Security Directory

O

Online Solution (supported by SAVEALITY)

ano-phone.de

0

ANO-PHONE is a German-based small technology business specializing in secure, encrypted Android smartphones with integrated private VPN services. The company targets privacy-conscious consumers seeking enhanced mobile security and anonymity. Their product offers hardware encryption, secure communication channels, and control without backdoors or remote access. The website is built on WordPress with WooCommerce, featuring good content quality and a professional design. Technical infrastructure includes Cloudflare DNS and common analytics and advertising tools. Security posture is solid with HTTPS and no exposed sensitive data, though explicit security headers and policies are lacking. Privacy compliance is partial, with cookie consent implemented but no dedicated privacy policy page found. Contact information is limited to an email address, with no phone or physical address provided. Overall, the domain and website appear legitimate and consistent with the business claims.

O

Online Solution 360 GmbH

ano-phone.com

0

ANO-PHONE is a specialized provider of secure encrypted smartphones integrated with private VPN services, targeting privacy-conscious users and security-focused consumers. The company operates an e-commerce platform selling purified Android-based smartphones with hardware encryption, secure communication tools, and cryptocurrency wallet support. The business is positioned as a niche player in the technology sector, emphasizing privacy and security. The website is professionally designed, mobile-optimized, and includes essential business and contact information, although phone numbers and physical addresses are not explicitly listed. Technically, the site uses WordPress with WooCommerce, Google Analytics, and Cloudflare DNS, delivering moderate performance and good SEO optimization. Security posture is solid with HTTPS and client transfer protection on the domain, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is supported by a cookie consent mechanism and a privacy policy indicating GDPR adherence. Overall, the website and domain registration data indicate a legitimate and trustworthy business presence.

O

Online Solution 360 GmbH

securecommerce.eu

0

SecureCommerce, operated by Online Solution 360 GmbH, is a specialized cybersecurity service provider focused on protecting online stores and e-commerce platforms. The company offers managed firewall, DDoS protection, malware scanning, and monitoring services tailored to popular e-commerce systems such as Magento, WooCommerce, and Shopware. Their market position is that of a niche provider delivering Security-as-a-Service solutions to online merchants primarily in Germany. The website is professionally designed using WordPress and modern web technologies, providing a good user experience and clear navigation. Contact information and cookie consent mechanisms are well implemented, though privacy and terms policies are missing. Technically, the site uses reputable hosting via OVH SAS and integrates Google Analytics and Tag Manager for tracking. Security posture is moderate with room for improvement in security headers and published policies. Overall, the domain registration and business information are consistent and legitimate, supporting a trustworthy online presence.

O

Online Solution 360 GmbH

cdn-solution.net

0

Online Solution 360 GmbH operates the website cdn-solution.net, providing full service hosting, cyber security, and content delivery network solutions with a focus on eco-friendly data centers. The company targets businesses requiring advanced hosting and CDN services, emphasizing sustainability and innovative technologies such as GeoDNS, load balancing, and AI-driven energy efficiency. The website is professionally designed using WordPress CMS, hosted on Linode infrastructure, and includes a cookie consent mechanism compliant with GDPR. Contact information and company registration details are clearly presented, enhancing business credibility. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though DNSSEC is not enabled and security headers are missing, representing areas for improvement. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

Online Solution GmbH is a German-based technology company specializing in mobile, app, and online solutions, complemented by cybersecurity services such as CDN, e-commerce firewall, and DDoS protection. The company operates multiple related domains targeting different languages and specialized services, positioning itself as a niche provider in the technology and cybersecurity sectors. The website is built on WordPress with standard themes and plugins, including GDPR compliance tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and explicit incident response policies. Privacy compliance is supported by a cookie consent mechanism and a basic privacy policy. Overall, the site is functional but minimalistic, with limited direct contact information and no terms of service page. Strategic improvements in security practices and transparency could enhance trust and compliance.

H

HUUM

huum.de

0

HUUM is a medium-sized manufacturing company specializing in sauna stoves and innovative sauna control systems, combining traditional Estonian sauna knowledge with modern Nordic design and technology. The company maintains a strong international presence with multiple regional domains targeting different markets including Germany, Estonia, Europe, the US, and Japan. The website is built on WordPress with performance optimizations and includes structured data for SEO enhancement. Privacy compliance is well addressed through Cookiebot, providing a comprehensive cookie consent mechanism and linking to a detailed privacy policy. However, explicit contact information and terms of service are not readily found on the homepage, which could be improved for better user trust and compliance.

