Security Directory

D

Deutsche Gesellschaft für christliche Kunst e.V.

dg-kunstraum.de

0

The Deutsche Gesellschaft für christliche Kunst e.V. operates the DG Kunstraum Diskurs Gegenwart website, serving as a cultural and artistic forum with a Christian perspective focused on contemporary art and discourse. The organization is a small non-profit entity based in Germany, offering exhibitions, events, publications, and membership opportunities to art enthusiasts and the Christian art community. The website reflects this mission with rich content, event previews, and partner collaborations, targeting a niche audience interested in art and culture within a religious context. Technically, the website is built on WordPress and employs common JavaScript libraries such as jQuery and Masonry for layout and image handling. The site is moderately optimized for performance and mobile devices, with good design quality and clear navigation. However, accessibility features and SEO optimizations are basic, and no advanced frameworks or hosting details are evident from the content. From a security standpoint, the site uses HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks important security headers and does not provide explicit incident response or vulnerability disclosure information. Privacy compliance is partially addressed with a privacy policy and cookie policy, but no active cookie consent mechanism is implemented. Contact information is limited to social media links, with no direct email or phone contacts visible. Overall, the website is trustworthy and professionally presented, suitable for its cultural non-profit purpose. Strategic improvements in security headers, privacy consent, and incident response transparency would enhance its security posture and compliance. The domain registration aligns well with the organization's profile, supporting legitimacy and trustworthiness.

A

Architektenkammer Berlin

ak-berlin.de

0

Architektenkammer Berlin is a professional self-governing chamber representing architects, urban planners, landscape architects, and interior architects in Berlin. The organization provides membership services, continuing education, legal advice, event management, and publishes relevant industry content. It holds a key position as the official chamber for architectural professions in Berlin, targeting professionals and stakeholders in the built environment sector. The website reflects a medium-sized government-related entity with a clear focus on professional development and community engagement. Technically, the website is built on TYPO3 CMS and leverages modern frontend technologies including jQuery, Bootstrap, Flexslider, and Leaflet.js for interactive maps. The site is mobile-optimized, accessible, and SEO-friendly with proper meta tags and structured navigation. Analytics are handled via Matomo with user consent, reflecting a privacy-conscious approach. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, the site lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced trust and compliance. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and well-maintained, supporting the organization's mission effectively. Strategic improvements in security transparency and formal policies would further strengthen its posture.

HelloMe is a creative studio based in Germany, established in 2015, specializing in various design disciplines including art direction, digital, exhibition, identity, publication, product, spatial, and typeface design. The website serves primarily as a portfolio showcasing selected works, targeting creative professionals and potential clients seeking high-quality design services. The business model is service-oriented, focusing on creative project delivery and brand presentation. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Flickity, and Tippy.js for enhanced user interface and experience. The site demonstrates good mobile optimization and a consistent branding approach, although SEO and accessibility features are basic. Hosting and domain registration are stable and consistent with the business profile. From a security perspective, the site uses HTTPS with a valid SSL configuration and has domain transfer protections in place. However, it lacks DNSSEC and important security headers, which could be improved to enhance security posture. There are no visible vulnerabilities or exposed sensitive data. Privacy compliance is weak due to the absence of privacy and cookie policies, and no explicit contact information or incident response channels are provided. Overall, the website presents a professional and trustworthy image for a small creative studio but would benefit from improved privacy compliance, security headers, and clearer contact information to strengthen trust and regulatory adherence.

F

fidion GmbH

fidion.de

0

fidion GmbH operates a specialized web content management system (fCMS) tailored for media houses, newspapers, and magazines. Their platform offers modular licensing, multi-channel content delivery, integrated SSO and payment servers, and hosting services primarily focused on the German market. The company positions itself as a niche provider within the media technology sector, emphasizing ease of use, responsive design, and revenue generation through paywalls. The website reflects a professional and consistent brand image, targeting media professionals and publishers. Technically, the site uses a proprietary CMS with a modern JavaScript stack including jQuery and Google Maps API. Hosting is managed by fidion GmbH with data centers in Germany, ensuring compliance with local data protection laws. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with asynchronous script loading and responsive images. Security posture is solid with enforced HTTPS and user browser security notifications, but lacks explicit HTTP security headers and a cookie consent mechanism. No visible forms reduce attack surface, but the absence of published security policies or incident response contacts limits transparency. WHOIS data is minimal but consistent with the business, and no suspicious domains or vulnerabilities were detected. Overall, fidion.de presents a trustworthy and professional digital presence with room for improvement in security headers and privacy compliance mechanisms. The business is well-positioned in its niche with a clear value proposition and technical maturity.

V

Verlag Nürnberger Presse Druckhaus Nürnberg GmbH & Co. KG

nordbayern.de

0

Nordbayern.de is a professional regional news portal operated by Verlag Nürnberger Presse Druckhaus Nürnberg GmbH & Co. KG, serving northern Bavaria and broader German-speaking audiences. The site offers comprehensive news coverage including politics, sports, economy, and culture, supported by subscription and advertising revenue models. The company maintains a strong market position as a leading regional media outlet with a clear focus on local and national news. Technically, the website employs a modern tech stack including Piano.io for subscription management, Google Tag Manager, Facebook Pixel, and Chartbeat for analytics, alongside robust consent management tools to ensure GDPR compliance. Security posture is solid with HTTPS enforcement, secure login forms, and privacy-conscious tracking. The site is well-structured, mobile-optimized, and provides clear navigation and professional content. Overall, nordbayern.de demonstrates a mature digital presence with good security and privacy practices, though it could enhance incident response transparency and security header implementation.

