Security Directory

D

DRK-Blutspendedienst NSTOB

blutspende-leben.de

0

The website www.blutspende-leben.de serves as the official portal for the DRK-Blutspendedienst NSTOB, a regional blood donation service under the German Red Cross. It provides comprehensive information and services related to blood donation, including appointment booking, donor services, educational content, and resources for medical professionals. The site targets blood donors and healthcare stakeholders in Germany, emphasizing community health and non-profit service. Technically, the site is built on Drupal 10 with modern libraries such as Bootstrap and FontAwesome, and integrates Matomo for analytics and Cookiefirst for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, HTTPS is enforced and privacy compliance is well implemented with clear privacy and cookie policies. However, some security headers are missing and no explicit incident response or vulnerability disclosure information is provided. Overall, the site demonstrates a strong security posture with room for improvement in header security and incident transparency. The domain WHOIS data aligns well with the website's claims, showing legitimacy and consistency. The site is trustworthy, professional, and safe for general audiences.

B

Blutspendedienst des Bayerischen Roten Kreuzes gemeinnützige GmbH

blutspendedienst.com

0

Blutspendedienst des Bayerischen Roten Kreuzes gemeinnützige GmbH operates a comprehensive blood donation service platform primarily serving the Bavarian region in Germany. The organization is a non-profit entity affiliated with the Bavarian Red Cross, providing blood donation appointment scheduling, donor education, digital donor services via a mobile app, and health checks. The website is professionally designed with clear navigation and extensive content tailored to blood donors and healthcare partners. Technically, the site uses modern web technologies including Bootstrap, Matomo analytics, and cookie consent management, ensuring a good user experience and privacy compliance. Security posture is strong with HTTPS enforced and CSRF protections, though some security headers could be improved. The WHOIS data is unavailable, which is unusual but the website's legitimacy is supported by its branding and external references. Overall, the site scores highly on content quality, technical implementation, security, privacy compliance, and business credibility.

D

DRK-Blutspendedienst West gGmbH

blutspendedienst-west.de

0

The DRK-Blutspendedienst West gGmbH operates as a large non-profit healthcare organization focused on blood donation services in western Germany. The website serves as an information and service portal for blood donors, medical professionals, and volunteers, offering appointment scheduling, educational content, and digital donor services. The organization holds a strong regional market position with a comprehensive service offering and active social media engagement. Technically, the website is built on Drupal 10 with modern frontend libraries and is well-optimized for mobile devices. It employs a self-hosted Matomo analytics platform with privacy-conscious configurations and a robust cookie consent mechanism. The site demonstrates good SEO, accessibility, and user experience standards. From a security perspective, the site enforces HTTPS and uses cookie consent management but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. WHOIS data is minimal but consistent with the organization's profile. Overall, the website is professional, trustworthy, and compliant with GDPR, providing a safe and informative user experience. Strategic improvements could focus on enhancing security headers and publishing formal security and incident response policies.

D

DRK-Blutspendedienst Baden-Württemberg – Hessen gemeinnützige Gesellschaft mit beschränkter Haftung

blutspende.de

0

The website www.blutspende.de represents the DRK-Blutspendedienst Baden-Württemberg – Hessen, a key regional entity within the German Red Cross responsible for coordinating blood donation services across Germany. The site serves as a nationwide distribution portal linking users to regional blood donation services, offering approximately 38,000 blood donation appointments annually. The target audience is the general German public interested in donating blood. The business operates as a non-profit healthcare service, playing a critical role in the national blood supply chain. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies and integrating Matomo analytics with a consent management platform (CookieFirst) to ensure privacy compliance. The site is hosted on German infrastructure with nameservers pointing to nats.de, indicating a stable and localized hosting environment. The website demonstrates good mobile optimization, accessibility, and SEO practices, with consistent branding and professional design. From a security perspective, the site enforces HTTPS, implements standard security headers, and uses a cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy policy and terms of service pages, as well as lack of incident response contacts and data protection officer information, represent areas for improvement in compliance and transparency. Overall, the website is trustworthy, professionally maintained, and fulfills its mission effectively. Strategic recommendations include publishing comprehensive privacy and terms documents, establishing vulnerability disclosure channels, and enhancing transparency around data protection roles to strengthen user trust and regulatory compliance.

D

DRK-Blutspendedienste

spenderservice.net

0

The website www.spenderservice.net is the official digital service portal for blood donors affiliated with the Deutsches Rotes Kreuz (German Red Cross). It provides a comprehensive platform for blood donors in Germany to manage their donation appointments, view donation history, participate in forums, and access a dedicated mobile app. The service is positioned as a trusted non-profit healthcare platform with a strong focus on user engagement and convenience. Technically, the website employs modern web technologies including JavaScript, CSS, and Bootstrap framework, with backend indications of Ruby on Rails. It integrates cookie consent management via CookieFirst and uses Piwik/Matomo for analytics, reflecting a mature digital infrastructure. The site is mobile-optimized and provides seamless navigation and user experience. From a security perspective, the site enforces HTTPS, uses CSRF tokens in forms, and implements cookie consent mechanisms. However, it lacks explicit security headers and published security policies or incident response contacts, which are areas for improvement. The absence of WHOIS data reduces transparency but does not significantly detract from the site's legitimacy given the strong branding and professional presentation. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with minor penalties for missing WHOIS data and security policy disclosures. Strategic recommendations include enhancing security headers, publishing a security policy, and improving WHOIS transparency to bolster trust and compliance.

