Security Directory

M

MedtecLIVE

medteclive.com

0

MedtecLIVE operates as a leading European trade fair and digital content platform focused on the medical technology industry. It provides a comprehensive business directory, news, events, and networking opportunities tailored for medical technology professionals and companies. The platform is well-positioned in the healthcare and manufacturing sectors, targeting industry stakeholders seeking innovation and market insights. Technically, the website employs modern web technologies including JavaScript frameworks, Bootstrap, and Google Tag Manager for analytics and marketing. The site is mobile-optimized and features a professional design with clear navigation. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms in place, although explicit security headers and incident response policies are not published. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trustworthiness but does not detract from the professional presentation and functionality of the site. Overall, the website demonstrates a mature digital presence with moderate to good security and privacy compliance.

L

LSG Skychefs Lufthansa Service Holding AG

lsgskychefs.com

0

LSG Sky Chefs is a globally recognized leader in airline catering and hospitality services, operating in 49 countries with a history dating back to 1942. The company offers a comprehensive portfolio including airline catering, lounge services, packaged food solutions, and aviation security. The website reflects a mature digital presence built on WordPress, integrating modern tracking and consent management tools, and providing clear navigation and professional content. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the brand's established market position and consistent online presence.

I

itdesign GmbH

itdesign.de

0

itdesign GmbH is a German technology company specializing in software and consulting services focused on project and portfolio management (PPM) and customer relationship management (CRM). The company positions itself as a provider of high-quality software solutions and consulting from a single source, targeting businesses seeking to optimize their project and customer management processes. The website reflects a professional and modern digital presence, leveraging WordPress CMS with a custom theme and hosted on Amazon AWS infrastructure, indicating a mature technical setup. From a security perspective, the website is accessible without any WAF or security challenge interference. However, it lacks visible security headers and publicly available security or incident response policies, which could be improved to enhance trust and compliance. Privacy and cookie policies are not detected, which is a compliance gap especially relevant under GDPR regulations. The absence of explicit contact information such as emails or phone numbers on the main page limits direct communication channels for users. Overall, the website demonstrates good technical implementation and business credibility but requires improvements in privacy compliance and security posture to align with best practices. Strategic recommendations include publishing comprehensive privacy and cookie policies with consent mechanisms, implementing security headers, and providing clear incident response contacts to strengthen user trust and regulatory compliance.

A

Avio Expo GmbH

pilot-expo.com

0

Pilot Expo is a well-established annual aviation event focused on pilot recruitment and training, targeting experienced pilots, recent graduates, and aspiring aviators, as well as cabin crew and airline personnel. The event is positioned as Europe's largest aircrew gathering, featuring trade shows, conferences, and networking opportunities. The website reflects a professional and consistent brand image with clear business objectives and audience targeting. Technically, the site is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and secure forms, though some security headers and explicit policies could be improved. The absence of WHOIS data raises some concerns about domain legitimacy, but the overall site content and contact information support a credible business presence. Privacy and cookie policies are present with consent mechanisms, indicating GDPR awareness.

A

adorsys GmbH & Co. KG

adorsys.de

0

adorsys GmbH & Co. KG is a specialized boutique IT architecture and software engineering consultancy focused on delivering secure, compliant, and innovative digital solutions primarily for highly-regulated industries such as banking and finance. Established in 2006, the company positions itself as a trusted sparring partner for management teams, emphasizing quality, compliance, and technological excellence. Their service portfolio spans secure software engineering, business analysis, cloud technologies, digital finance, data & AI, API management, cybersecurity, blockchain, and global delivery capabilities. Technically, the website is built on WordPress with modern enhancements including Yoast SEO for search optimization, WP Rocket for performance, and Alpine.js for frontend interactivity. Hosting and domain registration are managed via Amazon Registrar and AWS DNS infrastructure, ensuring reliable and scalable hosting. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, supported by structured data and comprehensive content. From a security perspective, the site enforces HTTPS and employs domain status protections to prevent unauthorized changes. While no critical vulnerabilities or exposed sensitive data were detected, the absence of DNSSEC, security headers, and explicit incident response or vulnerability disclosure mechanisms suggests room for improvement. Privacy compliance is strong with a comprehensive privacy policy, though cookie consent mechanisms are lacking. Overall, adorsys presents a mature, professional, and trustworthy digital presence aligned with its business focus. Strategic recommendations include enhancing DNS security, implementing security headers, publishing vulnerability disclosure information, and adding cookie consent to further strengthen compliance and trust.

The website ctsales.net is currently a parked domain page hosted and registered by IONOS SE, a well-established web hosting and domain registration provider founded in 2002. The page content is minimal and primarily serves as a placeholder indicating the domain is registered but not connected to an active website. The site promotes IONOS services such as website building, web hosting, VPS, and domain registration, targeting individuals and businesses seeking these services. The technical infrastructure is basic, relying on standard HTML, CSS, and minimal JavaScript, with no detected CMS or advanced frameworks. Hosting is provided by IONOS SE, consistent with the domain registration data. Security posture is limited; no security headers or DNSSEC are enabled, and no privacy or cookie policies are present, indicating low compliance with privacy regulations. No contact information or incident response details are provided, reducing transparency and trust. Overall, the site is functional as a parked domain but lacks substantive content, security features, and compliance documentation.