I

inFranken.de

infranken.de

0

inFranken.de is a regional news media platform providing daily news, comprehensive reports, helpful guides, videos, and service offers focused on the Franken and Bavaria regions in Germany. The website targets local residents and readers interested in regional, national, and global news. It operates as a large-scale media outlet with a strong digital presence and multiple content verticals including news, entertainment, sports, and lifestyle. The business model centers on advertising, event ticketing, and digital content distribution.

T

Technische Hochschule Nürnberg Georg Simon Ohm

th-nuernberg.de

0

Technische Hochschule Nürnberg Georg Simon Ohm is a large public university in Germany, serving over 13,000 students with a broad range of academic programs, research initiatives, and continuing education offerings. The website reflects a mature digital presence built on TYPO3 CMS with modern web technologies and a clear focus on accessibility and internationalization. The institution maintains a strong market position as the largest university in Nuremberg and third largest in Northern Bavaria, with key services spanning education, research, and career support. Social media integration and comprehensive navigation enhance user engagement. Security posture is solid with HTTPS and asynchronous script loading, though improvements are recommended in security headers and explicit privacy consent mechanisms. The WHOIS data aligns with the institution's German educational identity, supporting legitimacy. Overall, the website is professional, trustworthy, and well-structured, supporting the university's mission and stakeholder needs.

Staab Architekten is a German architecture firm specializing in cultural, institutional, and public building projects. Their website showcases a portfolio of award-winning projects, including museums, seminar buildings, and cultural centers, targeting clients in the real estate and cultural sectors. The firm positions itself as a reputable medium-sized architecture practice with a strong presence in Germany. Technically, the website is well-structured, mobile-optimized, and uses modern web standards, though no CMS or advanced frameworks are detected. Security posture is moderate with HTTPS assumed but lacking explicit security headers and policies. Privacy compliance is partially met with a comprehensive privacy policy but no cookie consent mechanism. Business credibility is supported by professional content and contact information, though WHOIS data is missing, which reduces transparency and trust. Overall, the website is professional and functional but could improve in security and privacy disclosures.

A

Akademie der Kulturellen Bildung des Bundes und des Landes NRW e.V.

kulturellebildung.de

0

The Akademie der Kulturellen Bildung des Bundes und des Landes NRW e.V. is a prominent German non-profit educational institution specializing in cultural youth education. It serves as a federal and state central institute offering a broad range of courses, workshops, research projects, and events aimed at professionals and stakeholders in cultural education. The website reflects a strong market position with comprehensive program offerings and active engagement through newsletters and social media channels. Technically, the site is built on a modern WordPress platform with advanced plugins for SEO, user management, and analytics, demonstrating a mature digital infrastructure. Security measures include HTTPS enforcement, security monitoring via WP Sentry, and GDPR-compliant cookie consent mechanisms, although some security headers could be improved. Overall, the site is professional, accessible, and trustworthy, with clear contact information and privacy policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and secure online presence.

C

C. Bechstein Pianoforte GmbH

bechstein.com

0

C. Bechstein Pianoforte GmbH is a prestigious German manufacturer of grand and upright pianos, with a heritage dating back to 1853. The company offers premium handcrafted instruments targeting professional musicians and discerning customers worldwide. Their business model includes manufacturing, authorized dealer networks, service, and restoration. The website reflects a mature digital presence built on TYPO3 CMS, with multilingual support and comprehensive product and company information. Privacy and cookie compliance are well implemented, including consent management and GDPR-aligned policies. Security posture is good with HTTPS and CAPTCHA on forms, though some HTTP security headers are missing. WHOIS data is unavailable publicly, which slightly impacts trust but is not uncommon for premium brands. Overall, the site is professional, trustworthy, and well-optimized for SEO and user experience.

S

Sparkasse Oberlausitz-Niederschlesien

sparkasse-oberlausitz-niederschlesien.de

0

Sparkasse Oberlausitz-Niederschlesien is a well-established regional financial institution in Germany with a strong heritage of 200 years. The website serves both private and corporate customers, offering a broad range of banking products including accounts, loans, investments, insurance, and real estate services. The digital presence is professional, well-structured, and optimized for accessibility and mobile use, reflecting a mature digital infrastructure based on Adobe Experience Manager and modern web technologies. Security posture is strong with HTTPS enforcement, secure login forms, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. The website integrates trusted third-party services such as Deka Investments and a virtual assistant chatbot to enhance customer experience. Overall, the site demonstrates high business credibility and compliance with GDPR and cookie regulations.

S

solemedia GbR Peter und Agathe Rösch

solemedia.de

0

solemedia GbR Peter und Agathe Rösch operates a full-service marketing and communication agency based in Germany, focusing on services such as marketing, design, print, and internet solutions. The website presents a professional design with a clear focus on their service offerings, targeting businesses seeking comprehensive marketing support. Technically, the site uses modern front-end frameworks like Bootstrap and integrates self-hosted Matomo analytics alongside a Usercentrics consent manager, indicating a moderate level of digital maturity and privacy awareness. Security posture is adequate with HTTPS usage and consent management, but lacks visible security headers and published security policies, which are areas for improvement. Overall, the website is accessible and functional but would benefit from enhanced transparency in privacy and security documentation to improve trust and compliance.