D

Deutscher Verband Technisch-Wissenschaftlicher Vereine e. V.

dvt-net.de

0

The Deutscher Verband Technisch-Wissenschaftlicher Vereine e. V. (DVT) is a non-profit organization representing German engineering and technical sciences interests both nationally and internationally. It actively participates in European engineering associations and advocates for the recognition of technical professional qualifications. The website targets engineers, technical professionals, and related organizations within Germany, providing information about its mission, goals, and organizational structure. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies including jQuery, Bootstrap, and various JavaScript libraries for enhanced user experience. It employs Cookiebot for GDPR-compliant cookie consent management and integrates Google Tag Manager for analytics and tracking. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses recognized consent management tools, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The domain registration data is consistent with the organization's profile, indicating legitimacy and trustworthiness. Overall, the website presents a professional and trustworthy digital presence suitable for its non-profit and technical audience. Strategic improvements could include publishing detailed security policies, implementing additional security headers, and providing clearer contact information for security incidents.

D

Deutsches Rotes Kreuz

drk-intern.de

0

The website www.drk-intern.de serves as an internal portal for the Deutsches Rotes Kreuz (German Red Cross), a large non-profit humanitarian organization in Germany. It provides access to various internal services such as knowledge databases, user management, service databases, and other organizational resources. The platform targets employees and members of the DRK, facilitating operational efficiency and information sharing within the organization. The site is well-branded with consistent use of official logos and links to subsidiary and partner domains, reinforcing its legitimacy and trustworthiness. Technically, the site is built on TYPO3 CMS and employs modern frontend libraries including jQuery, Foundation, and LightGallery. Hosting appears stable with dedicated nameservers, and the site uses HTTPS with a cookie consent mechanism powered by CCM19, indicating compliance with privacy regulations. Performance and mobile optimization are moderate to good, though accessibility and SEO could be improved further. From a security perspective, the site enforces HTTPS and uses secure login portals for internal services. However, explicit security headers and published security policies or incident response information are absent. No vulnerabilities or exposed sensitive data were detected in the content. The domain WHOIS data aligns well with the organization, supporting a high legitimacy score. Overall, the website is professional, secure, and compliant with GDPR, serving its internal audience effectively. Recommendations include enhancing security headers, publishing security and incident response policies, improving accessibility, and expanding SEO metadata to further strengthen the platform's security posture and user experience.

The website kurse-pflege.de is an online platform focused on providing nursing and caregiving courses primarily in the German language. It targets individuals seeking professional education and certification in healthcare and emergency care. The platform offers various training modules and educational content tailored to caregivers and healthcare professionals. The market position is that of a niche healthcare education provider serving the German-speaking community. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and video playback libraries such as Video.js. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. Security posture is basic with no evident security headers or advanced configurations, and no HTTPS status was explicitly found in the provided data. Privacy compliance is weak as no privacy or cookie policies were detected, and no GDPR compliance indicators are present. Business credibility is moderate but limited by the lack of explicit contact information and trust signals. Overall, the site is accessible and safe for general audiences but requires improvements in privacy, security, and business transparency to enhance trust and compliance.

The website www.drk-blutspende.de serves as the official platform for the DRK-Blutspendedienste, the blood donation services under the German Red Cross. It provides comprehensive information about blood donation, appointment scheduling, and donor services, targeting the general public in Germany. The site is well-branded, consistent, and professionally designed, reflecting its position as a leading non-profit healthcare service provider. Technically, the site employs modern JavaScript libraries such as Swiper.js and AOS for UI enhancements, uses Matomo for analytics, and integrates a consent management platform to comply with GDPR requirements. The presence of CSRF tokens and HTTPS indicates a good security posture, although some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site demonstrates a mature digital infrastructure suitable for its healthcare and non-profit mission.

Caritas international is a large German non-profit humanitarian aid organization operating under the Deutscher Caritasverband e.V. umbrella. The website serves as an information and donation platform supporting vulnerable populations worldwide in crises, conflicts, and natural disasters. It emphasizes transparency, trust, and social justice, supported by certifications such as the DZI Spendensiegel. The target audience includes donors, partners, and beneficiaries. Technically, the site uses a modern stack including AngularJS, jQuery, and slick carousel, hosted on freinet.zone with CDN support. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and vulnerability disclosure policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, with moderate user tracking via Google Tag Manager and Facebook Pixel.

CariNet operates as a digital service platform primarily serving the Caritas non-profit organization network in Germany. The website offers a range of services including a content management system (CMS 3.0), job and internship boards, data pool utilization, and online social consultation. It emphasizes accessibility and digital inclusion, aligning with upcoming legal requirements. The platform targets Caritas affiliates and social service providers, positioning itself as a niche service provider within the non-profit sector. Technically, the site uses modern JavaScript frameworks such as AngularJS and jQuery, integrates a cookie consent manager (Klaro), and employs a trusted SSL certificate from Sectigo, ensuring secure communications. The website is mobile-optimized, accessible, and SEO-friendly, with good content quality and consistent branding. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. No critical vulnerabilities or exposed sensitive data were detected. Overall, CariNet presents a trustworthy and professional digital platform supporting the Caritas network's digital transformation and service delivery.