The website at allane.de appears to be a minimal or early-stage site with limited visible content and no accessible privacy, cookie, or terms of service policies. The business information is not explicitly stated in the provided HTML snippet, and no contact details or social media links are present. The site uses a modern React and Next.js technology stack hosted on Amazon AWS infrastructure, indicating a contemporary technical foundation. However, the lack of visible security headers, privacy compliance mechanisms, and contact information suggests a low maturity level in security and compliance. No WAF or security challenge was detected, and the site is accessible without restrictions. Overall, the site scores low on content quality, privacy compliance, and security posture, with moderate business credibility due to the use of reputable hosting and modern frameworks.

B

Bauplan Nord

bauplan-nord.de

0

Bauplan Nord is a small, established real estate development company based in Germany, with a focus on unique projects and spaces since 1994. The website presents a professional image with good content quality and consistent branding, targeting clients interested in real estate projects in Northern Germany. Technically, the site is built on WordPress using the Yoast SEO plugin, hosted on cloudpit servers, and demonstrates moderate performance and good mobile optimization. However, the site lacks explicit privacy and cookie policies, security headers, and visible contact information, which impacts its security posture and privacy compliance. The absence of incident response contacts and vulnerability disclosure mechanisms further limits its security maturity. Overall, the website is functional and credible but would benefit from enhanced security and compliance measures to improve trust and regulatory adherence.

P

Praxisklinik für Hals-Nasen-Ohrenheilkunde - Allergologie Ärztehaus am Luisenhospital

hno-praxisklinik-aachen.de

0

The HNO Praxisklinik Aachen is a specialized medical clinic focused on the diagnosis and treatment of ear, nose, and throat (ENT) diseases, including allergology. The clinic operates with a small but professional team of qualified specialists and cooperates with certified allergy centers, positioning itself as a trusted regional healthcare provider. Their services include pediatric hearing tests, sleep medicine, and ambulatory diagnostics, catering to both statutory and private patients, including international clients from neighboring countries. Technically, the website is built on the Contao CMS with a modern but straightforward tech stack including jQuery and Leaflet.js, offering good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security policies or incident response contacts. Overall, the site is professional, trustworthy, and privacy-conscious, with room for improvement in security transparency and accessibility.

G

GOPA Worldwide Consultants GmbH

gopa.de

0

GOPA Worldwide Consultants GmbH is a Germany-based international development consultancy specializing in implementing projects in developing and transition economies. Their business model focuses on delivering socially inclusive growth and poverty reduction through six core sectors including education, governance, environment, statistics, health, and monitoring and evaluation. The company holds ISO 9001 and ISO 14001 certifications, underscoring their commitment to quality and environmental responsibility. Their target audience includes national and international development partners, authorities, NGOs, and beneficiaries. Technically, the website is built on Drupal 10 with modern web technologies including SVG graphics and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security posture is strong with HTTPS enforced and cookie consent mechanisms implemented, though some security headers could be improved and explicit security policies are not publicly available. Overall, the security posture is good with no visible vulnerabilities or exposed sensitive data. The WHOIS data is consistent and supports the legitimacy of the domain and business. The website demonstrates high professionalism, trustworthiness, and compliance with GDPR through clear privacy and cookie policies. Strategically, GOPA should consider publishing a formal security policy and incident response contacts, enhancing security headers, and possibly adding a vulnerability disclosure policy to further strengthen trust and security culture.

V

VKF Renzel GmbH

vkf-renzel.de

0

VKF Renzel GmbH is a well-established German company specializing in sales promotion products and point-of-sale marketing solutions. With over 40 years of experience, it operates a professional B2B online shop targeting retailers and businesses seeking quality promotional displays and related services. The company emphasizes quality, custom solutions, and professional consulting, positioning itself as a trusted partner in the retail marketing sector. The website reflects a mature digital presence with comprehensive product offerings and international sister sites.

G

Grey

grey.de

0

Grey is a globally recognized advertising and marketing agency with a strong presence in Germany, offering a wide range of services including creative, experiential, social, digital, commerce, and health & wellness expertise. The company targets large enterprises, including one-fifth of the Fortune 500, positioning itself as a top-tier agency in the media sector. The website reflects a professional and enterprise-grade digital presence with modern technologies such as React and Next.js, and integrates Google Tag Manager and OneTrust for analytics and privacy compliance respectively. From a security perspective, the website employs HTTPS and a cookie consent mechanism, demonstrating a baseline commitment to user privacy and security. However, the absence of explicit privacy policy and terms of service pages, lack of visible security headers, and missing WHOIS data introduce moderate concerns. These gaps suggest opportunities for Grey to enhance transparency and security posture to align with best practices and regulatory requirements. Overall, the website is well-designed, content-rich, and professionally maintained, supporting Grey's market position and business credibility. The technical infrastructure is modern and performant, though improvements in security headers and explicit compliance documentation would strengthen the security and privacy posture. The domain WHOIS data is not publicly available, likely due to privacy protection, which is common for enterprises but should be monitored for legitimacy assurance. Strategically, Grey should focus on publishing comprehensive privacy and security policies, implementing robust security headers, and providing clear incident response and vulnerability disclosure channels to enhance trust and compliance. These steps will mitigate risks and reinforce Grey's reputation as a secure and privacy-conscious advertising leader.

