Security Directory

B

Bayerischer Rundfunk

ardalpha.de

0

ARD alpha is an educational media platform operated by Bayerischer Rundfunk, a reputable public broadcaster in Germany. The website offers a wide range of learning resources including articles, videos, and podcasts targeting students, young adults, and the general public interested in education and knowledge. The content is professionally curated and presented with consistent branding and high-quality media assets. Technically, the site uses modern JavaScript libraries and tracking tools with some consent mechanisms, though explicit privacy and cookie policies are not clearly published on the main page. Security posture is moderate with no visible security headers or incident response information, but no critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy, well-maintained, and serves as a valuable educational resource.

K

kajomi GmbH

kajomi.de

0

kajomi GmbH is a German-based company specializing in providing a reliable and flexible newsletter and email marketing platform. With over 20 years of experience, kajomi offers a comprehensive SaaS solution that enables businesses to create, send, automate, and analyze newsletters with a strong emphasis on data security and GDPR compliance. The company positions itself as a top German provider in the email marketing sector, targeting businesses and marketers seeking efficient and secure newsletter distribution services. Their platform integrates with popular social media lead generation tools and offers personal support to clients. Technically, the website is built on WordPress with modern plugins and libraries such as WPBakery Page Builder, jQuery, and Borlabs Cookie for consent management. The site is well-optimized for SEO and mobile devices, with good performance and accessibility standards. The use of Google Tag Manager and Google Analytics indicates a moderate level of user tracking balanced with privacy considerations. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms to comply with privacy regulations. While no explicit security headers were detected in the provided data, the site shows no signs of exposed sensitive data or vulnerabilities. The WHOIS data aligns well with the business claims, showing consistent registration and no privacy protection, which supports legitimacy. Overall, kajomi GmbH demonstrates a mature digital presence with strong compliance and security postures suitable for its business model. Recommendations include enhancing security headers, publishing explicit security policies, and adding a vulnerability disclosure mechanism to further strengthen trust and security.

M

Mercedes-Benz Bank

mercedes-benz-bank.de

0

Mercedes-Benz Bank is a specialized financial institution providing automotive financing, leasing, insurance, and banking services primarily for Mercedes-Benz customers in Germany. The website reflects the corporate branding and targets a German-speaking audience interested in automotive financial products. The technical infrastructure leverages modern web technologies including web components and jQuery, hosted on Mercedes-Benz's asset domains. However, the site lacks visible privacy and cookie policies, and SEO is limited by restrictive robots meta tags. Security posture is minimal with no detected security headers or incident response information. Overall, the site is functional but could improve in compliance and security transparency.

W

Whirlpool Deutschland

whirlpool.de

0

Whirlpool Deutschland operates as a major retailer and service provider for household appliances in Germany, offering a wide range of kitchen and laundry products. The website reflects a mature digital presence with comprehensive user interaction tracking and cookie consent mechanisms, indicating compliance with GDPR and privacy regulations. The technical infrastructure leverages modern analytics and monitoring tools such as Google Analytics, Google Tag Manager, OneTrust, and New Relic, supporting a robust digital marketing and performance monitoring strategy. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response information are not publicly available. Overall, the website is professional, trustworthy, and well-optimized for user experience and compliance.

Mercedes-Benz Mobility AG operates the Mercedes pay GmbH, a digital payment platform integral to the Mercedes-Benz Group's mobility and digitalization strategy. The platform supports seamless, secure payment transactions across over 40 markets, facilitating e-commerce, in-car payments, and vehicle purchases within the Mercedes ecosystem. The website reflects a mature digital infrastructure with modern technologies such as jQuery, Google Tag Manager, and Usercentrics for consent management, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforcement and privacy compliance, though explicit security policies and incident response contacts are absent. WHOIS data is unavailable, which slightly impacts transparency but does not detract significantly from the site's legitimacy given the strong corporate branding and contact information. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

Kajomigenerator.de is a technology-focused website providing a client login portal for a service named Kajomi Generator. The site appears to serve clients who require generation or management of specific data or content, though no detailed business description or public-facing content is provided. The website's market position and business scale appear small and focused on a niche client base. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and an older version of CKEditor (4.5.10). The site shows basic mobile optimization and accessibility but lacks modern SEO and comprehensive technical enhancements. The presence of an API hostname using HTTPS suggests secure backend communication, but no explicit security headers or advanced frameworks are detected. From a security perspective, the site has some basic protections such as password input masking and HTTPS usage implied by API calls. However, the use of an outdated CKEditor version and absence of security headers or CSRF protections indicate potential vulnerabilities. No privacy, cookie, or terms of service policies are present, limiting compliance with GDPR and other regulations. No contact or incident response information is publicly available. Overall, the site is functional but basic, with moderate trustworthiness based on WHOIS data consistency. Strategic improvements in security hardening, privacy compliance, and business transparency are recommended to enhance credibility and reduce risk.