C

Chudovo

chudovo.de

0

Chudovo is a medium-sized German-based software development company with over 15 years of market presence, specializing in custom software solutions, dedicated development teams, and IT consulting services. The company targets businesses seeking scalable, high-quality software development and maintenance, leveraging modern technologies and AI tools to enhance delivery and performance. Their market position is supported by a professional website, client testimonials, and a presence on reputable platforms like Clutch. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and SEO optimization via Yoast. Hosting and DNS are managed through Cloudflare, providing CDN and security benefits. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses Cloudflare for protection but lacks explicit security headers and formal security policies or incident response disclosures. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Overall, the website and business demonstrate a solid risk posture with minor areas for improvement in security policy transparency and accessibility. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness.

U

Uniklinik RWTH Aachen

ukaachen.de

0

The website www.ukaachen.de represents the Uniklinik RWTH Aachen, a large university hospital and medical research institution in Germany. The site provides extensive information about patient care, research, teaching, and various specialized clinics and institutes. It targets patients, visitors, medical professionals, and researchers. The website is built on TYPO3 CMS, uses modern UI elements like Font Awesome, and integrates Matomo analytics with cookies disabled, reflecting some privacy awareness. The site is well-structured with multilingual support and professional design, indicating a mature digital presence. Security posture is adequate with HTTPS enabled but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the domain registration and DNS data align with the official university infrastructure, supporting high legitimacy and trustworthiness.

J

Jülich Aachen Research Alliance

jara.org

0

JARA (Jülich Aachen Research Alliance) is a collaborative research initiative between RWTH Aachen University and Forschungszentrum Jülich, focusing on five key research areas including brain science, simulation and data sciences, energy, future information technology, and soft matter. The alliance aims to pool expertise to tackle grand societal challenges through joint research projects, training, and infrastructure sharing. The website reflects a mature and professional digital presence with clear navigation, multilingual support, and integration of partner logos and resources. Technically, the site uses modern JavaScript libraries and a CMS (Contao), with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers are not explicitly detected. The absence of WHOIS data limits domain trust verification, but the strong institutional affiliations and content quality support legitimacy. No direct contact emails or phone numbers are publicly visible, which may impact user engagement. Overall, the site is well-positioned as a reputable research alliance with room for improvement in transparency and security disclosures.

B

Baltresto Deutschland

baltresto.de

0

Baltresto Deutschland is a specialized retailer and manufacturer of garden wellness products, including high-quality hot tubs and saunas, primarily serving the German market. The company emphasizes durability, quality, and customer satisfaction, offering a broad product range with customization options. Their digital presence is built on a WordPress WooCommerce platform, enhanced with performance and SEO optimizations. The website is professionally designed, mobile-optimized, and integrates trust signals such as customer reviews and structured data. Security posture is good with HTTPS and some security best practices, though additional headers and explicit security policies could improve it further. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms. Overall, the site reflects a credible and trustworthy business with a solid e-commerce infrastructure.

B

bonprix Handelsgesellschaft mbH

bonprix.com

0

bonprix Handelsgesellschaft mbH operates a professional e-commerce platform specializing in fashion, shoes, and furniture, targeting multiple European countries through localized domains. The website presents a consistent brand image with good content quality and user experience, leveraging the Astro framework for frontend delivery. Despite the absence of WHOIS registration data, the site maintains legal and privacy pages indicating GDPR compliance and business legitimacy. However, the lack of visible contact emails, phone numbers, and cookie consent mechanisms suggests areas for improvement in transparency and privacy compliance. Security posture is moderate with no detected security headers or incident response information, indicating potential risk areas. Overall, bonprix.com is a credible retail website with room to enhance security and privacy practices.

G

gestalten

gestalten.com

0

Gestalten.com is the online presence of an established international publishing house specializing in books and media related to architecture, design, fashion, travel, and food & beverages. Founded in 1998 and based in Germany, the company operates a professional e-commerce platform powered by Shopify, offering a curated selection of creative and cultural publications. The website demonstrates a mature digital infrastructure with integrations for multiple payment methods including Shopify Payments, Apple Pay, Google Pay, and PayPal, alongside marketing and analytics tools such as Google Tag Manager, Hotjar, and Mailchimp. Privacy and cookie policies are clearly presented with consent mechanisms, reflecting compliance with GDPR requirements. Security posture is solid with HTTPS enforced and domain registration consistent with business claims, though DNSSEC is not enabled and some security headers could be improved. Overall, the site is accessible, well-designed, and trustworthy, serving a niche market of creative professionals and enthusiasts.