R

rbb Rundfunk Berlin-Brandenburg

rbb-online.de

0

rbb24 is a well-established multimedia news portal serving the Berlin and Brandenburg regions, operated by the public broadcaster Rundfunk Berlin-Brandenburg (rbb). The website offers comprehensive news coverage including politics, economy, culture, sports, and panorama, supported by video and audio content. It maintains a strong digital presence with official social media channels and uses modern web technologies and a professional CMS platform, ensuring a high-quality user experience. The site is well-branded and trusted within its regional market.

Jüdische Allgemeine is a well-established German weekly newspaper focusing on politics, culture, religion, and Jewish life. It operates under the Zentralrat der Juden in Deutschland K.d.ö.R., serving primarily the German-speaking Jewish community and interested audiences. The website offers rich content including news, opinion pieces, and cultural commentary, supported by subscription models for print and digital editions. The brand maintains consistent and professional presentation with strong social media engagement.

Z

Zentralwohlfahrtsstelle der Juden in Deutschland e.V.

zwst-difd.de

0

The Deutsch-Israelischer Freiwilligendienst (DIFD) is a non-profit volunteer exchange program operated by the Zentralwohlfahrtsstelle der Juden in Deutschland e.V., established in 2015. It facilitates 6 to 18 month volunteer placements for young adults aged 18-26 between Germany and Israel, focusing on social and educational institutions. The website is professionally designed using WordPress with the Avada theme and Fusion Builder, supporting multilingual content in German, English, and Hebrew. It demonstrates good digital maturity with SEO optimization and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the site effectively supports its mission with clear content and trustworthy presentation.

K

Kompetenzzentrum für antisemitismuskritische Bildung und Forschung

zwst-kompetenzzentrum.de

0

The Kompetenzzentrum für antisemitismuskritische Bildung und Forschung is a specialized non-profit educational and research center based in Germany, focusing on antisemitism-critical education and research. It offers a range of services including educational programs, research studies, publications, and events targeted at educators, researchers, and civil society. The website is professionally designed using WordPress with Elementor and Astra theme, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and safe practices, though it lacks some advanced security headers and explicit security policies. Privacy compliance is good with a comprehensive privacy policy but missing a cookie consent mechanism. Overall, the domain and website content are consistent and trustworthy, affiliated with the Zentralwohlfahrtsstelle der Juden in Deutschland (ZWST).

M

MitzveNow

mitzvenow.de

0

MitzveNow is a specialized e-commerce platform based in Germany, offering a curated selection of Jewish religious and cultural products such as Schabbat sets, Judaica, kosher wines, and prayer books. The website targets the Jewish community and individuals interested in Jewish traditions, providing both one-time purchases and subscription services. The business operates in a niche retail market with a clear focus on cultural and religious needs. Technically, the site is built on WordPress with WooCommerce and several extensions tailored for the German market, including WooCommerce Germanized and subscription management plugins. The site demonstrates good digital maturity with SEO optimization, mobile responsiveness, and accessibility considerations. Security posture is strong with HTTPS enforced and multiple security headers present, although there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is generally good, with a comprehensive privacy policy available, but lacks a cookie consent mechanism which is important for EU regulations. Overall, the website is professional, trustworthy, and well-positioned within its market niche.

B

Brunnen Verlag GmbH

brunnen-verlag.de

0

Brunnen Verlag GmbH operates as a German publishing company specializing in books, gifts, cards, and calendars with a focus on spiritual and religious content. Their e-commerce platform is built on Magento, offering a range of products to German-speaking customers. The website demonstrates a moderate level of digital maturity with a modern tech stack including RequireJS, jQuery, KnockoutJS, and Matomo analytics. Social media integration and a Trusted Shops widget enhance customer trust. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks security headers and published privacy or cookie policies, indicating room for improvement in compliance and security transparency. Overall, the site is functional, safe, and professionally presented but would benefit from enhanced privacy and security disclosures.

I

ICF München

icf-muenchen.de

0

ICF München is a non-profit, interdenominational free church based in Munich, Germany, focused on providing dynamic, contemporary church experiences. The website reflects a small to medium-sized community organization with a clear religious mission and outreach through services and events. The site is professionally designed with consistent branding and good content relevance, targeting a general audience interested in church activities and community engagement. Technically, the website is built on WordPress using popular themes and includes modern tracking tools such as Google Analytics and Facebook Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks explicit security policies, vulnerability disclosures, and incident response information, which are recommended for improved trust and compliance. Overall, the website is safe, trustworthy, and functional, but could benefit from enhanced privacy and security transparency.

