Security Directory

P

proveo, Quantum Aviation Solutions GmbH

proveo.com

0

proveo, operated by Quantum Aviation Solutions GmbH, is a specialized provider of Ground Support Equipment (GSE) Fleet Telematics Solutions based in Germany. Established in 2011, the company focuses on delivering IoT-enabled fleet management services that optimize safety, streamline maintenance, and enhance operational efficiency for aviation ground support and transportation sectors. Their market position is that of an industry leader in GSE telematics, targeting B2B customers requiring advanced fleet and asset management solutions. Technically, the website is built on a modern WordPress platform using Elementor for design and Yoast SEO for search optimization. The presence of a comprehensive cookie consent mechanism and SSL encryption indicates a mature digital infrastructure with attention to privacy compliance. Performance is moderate with good mobile optimization and basic accessibility features. From a security standpoint, the site enforces HTTPS and employs a cookie consent banner that documents user consent in compliance with GDPR. However, there is room for improvement by enabling DNSSEC, adding more security headers, and conducting regular audits of third-party scripts. No critical vulnerabilities or exposed sensitive data were detected. Overall, proveo demonstrates a solid business and technical foundation with good privacy and security practices. The domain registration data aligns well with the business history, enhancing trustworthiness. Strategic recommendations include enhancing security headers, enabling DNSSEC, and expanding transparency with terms of service and vulnerability disclosure policies.

A

AUTOPSTENHOJ GmbH

autopstenhoj.com

0

AUTOPSTENHOJ GmbH is a German manufacturer specializing in hydraulic inground lifts, surface-mounted lifts, and test equipment primarily for automotive workshops, vehicle manufacturers, and car dealerships. The company is positioned as a premium provider with approvals from leading car manufacturers such as BMW, Jaguar, and Mercedes-Benz, indicating a strong market presence and trusted product quality. Their business model includes manufacturing, supplying, and training via the AUTOPSTENHOJ Academy, supporting a comprehensive service offering. Technically, the website is built on a modern stack including jQuery, Bootstrap, and Magento CMS, with good mobile optimization and SEO practices. The site uses HTTPS and cookie consent mechanisms, reflecting a mature digital infrastructure. However, some security headers are missing, and no explicit incident response or security policy pages were found, indicating areas for improvement. From a security perspective, the site demonstrates good practices such as secure login forms and GDPR-compliant privacy and cookie policies. The absence of WHOIS data for the domain is a notable gap, reducing trustworthiness from a domain registration perspective. No WAF or blocking mechanisms were detected, and no critical vulnerabilities were found in the visible content. Overall, the website is professional, secure, and compliant with privacy regulations, but the missing WHOIS data and lack of some security headers suggest moderate risk. Strategic improvements in domain transparency and security policy publication would enhance trust and security posture.

Z

zenloop

zenloop.com

0

Zenloop operates a specialized Customer Experience Management (CXM) platform focused on leveraging Net Promoter Score (NPS) and AI-driven automation to help businesses collect, analyze, and act on customer feedback. The company targets businesses across sectors such as energy, retail, internet services, and financial services, positioning itself as a modern SaaS provider with a strong emphasis on actionable insights and customer retention. The website demonstrates a mature digital presence with comprehensive content, clear navigation, and professional branding. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple marketing and analytics tools, including Google Tag Manager and Usercentrics for consent management. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site reflects a trustworthy and professional business with good privacy compliance and user experience.

S

Spectro Inlets

spectroinlets.com

0

Spectro Inlets is a specialized technology company focused on providing advanced electrochemical mass spectrometry solutions primarily for battery research and electrochemistry applications. Their products, such as the EC-MS Premium and EC-MS Professional, enable real-time gas analysis with exceptional sensitivity and time resolution, targeting researchers and industrial users seeking precise measurement tools. The company positions itself as a niche leader with a strong emphasis on innovation and environmental impact optimization. Technically, the website is built on a modern WordPress platform using Elementor and Astra theme, integrating various industry-standard tools such as Google Analytics, Google Tag Manager, and Cookiebot for privacy compliance. The site demonstrates good SEO practices, mobile optimization, and a professional design, reflecting a mature digital presence. Hosting details are not explicit but the domain registrar is reputable, and the site uses HTTPS with a good SSL configuration. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks some advanced HTTP security headers and DNSSEC. No explicit security policies or incident response contacts are published, which could be improved. Privacy compliance is well addressed with a privacy policy and cookie consent mechanism, indicating GDPR awareness. No exposed sensitive data or vulnerabilities were detected in the analysis. Overall, the website and business exhibit a solid risk profile with good credibility and technical maturity. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing security and incident response policies, and providing direct contact information to improve trust and compliance further.