P

Proact DE

proact.de

0

Proact Deutschland is a large, established IT service provider specializing in data and information management, cloud services, and data center solutions. Positioned as a leading European specialist, the company targets businesses seeking comprehensive IT strategy consulting, implementation, and operational support. The website reflects a professional digital presence with clear branding and consistent messaging aligned with its market position. Technically, the website is built on WordPress using modern plugins such as Yoast SEO Premium and Elementor, supported by SiteGround hosting inferred from optimization plugins. The site employs HTTPS with strong SSL configuration and integrates Cookiebot for GDPR-compliant cookie consent management. Google Tag Manager and reCAPTCHA are used for analytics and bot protection respectively, indicating a mature digital infrastructure. From a security perspective, the site demonstrates good practices including HTTPS enforcement and consent management. However, it lacks explicit security headers, published security policies, and incident response contacts, which are recommended for enhanced security posture. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website is trustworthy and professionally maintained, with moderate to good scores in content quality, technical implementation, security, privacy compliance, and business credibility. Strategic improvements include publishing privacy and security policies, adding security headers, and providing clear contact information for incident response to further strengthen trust and compliance.

I

Initiative „Schulen: Partner der Zukunft“ (PASCH)

pasch-net.de

0

The PASCH-Initiative website represents a well-established global educational network promoting German language learning through over 2,000 partner schools worldwide. The initiative offers diverse services including learning materials, competitions, school partnerships, youth courses, and alumni projects. The website is professionally designed with consistent branding and targets German language learners and educational institutions globally. Technically, the site uses modern web technologies such as jQuery, Bootstrap, Bitmovin Player, and a consent management platform (Usercentrics), hosted on Microsoft Azure DNS infrastructure. Performance and mobile optimization are good, with accessibility and SEO well addressed. Security posture is solid with HTTPS enforced and consent management implemented, though some security headers and explicit security policies are absent. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact is primarily via a contact form; no direct emails or phone numbers are published. Overall, the site is trustworthy, professional, and aligned with its educational mission.

L

Lappset GmbH

lappset.de

0

Lappset GmbH operates as a manufacturer and supplier of innovative playground and sports equipment, targeting organizations and communities interested in promoting active play and social interaction. The website presents a professional and consistent brand image with good content quality and user experience, primarily in German. Technically, the site is built on WordPress, leveraging modern tools such as Google Tag Manager, Google Analytics, and Cookiebot for consent management and analytics. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, though some security headers are missing and no explicit security policy or incident response information is provided. Privacy compliance is supported by a comprehensive cookie consent mechanism, but no explicit privacy policy or terms of service pages were detected in the provided content. Overall, the website is trustworthy and well-maintained, with room for improvement in transparency and security best practices.

I

Institute of National Anti-Doping Organisations

inado.org

0

The Institute of National Anti-Doping Organisations (iNADO) is a non-profit international membership organization dedicated to supporting National Anti-Doping Organisations (NADOs) and Regional Anti-Doping Organisations (RADOs). It promotes best practices, fosters community collaboration, and serves as a global voice advocating for clean sport. The website reflects a professional and well-structured platform that provides resources, news, and event information relevant to anti-doping experts and stakeholders. Technically, the website is built on the TYPO3 CMS platform, integrating modern tools such as Google Tag Manager for analytics and Usercentrics for consent management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. However, some security headers are missing, and there is no publicly visible security policy or incident response information. From a security perspective, the site enforces HTTPS and employs consent mechanisms for privacy compliance, aligning with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for organizations of this nature, and does not raise immediate concerns. Overall, the site demonstrates a solid security posture but could improve transparency around security policies and incident response. The overall risk assessment is low, with recommendations focusing on enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

T

TIBHAR

tibhar.info

0

TIBHAR is a well-established German company specializing in the design and production of high-quality table tennis equipment since 1969. The website serves as a retail and promotional platform targeting ambitious table tennis players worldwide. It features multilingual support and integrates modern web technologies such as WordPress, WooCommerce, and Elementor, reflecting a mature digital infrastructure. The site includes embedded video content and social media integration, enhancing user engagement and brand presence. From a security perspective, the website employs HTTPS and domain transfer protections but lacks DNSSEC and visible security headers, indicating room for improvement in hardening its security posture. Privacy compliance is well addressed with GDPR cookie consent mechanisms and a comprehensive privacy policy. Overall, the website demonstrates good professionalism, trustworthiness, and technical implementation, supporting the company's market position in the sports retail sector.

F

Fromi GmbH

fromi.com

0

Fromi GmbH is an established German company specializing in the wholesale and distribution of cheese specialities and fine foods, with over 50 years of experience and an international reputation. The company targets cheese retailers, food service professionals, and gourmet consumers, offering a wide range of products and services including cheese selections, fine food offerings, and customer support. The website reflects a professional and consistent brand image with multilingual support and comprehensive product information. Technically, the site is built on WordPress with modern plugins and libraries, optimized for mobile and SEO, and includes cookie consent mechanisms. Security posture is strong with HTTPS, obfuscated emails, and no visible vulnerabilities, though security headers could be improved. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Strategic recommendations include enhancing security headers, publishing incident response policies, and clarifying domain registration details to improve trust and compliance.