Ö

Ökumenische Arbeitsgemeinschaft für Bibellesen (ÖAB)

oeab.de

0

The Ökumenische Arbeitsgemeinschaft für Bibellesen (ÖAB) is a small non-profit organization based in Germany focused on providing ecumenical Bible reading resources such as monthly and yearly Bible verses, reading plans, and related publications. Their website serves as an informational hub for their community, offering downloadable graphics, flyers, and links to related religious content. Technically, the site is built on TYPO3 CMS with Bootstrap styling and uses Matomo analytics configured to respect user privacy by disabling cookies. The site is accessible, mobile-optimized, and well-structured, though it lacks some modern security headers and cookie consent mechanisms. Security posture is moderate with room for improvement in published policies and headers. Overall, the domain and website appear legitimate and trustworthy for their niche audience.

B

bibletunes.de – Die Bibel im Ohr!

bibletunes.de

0

bibletunes.de is a German-language media platform specializing in daily Bible podcasts and audio books, targeting Christian listeners interested in spiritual growth and Bible study. The platform offers a wide range of audio content from both the Old and New Testament, including special topic podcasts and news. The business model is primarily content publishing supported by donations, facilitated through an integrated Stripe payment gateway. The website is built on WordPress with modern web technologies and provides a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. No privacy policy or terms of service pages were detected, which is a compliance gap. Overall, the site is trustworthy, professional, and safe for general audiences.

B

Bibellesebund Deutschland

bibellesebund.de

0

Bibellesebund Deutschland is a medium-sized non-profit religious organization focused on encouraging people of all ages to engage with the Bible through various educational and spiritual resources. Their offerings include printed and digital Bible reading materials, events, seminars, youth and family retreats, and a podcast. The organization is part of the international Scripture Union movement and maintains a professional web presence with clear branding and consistent messaging. Technically, the website is built on the Contao CMS platform with modern JavaScript libraries and provides a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS, CSRF protection, and cookie consent mechanisms, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

V

visiomedia Studios

visiomedia.org

0

visiomedia Studios is a German-based videomarketing agency specializing in creative storytelling through various video formats including 2D and 3D animations, product visualizations, VFX, and motion graphics. The company targets businesses and individuals seeking professional video marketing solutions to effectively communicate their stories and products. Their market position is that of a niche creative agency with a strong portfolio showcasing diverse video projects. Technically, the website is built on WordPress using Fusion Builder and includes GDPR-compliant cookie consent mechanisms via the Complianz plugin. Hosting is provided by one.com, a common provider for small businesses. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and incident response information. Privacy compliance is partial due to the absence of a dedicated privacy policy page. Overall, the website is professional, well-designed, and user-friendly, with good mobile optimization and SEO practices. No suspicious or malicious content was detected, and the site is fully accessible without WAF or blocking mechanisms.

D

Der Bibel vertrauen | Karl-Heinz Vanheiden

derbibelvertrauen.de

0

Der Bibel vertrauen | Karl-Heinz Vanheiden is a German-language religious and theological website focused on Bible study, theological questions, and Christian education. The site offers blog articles, book reviews, and resources related to biblical topics, targeting German-speaking Christian readers interested in deepening their understanding of the Bible and theology. The business model centers on content publishing and educational outreach within a niche religious market. Technically, the website is built on Joomla CMS with modern frontend technologies including Bootstrap, jQuery, and Usercentrics for cookie consent management. The site demonstrates good mobile optimization and SEO practices, with structured data implemented for enhanced search engine understanding. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and trustworthy, with no privacy protection or suspicious patterns noted. Overall, the website is professional, trustworthy, and well-structured, with good content quality and user experience. The absence of direct contact information and formal security policies suggests room for improvement in transparency and security posture. The site is safe for general audiences and does not contain any adult or explicit content.

K

Katholisches Bibelwerk e. V.

bibelwerk.de

0

Das Bibelwerk is a German non-profit organization focused on providing serious and lively biblical interpretation and education. It operates through two main entities: the Katholisches Bibelwerk e. V. and the Verlag Katholisches Bibelwerk GmbH, offering publishing and retail services via its online shop. The website serves as a portal linking to these entities and related services, targeting religious communities and individuals interested in biblical studies. Technically, the site is built on TYPO3 CMS with moderate performance and good mobile optimization, using Umami Analytics for minimal user tracking. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy or cookie policies. No contact information or forms are present on the analyzed page, limiting direct user engagement. WHOIS data aligns with the website's claims, showing consistent domain registration without privacy protection, supporting legitimacy. Overall, the site is professional and trustworthy but could improve privacy compliance and security practices.

S

SCM Verlagsgruppe

scm-verlag.de

0

SCM-Shop.de is a professional e-commerce website operated by the SCM Verlagsgruppe, specializing in Christian books, music, gifts, and related products. The site targets Christian readers and customers in Germany, offering a broad catalog with convenient features such as free shipping over a threshold and a customer service hotline. The business model is retail-focused with an established market presence in the religious publishing sector. The website demonstrates consistent branding and good content quality, supporting a trustworthy user experience. Technically, the site is built on Magento, a robust e-commerce platform, enhanced with modern JavaScript libraries like jQuery and integrated search via Doofinder. Analytics are implemented using Google Analytics and Matomo, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, though hosting provider details are not explicitly disclosed. From a security perspective, the website enforces HTTPS and includes cookie consent mechanisms aligned with GDPR requirements. While some security headers are not explicitly detected, the site uses secure login forms with CSRF tokens and avoids exposing sensitive data. No vulnerabilities or security incidents are evident. However, publishing a dedicated security policy and security.txt file would enhance transparency and incident response readiness. Overall, SCM-Shop.de presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, formalizing incident response documentation, and maintaining up-to-date third-party components to sustain security and trust.