S

Sparkasse Nürnberg

sparkasse-nuernberg.de

0

Sparkasse Nürnberg is a well-established regional bank in Germany offering a comprehensive range of financial services including online banking, loans, insurance, investment products, and advisory services targeted at both private and corporate customers. The website reflects a strong market position with recognized awards for customer service and employer reputation. Technically, the site is built on Adobe Experience Manager, uses modern web technologies, and provides a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, session management, and cookie consent mechanisms, although explicit security policies and incident response information are not published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

S

Sparkasse Nürnberg

zukunftsstiftung-nuernberg.de

0

Sparkasse Nürnberg's Zukunftsstiftung website presents a well-established non-profit foundation focused on enhancing the quality of life in Nürnberg through funding sustainable and cultural projects. The site is professionally designed, content-rich, and targets local citizens and organizations. Technically, the site uses modern web technologies, including JavaScript and CSS, and is likely powered by an enterprise CMS such as Adobe Experience Manager. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are missing. The domain registration aligns well with the business identity, indicating legitimacy. Overall, the site demonstrates a mature digital presence with room for improvement in privacy compliance and security transparency.

L

Lebkuchen-Schmidt.com

lebkuchen-schmidt.com

0

Lebkuchen-Schmidt.com is an established German e-commerce retailer specializing in traditional Nürnberger Lebkuchen and related confectionery products. The website presents a professional and well-structured online shop with a strong emphasis on product quality and customer trust, evidenced by a high Trusted Shops rating and a long-standing business history since 1927. The target audience primarily includes consumers interested in authentic German baked goods and sweets, both domestically and internationally. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and a consent management platform to ensure compliance with privacy regulations. The website is mobile-optimized and offers a good user experience with clear navigation and product categorization. Security-wise, the site uses HTTPS and consent mechanisms but lacks visible security headers and explicit security policies. The absence of WHOIS registrant data is a notable concern, potentially indicating privacy protection or domain registration issues, which slightly impacts the trust assessment. Overall, the site is credible and functional but would benefit from enhanced transparency in domain registration and explicit contact information.

B

Bezirk Mittelfranken

bezirk-mittelfranken.de

0

Bezirk Mittelfranken is a regional government entity in Germany focused on providing social services, cultural preservation, health care, education, and regional development for the citizens of Mittelfranken. The website serves as an official portal offering comprehensive information about its services, events, and administrative functions. It targets residents, social service providers, cultural organizations, and educational institutions within the region. The business model is public sector service delivery with a strong emphasis on social welfare and cultural heritage. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap and jQuery, hosted on Hetzner infrastructure. It incorporates accessibility features and a consent management platform to comply with GDPR. The site demonstrates good mobile optimization and SEO practices, with a moderate performance profile. From a security perspective, the site enforces HTTPS, uses consent management for cookies, and avoids exposing sensitive data. However, it lacks some advanced security headers and does not publish a dedicated security policy or incident response contacts. No vulnerabilities were detected in the visible content or scripts. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It effectively supports the public institution's mission but could improve security posture by adding explicit security policies and enhancing HTTP headers.

T

Theater Pfütze e. V.

theater-pfuetze.de

0

Theater Pfütze e. V. is a non-profit cultural organization based in Nürnberg, Germany, specializing in theater and music theater performances targeted at young audiences, including children and youth. The organization offers a variety of services including theatrical performances, educational theater pedagogy courses, workshops, and festival events such as the Südwindfestival. The website reflects a well-established local cultural institution with a clear focus on youth engagement and education. Technically, the website is built on the TYPO3 CMS platform using the Bootstrap framework, ensuring a modern and responsive design. It integrates Matomo for analytics and Usercentrics for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the website enforces HTTPS and employs email obfuscation techniques to protect contact information. While no explicit security policies or incident response contacts are published, the site shows no signs of vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies and active consent mechanisms. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic improvements could include publishing formal security policies and vulnerability disclosure information to enhance transparency and security posture.

G

Gerhart Hauptmann-Theater Görlitz-Zittau GHT

g-h-t.de

0

Gerhart Hauptmann-Theater Görlitz-Zittau (GHT) is a regional cultural institution in Germany offering a diverse range of performing arts including music theater, drama, dance, and concerts by the Neue Lausitzer Philharmonie. The theater also provides summer open-air performances and educational theater programs targeting families, youth, and educational institutions. The website reflects a well-established presence with comprehensive event information and multiple contact channels. Technically, the site uses a proprietary CMS (BLUEPAGE-CMS) with modern JavaScript libraries and is mobile responsive, providing a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is strong with clear cookie consent and privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its cultural mission.

P

Proqua

proqua-kms.de

0

Proqua is a German-based non-profit organization focused on enhancing cultural education for disadvantaged children and youth by providing practical tools, organizing professional conferences, and fostering networking among professionals in culture, education, and social work. The website serves as a resource hub offering educational materials, event information, and a newsletter subscription to keep stakeholders informed. Technically, the site is built on WordPress with a modern theme and plugins, including Contact Form 7, Minerva Knowledge Base, and Nectar Slider, supported by Matomo analytics and Brevo for marketing communications. The infrastructure is hosted on German servers, consistent with the organization's regional focus. From a security perspective, the website employs HTTPS with good SSL configuration, uses Google reCAPTCHA v3 to protect forms, and implements GDPR-compliant cookie consent mechanisms. However, it lacks explicit security headers and does not provide a dedicated security policy or vulnerability disclosure page. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's content and hosting location, indicating legitimacy and consistency. Overall, Proqua's website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. The absence of direct contact emails or phone numbers is mitigated by a contact form. Strategic improvements include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen trust and security posture.