C

Civey GmbH

civey.com

0

Civey GmbH is a German-based company specializing in digital market and opinion research, providing real-time survey data and analytics services primarily to businesses, media, political organizations, and marketing professionals. Established in 2009, Civey has positioned itself as a leading provider in the German market research sector, offering a range of services including real-time polling, market studies, and data consulting. The website reflects a professional and comprehensive business presence with clear navigation and high-quality content tailored to its target audience. Technically, the website is built on modern web technologies including React and Next.js, hosted and secured via Cloudflare services. It employs Google Tag Manager for analytics and OneTrust for consent management, indicating a mature digital infrastructure with good performance, mobile optimization, and SEO practices. Accessibility features are present, enhancing user experience across devices. From a security perspective, the site enforces HTTPS with strong SSL configurations and includes essential security headers. While no critical vulnerabilities or exposed sensitive data were detected, the absence of DNSSEC and a public security policy or incident response page suggests areas for improvement. Privacy compliance is robust, with clear GDPR-aligned privacy and cookie policies and visible consent mechanisms. Overall, Civey.com demonstrates a high level of professionalism, security, and compliance suitable for its business domain. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing transparency around security policies and incident response to further strengthen trust and security posture.

The website webdesign-keller.de currently serves an HTTP 403 Forbidden error page indicating that access is denied. This prevents any meaningful content or business information from being accessed or analyzed. The domain is registered with domaincontrol.com name servers, a common hosting provider for small businesses, but no registrant details or company information are available. Due to the blocked content, no privacy, cookie, or terms of service policies are found, and no contact information or security policies are visible. The technical infrastructure details are minimal, with no detectable CMS, scripts, or analytics. Security posture cannot be properly assessed due to lack of accessible content and missing security headers or SSL information. Overall, the site appears to be a small business domain with limited online presence and currently inaccessible content, resulting in a low trust and security score.

O

onvista bank - eine Marke der Commerzbank AG

onvista-bank.de

0

The onvista bank website represents a well-established online brokerage service brand under the Commerzbank AG umbrella, targeting retail investors and traders in Germany. The site offers a comprehensive range of financial products including funds, CFDs, options, certificates, and stocks, supported by a webtrading platform. The business model focuses on providing accessible and competitive online trading services with clear pricing and security information. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes cookie consent mechanisms, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and security-related informational content, though some improvements in security headers and incident response transparency are recommended. Overall, the site is professional, trustworthy, and compliant with GDPR and related regulations.

O

onvista

onvista.com

0

Onvista is a well-established German financial portal offering comprehensive stock market data, news, and investment tools. The platform targets retail investors and financial market participants, providing real-time and delayed market data, portfolio management, broker comparison, and premium subscription content. The website demonstrates a mature business model with integrated brokerage services and a strong market presence in Germany. Technically, the site leverages modern frameworks such as React and Next.js, hosted on AWS infrastructure, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced, but lacks visible security headers and explicit security policies. Privacy compliance is limited due to missing visible privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich, but could improve transparency and compliance aspects.

Katharina Linnepe operates a professional website focused on communication expertise, including moderation, voice-over, coaching, feminist inspiration, and comedy. The business targets individuals and organizations seeking specialized communication services and feminist-themed entertainment. The website is built on the Jimdo CMS platform, leveraging modern web technologies and includes event announcements and book promotion, indicating active engagement with the audience. Technically, the site is moderately optimized with good mobile responsiveness and SEO practices but lacks visible advanced security headers and a privacy policy. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and external partner links support its legitimacy. Overall, the security posture is moderate with room for improvement in compliance and security best practices.

S

Safer Sex Berlin

safersexberlin.com

0

Safer Sex Berlin is a grassroots non-profit organization dedicated to improving sexual healthcare access for women and genderqueer individuals in Germany. The organization focuses on advocacy, community programming, pop-up STI testing, and research to address systemic barriers and promote sexual health justice. The website is professionally designed using Squarespace, featuring clear navigation, mobile optimization, and a cookie consent mechanism. However, it lacks explicit privacy policy and terms of service pages, and no direct contact information is provided. The domain WHOIS data is unavailable, raising concerns about domain registration transparency. Overall, the digital presence is solid but would benefit from enhanced compliance documentation and verified contact details.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

bzga-essstoerungen.de

0

The website www.bzga-essstoerungen.de is operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG), a governmental public health institute in Germany focused on providing comprehensive information and support related to eating disorders. The site offers detailed educational content, counseling options, therapy guidance, and a database for finding local support centers. It targets a broad audience including affected individuals, families, and healthcare professionals. The business model centers on public health awareness and support services without commercial intent, positioning it as a trusted governmental resource in the healthcare sector. Technically, the website is built on TYPO3 CMS with a modern and accessible design, incorporating Bootstrap for responsive layouts and AblePlayer for media accessibility. It uses Matomo analytics configured for privacy compliance, including IP anonymization and consent-based data collection. The site demonstrates good mobile optimization, SEO practices, and accessibility features, reflecting a mature digital infrastructure suitable for public sector needs. From a security perspective, the site enforces HTTPS and employs a cookie consent mechanism aligned with GDPR requirements. However, it lacks publicly available security policies, incident response contacts, and security headers that could enhance its security posture. No vulnerabilities or suspicious activities were detected, and the WHOIS data aligns reasonably with the organizational identity, supporting legitimacy. Overall, the website scores well on content quality, privacy compliance, and business credibility, with moderate technical and security scores. Strategic improvements in security transparency and policy publication would further strengthen trust and resilience. The site is safe for general audiences, with no adult or inappropriate content detected.