F

fsk industries GmbH & Co. KG

fsk-industries.de

0

fsk industries GmbH & Co. KG is a German-based company specializing in innovative automation solutions, including Cobot Welding, SmartArc technology, mechanical engineering, and fixture construction. The company targets industrial clients seeking advanced automation and welding solutions, positioning itself as a niche provider in the manufacturing sector. The website reflects a professional and consistent brand image with good content quality and user experience, primarily in the German language. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies such as Bootstrap and jQuery, hosted by Alfahosting. Performance and mobile optimization are adequate, with room for improvement in accessibility features. Security posture is solid with HTTPS enforced and cookie consent implemented via Cookiebot, though additional security headers and a vulnerability disclosure mechanism are recommended. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the site demonstrates a good balance of business credibility, technical implementation, and privacy compliance, scoring 78 out of 100 in the AI assessment.

G

Getriebebau NORD GmbH & Co. KG

nord.com

0

Getriebebau NORD GmbH & Co. KG operates the website www.nord.com, presenting itself as a leading global supplier of mechanical and electronic drive technology solutions including gear motors, industrial gear units, electric motors, and frequency inverters. The company targets a broad industrial audience with a strong B2B focus, emphasizing product competitiveness and energy efficiency. The website supports multiple languages, indicating a global market presence. Technically, the site uses modern web technologies such as Bootstrap, Cookiebot for consent management, and Google Tag Manager for analytics, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are not explicitly detected and no dedicated security policy or incident response contacts are published. The absence of WHOIS data for the domain reduces transparency and business credibility, though the website content and branding are professional and consistent with a legitimate enterprise. Overall, the site scores well on content quality, technical implementation, and privacy compliance, but business credibility is slightly impacted by missing WHOIS information.

R

RODING Mobility GmbH

roding-mobility.de

0

RODING Mobility GmbH is a German-based company specializing in innovative mobility solutions, including powertrain and battery systems, advanced composites, mobility prototypes, and small-series electric vehicle platforms. The company targets automotive, aerospace, and maritime sectors, providing specialized engineering and manufacturing services. Their market position is that of a niche player with expertise in high-voltage systems and composite materials. The website is professionally designed, multilingual, and includes comprehensive privacy and cookie policies with user consent mechanisms. Technically, the site runs on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security measures include HTTPS, Google reCAPTCHA on contact forms, and cookie consent management, although some security headers and incident response information are missing. Overall, the website is trustworthy and well-maintained, supporting the company's business credibility.

L

LMB - Gruppe

lmb-gruppe.de

0

LMB-Gruppe is a German manufacturing company specializing in welding, cutting, marking, and machine building services. Their website presents a professional image with clear navigation and relevant content targeting industrial clients. The company offers a range of services including manual welding, laser cutting, and special machinery construction, positioning themselves as a regional service provider in the manufacturing sector. The website is built on TYPO3 CMS and uses modern web technologies such as jQuery and Bootstrap, indicating a moderate level of digital maturity. While the site is mobile-optimized and accessible, there is room for improvement in accessibility and SEO. Security posture is moderate with no visible security headers or explicit security policies, and the site lacks a cookie consent mechanism despite GDPR compliance indications. Overall, the website is functional and credible but would benefit from enhanced security and privacy features.

Z

Zeppelin GmbH

zeppelin-systems.com

0

Zeppelin Systems, a division of Zeppelin GmbH, specializes in customized solutions for bulk material handling and plant engineering, serving industries such as food, chemicals, plastics, and recycling. The company offers a comprehensive portfolio including engineering, components, and services, positioning itself as a key player in the manufacturing sector with a strong B2B focus. The website reflects a mature digital presence with modern technologies like Next.js and AWS hosting, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in DNS security and security headers. Overall, the site demonstrates high professionalism and trustworthiness, supported by clear contact information and legal compliance.