Q

QUORiON Data Systems GmbH

quorion.de

0

QUORiON Data Systems GmbH is a German-based manufacturer specializing in Android-based cash register systems and POS software, serving over 650,000 businesses worldwide across retail and hospitality sectors. The company positions itself as a leading provider with a strong focus on customization, scalability, and compliance with fiscal regulations. Their website reflects a mature digital presence with comprehensive product information, dealer support, and customer testimonials. Technically, the site is built on WordPress with modern optimization tools like WP Rocket and integrates Google Analytics 4 for tracking. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates professionalism, good privacy compliance, and a trustworthy business image.

M

Marketing Drenthe

besuchdrenthe.de

0

The website www.besuchdrenthe.de is a regional tourism promotion platform focused on the Drenthe region in the Netherlands, targeting German-speaking tourists. It provides comprehensive information about holidays, nature, culture, accommodations, and activities in Drenthe. The site is professionally designed with good content quality and consistent branding, offering a positive user experience with clear navigation and mobile optimization. Technically, it leverages modern web technologies including Cloudflare DNS, Google Tag Manager, Google Analytics, Facebook Pixel, and video embeds from Vimeo. The site is served over HTTPS with a good SSL configuration and includes a cookie consent mechanism compliant with GDPR. However, it lacks explicit terms of service, security policies, incident response information, and contact details such as emails or phone numbers. The WHOIS data shows Cloudflare nameservers with limited registrant information, which is typical for privacy but reduces transparency. Overall, the website demonstrates a good security posture with no visible vulnerabilities or blocking mechanisms. Strategic improvements include adding terms of service, security policies, and clear contact information to enhance trust and compliance.

Enterprise.de is a German website for Enterprise, a large vehicle rental and leasing company specializing in cars, transporters, and trucks. The site targets German consumers and businesses seeking vehicle rental and leasing services. The website is built on Adobe Experience Manager and integrates Adobe marketing and analytics technologies, indicating a mature digital infrastructure. The design is professional, mobile-optimized, and provides a good user experience, although content quality is basic with limited visible business details and no explicit privacy or cookie policies found in the provided content. Security posture is moderate with HTTPS implied but no visible security headers or explicit security policies. WHOIS data shows consistent domain registration aligned with the brand, supporting legitimacy. Overall, the site is functional and credible but lacks visible privacy compliance and security best practices, which should be addressed to improve trust and compliance.

Enterprise Mobility is a well-established, enterprise-scale provider of mobility services headquartered in Germany, operating under the parent company Enterprise Holdings, Inc. The company offers a comprehensive portfolio of mobility solutions including car rental, fleet management, carsharing, and innovative vehicle subscription services. The website reflects a strong brand identity with consistent messaging focused on customer-centric mobility experiences and sustainability. Technically, the site is built on modern frameworks such as Next.js, with robust performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism, compliance with GDPR, and trustworthy business practices.

Alamo Rent A Car, operated under Enterprise Holdings, Inc., is a major international car rental service provider with a strong presence in Germany and other global markets. The website offers comprehensive rental services including vehicle booking, accelerated check-in, and various rental packages. The site targets travelers seeking affordable and reliable car rental options across multiple regions including Europe and the Americas. The business model focuses on direct online reservations with value-added services and promotions to enhance customer experience. Technically, the website is built on Adobe Experience Manager with React components, leveraging modern analytics and consent management tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, although explicit security policies and incident response details are not publicly disclosed. Overall, the site demonstrates a professional and trustworthy online presence with good compliance to privacy regulations.

Q

QUORiON Data Systems GmbH

quorion.com

0

QUORiON Data Systems GmbH is a German-based company specializing in Android POS systems and cash registers, serving over 650,000 small businesses across more than 70 countries. The company operates primarily through a B2B reseller model, offering a comprehensive product line including hardware and software solutions tailored for retail stores and restaurants. Their market position is strong, supported by a global reseller network and a focus on customization and scalability. Technically, the website is built on WordPress with modern performance optimizations such as WP Rocket and lazy loading. It uses Google Analytics 4 for tracking and maintains good SEO and mobile responsiveness. The technical infrastructure reflects a mature digital presence with a focus on user experience and performance. From a security perspective, the site enforces HTTPS and implements several security headers, although explicit security policies and incident response information are not published. The cookie consent mechanism is present and GDPR compliance is indicated. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts trustworthiness. Overall, the website and business appear legitimate and professional, with strong branding and trust signals such as testimonials and social media presence. However, improvements in transparency regarding security policies and domain registration details would enhance credibility and security posture.