B

BARTEC Top Holding GmbH

bartec.se

0

BARTEC Top Holding GmbH is a globally recognized leader in explosion protection, providing advanced safety solutions for hazardous industrial environments. With over 50 years of experience, BARTEC offers a comprehensive portfolio of certified products and custom solutions across key sectors such as energy, manufacturing, and transport. Their business model focuses on B2B engagements, supported by a global sales and service network and complemented by professional training through BARTEC Academy. The website reflects a mature digital presence with a modern TYPO3 CMS infrastructure, integrated analytics, and marketing tools managed with user consent, demonstrating digital maturity and compliance awareness. Security posture is strong with HTTPS enforcement and consent-based tracking, though minor improvements like DNSSEC and enhanced security headers are recommended. Overall, BARTEC's online presence aligns well with its market position as a trusted, professional, and innovative industry leader.

R

RLDatix

allocatesoftware.de

0

RLDatix operates as a specialized provider of workforce management software tailored for the healthcare sector in Germany. Their offerings include personnel scheduling, time tracking, mobile employee applications, and operational management tools. The company positions itself as a modern SaaS provider with a focus on efficiency and compliance, targeting hospitals and healthcare providers. The website demonstrates a mature digital presence with integrated marketing and analytics tools, professional design, and GDPR-compliant privacy and cookie management. Security posture is solid with HTTPS and Cloudflare DNS, though explicit security policies and incident response contacts are absent. Overall, RLDatix presents a credible and professional business front with room for enhanced security transparency.

A

Alpine

alpinecars.de

0

Alpinecars.de is the official German website for Alpine, a premium sports car brand owned by Renault Group. The site provides comprehensive information about Alpine's sports cars, including the latest models, motorsport news, and services such as vehicle configuration and charging solutions. The website targets automotive enthusiasts and potential buyers in Germany, positioning Alpine as a niche premium sports car manufacturer with a strong brand identity. Technically, the site is built using modern web technologies including React, and employs best practices for performance, mobile optimization, and SEO. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. However, explicit security policies and incident response contacts are not publicly disclosed, which could be improved. Overall, the domain registration aligns well with the Renault Group, confirming legitimacy and trustworthiness.

R

RLDatix

rldatix.de

0

RLDatix is a specialized provider of workforce management and scheduling software tailored for the healthcare sector in Germany. The company offers a suite of products including Allocate Optima11, Allocate Loop, and Allocate SafeCare, addressing complex needs such as personnel deployment, time tracking, and absence management. The website reflects a professional and consistent brand presence with a clear focus on healthcare providers and clinic management. Technically, the site is built on WordPress with modern marketing and analytics integrations such as HubSpot, Marketo, and Osano for cookie consent, hosted behind Cloudflare DNS services. Security posture is good with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Privacy compliance is partially addressed via cookie consent but lacks a visible privacy policy and terms of service. Overall, the site is well-structured, user-friendly, and trustworthy, serving a medium-sized enterprise audience in the healthcare technology sector.

G

GIATA

giata.com

0

GIATA is a prominent technology company specializing in providing high-quality hotel content and mapping services globally. They maintain the world's largest hotel content database and offer AI-driven solutions for images, descriptions, and fact sheets, focusing on mapping and localization. Their target audience includes hotels, OTAs, tour operators, and travel agencies, positioning them as a key player in the travel technology sector. The company's website reflects a medium-sized enterprise based in Germany, with a consistent brand presence and professional content.

GIATA GmbH operates a comprehensive hotel directory website providing accommodation data primarily for travel agencies, OTAs, and tour operators. The platform offers extensive hotel listings worldwide with filtering by country and language, supporting B2B data distribution through XML and JSON feeds. The website demonstrates a solid market position as a specialized hospitality data provider with consistent branding and professional content. Technically, the site employs standard web technologies including Bootstrap and jQuery, delivering a responsive and navigable user experience with moderate performance. Security posture is adequate with HTTPS usage and no visible sensitive data exposure, though it lacks advanced security headers and published security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, the site is trustworthy and functional but could improve in security transparency and privacy practices.

I

InterNetX GmbH

isac.de

0

InterNetX GmbH operates the ISAC platform, providing cloud management and domain registration services primarily targeting businesses and resellers. The company holds recognized certifications such as ISO 27001 and demonstrates a strong market position with trust indicators including Norton security, DNSSec readiness, and green energy commitments. The website is professionally designed with good content quality and clear navigation, optimized for mobile devices. Technically, the site uses modern frameworks like Bootstrap and jQuery, integrates Usercentrics for GDPR-compliant consent management, and employs Google Tag Manager for analytics. Security posture is solid with HTTPS enforced, CSRF protection on login forms, and no visible vulnerabilities, though explicit security headers and a vulnerability disclosure policy are absent. Overall, the domain registration details align well with the business identity, supporting high legitimacy and trustworthiness.