K

Kiepenheuer & Witsch

kiwi-verlag.de

0

Kiepenheuer & Witsch is a well-established German publishing house specializing in literature and critical/popular non-fiction books since 1951. The website serves as a digital storefront and information portal for books, authors, and related publishing activities, targeting German-speaking readers and book enthusiasts. The business operates under the Holtzbrinck Publishing Group umbrella, indicating a strong market position in the media sector. Technically, the website employs modern web technologies including the Astro framework and Drupal CMS, hosted behind Cloudflare DNS services. It integrates Google Tag Manager for analytics and Usercentrics for GDPR-compliant cookie consent management, reflecting a mature digital infrastructure. The site is mobile-optimized with good SEO and accessibility features, although some accessibility aspects could be improved. From a security perspective, the site uses HTTPS with strong SSL configuration and Cloudflare protection. Security headers are partially implemented, and no critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy or incident response contact limits transparency. Privacy compliance is supported by a cookie consent mechanism but lacks a clearly linked privacy policy or terms of service in the analyzed content. Overall, the website presents a professional and trustworthy digital presence with moderate to high scores in content quality, technical implementation, security posture, and business credibility. Strategic improvements include publishing explicit privacy and security policies, enhancing accessibility, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

U

Ullstein Buchverlage GmbH

ullstein.de

0

Ullstein Buchverlage GmbH is a well-established German book publishing company founded in 1952, specializing in entertaining novels, thrillers, non-fiction, and biographies. The company operates multiple imprints and targets a broad audience interested in literature and books. Their website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on Microsoft Online infrastructure. The site is professionally designed, mobile-optimized, and SEO-friendly, offering direct book sales and author-related services. Security posture is solid with HTTPS and some security headers, but lacks explicit privacy and cookie policies as well as incident response information. Social media integration is strong, enhancing trust and engagement. Overall, the website is credible and trustworthy but could improve privacy compliance and security transparency.

T

The Good Media Network GMN GmbH

dokumentale.de

0

The website www.doxumentale.de represents The Good Media Network GMN GmbH, hosting the International Documentary and Media Festival Berlin. It serves as a platform for documentary film enthusiasts and media professionals, offering festival programming, ticket sales, and editorial content. The site is well-branded and consistent, targeting a niche cultural audience with a focus on documentary films and social themes. Technically, the site is built on TYPO3 CMS with Bootstrap, integrating modern tools such as Matomo for analytics, Facebook Pixel for marketing, and Stripe for secure payment processing. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and published security policies. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. No direct contact emails or phone numbers are found on the homepage, but social media presence is active. Overall, the site is professional, trustworthy, and well-maintained, with room for improvement in security transparency and incident response readiness.

V

Verlag J.H.W. Dietz Nachf. GmbH

dietz-verlag.de

0

Verlag J.H.W. Dietz Nachf. GmbH is a well-established German publishing house specializing in political, social, and historical literature. With a history dating back to 1881, the company focuses on critical and scholarly works addressing topics such as democracy, right-wing extremism, social inequality, and the history of social democracy and National Socialism. The website reflects a professional and content-rich platform targeting readers interested in these fields, offering books, journals, podcasts, and newsletters. Technically, the website employs a modern yet straightforward tech stack including jQuery and FontAwesome, hosted on rzone.de servers. The site is mobile-optimized with good SEO practices and a clear navigation structure. Cookie consent mechanisms and privacy policies are implemented in compliance with GDPR, enhancing user trust and legal compliance. From a security perspective, the site uses HTTPS and cookie consent banners effectively but lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business claims, showing consistent registration and domain age appropriate for the company's long history. Overall, the website presents a secure, trustworthy, and professional digital presence for a niche publishing business. Strategic improvements could include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure channel to further strengthen security posture and user confidence.

V

VIA Schankhalle Pfefferberg gGmbH

pfefferberg-theater.de

0

Pfefferberg Theater is a small, non-profit cultural institution based in Berlin, Germany, offering a diverse range of theatrical performances including contemporary circus, dance, family shows, and live literature readings. The organization emphasizes artistic quality and inclusivity, partnering with local gastronomy and cultural entities to enhance visitor experience. The website reflects a professional and consistent brand presence with clear navigation and relevant content for its target audience of arts and culture enthusiasts. Technically, the website employs modern web technologies including JavaScript libraries, CSS frameworks, and accessibility tools such as ReadSpeaker. It integrates third-party services like Vimeo for video content and Google Analytics for visitor tracking, while maintaining GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some security headers are not explicitly detected. From a security perspective, the site uses HTTPS and enforces cookie consent with granular user control, but lacks visible security policies or incident response information. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data is partially consistent with the website's German location and business nature, with no suspicious patterns detected. Overall, the site presents a low-risk profile with good privacy compliance and a solid security posture. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