B

Bundesministerium für Bildung und Forschung (BMBF)

buendnisse-fuer-bildung.de

0

The website 'BMBF Bündnisse für Bildung' is an official German government platform managed by the Bundesministerium für Bildung und Forschung (BMBF). It serves as a comprehensive information hub for the cultural education funding program 'Kultur macht stark. Bündnisse für Bildung', targeting children, youth, and educational stakeholders. The site provides detailed program information, funding opportunities, service resources, and event calendars, positioning itself as a trusted authority in the cultural education sector in Germany. Technically, the website is built on the Government Site Builder CMS, featuring modern web technologies including JavaScript and CSS, with a focus on accessibility and mobile optimization. The site employs HTTPS and uses Matomo analytics, reflecting a commitment to privacy and security. Navigation is clear and content quality is excellent, supporting a positive user experience. From a security perspective, the site enforces HTTPS and secure form handling but lacks explicit security headers and incident response contact details. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a clear privacy policy and cookie consent mechanism in place. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with relevant regulations. It effectively supports its mission to promote cultural education through government-backed initiatives. Strategic improvements could include adding explicit security headers, incident response contacts, and a vulnerability disclosure policy to further enhance security posture.

T

Theater der Zeit

tdz.de

0

Theater der Zeit is a specialized German media publisher focusing on theater-related content including books, magazines, and digital media. It serves a niche audience of theater professionals and enthusiasts, offering subscription services, event organization, and advertising opportunities. The company holds recognized awards and certifications, enhancing its market credibility. Technically, the website is built on modern frameworks such as Next.js and React, with good mobile optimization and accessibility. Security posture is strong with HTTPS and appropriate headers, though the absence of a cookie consent mechanism and public security policies are minor gaps. Overall, the site is professional, trustworthy, and well-positioned in its sector.

S

Stadttheater Gießen

stadttheater-giessen.de

0

Stadttheater Gießen is a prominent publicly funded cultural institution in Hessen, Germany, operating as a five-division theater with a broad regional influence. The website serves as a comprehensive portal for visitors, offering detailed information about performances, ticketing, educational programs, and services for people with disabilities. The organization targets theatergoers, schools, and the local community, positioning itself as a key cultural hub with a strong public service orientation. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and various UI libraries such as Fancybox and Slick Slider, likely built on the Kirby CMS platform. Hosting is managed via Schlundtech, a reputable provider. The site is mobile-optimized with good SEO practices and moderate performance, delivering a professional and accessible user experience. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. However, it lacks explicit security headers and does not provide a public security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The website demonstrates high business credibility with clear contact details, social media presence, and trust signals such as privacy policies and terms of service. The domain registration aligns with the business profile, showing no suspicious patterns. The overall risk is low, with recommendations focusing on improving security headers and incident response transparency to further strengthen trust and compliance.

NRW Landesbüro Freie Darstellende Künste e.V. is a non-profit organization serving as a service office and advocacy group for the free performing arts scene in North Rhine-Westphalia, Germany. The organization supports cultural and theater projects through funding, training, and event management, positioning itself as a key regional player in the cultural sector. The website reflects this mission with clear information, regular news updates, and active social media engagement. Technically, the site uses a combination of Bootstrap 3.3.6, jQuery 1.9.1, and other JavaScript libraries to deliver a moderately performant and mobile-optimized experience. Security posture is adequate with HTTPS enforced but could be improved by updating outdated libraries and adding security headers and policies. Privacy compliance is supported by a visible privacy policy and contact information, though no cookie consent mechanism was detected. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

D

Darstellende Künste & Junges Publikum

jungespublikum.de

0

The website jungespublikum.de serves as a professional and comprehensive platform for the cultural sector focused on performing arts for young audiences in Germany. It represents organizations such as ASSITEJ and KJTZ, providing event information, funding opportunities, publications, and advocacy resources. The site targets theater professionals, cultural institutions, and young audiences, positioning itself as a key network and information hub in this niche cultural domain. The business model is non-profit, emphasizing cultural participation and support rather than commercial activities. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Borlabs Cookie for privacy compliance. It uses Matomo for privacy-conscious analytics and Cloudflare for DNS and likely CDN services, ensuring good performance and security. The site is well-optimized for mobile devices, accessible, and SEO-friendly, with structured data enhancing search engine understanding. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were found. However, security headers could be improved, and the site lacks a published security policy or incident response information. Privacy compliance is strong, with clear privacy and cookie policies. Overall, the website demonstrates a mature digital presence with strong content quality, technical implementation, and privacy compliance. The risk profile is low, with no signs of malicious activity or blocking. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen trust and security posture.

N

Nordicweb GmbH

nordicweb.com

0

Nordicweb GmbH is a well-established German technology service provider specializing in web design, hosting, online marketing, print design, and photography services. With over 15 years of experience and a strong regional presence in Germany, Denmark, and Spain, the company offers tailored digital solutions for businesses of various sizes and budgets. Their market position is reinforced by certifications such as the Google Partner Badge and local awards recognizing their web design excellence. Technically, the website employs a mix of modern and legacy technologies including jQuery, Prototype.js, Scriptaculous, and the Foundation CSS framework. The site is mobile-optimized and SEO-friendly, with a cookie consent mechanism compliant with GDPR. Hosting details are not explicitly stated, but domain registration is stable and long-standing. From a security perspective, the site uses HTTPS with SSL encryption and implements cookie consent with opt-in for analytics tracking. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content. The use of older JavaScript libraries may pose potential vulnerabilities if not regularly updated. No published security policies or incident response contacts were found. Overall, the website demonstrates a good balance of professionalism, technical implementation, and privacy compliance, with minor security improvements recommended. The domain registration data supports the legitimacy and trustworthiness of the business. Strategic enhancements in security posture and transparency would further strengthen their risk profile.