D

Deutsche Börse Group

eurexgroup.com

0

Eurex, operated by Deutsche Börse Group, is a leading global derivatives exchange specializing in EUR-denominated equity index and fixed income derivatives. The website presents comprehensive market and product information targeting financial market participants such as traders, clearing members, and institutional investors. The business model focuses on providing derivatives trading, clearing services, market data, and repo market solutions, positioning Eurex as a key player in the global financial markets. Technically, the website is built on CoreMedia CMS with JavaScript and integrates Matomo analytics for user tracking. The site demonstrates good mobile optimization, clear navigation, and professional design, supporting a positive user experience. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are not clearly published. WHOIS data is unavailable, likely due to privacy protections common in financial sector domains, but the domain and content legitimacy are supported by consistent branding and association with Deutsche Börse Group. Overall, the website is professional, secure, and credible, serving its target audience effectively.

pitstop.de GmbH operates a large network of automotive workshops across Germany, providing a wide range of vehicle maintenance and repair services including inspections, oil changes, brake services, tire sales, and more. The company leverages an online booking platform and e-commerce capabilities to serve car owners efficiently. With over 300 branches and more than 50 years of experience, pitstop.de holds a strong market position supported by industry awards and positive customer reviews. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Microsoft Application Insights for telemetry and analytics. The site is well-optimized for mobile devices and accessibility, with comprehensive privacy and cookie consent mechanisms in place. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit incident response policies could be improved. Overall, the website demonstrates a professional, trustworthy, and user-friendly digital presence aligned with the company's business model and market reputation.

A

AKG Gruppe

akg-gruppe.de

0

AKG Gruppe is a globally recognized manufacturer specializing in high-performance coolers and heat exchangers, serving diverse industries including automotive, aviation, rail vehicles, renewable energy, and construction equipment. With a workforce exceeding 3,000 employees, the company emphasizes innovation, sustainability through its AKG Green initiative, and tailored thermal management solutions. The website reflects a professional digital presence built on TYPO3 CMS, featuring comprehensive product and market information, active news updates, and clear contact channels. Technically, the site employs modern web technologies and demonstrates good mobile optimization and SEO practices. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS registration data is a notable concern, potentially impacting trust and domain legitimacy verification. Overall, AKG Group presents a credible and professional business front with room for enhanced transparency and security policy disclosures.

B

BEGA Gantenbrink-Leuchten KG

bega.de

0

BEGA Gantenbrink-Leuchten KG is a specialized company focused on lighting and illumination technology, primarily serving outdoor and architectural sectors. The company presents itself as an established player in the energy-related lighting industry with a professional and well-structured website targeting architects and lighting professionals. The website employs modern web technologies such as Vue.js and Nuxt.js, ensuring a responsive and user-friendly experience. However, the absence of WHOIS data and lack of visible privacy and cookie policies indicate gaps in transparency and compliance. Security posture is moderate but could be improved by implementing standard security headers and clearer data protection measures. Overall, the website is functional and professional but would benefit from enhanced compliance and security disclosures.

T

Buy Auto Parts Online for Every Car | Handlerparts

teilewelt-online.de

0

Handlerparts.de is an e-commerce website specializing in the sale of auto parts for various car models. The site targets car owners and automotive repair professionals seeking to purchase automotive components online. The business operates primarily in Germany and appears to be a small-sized online retailer. The website employs modern frontend technologies such as Tailwind CSS and Vue.js, hosted behind Cloudflare DNS services, indicating a contemporary technical infrastructure. However, the website content is basic with limited business and compliance information visible. No privacy, cookie, or terms of service policies were found, and no contact information or social media links are provided, which may impact user trust and regulatory compliance. Security posture is minimal with no detected security headers or incident response information. Overall, the site is functional but lacks comprehensive security and privacy features, which should be addressed to improve trust and compliance.

F

Fichtner GmbH & Co. KG

fichtner.de

0

Fichtner GmbH & Co. KG is a well-established independent engineering and consulting company with a global presence, specializing in energy, environment, water, and infrastructure sectors. Celebrating over 100 years of operation, the company offers comprehensive consulting and project management services, positioning itself as a leader in its industry. The website reflects a mature digital presence built on TYPO3 CMS, with modern design and good mobile optimization. It integrates Matomo analytics for user tracking and employs cookie management with consent mechanisms, indicating awareness of privacy compliance. Security posture is solid with HTTPS enforced and secure form handling, though there is room for improvement in implementing security headers and publishing explicit privacy and incident response policies. Overall, the domain registration data aligns well with the company's claims, supporting legitimacy and trustworthiness.

C

Clinical Research Foundation EEU

crfound-eeu.org

0

The Clinical Research Foundation EEU is a specialized academic advisory and clinical research organization focused on bridging the gap between excellent clinical practice and clinical research processes in Northern, Central, and Eastern Europe as well as the MENA region. Founded in 2007, it provides expert clinical advisory services, patient accrual strategies, site and team training, and project collaboration primarily targeting pharmaceutical and medical device industry sponsors. The website is professionally designed using the Squarespace platform, offering good user experience and mobile optimization, though it lacks some advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is limited, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Contact information is not explicitly provided, which may affect user trust. Overall, the website is credible and functional but could improve in privacy compliance and security best practices.