H

hauseins

hauseins.fm

0

Hauseins is a German podcast label specializing in producing and distributing journalistic podcasts covering politics, economy, science, and culture. The website presents a professional portfolio of diverse podcast shows targeting podcast enthusiasts interested in serious and entertaining content. The company appears to be a small but established player in the media sector, founded in 2017, with a consistent brand presence and positive testimonials from industry professionals. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and offering good mobile optimization and accessibility. Security posture is adequate with HTTPS enabled, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Contact and incident response information is not readily visible, which could be improved to enhance trust and compliance. Overall, Hauseins demonstrates a solid digital presence with room for security and privacy enhancements.

S

Steady

steady.fm

0

Steady is a platform dedicated to empowering independent media makers by providing an integrated ecosystem to build and manage membership communities. The website presents a professional and consistent brand image, targeting content creators who seek to monetize and engage their audience effectively. The business operates primarily in the media sector and is based in Germany, with a medium-sized market presence. Technically, the site is built using Framer, leveraging modern web fonts and structured data to enhance SEO and user experience. While the site uses HTTPS and shows good design and navigation, it lacks explicit privacy and cookie policies, as well as security headers, which are important for compliance and security posture. No blocking or WAF mechanisms were detected, and the WHOIS data aligns well with the business profile, indicating legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security best practices.

U

USU Digital Consulting

usu-digitalconsulting.com

0

USU Digital Consulting is a large, established technology consulting firm based in Germany, specializing in digital transformation services including AI, process automation, digital customer experience, and e-government solutions. The company positions itself as a full-service provider with over 45 years of expertise and a strong focus on customer-centric, value-oriented consulting. Technically, the website is built on Drupal 10 and integrates multiple modern analytics and marketing tools with a robust consent management system, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though the absence of a public security policy or incident response contact is noted. The missing WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, but the professional website content and technology usage support the business credibility. Overall, the website is well-designed, accessible, and trustworthy, serving a professional business audience.

D

Der Lila Podcast

lila-podcast.de

0

Der Lila Podcast is a German-language feminist podcast platform established around 2016, focusing on feminist discourse, social justice, and political topics. It operates as a small non-profit media entity, funded primarily through crowdfunding platforms such as Steady and Patreon, and supplemented by book sales and live events. The website is professionally designed and well-maintained, offering rich content including podcast episodes, transcripts, and related resources. The target audience is German-speaking individuals interested in feminism and social activism. Technically, the site runs on WordPress with common podcasting plugins and integrates social media and crowdfunding widgets. Hosting is provided by Cloudpit, a reputable hosting provider.

F

FidAR – Frauen in die Aufsichtsräte e. V.

wob-index.de

0

FidAR – Frauen in die Aufsichtsräte e. V. operates as a non-profit organization focused on promoting gender equality in corporate leadership within Germany. The website wob-index.de serves as an analytical platform providing studies and rankings (Women-on-Board-Index) to monitor the implementation and acceptance of legally mandated gender quotas in supervisory boards and management positions of private and public companies. The organization is recognized as a standard setter in this niche, targeting companies, policymakers, and the public interested in gender parity in governance. Technically, the website employs modern web technologies including Bootstrap for responsive design and Chart.js with Chartisan for data visualization. It is hosted on servers associated with kasserver.com and uses HTTPS to secure communications. The site is well-structured, mobile-optimized, and provides clear navigation, although it lacks some advanced accessibility features and explicit cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses trusted external libraries but does not explicitly implement security headers or publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is supported by a comprehensive privacy policy linked externally, but no cookie banner or GDPR consent mechanism is present. Overall, the website presents a professional and trustworthy front with high content quality and business credibility. Recommendations include enhancing privacy compliance with cookie consent, adding security headers, and publishing security-related policies to improve the security posture and user trust further.

O

onvista

onvista.de

0

Onvista is a well-established German financial portal providing comprehensive stock market data, news, and investment tools. It targets retail investors and financial market participants primarily in Germany. The platform offers real-time and delayed market data, portfolio management, broker comparison, and premium subscription content. Technically, the site uses modern frameworks such as React and Next.js, hosted likely on AWS infrastructure with CDN and security services. The website is fast, mobile-optimized, and well-structured, providing an excellent user experience. Security posture is strong with HTTPS and modern best practices, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is limited due to missing visible privacy and cookie policies. Overall, the site is professional, trustworthy, and safe for general audiences.

F

FUNKE Mediengruppe

morgenpost.de

0

Berliner Morgenpost, operated by FUNKE Mediengruppe, is a well-established regional news media outlet providing current news and background information on politics, economy, and sports primarily focused on Berlin and Germany. The website offers a mix of free content supported by advertising and subscription-based premium content, including e-paper and podcasts. The target audience is general public interested in regional and national news. The company maintains a strong market position as a trusted news source in the German media landscape. Technically, the website employs a modern technology stack including JavaScript and TypeScript, with integrations for consent management, analytics, advertising, and subscription management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate with asynchronous loading of third-party scripts to optimize user experience. From a security perspective, the site enforces HTTPS and uses consent management to comply with GDPR. While explicit security headers are not fully confirmed, best practices appear to be followed with no visible vulnerabilities or exposed sensitive data. The absence of a security.txt or explicit incident response contact is noted as an area for improvement. Overall, the website presents a low risk profile with strong compliance and professional operations. Strategic recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and improving incident response transparency to further strengthen trust and security posture.