Die-Bibel.de is the official online portal of the Deutsche Bibelgesellschaft, a German non-profit organization dedicated to translating, distributing, and educating about the Bible. The website offers a wide range of Bible translations, scholarly resources, reading plans, and educational content aimed at both the general public and theological professionals. It also supports global Bible distribution projects through its World Bible Aid initiative. The organization holds a strong market position as a leading Bible society in Germany with a clear mission and trusted brand presence. Technically, the website is built on a modern Angular framework with robust integrations including Google reCAPTCHA, Google Tag Manager, and various analytics and marketing tools. It is hosted on reliable cloud infrastructure, optimized for performance, mobile responsiveness, and accessibility. The site employs security best practices such as HTTPS and Content Security Policy, though there is room for improvement in additional security headers and incident response transparency. From a security perspective, the site demonstrates a mature posture with no critical vulnerabilities detected. Privacy compliance is well addressed with comprehensive privacy and cookie policies aligned with GDPR requirements. Contact information is clearly provided, enhancing business credibility and user trust. Overall, Die-Bibel.de is a professionally managed, secure, and user-friendly platform that effectively serves its mission and audience. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving incident response contact visibility to further strengthen trust and resilience.

M

midi - Evangelische Arbeitsstelle für missionarische Dienste und Innovation in der Diakonie

mi-di.de

0

midi is a non-profit organization serving as a future workshop for church and diaconal innovation in Germany. It provides research, publications, workshops, and networking opportunities targeted at church and diaconal actors. The organization is affiliated with the Evangelisches Werk für Diakonie und Entwicklung e.V. and partners with major church bodies such as EKD and Diakonie. The website is professionally designed, content-rich, and regularly updated, reflecting a strong market position within its niche. Technically, the website uses modern web standards with HTML5, CSS3, and JavaScript, and integrates Matomo for analytics. Hosting is managed via INWX nameservers. The site is mobile-optimized and performs moderately well, though accessibility features are basic. SEO practices are good with proper meta tags and Open Graph data. Security posture is solid with HTTPS enforced and secure form handling, but lacks some advanced security headers and a cookie consent mechanism. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy and GDPR consent on forms, but cookie policy and terms of service are missing. Overall, midi presents a trustworthy and professional online presence with minor areas for improvement in privacy and security transparency. Strategic enhancements in cookie consent and security headers would further strengthen compliance and user trust.

D

Deutscher Bundestag

deutscher-bundestag.de

0

The Deutscher Bundestag website serves as the official online presence of the German Parliament, providing comprehensive information about parliamentary activities, members, agendas, and live streams. It targets the general public and stakeholders interested in governmental affairs. The site is positioned as a key governmental information portal in Germany, offering essential services related to legislative transparency and public engagement. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript, with custom styling and scripts. It uses HTTPS for secure communication and integrates Matomo analytics for user tracking. The site appears to be well-structured with good mobile optimization and SEO practices, although no common CMS or hosting provider details are evident from the data. From a security perspective, the site benefits from HTTPS and Google site verification, indicating legitimacy and basic security hygiene. However, the absence of explicit security headers, privacy and cookie policies, and incident response contacts suggests room for improvement in security posture and compliance. No WAF or blocking mechanisms were detected, and the content is fully accessible. Overall, the website is a credible and authoritative source of governmental information with good content quality and business credibility. Strategic enhancements in privacy compliance, security headers, and incident response transparency would further strengthen its security and trustworthiness.

Z

Zentralwohlfahrtsstelle der Juden in Deutschland e.V.

zwst.org

0

The Zentralwohlfahrtsstelle der Juden in Deutschland e.V. (ZWST) is a well-established non-profit organization serving as the social umbrella for Jewish welfare in Germany since 1917. The website reflects a mature and professional digital presence, offering comprehensive information about their social welfare services, youth programs, inclusion initiatives, humanitarian aid, and professional training. Their market position is strong within the German social welfare sector, supported by memberships and certifications that enhance trust and credibility. The target audience includes Jewish communities, volunteers, social workers, and the general public interested in Jewish social welfare.

W

Wohnraumkarte GmbH

wohnraumkarte.de

0

Wohnraumkarte GmbH is a German software company specializing in providing software solutions for the real estate industry, primarily through widgets and mapping tools integrated with OpenStreetMap and Mapbox. The website serves as a platform for property listings with filtering and mapping capabilities, targeting real estate professionals and clients in Germany. The business model is focused on Software as a Service (SaaS) offerings tailored to the real estate sector. Technically, the website employs modern JavaScript libraries such as Leaflet.js and Mapbox GL JS for interactive mapping, alongside jQuery and other UI libraries like Slick Carousel and PhotoSwipe. Hosting is managed via Amazon AWS infrastructure, as indicated by the DNS nameservers. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO practices. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in the HTML. However, it lacks visible security headers, privacy and cookie policies, and contact information for incident response, which are important for compliance and trust. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. Overall, the website is professionally designed and functional but would benefit from enhanced privacy compliance, security hardening, and clearer contact channels to improve trust and regulatory adherence.