B

Bionorica SE

bionorica.de

0

Bionorica SE is a well-established German company specializing in the development and production of rational phytotherapeutic medicines. With over 90 years of history and a workforce exceeding 2,200 employees, it holds a leading position in the healthcare sector focused on plant-based pharmaceuticals. The website provides comprehensive information about the company, its products, research, and career opportunities, targeting healthcare professionals, patients, and business partners. Technically, the site is built on Drupal 9, employs modern web technologies including Google Tag Manager and Usercentrics for consent management, and is optimized for mobile devices with good accessibility and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks some advanced security headers and a public security policy or vulnerability disclosure. Overall, the domain registration and website content are consistent and trustworthy, reflecting a legitimate and professional business presence.

S

Sebastian Welton

welton.de

0

The website welton.de represents Sebastian Welton, a seasoned systems consultant with over 35 years of experience in cross-platform systems programming and project management, particularly in IBM mainframe and related technologies. The site targets businesses and professionals seeking expert consulting services in legacy and modern IT environments. The business model is consulting-focused, with a niche market position emphasizing deep technical expertise. Technically, the website is built on WordPress using the Twenty Seventeen theme, leveraging standard web technologies such as jQuery and Google Fonts. The site is accessible, mobile-optimized, and presents content in both English and German, reflecting its German origin. However, hosting provider details are not explicitly identified, and performance is moderate. From a security perspective, the site uses HTTPS, but lacks important security headers and policies such as privacy, cookie, and terms of service. No incident response or vulnerability disclosure information is provided. No analytics or tracking scripts are detected, indicating minimal user tracking. The security posture is adequate but could be improved with standard best practices. Overall, the website is professional and credible but lacks formal privacy and security documentation. The risk level is moderate, with recommendations to enhance security headers, add privacy and cookie policies, and provide incident response contacts to improve compliance and trust.

S

SoftConEx

softconex.de

0

SoftConEx is a specialized IT solutions provider focused on the flight travel industry, offering software products and SaaS platforms for booking and fulfillment of scheduled flights. With over 20 years of experience, the company integrates with major global distribution systems and airline direct connect technologies, positioning itself as a niche player with a solid product portfolio. The website is built on WordPress and uses standard web technologies, providing a professional and consistent user experience. Security posture is generally good with HTTPS enforced and PCI compliance indicated, but lacks explicit security policies and cookie consent mechanisms. Overall, the site is trustworthy and well-maintained but could improve privacy compliance and incident response transparency.

N

Namecase GmbH

laima.it

0

Nidoma operates as a specialized domain marketplace platform, offering domain sales and brokerage services primarily targeting individuals and businesses seeking to acquire domain names. The platform provides a user-friendly interface with account registration, secure payment processing via Stripe, and broker assistance to facilitate domain purchases. The company behind the platform, Namecase GmbH, is based in Germany and provides clear legal and contact information, enhancing trustworthiness. Technically, the website employs modern web technologies including JavaScript, jQuery, Bootstrap, and integrates Cookiebot for GDPR-compliant cookie management and hCaptcha for bot mitigation. The site is secured with HTTPS and demonstrates good security practices, though it lacks some advanced security headers and explicit security policies. Privacy compliance is well addressed with comprehensive privacy and cookie policies. Overall, the platform presents a professional and trustworthy domain marketplace with moderate technical sophistication and a solid security posture.

G

German Tanker Shipping GmbH & Co. KG

german-tanker.de

0

German Tanker Shipping GmbH & Co. KG is a Bremen-based shipping company specializing in tanker vessel operations, founded in 1998. The company maintains a professional but basic web presence primarily in German, targeting maritime industry clients and professionals. Their website provides essential business information, contact details, and social media links but lacks advanced privacy and security disclosures. Technically, the site uses a modest tech stack including jQuery and Flexslider, hosted on rzone.de servers, with responsive design elements for mobile users. Security posture is moderate with no visible vulnerabilities but lacks security headers and incident response policies. Overall, the website is functional and moderately professional but could improve in privacy compliance and security transparency.

PREPARE - Partnership for Rural Europe is a small non-profit organization focused on fostering collaboration and development in rural European areas. The website serves as an informational and networking platform, offering newsletters, event information, and links to partner organizations. The business model centers on partnership and knowledge sharing within the rural development sector. The domain age and WHOIS data support the legitimacy of the organization, with registration dating back to 2003 and consistent registrant information from Germany. Technically, the website is built on an outdated Joomla! 1.5 CMS platform, which poses significant security risks due to lack of support and known vulnerabilities. The site lacks HTTPS, security headers, and modern security best practices. The technical infrastructure is basic, with moderate performance and limited mobile optimization. The site uses JavaScript libraries such as MooTools and jQuery but does not employ modern frameworks or analytics tools. From a security perspective, the absence of HTTPS and security headers, combined with an outdated CMS, significantly lowers the security posture. No privacy or cookie policies are present, and no contact information or incident response channels are clearly provided. These factors indicate low privacy compliance and limited security maturity. Overall, the website is functional but basic, with moderate business credibility but poor security and privacy compliance. Strategic improvements in security infrastructure, privacy policy implementation, and CMS modernization are recommended to enhance trust and protect user data.