Hans-Böckler-Stiftung is a German non-profit foundation affiliated with the German Trade Union Confederation (DGB), focusing on labor participation, research funding, and scholarships. The website serves as an information portal for its institutes and services, targeting researchers, students, and labor organizations. The foundation maintains a solid market position within the non-profit sector in Germany, supported by multiple specialized research institutes. Technically, the website employs modern web standards, including HTML5, CSS3, and JavaScript, with integration of a consent management platform (Usercentrics) and Google Tag Manager for analytics. The site is well-structured, mobile-optimized, and accessible, with good SEO practices. Security posture is moderate, with HTTPS usage and cookie consent mechanisms, but lacks explicit security headers and published security policies. Overall, the website is professional and trustworthy, though it could improve transparency by publishing privacy policies, terms of service, and incident response contacts.

D

Design Keller Internetagentur Berlin

design-keller.de

0

Design Keller Internetagentur Berlin is a small, specialized internet agency based in Berlin, Germany, offering professional web design, web programming, and content management services primarily using TYPO3 CMS. The company targets local businesses and organizations seeking customized web solutions, including SEO and consulting. The website reflects a solid market position with a portfolio of diverse client projects and a consistent brand presence. Technically, the site uses legacy and modern web technologies, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit security policies. Overall, the site is professional and trustworthy but could improve privacy compliance and technical modernization. The domain registration data aligns well with the business claims, supporting legitimacy.

ressourcenmangel is a small media and communication agency based in Germany, specializing in producing video content, branding, and awareness campaigns primarily for government, healthcare, and energy sector clients. Their website serves as a showreel landing page showcasing various multimedia projects for notable institutional clients. The technical infrastructure uses modern frontend technologies such as Bootstrap, Swiper.js, and GSAP for smooth animations and user experience. Hosting is likely provided by GoDaddy based on nameserver data. Security posture is moderate with HTTPS assumed but lacking explicit security headers and policies. No user input forms or tracking scripts are present, reducing attack surface but also limiting user engagement features. Privacy and cookie policies are absent, which is a compliance gap. Overall, the website is professional and safe but could improve transparency and security practices.

A

Adacor Hosting GmbH

adacor.com

0

Adacor Hosting GmbH is a German-based technology company specializing in cloud solutions and AI journey consulting. Their services focus on private AI models, private cloud infrastructure, Azure, Kubernetes, and cloud consulting aimed at digital transformation for businesses. The company positions itself as a specialized cloud solutions provider with a medium-sized business footprint. The website reflects a professional and consistent brand image targeting business clients seeking advanced cloud and AI services. Technically, the site is built on WordPress with modern libraries such as jQuery and Font Awesome, and integrates analytics and marketing tools like Hotjar and Google Tag Manager. The site is mobile optimized and SEO friendly, though some accessibility features could be improved. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. The absence of WHOIS data is a notable concern for domain legitimacy, requiring further verification. Overall, the website is professional and trustworthy but could enhance transparency and security documentation.

S

STRIVE Magazine

strive-magazine.de

0

STRIVE Magazine is a German-language digital magazine and e-commerce platform focused on female empowerment in business, career, finance, and psychology. The website is built on the Shopify platform, leveraging various Shopify apps and third-party JavaScript libraries to provide marketing, countdown timers, and form functionalities. The site targets a general audience interested in innovative economic stories and role models, positioning itself as a niche media outlet in the German market. Technically, the site is well-structured with modern technologies and good mobile optimization, hosted on Shopify's secure CDN infrastructure with HTTPS enforced. However, the absence of explicit privacy, cookie, and terms of service policies indicates gaps in compliance and transparency. Security posture is generally good due to Shopify's platform security, but additional security headers and formal policies would enhance trust. Overall, the website is professional and functional but would benefit from improved privacy compliance and clearer contact information to strengthen business credibility and user trust.

B

BERNET COMMUNICATION GMBH

kliemt.blog

0

Kliemt.blog is a specialized German labor law blog operated by BERNET COMMUNICATION GMBH, providing comprehensive legal insights, articles, and podcasts focused on labor law topics such as compliance, restructuring, and ESG. The website targets legal professionals and business decision makers interested in labor law developments. Technically, the site is built on WordPress with modern plugins and frameworks, delivering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS and domain protection flags, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but should improve privacy and security practices.