I

InternetX GmbH

autodns.com

0

AutoDNS is a domain management platform operated by InternetX GmbH, targeting domain professionals and customers managing domain portfolios. The platform provides domain registration and management services through a secure login interface. The website is professionally designed with consistent branding and good mobile optimization, leveraging modern frontend technologies such as Bootstrap 4 and JavaScript. Cookie consent is managed via Usercentrics, and Google Tag Manager is used for analytics and tracking. Security measures include HTTPS enforcement and anti-clickjacking scripts, though explicit security headers and policies are not visible. Privacy and cookie policies are comprehensive and GDPR compliant, linked through the parent company’s website. Overall, the website presents a trustworthy and professional digital presence aligned with an established business entity.

K

Key-Systems GmbH

domaindiscount24.com

0

domaindiscount24.com is an established domain registration and web hosting provider operated by Key-Systems GmbH, a German company with over two decades of experience and a customer base exceeding 100,000. The website offers a broad range of services including domain registration with over 1000 TLDs, hosting bundles, SSL certificates, email hosting, and domain transfer services. The company emphasizes local support based in Germany and provides a user-friendly interface with clear navigation and responsive design. Technically, the site employs modern web technologies such as jQuery, Google Tag Manager, Hotjar, and HubSpot for analytics and marketing, ensuring a robust digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site presents a professional and trustworthy front with positive customer testimonials and compliance with GDPR and cookie regulations.

D

Dot Online GmbH

get.onl

0

Dot Online GmbH operates the website get.onl, providing domain registration services specifically for the .ONL top-level domain, along with complementary services such as website building, hosting, email hosting, and web security products. The company positions itself as a global and affordable provider targeting individuals and businesses seeking to establish an online presence with a memorable .ONL domain. The website is professionally designed with clear navigation, mobile optimization, and consistent branding, supporting a positive user experience.

I

InterNetX GmbH

internetx.com

0

InterNetX GmbH is a well-established German internet service provider founded in 1998, specializing in domain registration, hosting, and encryption services primarily targeting B2B customers. The company holds a strong market position as a leading global provider in its sector, supported by a comprehensive portfolio including domain registrar services, cloud hosting, and IT security certificates. Their website reflects a professional and consistent brand image, reinforced by certifications such as ISO 27001 and TÜV Süd, and testimonials from notable clients like FlixBus and SIXT. Technically, the site is built on TYPO3 CMS with modern web technologies, offering good performance, mobile optimization, and SEO practices. Security posture is robust with HTTPS enforcement and recognized certifications, though explicit security headers and incident response disclosures could be enhanced. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, InterNetX demonstrates high business credibility and digital maturity, making it a trustworthy and professional service provider in the technology and telecommunications industry.

S

Sedo GmbH

bccgroup.eu

0

Sedo GmbH operates a well-established domain marketplace platform, offering domain sales, transfers, and related services with a strong market presence and 26 years of experience. The website for bccgroup.eu is a domain sale landing page, providing clear purchase options and multiple payment methods, targeting domain buyers globally. The technical infrastructure leverages modern web technologies including Vue.js and Usercentrics for privacy compliance, delivering a moderate performance with good mobile optimization. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or sensitive data exposure. Privacy compliance is well addressed with accessible privacy and cookie policies, and GDPR consent mechanisms in place. Overall, the website demonstrates good professionalism and trustworthiness, suitable for its e-commerce domain marketplace business model.

B

Beeline GmbH

beeline-group.com

0

Beeline GmbH is a medium-sized German company specializing in jewelry and accessories, operating since 1990. The company uses a concessions business model to empower retail partners by providing curated fashion accessories and comprehensive support services. Their market position is strong as an industry leader with a focus on quality and customer satisfaction. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Google Tag Manager, and Cookiebot for consent management. The site is mobile optimized with good SEO and accessibility features, though some accessibility improvements are possible. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks some advanced security headers and explicit incident response policies. Overall, the website is professional, trustworthy, and compliant with GDPR regulations, supporting a positive user experience and business credibility.

Oventrop GmbH & Co. KG is a well-established German family business specializing in efficient heating, cooling, and potable water solutions. With a history dating back to 1851, the company offers modular systems and services tailored for HVAC professionals, trade, industry, and commerce. Their website reflects a mature digital presence with comprehensive product catalogs, software downloads, and detailed company information targeting a professional audience. Technically, the site is built on ASP.NET WebForms with modern frontend technologies like Bootstrap and jQuery, delivering a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring clear privacy and cookie policies with user consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and alignment with the company's business model and market position.

fruits GmbH operates a specialized e-commerce platform focused on the sale of premium domain names, exemplified by the listing of cil.pt. The platform emphasizes secure transactions through escrow services and offers flexible payment options such as lease-to-own. The website is built on a modern React and Next.js stack, integrating trusted payment processors like Stripe and analytics tools including PostHog and Google Tag Manager. The site demonstrates good design quality, mobile optimization, and accessibility, contributing to a positive user experience. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are absent. Privacy compliance is partial, with a comprehensive privacy policy but lacking cookie consent mechanisms. Overall, the domain registration details align well with the business, supporting legitimacy and trustworthiness.