B

BUWOG Immobilien Treuhand GmbH

buwog-immobilientreuhand.de

0

BUWOG Immobilien Treuhand GmbH operates in the real estate sector, providing property management and related services to tenants, property owners, and investors. The company positions itself as an important player within the German real estate market, with a professional online presence that targets a broad audience including tenants and investors. The website content is well-structured and professionally designed, reflecting a medium-sized enterprise with consistent branding and clear business focus. Technically, the website is hosted on Microsoft Azure infrastructure, utilizing Azure DNS and Cookiebot for cookie consent management. The site employs modern web technologies including JavaScript and CSS, and demonstrates good mobile optimization and SEO practices. However, some advanced security headers and explicit privacy policy documentation are missing, which could be improved to enhance compliance and security posture. From a security perspective, the website benefits from HTTPS encryption and a robust cookie consent mechanism, indicating awareness of GDPR and privacy requirements. No critical vulnerabilities or suspicious patterns were detected in the WHOIS data or website content. Nonetheless, the absence of explicit privacy policies, terms of service, and incident response contacts suggests room for improvement in transparency and user trust. Overall, the website presents a trustworthy and professional image with moderate technical maturity and compliance. Strategic enhancements in privacy documentation, security headers, and contact transparency would further strengthen its security posture and regulatory compliance.

V

Vonovia SE

hand-aufs-werk.de

0

Vonovia SE is a leading real estate company based in Germany, specializing in property management and housing services. The analyzed page 'Hand aufs Werk' is part of their career section, targeting individuals interested in hands-on roles within the company. The website demonstrates a professional and consistent brand presence with a focus on user experience and compliance with cookie consent regulations. Technically, the site uses modern web technologies including JavaScript frameworks and Cookiebot for privacy management. Analytics tools such as Econda and Google services are employed to monitor user interactions. Security posture is moderate with cookie consent implemented but lacks visible security headers and incident response contacts. WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency but does not detract from the apparent legitimacy of the business. Overall, the website is well-structured, secure, and compliant with privacy norms, serving a large enterprise audience in the real estate sector.

E

ecowo GmbH

ecowo.de

0

ecowo GmbH is a medium-sized real estate management company based in Germany, affiliated with the large real estate group Vonovia SE. The company specializes in property management services including condominium and rental property administration, positioning itself as a leading expert in the German real estate market. The website content is professional, primarily in German, and targets property owners and tenants within Germany. Technically, the website is hosted on Microsoft Azure infrastructure, uses modern web standards, and integrates Cookiebot for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization and SEO practices but lacks explicit privacy policy and terms of service pages in the analyzed content. Security posture is moderate with HTTPS enforced and cookie consent implemented, but missing explicit security headers and incident response information. Overall, the domain registration and DNS setup are consistent with the business claims, indicating a legitimate and trustworthy entity.

V

Vonovia SE

hier-ist-zuhause.de

0

Vonovia SE operates the website hier-ist-zuhause.de, which promotes a contest themed around reasons to love home. As a leading real estate company in Germany, Vonovia provides property management and housing services targeting residents and tenants. The website reflects a professional corporate identity with consistent branding and a focus on tenant engagement. Technically, the site uses modern infrastructure including Azure DNS and Cookiebot for cookie consent management, ensuring GDPR compliance and user privacy. Security posture is strong with HTTPS and no visible vulnerabilities, though explicit security and incident response policies are not published. Overall, the site is well-structured, mobile-optimized, and trustworthy, serving an enterprise-level audience in the real estate sector.

F

Fidelity International

fidelity.de

0

Fidelity International operates a comprehensive German website offering global investment and asset management solutions. The company targets institutional and private investors, providing a wide range of financial products including funds, ETFs, and robo-advisory services. The website demonstrates a mature digital presence with modern technologies and good user experience. Security posture is strong with HTTPS and data protection policies, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site reflects a reputable financial institution with consistent branding and compliance with GDPR.

K

KiKA

kikaninchen.de

0

KiKANiNCHEN is a well-established multimedia preschool platform operated under the KiKA brand, a joint venture of German public broadcasters ARD and ZDF. The website offers a rich variety of children's TV series videos, online games, craft ideas, and songs tailored for toddlers and preschool children, positioning itself as a trusted educational and entertainment resource in the German media landscape. The platform targets young children and their parents, providing a safe and ad-free environment for early online experiences. Technically, the site employs modern web standards including HTML5, CSS, JavaScript, and structured data (JSON-LD) to enhance SEO and accessibility, though mobile optimization and accessibility features are basic and could be improved. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks visible security headers and formal security policies, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, which is a critical area for improvement given GDPR requirements. Overall, the website demonstrates high business credibility and content quality but should strengthen its privacy and security posture to align with best practices.