Gamelab is an academic web application designed for conducting online game theory experiments, primarily targeting researchers and experimenters in the field of economics and social sciences. The platform supports two-player normal-form games with features such as lottery incentives and Mechanical Turk integration. The project is open source and encourages academic citation, positioning itself as a niche tool within the academic research community. The business entity behind the site is SIA k-Consulting, based in Germany, with the domain registered since 2015, reflecting a mature and stable project. Technically, the website employs a straightforward stack including HTML5, CSS3, Font Awesome, Google Fonts, and a C-based web framework (kcgi) hosted on OpenBSD. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. No CMS or advanced hosting provider details are evident. External dependencies are limited to trusted sources such as GitHub and Google Fonts. From a security perspective, the site lacks several modern security best practices. There are no detected security headers, DNSSEC is not enabled, and no privacy or cookie policies are present, which impacts compliance with GDPR and other regulations. The domain registration is consistent and legitimate, but the absence of incident response or vulnerability disclosure information suggests room for improvement in security maturity. Overall, the website is functional, professionally presented, and trustworthy within its academic niche but would benefit from enhanced security measures, privacy compliance, and clearer business contact information to improve trust and regulatory adherence.

C

CSL Computer Service Langenbach GmbH

rpksoft.com

0

The website rpksoft.com is currently a parked domain hosted by Joker.com, a domain registration and reseller platform operated by CSL Computer Service Langenbach GmbH. The site primarily promotes domain registration services with a simple landing page and no active business content. The target audience includes individuals and businesses looking to register or manage domain names. The business model is focused on domain registration and reseller services, with key offerings such as domain management control panels, reseller APIs, email forwarding, and URL forwarding. The company behind the registrar is based in Germany and has been operating since 2009. From a technical perspective, the website uses basic HTML5 and Bootstrap CSS for layout and styling. The site is mobile optimized and has moderate performance but lacks advanced technical features or CMS integration. No analytics or tracking technologies are detected, indicating minimal data collection. However, the site does not enforce HTTPS in the provided content, and DNSSEC is not enabled, which are notable security gaps. Security posture is limited with no visible security headers or HTTPS enforcement in the provided HTML content. The domain status clientTransferProhibited is a positive indicator against unauthorized transfers. No privacy or cookie policies are present, and no contact information is provided, which impacts compliance and trust. Overall, the site is low risk but lacks maturity in security and privacy practices. Strategically, the domain appears to be parked and not actively used for business operations, which limits exposure but also reduces trust signals. Recommendations include enabling HTTPS, adding privacy and cookie policies, and providing clear contact information to improve compliance and user trust.

W

Walldorf Consulting GmbH

walldorfconsulting.com

0

Walldorf Consulting GmbH is a medium-sized German consulting firm specializing in SAP Cloud Transformation. The company positions itself as a leading specialist in transforming business processes and implementing them in the cloud, leveraging SAP technologies. Their market position is reinforced by multiple SAP certifications and awards, and they operate as part of the Timetoact Group. The website is professionally designed with good content quality and clear navigation, targeting businesses seeking SAP cloud transformation services. Technically, the site uses modern web technologies including Cloudflare DNS, FontAwesome, and Swiper.js, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is weak due to the absence of visible privacy or cookie policies. Overall, the website is trustworthy and credible but could improve transparency on privacy and security policies.

O

OCT Group LLC

oct-clinicaltrials.com

0

OCT Clinical, operating under OCT Group LLC and recently merged with Palleos Healthcare GmbH, is a mid-size Contract Research Organization (CRO) specializing in managing clinical trials primarily in Eastern Europe. The company offers a comprehensive range of clinical trial services including study design, regulatory support, pharmacovigilance, data management, and logistics. With operations in over 21 countries and a strong client base including major pharmaceutical companies, OCT Clinical positions itself as a leading CRO in the region with a focus on accelerating clinical research timelines and delivering regulatory-compliant data. Technically, the website is built on the Webflow platform utilizing modern JavaScript libraries such as jQuery, Owl Carousel, and MediaElement.js. It integrates Google Tag Manager, Google Analytics, and LinkedIn Insight for marketing and analytics purposes. The site is mobile-optimized with good SEO practices and a moderate performance profile. Cookie consent mechanisms and privacy policies are implemented, reflecting basic GDPR compliance. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy with consistent registration details and a long domain age, supporting the company's credibility. Overall, OCT Clinical demonstrates a solid business presence with professional digital infrastructure and moderate security posture. Strategic improvements in security policy transparency and enhanced accessibility could further strengthen trust and compliance.

Particip GmbH is an established international development consultancy based in Germany, providing a broad range of services including monitoring and evaluation, capacity development, technical assistance, and policy advice. The company has a strong market position with over 1,800 projects in more than 150 countries since its founding in 1989. The website reflects a professional and content-rich presence targeting international development organizations and public sector clients. Technically, the site uses modern frameworks such as Bootstrap and jQuery, with telemetry via Microsoft Application Insights, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and telemetry but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

R

ROTORWORKS

rotorworks.de

0

ROTORWORKS is a German company specializing in wind energy services, including installation, maintenance, and repair of wind turbines. Established in 1995, the company emphasizes safety and innovation as core values. The website is professionally designed using WordPress with modern plugins, providing a good user experience and clear navigation primarily in German with English support. Contact is mainly via a contact form, with no direct emails or phone numbers visible on the homepage. The company targets businesses and professionals in the renewable energy sector and potential employees seeking careers in this field. Technically, the site uses a standard WordPress stack with jQuery and popular page builder and slider plugins, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and credible but could improve in transparency and security documentation.