P

PlastisolTransfer24.com

plastisoltransfer24.com

0

PlastisolTransfer24.com is a German-based company specializing in the production and distribution of high-quality textile transfers, serving primarily B2B customers such as textile printing companies and promotional firms across Germany, Austria, Switzerland, and the UK. The company emphasizes rapid delivery, offering express shipping within 24 hours, and holds OEKO-TEX certification, underscoring its commitment to environmental and social responsibility. Their product portfolio includes a wide range of transfer types including plastisol, blockout, water, neon, digital, DTF, and specialty transfers like glitter and holographic options. Technically, the website is built on the Magento 2 e-commerce platform, leveraging RequireJS, jQuery, and various Magento UI components. It integrates modern payment solutions such as Stripe and employs Google Tag Manager, Google Analytics, and Microsoft Clarity for analytics and marketing purposes. The site is mobile-optimized with good SEO practices and a comprehensive cookie consent mechanism supporting GDPR compliance. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status to prevent unauthorized transfers, and implements CAPTCHA on login forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no public security or incident response policies are found. The domain registration is consistent with the business claims, having been registered in 2012, aligning with the company's stated experience. Overall, the website presents a professional and trustworthy front with good content quality, technical implementation, and privacy compliance. Strategic improvements could include enhancing security headers, publishing a formal security policy, and enabling DNSSEC to further strengthen trust and security posture.

B

Bilendo

bilendo.de

0

Bilendo is a German-based SaaS company specializing in Accounts Receivable (AR) Automation and Credit Management software. Their platform integrates cloud-based tools to automate debtor management and order-to-cash processes, targeting finance executives, credit managers, accountants, sales, and IT professionals. The company positions itself as a modern, efficient solution provider with a strong client base including notable enterprises and industry references from BCG, PWC, and EOS. Their business model revolves around subscription-based cloud software with modular products such as Cloud Platform, Receivables, Risk, and Add-Ons. Technically, Bilendo leverages a modern tech stack including Ruby on Rails, Bootstrap 5, Font Awesome, and is hosted on AWS with Cloudflare providing firewall and CDN services. The website is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a high level of digital maturity.

O

OBO Bettermann Holding GmbH & Co. KG

obo-bettermann.com

0

OBO Bettermann Holding GmbH & Co. KG is a leading manufacturer specializing in installation systems for electrotechnical equipment in buildings and systems. The company maintains a strong market position with a broad international presence, supported by numerous regional partner websites tailored to local languages and markets. Their business model focuses on manufacturing and distributing high-quality electrotechnical installation products to professional and business customers worldwide. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including jQuery and Google Tag Manager for analytics, alongside Usercentrics for GDPR-compliant consent management. The site demonstrates good mobile optimization and a professional design, although there is room for improvement in SEO and accessibility features. From a security perspective, the website enforces HTTPS and employs consent management for cookies, reflecting a solid security posture. However, the absence of explicit security headers and vulnerability disclosure policies suggests opportunities for enhancing security best practices. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a trustworthy and professional digital presence, though the lack of WHOIS data for the domain raises concerns about domain registration legitimacy. It is recommended to verify domain registration details to ensure full trustworthiness. Strategic improvements in security headers, accessibility, and SEO would further strengthen the site’s compliance and user experience.

R

RWTH Aachen University

rwth-aachen.de

0

RWTH Aachen University is a leading technical university in Germany, offering comprehensive academic programs, cutting-edge research, and strong corporate partnerships. The website serves a diverse audience including prospective and current students, researchers, and corporate visitors. It provides extensive information on academics, research projects, corporate relations, and university services. The university maintains a strong market position as a center of excellence in education and research. Technically, the website uses a custom CMS with modern JavaScript libraries like jQuery and Chosen, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response information are lacking. Overall, the site is professional, trustworthy, and well-structured, reflecting the university's reputable standing.

U

Unterwegs Celle

unterwegs-celle.de

0

Unterwegs Celle is a small retail business specializing in outdoor equipment and apparel, targeting customers in the Celle region of Germany. The website serves as an online presence to complement their physical store, showcasing top outdoor brands and providing contact information for customer engagement. The business positions itself as a local specialist in outdoor retail, with a focus on quality brands and customer service. Technically, the website is built on WordPress CMS, utilizing popular plugins such as Smart Slider 3, Contact Form 7, and Cookiebot for cookie consent management. Hosting is provided by Timme Hosting, with multiple name servers indicating a stable infrastructure. The site demonstrates good SEO practices, mobile optimization, and basic accessibility features, though there is room for improvement in security headers and accessibility compliance. From a security perspective, the site enforces HTTPS and uses Cookiebot to manage user consent, including blocking of scripts until consent is given. Google Analytics is implemented with IP anonymization to enhance privacy compliance. However, explicit security policies, incident response contacts, and advanced security headers are not present, indicating a moderate security posture suitable for a small retail business but with opportunities for enhancement. Overall, the website is professional, functional, and compliant with GDPR requirements regarding privacy and cookie management. The risk level is moderate, with no critical vulnerabilities detected. Strategic recommendations include improving security headers, adding explicit security and incident response policies, and maintaining up-to-date software to mitigate potential risks.