Dresden 360 Grad Stadtrundgang is a specialized virtual tourism platform offering immersive 360° city tours of Dresden and its surrounding Elbland region. The website targets tourists and visitors interested in exploring Dresden's cultural and historical highlights through virtual reality experiences. The business operates a small but focused model promoting tourism and event venues with dedicated subdomains for different tour categories. Technically, the site is built on WordPress using the Divi theme, enhanced with Yoast SEO and Borlabs Cookie for GDPR compliance. The infrastructure is modern and mobile-optimized, providing a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though improvements like enabling DNSSEC and adding security headers are recommended. No critical vulnerabilities or suspicious content were detected, and privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the site presents a trustworthy and professional digital presence in the hospitality and tourism sector.

D

Deutsche Wohnen

deutsche-wohnen.com

0

Deutsche Wohnen is a major real estate company operating primarily in Berlin, Germany, focusing on residential property rental and management. The company positions itself as one of the largest landlords in Berlin, providing livable neighborhoods and urgently needed housing. The website reflects a professional and consistent brand image with a clear focus on its core business. Technically, the site uses modern web technologies including JavaScript, Cookiebot for cookie consent management, and Econda for analytics. The site is mobile-optimized and uses HTTPS, ensuring secure communication. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Privacy compliance is moderate with a cookie banner present but no explicit privacy policy or terms of service detected in the provided content. The domain WHOIS data is unavailable, which raises some concerns about domain registration transparency, but the website content and branding suggest a legitimate business. Overall, the site is professional and trustworthy with room for improvement in security transparency and privacy documentation.

G

GASAG-Gruppe

gasag-gruppe.de

0

GASAG-Gruppe is a well-established energy company based in Berlin, Germany, with a history dating back to 1847. The company operates primarily in the energy sector, focusing on sustainable and climate-neutral energy solutions including the supply of green gas and electricity, energy services, and renewable energy production. The website reflects a mature digital presence with modern technologies such as Usercentrics for consent management and Google Tag Manager for analytics, hosted on Microsoft Azure DNS infrastructure. The site is professionally designed, mobile-optimized, and provides comprehensive corporate information and navigation. Security posture is strong with HTTPS enforced and consent mechanisms in place, although explicit security policies and incident response contacts are not publicly detailed. Overall, the website and domain registration data indicate a legitimate and credible business with a strong regional market position.

G

GASAG DEALS

gasagdeals.de

0

GASAG DEALS operates a discount and partner deals platform primarily targeting GASAG customers in Germany. The website offers a variety of deals with over 50 partners and discounts up to 50%, positioning itself as a value-added service for energy customers. The business model focuses on customer retention and engagement through exclusive offers. The company appears to be medium-sized with a market presence since 2020, leveraging digital channels and social media for outreach. Technically, the website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Borlabs Cookie for cookie consent management. Hosting is supported by Microsoft Azure DNS infrastructure, indicating a reliable and scalable environment. The site demonstrates good mobile optimization and SEO practices, though performance is moderate and accessibility is basic. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA and Facebook Pixel with consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are missing, and there is no visible security policy or incident response information. Cookie consent is properly implemented, but privacy policy and terms of service are not found, which may impact compliance. Overall, the website is professional, trustworthy, and safe for general audiences. The main risks relate to incomplete privacy and security documentation. Strategic improvements in security headers, privacy disclosures, and incident response readiness would enhance the site's security posture and compliance standing.

G

GASAG AG

gasag.de

0

GASAG AG is a well-established German energy company with a history dating back to 1847. The company provides a broad range of energy-related services including green electricity (Ökostrom), gas tariffs, solar solutions, heating, and mobility services such as electric vehicle charging. The website targets both private and business customers, emphasizing sustainability, fair pricing, and reliability. The company holds a strong market position in Berlin and Germany with a large customer base and a focus on renewable energy expansion. Technically, the website employs modern web technologies including JavaScript modules, Usercentrics for consent management, Google Tag Manager for analytics, and AB Tasty for A/B testing. Hosting is managed via Microsoft Azure DNS, indicating a robust infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. From a security perspective, the site uses HTTPS and integrates consent management, but lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the company's claims, showing a legitimate and longstanding domain registration. Overall, GASAG's website reflects a mature digital presence with good security and privacy practices, though improvements could be made by publishing comprehensive privacy and security policies and providing clearer contact information for data protection and incident response.

D

Diakonie Deutschland

sozial-o-mat.de

0

Diakonie Deutschland is a prominent evangelical non-profit organization in Germany focused on social welfare, advocacy, and support services. The website provides election decision aids such as the Sozial-O-Mat to help voters compare social-political positions of parties and the organization. The site targets German voters interested in social policy and welfare issues. Technically, the website is built on TYPO3 CMS, uses modern JavaScript frameworks, and integrates consent management via Usercentrics alongside analytics tools like Google Analytics and Matomo. The site is hosted with Cloudflare DNS and employs HTTPS with strong SSL configuration. Security posture is solid with no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by consistent branding, partner affiliations, and professional content. Overall, the website is well-designed, accessible, and trustworthy, serving its non-profit mission effectively.