J

J.P. Sauer & Sohn Maschinenbau GmbH

sauercompressors.com

0

J.P. Sauer & Sohn Maschinenbau GmbH operates the website www.sauercompressors.com, providing high-pressure air and gas compressors for diverse sectors including industry, offshore, commercial shipping, and defence. The company positions itself as a leading global vendor with over 140 years of experience, offering multiple product lines and comprehensive service solutions. Their business model focuses on manufacturing, servicing, and rental of compressors, targeting industrial and governmental clients worldwide. Technically, the website employs modern JavaScript libraries such as jQuery, Slick Carousel, and Swiper.js, alongside Google Tag Manager for analytics. The site is mobile-optimized with good navigation and SEO practices, though it lacks explicit CMS identification. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site uses HTTPS with no visible exposed sensitive data or vulnerable libraries. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and compliance. The absence of WHOIS data for the domain is notable and warrants further verification, though the website content and branding strongly indicate legitimacy. Overall, the site demonstrates a solid business presence with good technical implementation and moderate security posture. Strategic improvements in privacy compliance and security policies would enhance trust and regulatory adherence.

D

Demodesk GmbH

demodesk.com

0

Demodesk GmbH operates a sophisticated AI-driven sales enablement platform focused on automating and enhancing sales processes through AI sales agents. Their product suite includes AI Assistant, AI Coach, AI Analyst, and AI CRM Concierge, targeting revenue teams across various roles. The company positions itself as an innovative leader in the technology sector with a strong emphasis on improving sales efficiency and revenue growth. Technically, the website is built on Webflow and integrates multiple modern marketing and analytics tools such as HubSpot, Google Tag Manager, Hotjar, and Intercom, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and a dedicated security page, although DNSSEC is not enabled, which is a recommended improvement. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and technical quality, supporting a positive business credibility profile.

S

SCHOTTEL GmbH

schottel.de

0

SCHOTTEL GmbH is a well-established German company specializing in the development and production of azimuth thrusters and complete propulsion systems for maritime vessels and offshore applications. Founded in 1921, the company holds a strong market position with a global footprint including numerous subsidiaries and partners worldwide. Their product portfolio includes innovative propulsion technologies such as the RudderPropeller, with over 17,000 units installed globally, serving a diverse clientele in the shipping and offshore sectors. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including Matomo for privacy-conscious analytics and jQuery for interactive elements. The site demonstrates good mobile optimization, SEO practices, and a professional design, although some accessibility features could be enhanced. The presence of a cookie consent mechanism aligns with GDPR requirements, though a dedicated privacy policy page was not detected in the provided content. From a security perspective, the site uses HTTPS and implements some best practices such as DoNotTrack in analytics. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious activities were detected, indicating a generally secure posture but with room for improvement in transparency and security documentation. Overall, SCHOTTEL GmbH presents a credible and professional online presence consistent with its business stature. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and improving accessibility compliance to further strengthen trust and compliance.

D

Deckma GmbH

deckma-gmbh.de

0

Deckma GmbH is a medium-sized, family-owned German company established in 1974, specializing in manufacturing and supplying technical and decorative lighting, fire alarm systems, navigation systems, corrosion protection, and ballast water treatment equipment primarily for the shipbuilding and offshore industries. The company operates multiple offices in Germany, including Hamburg, Bremerhaven, and Rostock, serving a B2B maritime market. Their website is bilingual (German and English), professionally designed, and provides comprehensive contact information and business descriptions. Technically, the website employs a mix of older and modern JavaScript libraries such as jQuery, Prototype, and Scriptaculous, alongside the Foundation CSS framework for responsive design. Cookie consent is implemented with an opt-in mechanism, and Google Analytics is used with IP anonymization. However, no explicit security headers or advanced security policies are evident, and no CMS or hosting provider information is disclosed. The website performance is moderate with good mobile optimization. From a security perspective, the site uses HTTPS (implied by the domain and scripts loaded via HTTPS), but lacks visible security headers like CSP or HSTS. The cookie consent mechanism is robust, but no incident response or vulnerability disclosure policies are published. No social media or external trust certifications are present. Overall, the security posture is moderate with room for improvement in headers and documented policies. The overall risk is low to moderate given the business nature and website maturity. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility and SEO. The site is trustworthy and professionally maintained but could benefit from modern security best practices and transparency enhancements.

S

SEC Ship‘s Equipment Centre Bremen GmbH & Co. KG

sec-bremen.de

0

SEC Ship‘s Equipment Centre Bremen GmbH & Co. KG is a leading manufacturer and service provider of container securing equipment, including heavy duty twistlocks, anchors, and hydraulic winches. With over 30 years of experience and international offices in Shanghai and Korea, SEC serves shipyards and ship owners worldwide, offering both hardware and engineering services. The company positions itself as a market leader with a strong focus on safety and innovation in container lashing systems. Technically, the website is built on WordPress with a modern plugin ecosystem, providing good mobile optimization and user experience. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy and cookie policy in German. Overall, the website reflects a professional and trustworthy maritime equipment business with a medium-sized international footprint.