K

KHS Gruppe

khs.com

0

KHS Gruppe is a well-established international manufacturer specializing in filling and packaging systems for the beverage, food, and non-food industries. With over 150 years of history and a leading market position, KHS offers comprehensive turnkey solutions, digital services, and extensive customer support. Their website reflects a mature digital presence with detailed product and service information, customer testimonials, and sustainability commitments. Technically, the site is built on TYPO3 CMS, uses modern frameworks like Bootstrap, and integrates Matomo analytics for privacy-conscious tracking. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements in security headers and explicit security policies are recommended. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements, supporting KHS's credibility as a global industry leader.

I

Inzmo Gmbh

inzmo.com

0

INZMO GmbH is a German-based innovative insurance provider specializing in digital insurance solutions for consumers. Their offerings include mobile phone insurance, rental deposit warranties, bicycle insurance, laptop/tablet insurance, and e-scooter insurance. The company positions itself as a revolutionary player in the insurance market, emphasizing ease of use, fast claims processing, and 24/7 customer support. Their market approach leverages a user-friendly app and digital-first experience to attract tech-savvy customers seeking hassle-free insurance products. Technically, the website is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is strong with HTTPS enforcement and bot protection via Google reCAPTCHA, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, supporting trust and regulatory adherence. Overall, INZMO demonstrates a mature digital presence with a solid business model and good security hygiene.

C

Chudovo

chudovo.com

0

Chudovo is a well-established software development company founded in 2004, offering a broad range of IT services including custom software development, dedicated development teams, application maintenance, and cloud development. The company targets businesses seeking scalable and innovative software solutions, leveraging AI and machine learning technologies to enhance delivery speed and quality. With multiple international offices and a strong portfolio of over 160 projects, Chudovo positions itself as a reliable partner in the technology sector. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, optimized for mobile and SEO. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The site uses standard plugins for forms and code highlighting, and implements lazy loading for images to improve load times. From a security perspective, the site enforces HTTPS and employs clientTransferProhibited domain status, but lacks DNSSEC and advanced security headers. Contact forms include CAPTCHA and an NDA option, enhancing data protection. However, no explicit security policy or incident response contacts are published, and no vulnerability disclosure mechanism is present. Overall, the website demonstrates a solid business and technical foundation with good content quality and user experience. Security posture is adequate but could be improved with additional headers and policies. Privacy compliance is basic, with cookie consent present but no dedicated privacy policy page detected. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness.

E

experimenta gGmbH

experimenta.science

0

experimenta gGmbH operates Germany's largest science center located in Heilbronn, offering interactive science exhibitions, educational programs, and unique experiences such as the Science Dome and Maker Space. The organization targets a broad audience from children to adults interested in science and technology, positioning itself as a leading educational and experiential institution in the region. The website reflects a professional and modern digital presence built on WordPress with the Divi theme, integrating various JavaScript libraries and a consent management platform to comply with privacy regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and explicit privacy policies are lacking. The absence of WHOIS data limits domain trust analysis but the overall business credibility is supported by consistent branding and social media presence.

W

wissensstadt heilbronn

wissensstadt.hn

0

wissensstadt heilbronn is a German educational and community platform focused on fostering lifelong learning, research, and innovation in the Heilbronn region. The website serves as a hub for projects, events, and community engagement, targeting students, researchers, and local institutions. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The WHOIS data presents inconsistencies, showing a prohibited registration status despite the active website, which warrants caution. Overall, the site is professional and content-rich but lacks explicit privacy and terms of service pages, impacting privacy compliance scores.

D

Dieter Schwarz Stiftung gGmbH

dieter-schwarz-stiftung.de

0

The Dieter Schwarz Stiftung gGmbH is a well-established non-profit foundation focused on promoting lifelong learning and scientific advancement in the Heilbronn-Franken region of Germany. With a history dating back to 1999 and over 1300 supported projects, the foundation plays a significant role in regional education and innovation. Their website reflects a professional and comprehensive digital presence, offering detailed information about their initiatives, events, and news updates. The target audience includes educational institutions, researchers, students, and the local community. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern web technologies such as SCSS, JavaScript libraries like Splide.js for carousels, and Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. From a security standpoint, the site enforces HTTPS and employs privacy consent mechanisms compliant with GDPR. While no explicit security headers were detected in the provided data, no vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. The domain registration data aligns well with the organization's profile, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen security posture.