D

Dresden Marketing GmbH

dresden-magazin.com

0

Dresden Magazin is the official city magazine for the Dresden Elbland region, published by Dresden Marketing GmbH. It provides rich content focused on culture, events, gastronomy, family, and leisure activities, targeting residents and visitors interested in the region. The website is well-branded, professionally designed, and consistently maintained, reflecting a strong regional marketing presence supported by public funds. The business model centers on content publishing and regional promotion, leveraging digital media and social channels to engage its audience. Technically, the website runs on WordPress 6.8.1 with modern plugins such as Yoast SEO Premium and Borlabs Cookie for SEO and privacy compliance. It uses jQuery and Slick Carousel for interactive elements and integrates Google Analytics and Google Tag Manager for user tracking. The site is mobile-optimized with good navigation and accessibility features, although some accessibility aspects could be improved. Hosting details are not explicit but DNS servers suggest a reputable provider. From a security perspective, the site enforces HTTPS with a good SSL configuration and employs cookie consent mechanisms compliant with GDPR. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement. No vulnerabilities or exposed sensitive data were found. The WHOIS data is transparent and consistent with the business, showing a domain age appropriate for the company's history. Overall, Dresden Magazin presents a trustworthy, professional, and secure online presence with strong compliance to privacy regulations. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and establishing a vulnerability disclosure process to further enhance security posture and trust.

FUNKE Mediengruppe operates one of Germany's largest media houses, offering a wide range of career opportunities across various media sectors including magazines, regional media, digital, and logistics. The website serves as a professional recruitment and employer branding platform targeting professionals, students, trainees, and apprentices interested in media careers. Technically, the site is built on the Contao CMS platform and integrates modern analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and GDPR-compliant consent mechanisms, although some security headers and explicit security policies are not evident. Overall, the site is professional, well-branded, and trustworthy, with no signs of blocking or malicious activity.

K

KiKA

kika.de

0

KiKA is a well-established German public children’s television channel jointly operated by ARD and ZDF, providing a broad range of children’s series, films, games, and creative content. The website reflects a mature digital presence with excellent content quality and a clear focus on its target audience of children and families. The technical infrastructure leverages modern web technologies such as Next.js and React, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is robust with comprehensive privacy and cookie policies and GDPR adherence. Overall, KiKA presents a trustworthy and professional online presence consistent with its public broadcaster status.

R

Robert Bosch Smart Home GmbH

bosch-smarthome.com

0

Robert Bosch Smart Home GmbH operates a professional and well-branded website offering smart home products and solutions targeted primarily at European consumers. The company is a subsidiary of the Bosch Group, a well-established global technology leader. The website demonstrates a mature digital presence with modern technologies such as AngularJS and Google Tag Manager, and it provides comprehensive privacy and cookie policies aligned with GDPR requirements. However, the absence of WHOIS registration data is unusual for a corporate domain and may warrant further investigation. Security posture is strong with HTTPS and CSRF protections, though explicit security headers and incident response information are lacking.

B

BSH Hausgeräte GmbH

bsh-group.de

0

BSH Hausgeräte GmbH is a leading global manufacturer of household appliances, operating as a subsidiary of the Bosch Group. The company offers a comprehensive portfolio of products and brands, emphasizing innovation, sustainability, and customer service. The website reflects a mature digital presence with extensive content tailored for consumers, partners, and job seekers. Technically, the site leverages modern frameworks such as React and Next.js, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and external vulnerability reporting mechanisms in place. Privacy compliance is well addressed with clear policies and consent management. The main risk factor is the absence of WHOIS data, which slightly impacts domain trust but is mitigated by strong corporate branding and external trust signals.

H

Holtzbrinck Buchverlage GmbH

holtzbrinckverlage.de

0

Holtzbrinck Buchverlage GmbH is a prominent German publishing group managing several well-known imprints including Rowohlt, S. Fischer, Argon, Kiepenheuer & Witsch, and Droemer Knaur. The website serves as a corporate portal presenting these subsidiaries and their publishing activities, targeting a general audience interested in literature and media. The business model centers on book publishing and author representation, positioning Holtzbrinck as a major player in the German media industry. Technically, the site employs modern JavaScript frameworks (Vue.js) and integrates consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and consent mechanisms, though some security headers and explicit policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with no signs of blocking or malicious content.

B

Bundesfachverband Essstörungen e.V.

bundesfachverbandessstoerungen.de

0

The Bundesfachverband Essstörungen e.V. website serves as a professional and comprehensive resource dedicated to eating disorders in Germany. It targets healthcare professionals such as doctors, therapists, and counselors, as well as affected individuals and their families. The association provides access to research, therapy resources, events, and networking opportunities, positioning itself as a leading non-profit entity in the healthcare sector focused on eating disorders. The website content is well-structured, informative, and consistent with the organization's mission. Technically, the website is built on the Weblication CMS platform and hosted on servers associated with kasserver.com. It employs standard web technologies including JavaScript and Google Analytics with IP anonymization, alongside a cookie consent mechanism compliant with GDPR. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS (assumed though not explicitly confirmed), has secure form handling, and respects user privacy with consent banners. However, explicit security headers such as CSP and HSTS are not evident, and no formal security policy or incident response information is published. No vulnerabilities or suspicious content were found, indicating a generally sound security posture but with room for improvement in header implementation and transparency. Overall, the website is trustworthy, professional, and safe for general audiences. It effectively supports its non-profit mission with clear privacy compliance and relevant content. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.