S

Sehner Unternehmensberatung

sehner.international

0

Sehner Unternehmensberatung is a small German consulting firm specializing in investment, deal advisory, and market analysis services. The company positions itself as a niche player targeting investors and business clients seeking expert consulting. The website is built on WordPress using the Avada theme and incorporates modern plugins such as Yoast SEO and Borlabs Cookie for SEO and privacy compliance respectively. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is partial due to the absence of a dedicated privacy policy and terms of service pages. Overall, the website presents a professional image with consistent branding and SEO optimization, but could improve transparency and security documentation to enhance trust and compliance.

F

fruits GmbH

ssl.lv

0

fruits GmbH operates a specialized online marketplace for premium domain names, exemplified by the listing of ssl.lv. The platform targets domain buyers and sellers, offering secure transactions with escrow and buyer protection services. The business model includes direct sales, lease-to-own options, and negotiation capabilities, positioning fruits as a niche player in the domain marketplace sector. The company emphasizes secure payment processing and customer trust through transparent policies and testimonials. Technically, the website leverages modern frameworks such as Next.js and React, integrates Stripe for payments, and employs analytics and error monitoring tools like PostHog and Sentry, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no exposed sensitive data, although explicit security policies and incident response information are absent. Overall, fruits GmbH presents a professional, trustworthy platform with room for enhanced transparency in security and compliance documentation.

T

The Customization Group

picanova.org

0

The Customization Group is a large technology company specializing in mass customization solutions, serving millions of customers globally through tailored B2B and API services. The company positions itself as a world market leader in this niche, focusing on sustainable and scalable customization offerings. The website is professionally designed using the Wix platform, with a clear business description and structured data supporting SEO and business identity. However, the absence of WHOIS data raises concerns about domain registration legitimacy and transparency. Technically, the site employs modern web technologies and security hardening scripts, ensuring a good security posture with HTTPS and client-side protections. Privacy and cookie policies are not found, and contact information is limited to a postal address, which impacts privacy compliance and business credibility scores. Overall, the site is functional and professional but would benefit from enhanced transparency and compliance documentation.

F

FKM

fkm.de

0

FKM is a German-based organization specializing in providing certified trade fair data, including exhibitor and visitor numbers for events in Germany. With a longstanding presence of over five decades, FKM serves decision-makers and the exhibiting economy by delivering reliable marketing data. The website is professionally designed using WordPress and integrates common plugins such as Yoast SEO and Matomo analytics, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and SEO-friendly, although some accessibility features could be improved. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks visible security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy or terms of service pages. Overall, the website reflects a credible business with room for enhancement in privacy and security transparency.

L

Loxam

loxam.de

0

Loxam is a leading company specializing in the rental and sale of professional equipment for construction, industrial, and landscaping sectors. The company targets both private customers and business clients, offering a wide range of machinery including mini excavators, chainsaws, aerial work platforms, and more. Their market position is strong in Germany and internationally, supported by a large network of branches and a comprehensive online presence. The website reflects a mature digital infrastructure built on SAP Hybris Commerce, with responsive design and integrated search capabilities. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers are missing and incident response details are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting a large enterprise business model.

E

ESN

esn.com

0

ESN operates a professional e-commerce platform specializing in nutritional supplements for bodybuilding, fitness, and health-conscious consumers primarily in Germany and other European markets. The website is built on Shopify, leveraging modern web technologies and marketing tools such as Klaviyo and Google Tag Manager to support a robust digital presence. The company actively engages in influencer marketing and offers multiple discount campaigns, indicating a mature marketing strategy and customer engagement approach. Technically, the site is well-optimized for performance, mobile responsiveness, and accessibility, with strong SEO practices and comprehensive privacy and cookie policies aligned with GDPR requirements. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS registration data reduces domain trustworthiness from a registration perspective, but the operational website and business indicators suggest legitimacy. Strategic recommendations include enhancing transparency around security policies and incident response, and publishing vulnerability disclosure information to further strengthen trust and compliance.

Belz & Rupp Internetmanagement Saarbrücken is a small digital agency based in Germany specializing in web design, TYPO3 CMS implementation, online marketing, logo development, and print services. The company targets businesses and organizations seeking affordable and professional digital and print solutions. Their market position appears local to Saarbrücken with a focus on quality service delivery. Technically, the website is built on the TYPO3 CMS platform, enhanced with jQuery and Lightbox for UI components, and uses Matomo for analytics alongside Usercentrics for GDPR-compliant consent management. The site is well-structured, mobile-optimized, and employs HTTPS with good privacy practices, although some security headers are missing. From a security perspective, the site demonstrates a moderate security posture with HTTPS and consent management but lacks explicit security policies and vulnerability disclosure mechanisms. The absence of WHOIS domain registration data is a notable anomaly that impacts trust and legitimacy assessments. Overall, the website is professional and functional with good privacy compliance but requires verification of domain registration and enhancement of security headers and policies to improve trustworthiness and security posture.