F

Footshop a.s.

ftshp.de

0

Footshop a.s. operates a professional e-commerce platform specializing in sneakers, clothing, and accessories, targeting sneaker enthusiasts and streetwear consumers primarily in Germany and broader European markets. The website is well-branded, multi-lingual, and offers a broad catalog of products from popular brands, positioning itself as a leading retailer in its niche. The business model focuses on direct online retail with localized country-specific domains and a loyalty program to enhance customer retention. Technically, the website employs modern web technologies including Cloudflare for DNS and CDN services, Google Tag Manager for analytics, Typekit for fonts, and Webpack for asset bundling. The site is optimized for performance and mobile responsiveness, with good SEO practices including structured data and hreflang tags for internationalization. The platform appears to be custom-built or based on a known e-commerce CMS, delivering a fast and accessible user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and likely implements standard security headers via Cloudflare. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, Footshop demonstrates a mature digital presence with strong business credibility and technical infrastructure. The security posture is solid but could benefit from enhanced transparency on security policies and vulnerability disclosures. The risk level is low, with recommendations focusing on improving security communication and maintaining vigilance on third-party scripts and data protection practices.

Sopro Bauchemie GmbH is a German manufacturer specializing in tile adhesives, grouts, surface fillers, primers, bonding agents, screeds, renders, and waterproofing products. The company targets construction professionals and distributors across multiple European markets, supported by a multilingual website infrastructure. Their market position is that of an established medium-sized manufacturer with a consistent brand presence and professional digital assets. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes a consent management platform (Usercentrics) ensuring GDPR compliance. The site is mobile-optimized and offers good user experience with clear navigation and relevant content. Security posture is strong with HTTPS enforced and secure form handling, though some HTTP security headers are missing. The absence of WHOIS data for the domain www.sopro.com is a notable concern, potentially indicating privacy protection or domain registration issues, which slightly reduces overall trust. Contact information and privacy policies are clearly presented, supporting compliance and user trust.

W

W. Hoffmann

whoffmann.com

0

W. Hoffmann is a European piano manufacturing brand under the parent company C. Bechstein Pianoforte AG, offering high-quality pianos across three distinct product lines: Professional, Tradition, and Vision. The website presents a professional and well-structured digital presence powered by TYPO3 CMS, with a focus on European craftsmanship and musical excellence. The site includes a comprehensive cookie consent mechanism compliant with GDPR, leveraging Cookiebot and Google Analytics for user tracking and analytics. However, the absence of WHOIS registration data for the domain www.whoffmann.com raises concerns about domain legitimacy and registration transparency. No explicit contact information or security policies are visible, which could impact user trust and compliance transparency.

C

C. Bechstein

bechstein-concert.com

0

C. Bechstein Concert is a premium German piano manufacturer specializing in high-end concert grand pianos and upright pianos. The company emphasizes craftsmanship, quality materials, and a rich heritage dating back to 1853. The website presents a professional and visually appealing digital presence, targeting musicians and piano enthusiasts seeking superior instruments. Technically, the site is built on TYPO3 CMS, integrates Cookiebot for GDPR-compliant cookie management, and uses Google Analytics for traffic analysis. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data for the domain raises questions about domain registration transparency, but the brand's established reputation mitigates immediate concerns. Overall, the site is well-designed, compliant, and trustworthy, with room for enhanced security disclosures and contact transparency.

V

Verlag Nürnberger Presse Druckhaus Nürnberg GmbH & Co. KG

vnp.de

0

Verlag Nürnberger Presse (VNP) is a prominent multimedia media house serving the greater Nürnberg region in Germany. The company specializes in quality journalism across print and digital channels, including regional daily newspapers, local advertising papers, news portals, podcasts, and newsletters. With a daily reach exceeding 850,000 people, VNP holds a strong market position as a leading regional media provider. Their business model focuses on delivering trusted news content and offering advertising and marketing services to regional clients. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates advanced analytics via Piano Analytics. Hosting is managed through Amazon AWS, ensuring reliable infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS and employs a consent management platform to comply with GDPR. Contact forms are protected with captcha mechanisms. However, there is room for improvement by implementing additional HTTP security headers and publishing a formal security policy or vulnerability disclosure. Overall, the website is professional, trustworthy, and compliant with privacy regulations. The business is well-established with clear contact information and certifications that enhance credibility. No blocking or WAF mechanisms interfere with content access, allowing full analysis and user engagement.

T

Technische Hochschule Nürnberg Georg Simon Ohm

studiengangstest.de

0

The website studiengangstest.de is an official online self-assessment platform operated by the Technische Hochschule Nürnberg Georg Simon Ohm. It provides prospective students with tools to evaluate their suitability and motivation for various study programs, supporting their decision-making process. The platform is clearly targeted at future students, especially those interested in studying at TH Nürnberg, and offers both general and subject-specific tests. The business model focuses on educational support and guidance rather than commercial services. Technically, the website employs modern frontend technologies such as Tailwind CSS, Alpine.js, and Font Awesome, ensuring a responsive and visually consistent user experience. The site is moderately optimized for performance and mobile devices, though accessibility features are basic. SEO optimization is present but minimal. No CMS or hosting provider details were explicitly identified from the content. From a security perspective, the site lacks visible security headers and does not display cookie consent mechanisms, which are important for GDPR compliance. No forms or sensitive data collection points were detected on the main page, reducing immediate risk exposure. WHOIS data indicates a consistent and legitimate domain registration aligned with the educational institution. However, the absence of published security policies and incident response contacts suggests room for improvement in transparency and security posture. Overall, the website is professionally designed and trustworthy for its educational purpose but would benefit from enhanced privacy compliance features and security best practices to strengthen user trust and regulatory adherence.