L

Lightspeed Commerce

lightspeedhq.de

0

Lightspeed Commerce operates a leading POS and payment platform serving ambitious entrepreneurs across more than 100 countries, with a strong presence in Germany. The website reflects a mature digital infrastructure leveraging WordPress CMS, Tailwind CSS, and advanced marketing and analytics tools such as Google Tag Manager, Datadog RUM, and Visual Website Optimizer. The company demonstrates strong GDPR compliance with OneTrust cookie consent management and integrates reCAPTCHA Enterprise for bot protection. Security posture is robust with HTTPS enforcement and multiple security headers, though a dedicated security policy and incident response information are not publicly available. Overall, the site is professional, well-branded, and trustworthy, supporting a large enterprise business model in the technology and retail sectors.

B

BBBank

bbbank.de

0

BBBank is the largest cooperative private customer bank in Germany, offering modern digital banking services alongside a nationwide branch network. The website reflects a professional banking institution targeting private customers in Germany, with a focus on convenience and high-quality advisory services. The technical infrastructure uses modern JavaScript frameworks and integrates analytics and tracking tools such as Google Tag Manager and Bing tracking pixels. Security posture is adequate with HTTPS enabled and asynchronous loading of tracking scripts, but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies in the analyzed content. Overall, the website is trustworthy and professional but could improve transparency and compliance documentation.

G

Gewerkschaft Erziehung und Wissenschaft

gew-shop.de

0

The GEW Shop is an e-commerce platform operated by the Gewerkschaft Erziehung und Wissenschaft, a German educational union. The website offers a variety of union-related merchandise including promotional items, printed materials, office supplies, and campaign materials targeted primarily at union members and educational professionals. The platform positions itself as a niche provider within the education sector, supporting union activities and member engagement through its product offerings. The site is well-branded, consistent, and provides clear contact information and policies, enhancing user trust. Technically, the website is built on Magento 2 using the Smartwave Porto theme, incorporating modern web technologies such as jQuery, RequireJS, and Bootstrap. It is hosted on infrastructure associated with DomainControl (likely GoDaddy). The site is mobile-optimized and includes standard e-commerce functionalities such as shopping cart, user accounts, and search. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS, uses secure cookies, and includes CAPTCHA on login forms to mitigate automated abuse. However, it lacks explicit HTTP security headers and a public security policy or vulnerability disclosure mechanism. Matomo analytics is used for user tracking with moderate tracking levels and GDPR-compliant cookie management. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure channel to strengthen security posture and trust further.

#

#stayonboard

stayonboard.org

0

The website stayonboard.org represents a focused advocacy initiative aimed at legal reform in Germany to allow board members of stock corporations to temporarily pause their mandates during family-related absences without resigning. The initiative has achieved legislative success, positioning itself as a niche but impactful player in corporate governance reform. Technically, the site is built on WordPress with a modern tech stack including Matomo analytics and Borlabs Cookie for consent management. Security posture is generally good with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is moderate due to the absence of explicit privacy and terms of service pages. Overall, the site is professional, trustworthy, and serves a specialized audience effectively.

K

Käte Ahlmann Stiftung

kaete-ahlmann-stiftung.de

0

The Käte Ahlmann Stiftung is a German non-profit organization focused on mentoring success-oriented women entrepreneurs through its #TWINmentoring program. The website presents a professional and well-structured platform offering a year-long mentoring experience with experienced businesswomen, fostering personal and business growth. The target audience is women entrepreneurs seeking guidance and networking opportunities. Technically, the site is built on WordPress using common frameworks and plugins, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and CAPTCHA protections, though lacking advanced security headers and formal security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and credible with clear contact information and partner affiliations.

I

INTES Akademie für Familienunternehmen GmbH

intes-akademie.de

0

INTES Akademie für Familienunternehmen GmbH is a leading consulting and educational institute specializing in family businesses across Germany, Austria, and Switzerland. The company offers a broad range of services including strategic consulting for family governance, succession planning, advisory board setup, and professional training seminars. Their market position is strong, supported by a professional online presence and affiliation with PwC Germany. Technically, the website is built on WordPress with modern plugins and frameworks, ensuring good performance, mobile optimization, and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and provides multiple contact channels.

F

FidAR e.V.

fidar.de

0

FidAR e.V. is a German non-profit organization dedicated to increasing the representation of women in supervisory boards and leadership roles within the economy. The website serves as a comprehensive platform offering research indices, advocacy, educational programs, and partnership information to support gender diversity in corporate governance. The organization targets women professionals, policymakers, and corporate stakeholders interested in gender equality. Technically, the site is built on TYPO3 CMS, uses standard JavaScript libraries like jQuery and Owl Carousel, and is hosted on German servers with secure HTTPS and cookie consent mechanisms in place. Security posture is solid with HTTPS and privacy compliance, though some security headers could be improved. The site is professional, well-branded, and trustworthy with clear contact details and social media presence. No critical vulnerabilities or suspicious content were detected.

