, showing consistent domain registration and no privacy protection, supporting legitimacy. No blocking or WAF interference was detected, allowing full content access and analysis.

W

Westdeutsche SpenderZentrale

wsze.de

0

Westdeutsche SpenderZentrale is a German non-profit organization dedicated to registering stem cell donors and supporting blood cancer patients. The website provides comprehensive information about stem cell donation, patient and donor stories, and facilitates ordering free typing kits for potential donors. It also supports organizing typing campaigns in various community settings. The organization positions itself as a regional key player in healthcare focused on life-saving stem cell donations. Technically, the website is built with Angular 15 and uses Scully for static site generation, ensuring fast performance and good mobile optimization. The site uses modern web technologies and lazy loading for images but lacks some advanced SEO and accessibility features. No major analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide a public security policy or incident response contacts. No cookie consent mechanism is present, which is a GDPR compliance gap. WHOIS data is consistent and indicates a legitimate domain registration aligned with the organization's purpose. Overall, the website is professional, trustworthy, and well-suited for its audience, but it could improve privacy compliance and security posture by adding cookie consent, security headers, and explicit security policies.

D

DRK-Blutspendedienst West gGmbH

bsdwest.de

0

DRK-Blutspendedienst West gGmbH is a large non-profit healthcare organization operating in Germany, specializing in blood donation services and transfusion medicine across the regions of Nordrhein-Westfalen, Rheinland-Pfalz, and Saarland. The organization plays a critical role in supplying hospitals and medical practices with essential blood products, organizing thousands of blood donation events annually, and providing expert medical consultation. Their digital presence includes a well-structured website built on Drupal 10, complemented by a digital blood donor service accessible via web and mobile apps, and active engagement on major social media platforms. Technically, the website employs modern web technologies including Bootstrap, FontAwesome, and JavaScript libraries for enhanced user experience and accessibility. The site is mobile-optimized, GDPR compliant with a robust cookie consent mechanism, and uses Matomo analytics configured to respect user privacy (Do Not Track). While HTTPS is enforced, and no critical security vulnerabilities are evident, the site lacks publicly available security policies and incident response contacts, which are recommended for improved transparency and trust. Overall, the security posture is solid with good privacy compliance, but could be enhanced by adding explicit security documentation and security.txt files. The business credibility is high, supported by consistent branding, professional content, and clear contact channels. No suspicious or malicious content was detected, and the site is safe for general audiences.

S

SIKO

siko-bad.de

0

SIKO is a medium-sized retail company specializing in bathroom and kitchen products, operating primarily in Germany with a strong online presence supported by SAP Commerce Cloud and Angular frameworks. The website demonstrates a mature digital infrastructure with integrations for marketing, analytics, and user consent management, reflecting a modern e-commerce platform. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response details are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a reliable platform for customers.

K

KRAFTJUNGS

kraftjungs.de

0

KRAFTJUNGS is a small, regionally focused 360° advertising agency based in Karlsruhe and Baden-Baden, Germany. The company offers a range of marketing and advertising services targeting businesses seeking comprehensive branding and digital marketing solutions. The website is professionally designed using WordPress and modern web technologies, including WPBakery Page Builder, jQuery, and Font Awesome. It integrates GDPR-compliant cookie consent management via Usercentrics and employs analytics tools such as Matomo, Google Tag Manager, and HubSpot for marketing and user tracking purposes. The technical infrastructure reflects a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and cookie consent implemented; however, the absence of explicit privacy policy and security headers indicates room for improvement. WHOIS data is minimal but consistent with a legitimate small business domain. Overall, the website presents a trustworthy and professional front for the agency, though enhancing transparency around privacy and security policies would strengthen compliance and user trust.

D

DRK-Blutspendedienst Nord-Ost gemeinnützige Gesellschaft mit beschränkter Haftung

blutspende-nordost.de

0

DRK-Blutspendedienst Nord-Ost is a reputable non-profit organization dedicated to blood donation services across several German federal states. The website serves as a comprehensive portal for donors, medical professionals, and volunteers, offering appointment scheduling, educational content, and community engagement. The organization maintains a strong regional presence with consistent branding and trusted partnerships. Technically, the website is built on Drupal 10, leveraging modern web technologies and privacy-conscious analytics via Matomo. It is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. The hosting appears stable with EPAG nameservers. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the organization's profile, supporting legitimacy. Overall, the site presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements could focus on enhancing security headers and publishing formal security and incident response policies.