E

Energie Campus Nürnberg

encn.de

0

Energie Campus Nürnberg is an interdisciplinary energy research center based in Germany, focusing on developing technological solutions for future energy systems. The organization collaborates with multiple academic and research institutions and partners with companies to conduct research projects. The website is professionally designed using TYPO3 CMS, with good content quality and clear navigation. It supports German and English languages and targets researchers, industry partners, and the scientific community. Technically, the site uses modern web technologies and privacy-respecting analytics (Matomo). Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit security policies. Privacy compliance is partial due to missing cookie consent mechanisms. Overall, the site is trustworthy and credible, representing a legitimate research entity.

O

OHM Professional School gGmbH

ohm-professional-school.de

0

OHM Professional School gGmbH is a well-established educational institution affiliated with the Technische Hochschule Nürnberg, specializing in professional and continuing education. The website presents a comprehensive portfolio of services including part-time bachelor and master degree programs, certificate courses, seminars, colloquia, and conferences targeting working professionals and organizations. The institution positions itself as a trusted provider with over 20 years of experience, supported by positive user ratings and a strong digital presence. Technically, the website is built on the TYPO3 CMS platform using the Higher Education Package, integrating modern web technologies and analytics tools such as Matomo and Google Tag Manager with a clear focus on privacy compliance. The site is mobile-optimized, well-structured, and SEO-friendly, providing a good user experience and accessibility. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not published, representing areas for improvement. No critical vulnerabilities or suspicious indicators were detected. Overall, the website demonstrates a mature digital infrastructure and trustworthy business presence with minor recommendations to enhance security transparency and header configurations. The risk profile is low, and the site is suitable for its educational mission and audience.

V

Verlag Nürnberger Presse Druckhaus Nürnberg GmbH & Co. KG

nn.de

0

NN.de is the online portal of the Nürnberger Nachrichten, a regional news publisher serving Nürnberg, Franken, and the Oberpfalz regions in Germany. The website offers news content, subscription services including digital NN+ subscriptions, e-paper access, newsletters, and podcasts. It targets local residents and readers interested in regional and national news. The business model is primarily media publishing with revenue from subscriptions and advertising. The site is well-branded and consistent with a strong regional market position.

Architekturgalerie München operates as a cultural platform dedicated to architecture and related spatial disciplines, offering exhibitions, lectures, and discussions to a diverse audience including professionals and the public. The website is built on TYPO3 CMS and employs modern web technologies such as jQuery and Google Analytics with privacy-conscious configurations. The site demonstrates good design quality, clear navigation, and GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS and anonymized analytics, though it lacks advanced security headers and explicit incident response information. Overall, the website is professional and trustworthy, supporting the gallery's mission effectively.

F

Fachverband Baustoffe und Bauteile für vorgehängte hinterlüftete Fassaden e.V.

fvhf.de

0

The Fachverband Baustoffe und Bauteile für vorgehängte hinterlüftete Fassaden e.V. (FVHF) is a specialized German association founded in 1993, representing manufacturers, processors, planners, and engineers involved in ventilated facade systems (VHF). The organization focuses on promoting technical, architectural, and economic aspects of VHF in new construction and renovation projects. The website serves as a comprehensive portal offering information, member services, educational seminars, and industry events, positioning FVHF as a key player in its niche market. Technically, the site is built on Weblication® CMS, hosted via DomainControl.com, and demonstrates good mobile optimization and SEO practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting FVHF's credibility as a non-profit industry association.

D

DETAIL

detail.de

0

DETAIL is an established international media platform focused on architecture, construction, and design. It offers rich editorial content, a magazine, an online shop, and organizes events and awards targeting professionals in architecture and design sectors. The website is built on Magento 2, leveraging modern JavaScript frameworks and third-party services for analytics, advertising, and user consent management. The platform demonstrates a mature digital infrastructure with good mobile optimization and SEO practices. Security posture is strong with HTTPS, CAPTCHA protections, and error tracking, although explicit security policies and incident response contacts are not publicly visible. Privacy compliance is well addressed with GDPR-aligned cookie consent and privacy policies. Overall, the site is professional, trustworthy, and well-positioned in its niche media market.