AERMEC Deutschland GmbH operates in the energy sector, likely focusing on HVAC solutions, serving customers and business partners primarily in Germany. The website is currently under construction and undergoing modernization, limiting available online services and content. The company provides direct contact channels via phone and email, indicating a traditional business communication approach. Technically, the website is simple, built with basic HTML and CSS without advanced frameworks or CMS. It is hosted on UI-DNS nameservers, suggesting a standard hosting environment. Mobile optimization and accessibility are basic, and SEO practices are minimal. No analytics or tracking technologies are detected, reflecting a low digital maturity level. From a security perspective, the site lacks visible security headers and cookie consent mechanisms. The email contact link is malformed, which could impact usability and security. HTTPS status is unknown but assumed necessary. WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the security posture is basic with room for improvement. The overall risk is moderate due to limited content and security features. Strategic recommendations include implementing HTTPS, fixing contact link issues, adding security headers, and introducing privacy and cookie policies to improve compliance and trust.

S

Siemens AG

c2comms.cloud

0

The website c2comms.cloud is a minimal placeholder or landing page associated with Siemens AG, a large multinational technology and industrial company headquartered in Germany. The domain is relatively new, registered in late 2022, and uses AWS infrastructure for DNS and real user monitoring. The site content is minimal with no visible business descriptions, contact information, or interactive elements. Footer links point to Siemens corporate legal and privacy pages, confirming corporate ownership. The technical infrastructure is modern but basic, with no CMS or advanced frameworks detected. Security posture is adequate with HTTPS and domain transfer protection but lacks DNSSEC and security headers. Privacy compliance is supported by links to comprehensive Siemens policies but lacks on-site consent mechanisms. Overall, the site appears legitimate but underdeveloped, likely serving as a technical or internal platform rather than a customer-facing portal.

N

NürnbergMesse GmbH

chillventa.de

0

Chillventa is a globally recognized exhibition specializing in refrigeration technology, organized by NürnbergMesse GmbH in Germany. The website serves as a comprehensive platform for industry experts, exhibitors, and visitors to connect, showcasing the latest innovations and providing detailed event information. The company holds a leading market position in the energy sector, particularly in refrigeration and related technologies. Technically, the website is built on modern frameworks such as Next.js and Sitecore CMS, hosted on Microsoft Azure infrastructure, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR regulations.

R

Rebelcreations AG

epeeglobal.org

0

EPEE is a European industry association representing the refrigeration, air conditioning, and heat pump sectors. The organization focuses on policy advocacy, sustainable heating and cooling solutions, and industry representation. The website reflects an established presence with a domain registered since 2000 and hosted by OVH in Germany. Technically, the site is built on WordPress with modern libraries such as Bootstrap and jQuery, providing a good user experience and mobile optimization. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are detected, which may pose compliance risks. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the website is professional and credible but would benefit from enhanced privacy compliance and security best practices.

S

SYNLAB AG

synlab.ag

0

SYNLAB AG is a leading European medical diagnostics and specialty testing company providing a comprehensive range of innovative and reliable diagnostic services to patients, healthcare providers, governments, and corporates. The company positions itself as a partner of choice for routine and specialty diagnostics, emphasizing customer-centric medical excellence. The website reflects a mature corporate presence with detailed financial reporting, corporate governance disclosures, and investor relations information. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and includes privacy and cookie consent mechanisms aligned with GDPR requirements. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the domain and website present a trustworthy and professional image consistent with a large healthcare enterprise.

I

International Paralympic Committee

paralympic.org

0

The International Paralympic Committee (IPC) operates the official website www.paralympic.org, serving as the global authority for Paralympic sports. The site provides comprehensive news, event results, and multimedia content targeted at athletes, fans, and stakeholders worldwide. The organization is positioned as a non-profit international sports governing body headquartered in Germany. Technically, the website is built on Drupal 8 CMS, integrating modern analytics and cookie consent tools such as Google Tag Manager and Cookiebot, ensuring GDPR compliance through explicit cookie consent mechanisms. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security posture is strong with HTTPS enforced and anonymized IP tracking, although explicit security headers and incident response information are absent. The lack of WHOIS data limits domain registration transparency but is typical for such international organizations. Overall, the site is professional, trustworthy, and well-maintained, with minor gaps in privacy policy visibility and security disclosures.

S

SYNLAB International GmbH

synlab.com

0

SYNLAB International GmbH operates as a leading European provider of medical laboratory diagnostic services, offering a broad range of routine and specialty testing solutions. The company targets healthcare providers, clinics, doctors, and patients, emphasizing fast and reliable test results and innovative diagnostic technologies. Their market position is strong, supported by a large network across more than 20 countries and a significant employee base including medical experts. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to their audience. Technically, the site is built on TYPO3 CMS with Bootstrap and integrates Matomo analytics and conditional Google Maps functionality, indicating a modern and privacy-conscious infrastructure. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms in place, though explicit incident response and vulnerability disclosure policies are not publicly visible. The absence of WHOIS data for the domain is notable but does not detract from the overall legitimacy and professionalism of the site. Strategic recommendations include enhancing transparency around security incident response and publishing a security.txt file to facilitate vulnerability reporting.