S

Schaffran Propeller

schaffran-propeller.de

0

Schaffran Propeller is a specialized company likely operating in the engineering or manufacturing sector related to propellers, targeting a German-speaking audience. The website is built on WordPress using the Salient theme and optimized with WPRocket and Rank Math PRO for SEO. Hosting is provided by Cloudpit, as indicated by the nameservers. The site is accessible without any WAF or security challenge blocking content. However, the website lacks visible privacy, cookie, or terms of service policies, and no contact information or incident response details are present, which limits trust and compliance assessment. Technically, the site uses modern web technologies and is mobile optimized, but security posture is weak due to missing security headers and policies. Overall, the site presents a basic but functional online presence for a niche business.

S

SCHOTTEL GmbH

schottel.com

0

SCHOTTEL GmbH is a well-established German company specializing in the development and manufacturing of azimuth propulsion and maneuvering systems for maritime vessels and offshore applications. With a history dating back to 1921, SCHOTTEL holds a strong market position as a leading propulsion expert, offering products with power ratings up to 30 megawatts. Their global footprint is supported by multiple subsidiaries and sales agencies worldwide, reflecting a mature and expansive business model focused on manufacturing and after-sales services. The website content is rich, professionally designed, and targets maritime industry professionals and shipbuilders.

C

CloserStill Media

cloudexpoeurope.de

0

Tech Show Frankfurt 2025, organized by CloserStill Media, is a leading technology event focusing on cloud and AI infrastructure in the DACH region. The website presents a professional and content-rich platform showcasing event details, speakers, exhibitors, and sponsors. The technical infrastructure leverages modern JavaScript libraries and analytics tools, indicating a mature digital presence. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks explicit privacy and cookie policies, which impacts compliance. Overall, the site is credible and well-positioned in its market segment but would benefit from enhanced privacy and security disclosures.

Yardi Deutschland is a leading provider of integrated property management software solutions tailored for the European real estate market. Founded in 1984, the company offers a comprehensive suite of services including investment management, asset management, property management, accounting, marketing, and eLearning. Their platform targets real estate professionals and enterprises seeking to optimize portfolio management through a SaaS business model. The website reflects a mature digital presence with strong branding consistency and clear business communication. Technically, the site is built on WordPress and leverages modern technologies such as HubSpot for marketing automation, OneTrust for cookie consent management, and Microsoft Application Insights for telemetry. Hosting is managed via AWS infrastructure, ensuring scalability and reliability. The website demonstrates good performance, mobile optimization, and accessibility standards. From a security perspective, the site enforces HTTPS, implements key security headers, and integrates GDPR-compliant privacy and cookie policies. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or incident response contact page suggests room for improvement in transparency and readiness. Overall, Yardi Deutschland presents a professional, trustworthy, and compliant online presence with a strong market position in real estate software. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure mechanisms to further enhance trust and security posture.

S

SugarCRM

sugarcrm.com

0

SugarCRM is a leading provider of intelligent CRM platforms focused on B2B sales automation and customer relationship management, particularly serving manufacturing and other industries. The website presents a professional, content-rich experience with multimedia, customer testimonials, and analyst reports, positioning SugarCRM as a market leader. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools, offering good performance and mobile optimization. Security posture is strong with HTTPS and consent management, though explicit privacy and terms pages are missing. WHOIS data is unavailable, which slightly reduces domain trust but does not detract from the overall legitimacy of the business. Strategic recommendations include publishing clear privacy and terms policies, adding security.txt, and enhancing accessibility compliance.

S

SUBAN d.o.o.

silux.de

0

SILUX.DE is an established e-commerce platform specializing in automotive spare parts, targeting primarily the German market with regional presence in Slovenia and neighboring countries. The company offers a vast catalog of over 130,000 parts including lamps, mirrors, body components, cooling systems, and engine parts, supported by a 365-day return policy, positioning itself as a price-competitive retailer in the automotive aftermarket sector. The website is professionally designed with clear navigation and a mobile-optimized interface, facilitating a positive user experience for automotive parts buyers. Technically, the site employs a modern technology stack including jQuery, Google Tag Manager, Google Analytics, Facebook SDK, Stripe for payments, and Klaro for cookie consent management. While the site uses HTTPS and some security best practices, there is room for improvement in security headers and explicit privacy policy publication. The site integrates multiple marketing and tracking tools, reflecting a moderate level of user tracking consistent with e-commerce standards. From a security perspective, the site demonstrates a good baseline with HTTPS and secure form handling but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected in the provided content. WHOIS data aligns with the business identity, showing consistent registration details and no privacy protection, supporting domain legitimacy. Overall, SILUX.DE presents a trustworthy and functional e-commerce platform with moderate technical maturity and security posture. Strategic enhancements in privacy compliance documentation, security headers, and incident response transparency would further strengthen its risk profile and customer trust.