Femtec.Alumnae e.V. is a German non-profit organization dedicated to supporting and networking highly qualified women in STEM fields. The website serves as a platform to promote events, mentoring programs, awards, and advocacy for gender equality in technology and science sectors. The organization has a medium-sized membership base and a strong presence in Germany and Switzerland. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and various plugins for enhanced functionality. The site is well-designed, mobile-optimized, and provides rich content relevant to its audience. Security posture is adequate with HTTPS enabled, but lacks some security headers and cookie consent mechanisms, which are recommended for GDPR compliance. WHOIS data is unavailable, which slightly reduces trustworthiness but the professional presentation and external links support legitimacy. Overall, the website is a credible and valuable resource for women in STEM, with room for security and privacy improvements.

B

Business and Professional Women (BPW) Germany e.V.

equalpayday.de

0

The website www.equalpayday.de represents the Equal Pay Day campaign managed by Business and Professional Women (BPW) Germany e.V., a non-profit organization advocating for gender pay equality and pay transparency in Germany. The site provides campaign information, educational resources, event details, and engages a broad audience including employees, employers, and policymakers. It holds a solid market position as an established awareness campaign with governmental and societal support. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, supplemented by plugins like JetEngine and Borlabs Cookie for cookie management. The site is HTTPS secured, mobile optimized, and employs structured data for SEO and social media integration. Performance is moderate with good design and navigation clarity. From a security perspective, the site uses HTTPS and includes sanitization libraries like DOMPurify, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or suspicious content were detected. Privacy compliance is partial, with cookie consent implemented but no explicit privacy policy page found. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements include publishing comprehensive privacy and security policies, implementing security headers, and adding vulnerability disclosure information to enhance trust and compliance.

E

EMA e.V.

ema-germany.org

0

EMA e.V. is a well-established non-profit association based in Germany, dedicated to fostering economic and cultural cooperation between Europe and the Mediterranean Arab region. The organization offers a range of services including workforce recruitment, market studies, international cooperation projects, and organizes various events such as business delegations and expert roundtables. The website reflects an active and professional presence with multilingual support and detailed content tailored to businesses and professionals interested in Euro-Mediterranean-Arab relations. Technically, the site is built on WordPress with modern plugins and frameworks, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and clientTransferProhibited domain status, though improvements like DNSSEC and explicit security policies could enhance trust further. Overall, EMA e.V. presents a credible and trustworthy digital presence aligned with its business mission.

B

Business Angels Netzwerk Deutschland e.V. (BAND)

business-angels.de

0

Business Angels Netzwerk Deutschland e.V. (BAND) is a German non-profit association serving as a central network and promoter for business angels and their investment culture in Germany. The organization supports innovative start-ups seeking capital and provides expert and qualification networks for early-stage financing. The website is professionally designed using WordPress CMS, with a moderate performance profile and good mobile optimization. It integrates modern technologies including Google Analytics and a GDPR-compliant consent management platform (Usercentrics). Security posture is solid with HTTPS enforced and privacy compliance well addressed, although explicit security policies and incident response information are not published. The site maintains a high level of trustworthiness with consistent domain registration data and clear business information.

B

Berliner Erklärung

berlinererklaerung.de

0

The Berliner Erklärung website represents a well-established non-profit coalition of 23 women's organizations in Germany advocating for gender equality across political, economic, and social spheres. The organization actively engages in political dialogue, public campaigns, and coalition building to influence legislation and promote equal participation of women. The website content is professionally presented in German, targeting politically engaged citizens and equality advocates. The business model is focused on advocacy and policy influence rather than commercial activities. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, incorporating modern web technologies such as jQuery and Slick Carousel. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. No major technical debts or vulnerabilities are evident from the provided data. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No incident response or vulnerability disclosure policies are publicly available, indicating room for improvement in security transparency. Overall, the website is trustworthy and professional, with a strong alignment between domain registration data and business claims. The absence of tracking scripts and minimal user data collection reflects a privacy-conscious approach. Strategic recommendations include implementing cookie consent, adding security headers, and publishing security policies to strengthen compliance and trust.

G

Gewerkschaft Nahrung-Genuss-Gaststätten (NGG)

ngg.net

0

The website www.ngg.net represents the Gewerkschaft Nahrung-Genuss-Gaststätten (NGG), a large German trade union focused on workers in the food industry, food crafts, and hospitality sectors. The site provides comprehensive information about the union's activities, member services, labor rights advocacy, and sector-specific hotlines. It targets employees and workers in these industries, offering resources such as legal protection, education, and collective bargaining updates. The website is professionally designed, well-structured, and fully accessible, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS with Bootstrap and modern frontend tools like Vite and Leaflet for mapping features. It demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and secure forms, though some advanced security headers could be added. Privacy compliance is robust with clear privacy and cookie policies aligned with GDPR requirements. Contact information is primarily via web forms, with no direct emails or phone numbers exposed. The WHOIS data for the domain is unavailable, showing no registration match, which is unusual but may be due to privacy protection or recent registration. Despite this, the website's professional quality and content indicate legitimacy. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the site scores well on content quality, technical implementation, security, and privacy compliance, with minor deductions due to WHOIS transparency and lack of explicit security policies. Strategic recommendations include enhancing security headers, publishing an incident response policy, and improving transparency around analytics and tracking. These steps would further strengthen trust and security posture.