T

The Hertz Corporation

thrifty.de

0

Thrifty.de is the German localized website of Thrifty Car Rental, a well-established car rental brand founded in 1958 and a subsidiary of The Hertz Corporation. The website offers comprehensive car rental services across Germany and Europe, targeting price-conscious business and leisure travelers. It provides a user-friendly booking interface, detailed fleet information, and multiple language and country options, reflecting a mature digital presence. The technical infrastructure leverages modern frontend technologies such as Bootstrap, jQuery, and slick-carousel, combined with a robust cookie consent mechanism powered by securiti.ai and Google Tag Manager for analytics and marketing. Security posture is strong with HTTPS enforcement and CSRF protections, though explicit security headers and a dedicated security policy page are absent. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. The domain registration aligns with the brand's legitimacy and history, reinforcing trust. Overall, the website demonstrates a professional, secure, and user-centric platform suitable for an enterprise-level transportation service provider.

V

Verband der Zoologischen Gärten (VdZ) e.V.

zoosciencelibrary.org

0

The Zoo Science Library is a specialized online platform documenting peer-reviewed scientific publications involving modern zoological gardens and aquaria. It serves as a knowledge transfer and networking tool for the zoological research community, supported by reputable organizations such as the Verband der Zoologischen Gärten (VdZ) e.V. and the European Association of Zoos and Aquaria (EAZA). The website is professionally designed, bilingual (German and English), and provides a searchable database of over 1400 publications from 2018 to 2022. Technically, the site is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and jQuery, and it uses Matomo for privacy-conscious analytics. Security posture is strong with HTTPS enforced and cookie consent implemented, though some HTTP security headers are missing and no explicit security or incident response policies are published. WHOIS data is unavailable due to malformed query responses, which slightly reduces domain trust but is mitigated by the site's affiliations and content quality. Overall, the site is a credible, niche scientific resource with good technical and security standards.

O

Online Solution Int Ltd.

rabuser.info

0

The website rabuser.info represents a small German IT service provider, Online Solution Int Ltd., specializing in web development, programming, consulting, and related services. The business targets individuals and companies seeking affordable and comprehensive web solutions including design, SEO, server administration, and software development. The company has a long-standing domain registration since 2008, indicating established operations. Technically, the website employs standard web technologies such as HTML, CSS, JavaScript, and server-side languages including PHP, Perl, and ASP.net. Hosting is via Cloudflare, providing basic HTTPS security. The site is functional with moderate performance and basic mobile optimization but lacks advanced security headers and DNSSEC, which could improve its security posture. Security-wise, the site uses HTTPS but does not publish privacy, cookie, or terms of service policies, nor does it provide explicit contact emails or phone numbers, limiting transparency and compliance with GDPR. Google Analytics is used without visible consent mechanisms, indicating privacy compliance gaps. No incident response or vulnerability disclosure information is available. Overall, the website is moderately trustworthy and functional but requires improvements in privacy compliance, security best practices, and transparency to enhance user trust and regulatory adherence.

Online Solution, operated by OS Online Solution GmbH, is a small German IT services company specializing in customized server, software, mobile, app, and online solutions. The company also references CDN services through partner domains. The website is built on WordPress using a standard theme and provides content primarily in German and English. The technical infrastructure is moderate, leveraging WordPress and Cloudflare DNS, but lacks advanced performance and accessibility optimizations. Security posture is basic with no advanced security headers or policies implemented, and privacy compliance is minimal due to the absence of privacy and cookie policies. Contact and incident response information are not provided, limiting user trust and compliance. Overall, the site is functional but requires enhancements in security, privacy, and user engagement to improve trust and compliance.

O

Online Solution 360 GmbH

saveality.net

0

Saveality, operated by Online Solution 360 GmbH, is a specialized provider of cyber security and privacy solutions based in Germany. Founded in 2018, the company offers a range of services including secure remote desktop environments, multi-encryption data storage, end-to-end encrypted email and communication services, TOR/Onion web services, bulletproof hosting, penetration testing, secure mobile phone solutions, IoT protection, and cryptocurrency cold storage. The business targets clients requiring high confidentiality and privacy protection, positioning itself as a niche player in the cyber security market. The parent company is Online Solution Int Ltd. based in the UK. Technically, the website is built on WordPress and uses common web technologies such as jQuery, Google Analytics, and Google Tag Manager. Hosting and DNS services are managed via Cloudflare. The site implements HTTPS with a good SSL configuration but lacks DNSSEC and advanced security headers. Performance is moderate with good mobile optimization. Privacy compliance is basic with a cookie consent banner and a privacy policy hosted externally on adsafety.net. Security posture is adequate but could be improved by enabling DNSSEC, adding security headers, publishing a security policy, and providing a vulnerability disclosure mechanism. No critical vulnerabilities or exposed sensitive data were detected. Contact information is clearly presented, including phone numbers, emails, and physical addresses, enhancing business credibility. Overall, Saveality presents a professional and trustworthy front with room for improvement in security best practices and privacy transparency. Strategic recommendations include enhancing domain security, publishing detailed security and incident response policies, and improving privacy compliance disclosures.