I

IBSAG

ibs-ag.de

0

IBSAG operates a German-language software blog focused on providing reviews and guides for various software categories including image editing, video editing, free software, and gaming software. The site targets German-speaking software users and enthusiasts seeking software recommendations and information. The business model appears to be content publishing, likely monetized through affiliate marketing or advertising, positioning IBSAG as a niche player in the technology content space. Technically, the website is built on WordPress 4.9.26 and uses Cloudflare for DNS and likely CDN services. The site enforces HTTPS via a client-side redirect and loads external resources such as Google Fonts and WordPress emoji scripts. The design is consistent and user-friendly with basic mobile optimization and accessibility features. However, the WordPress version is outdated, which may pose security risks. From a security perspective, the site enforces HTTPS but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There are no visible privacy or cookie policies, no contact information, and no incident response or vulnerability disclosure mechanisms. These gaps reduce the site's compliance posture and trustworthiness. No signs of WAF or blocking mechanisms were detected, and the WHOIS data shows Cloudflare name servers but lacks detailed registrant information. Overall, IBSAG presents a functional and content-rich website with moderate technical implementation but significant gaps in privacy, security policies, and contact transparency. Strategic improvements in these areas would enhance trust, compliance, and security posture.

Deutsche Oppenheim Family Office AG operates as a wealth management and family office service provider based in Germany, targeting high net worth individuals and families. The company focuses on personalized asset management and family office solutions, positioning itself as a specialized player in the German finance sector. The website's content and branding are consistent and professionally presented, though some key compliance and contact information is missing from the accessible content. Technically, the website employs modern front-end technologies such as Vue.js and PrimeVue components, hosted on German Telekom infrastructure, indicating a moderate level of digital maturity. However, the absence of visible security headers, privacy policies, and contact details suggests gaps in security posture and privacy compliance. Overall, the site is functional and professional but would benefit from enhanced transparency and security measures to improve trust and compliance.

A

Aesthetika Seevetal Kosmetikinstitut

kosmetik-treff.de

0

Aesthetika Seevetal Kosmetikinstitut is a small local beauty and cosmetic service provider based in Seevetal, Germany. The business offers a range of cosmetic treatments including facial care, foot care, make-up, depilation, permanent make-up, and nail care, targeting a broad audience interested in personal care and beauty. The website serves as an informational portal with basic navigation and contact details, reflecting a modest digital presence appropriate for a small service business. Technically, the website is built using basic HTML, CSS, and JavaScript, with the phpWebEd CMS platform. It includes legacy technology such as SWFObject for Flash content, which is outdated and poses security and compatibility risks. Google Analytics is integrated for visitor tracking, but no cookie consent mechanism or privacy policies are present, indicating gaps in privacy compliance. The site shows moderate performance and basic accessibility but lacks mobile optimization. From a security perspective, the site uses HTTPS as implied by the Google Analytics script source, but no security headers were detected in the provided data. The absence of privacy and cookie policies, combined with outdated Flash usage and lack of security headers, lowers the overall security posture. Contact information is clearly provided, but no incident response or security policy information is available. Overall, the website is functional and provides essential business information but requires improvements in privacy compliance, security best practices, and modernization of technical components to enhance trustworthiness and regulatory adherence.

R

Rödl & Partner

roedl.com

0

Rödl & Partner is a large international professional services firm headquartered in Germany, specializing in legal advisory, tax consulting, audit services, and management and IT consulting. With 116 offices across 50 countries and approximately 6,000 employees, the firm targets Mittelstand shaped world market leaders, offering integrated interdisciplinary services. The website is built on Microsoft SharePoint, featuring a professional design and good navigation, with a focus on content relevant to their global clientele. Privacy and cookie policies are comprehensive and GDPR compliant, with a consent mechanism in place. Security posture is strong with HTTPS and secure analytics implementation, though explicit security policies and incident response information are not publicly detailed. WHOIS data is unavailable or protected, which slightly reduces trust but the website's professionalism and global presence support legitimacy.

S

SPL Group ATM Parts and Support

spl-group.com

0

SPL Group is a well-established multinational corporation specializing in the supply and refurbishment of ATM parts and banking equipment. With a domain age dating back to 1997 and a strong presence in the financial services sector, the company offers a comprehensive range of services including parts supply, repair, refurbishment, training, and recycling solutions. Their target audience primarily includes banks, financial institutions, CIT companies, ATM manufacturers, and maintenance organizations. The website is professionally designed, mobile-optimized, and provides multilingual support, enhancing accessibility for a global clientele. Technically, the website is built on WordPress with WooCommerce and WPBakery Page Builder, leveraging modern web technologies and analytics tools such as Google Analytics and Tag Manager. Hosting and DNS are managed via reputable providers, including Network Solutions and Cloudflare, ensuring reliable performance and security. The site implements GDPR-compliant privacy and cookie policies with active consent mechanisms. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, DNSSEC is not enabled, and there is no published security.txt or explicit incident response contact, which are areas for improvement. The absence of certain HTTP security headers suggests potential enhancements to harden the site further. No WAF or blocking mechanisms interfere with content accessibility. Overall, SPL Group demonstrates a strong business credibility and digital maturity with good security hygiene. Strategic recommendations include enabling DNSSEC, publishing vulnerability disclosure information, and enhancing HTTP security headers to bolster trust and resilience against cyber threats.

H

HelloFresh

hellofresh.de

0

HelloFresh is a leading meal kit delivery service operating in Germany, offering fresh ingredients and a wide variety of recipes delivered weekly to customers' doors. The company positions itself as the number one meal kit provider in Germany, emphasizing convenience, freshness, and sustainability. Their business model is subscription-based, targeting consumers who seek easy and balanced cooking solutions. The website reflects a mature digital infrastructure using modern technologies such as React and Next.js, hosted on AWS with strong performance and mobile optimization. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website and business demonstrate high professionalism, trustworthiness, and market leadership.