I

IG Bauen-Agrar-Umwelt

igbau.de

0

IG Bauen-Agrar-Umwelt (IG BAU) is a well-established German trade union representing workers in construction, agriculture, environment, and cleaning sectors. The website serves as an information and membership portal, providing news, advocacy information, and digital services such as a member app. The organization maintains a strong social media presence and regularly updates content relevant to its members. Technically, the site uses a modern CMS (Additor), standard JavaScript libraries, and enforces HTTPS with cookie consent mechanisms, reflecting a moderate to good digital maturity. Security posture is adequate with SSL and consent-based analytics, but lacks explicit security policies and headers. Overall, the site is professional, trustworthy, and compliant with GDPR privacy requirements.

G

Gewerkschaft Erziehung und Wissenschaft (GEW)

gew.de

0

The Gewerkschaft Erziehung und Wissenschaft (GEW) is a prominent educational trade union in Germany representing approximately 280,000 professionals in education and science sectors. The website serves as a comprehensive platform offering information on union activities, collective bargaining, member services, publications, and events. It targets educators, researchers, students, and unemployed pedagogues, positioning itself as a key player in the German education labor market. The business model is non-profit, focusing on advocacy and support for its members.

G

Gewerkschaft der Polizei (GdP)

gdp.de

0

The Gewerkschaft der Polizei (GdP) is the largest police union globally, representing police employees primarily in Germany. The website serves as the official online presence of the GdP Bundesvorstand (Federal Board), providing information about the union and its services. The target audience is police personnel seeking membership and professional representation. The website is built on modern frontend technologies such as Vue.js and Nuxt.js, hosted behind Cloudflare DNS for performance and security. The design is professional and mobile-optimized, offering a good user experience with clear navigation and relevant content. However, the site lacks visible privacy and cookie policies, security headers, and incident response information, which are critical for compliance and trust. No analytics or advertising scripts were detected, indicating minimal user tracking.

E

Eisenbahn- und Verkehrsgewerkschaft (EVG)

evg-online.org

0

The Eisenbahn- und Verkehrsgewerkschaft (EVG) is a well-established German labor union representing railway and transport workers. The organization focuses on advocating for employee rights, fair tariff agreements, and workplace co-determination. The website serves as a comprehensive portal for members and prospective members, offering news, member benefits, educational resources, and political information. The union has a strong presence in Germany with multiple regional offices and active social media channels. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries and analytics tools such as Google Analytics and Matomo. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Privacy compliance is well addressed with a clear privacy policy, cookie consent banner, and GDPR adherence. From a security perspective, the site enforces HTTPS and employs secure login forms with encryption attributes. However, it lacks explicit security headers and published security or incident response policies, which could be improved. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and branding strongly indicate a legitimate and trustworthy organization. Overall, the EVG website is a robust, professional platform supporting a major labor union in Germany. Strategic improvements in security transparency and domain registration clarity would enhance trust and compliance further.

The website www.dgb-bestellservice.de operates as an e-commerce platform primarily serving the German Trade Union Confederation (DGB) community by offering print materials, promotional items, and informational products. The business is operated by DCM Druck Center Meckenheim GmbH, a small-sized company focused on retailing niche products related to trade union activities. The platform is powered by the Lightspeed e-commerce system and hosted on hosting.de, reflecting a moderate level of technical maturity with standard web technologies such as jQuery and Bootstrap. The site is well-structured, mobile-optimized, and provides clear navigation and product categorization. From a security perspective, the site enforces HTTPS and employs a cookie consent mechanism, indicating compliance with GDPR requirements. However, it lacks explicit security headers and dedicated security or incident response policies, which could be improved to enhance its security posture. No vulnerabilities or malicious content were detected, and the site maintains good privacy compliance with accessible privacy and terms of service pages. Overall, the website presents a professional and trustworthy front for its target audience, with clear contact information and consistent branding. The domain registration data aligns reasonably with the business purpose, though more detailed WHOIS information would strengthen trust. The site’s security and privacy practices are adequate but could benefit from enhancements to security headers and incident response transparency.

E

Europa-Universität Viadrina Frankfurt (Oder)

europa-uni.de

0

Europa-Universität Viadrina Frankfurt (Oder) is a public university located in Germany offering Bachelor's and Master's degree programs primarily in law, economics, and cultural studies. The institution emphasizes internationality, with partnerships across 280 universities and a diverse student body from over 100 countries. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive academic content targeting prospective and current students, researchers, and academic staff. The university's business model centers on education and research services with a strong regional and international focus. Technically, the website is built on Infopark CMS Fiona and uses modern web technologies including Bootstrap, jQuery, and FontAwesome. It employs Matomo Analytics configured to disable cookies, indicating a privacy-conscious approach. The site is mobile-optimized and accessible, with good SEO practices. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and follows best practices such as disabling cookies in analytics. However, it lacks explicit security headers and a cookie consent mechanism. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the university's identity, enhancing trustworthiness. Overall, the website is professional, secure, and compliant with GDPR, though improvements in cookie consent and security headers are recommended. The risk profile is low, with no critical issues identified.