Goodbody / Figurplan is a small German fitness consultancy specializing in personalized training plans aimed at weight loss, muscle gain, and fitness improvement. The website content is primarily in German and targets individuals seeking customized fitness coaching, particularly in the Nuremberg area. The business model revolves around creating tailored training plans and providing studio-based and online coaching services. The site content is basic and lacks modern digital marketing or e-commerce features. Technically, the website is simple, built with static HTML and CSS without modern frameworks or CMS. It lacks HTTPS, security headers, and mobile optimization, indicating a low level of digital maturity. No analytics or tracking technologies are present, and no forms are available for user interaction or data collection. From a security perspective, the absence of HTTPS and security headers is a significant vulnerability. The site does not provide clear privacy or cookie policies beyond a basic Datenschutz page, and no incident response or security policies are published. The lack of contact information and security best practices reduces trustworthiness and compliance with GDPR requirements. Overall, the website presents moderate business credibility but poor technical and security posture. Strategic improvements in security, privacy compliance, and technical modernization are recommended to enhance trust and user experience.

Q

Quandoo GmbH

quandoo.com

0

Quandoo GmbH operates a global online restaurant reservation platform connecting diners with over 17,000 restaurants across 11 countries. The company provides seamless table booking services via web and mobile applications, positioning itself as a leading player in the hospitality technology sector. The platform offers localized experiences with country-specific privacy policies and multi-language support, reflecting a mature international business model. Technical infrastructure leverages modern web technologies including React, integrated with third-party services such as Google Analytics, Adyen for payments, and OneTrust for cookie consent management. The website demonstrates good digital maturity with responsive design, structured data for SEO, and comprehensive privacy compliance mechanisms. Security posture is strong with HTTPS enforced, no exposed sensitive data, and use of monitoring tools like Sentry and Datadog. However, explicit security headers and incident response policies are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting a positive user experience and business credibility.

E

Eurosport

eurosport.com

0

Eurosport is a leading European sports media company providing comprehensive sports news, live scores, video streaming, and event coverage. As part of Warner Bros. Discovery Sports, it holds a strong market position with a large audience across Germany and Europe. The website demonstrates a mature digital infrastructure leveraging modern technologies such as React, Next.js, Adobe Launch, and advanced analytics platforms. Security measures include HTTPS, content security policies, and monitoring tools like New Relic, ensuring a robust security posture. Privacy compliance is well addressed with detailed GDPR-compliant policies and consent mechanisms. Overall, Eurosport presents a professional, trustworthy, and user-friendly platform with extensive sports content and strong brand consistency.

Wintershall Dea GmbH is a leading independent gas and oil company in Europe, with a strong market position in the energy sector. The company focuses on exploration and production of gas and oil, targeting investors, partners, and customers within the energy industry. The website reflects a professional corporate presence with comprehensive content about the company's history, management, and responsibility. The digital infrastructure is built on Drupal CMS, enhanced with Matomo analytics for user tracking under GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and accessible, with clear navigation and consistent branding. From a security perspective, the website enforces HTTPS and employs cookie consent categories, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The site integrates multiple marketing and tracking tools including LinkedIn Insight, Google Ads, Meta Pixel, and Twitter tracking, all gated behind user consent. Overall, the security posture is solid but could be improved by adding formal security policies and headers. The domain registration details align well with the company's identity, showing consistency and legitimacy. No WAF or blocking mechanisms interfere with content access, allowing full analysis. The website demonstrates a high level of professionalism and trustworthiness, suitable for its corporate audience and business model.

L

leontech

leon-tech.com

0

leontech is a small German IT solutions provider specializing in website development and search engine optimization services. The website presents basic information about the company’s offerings and provides clear contact details including phone, email, and physical address. The site uses a Bootstrap-based design with several JavaScript libraries, though some are outdated. There is no evidence of advanced security or privacy policies, and no HTTPS enforcement is visible in the provided content. The site lacks privacy and cookie policies, which impacts compliance and trust. Technically, the website employs common front-end technologies such as Bootstrap, jQuery, Font Awesome, and Google Fonts. However, the use of an outdated jQuery version (1.8.3) introduces potential security vulnerabilities. The site appears moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the absence of HTTPS and security headers is a significant concern. The contact form includes client-side validation but no visible server-side security measures. No incident response or security policies are published. Overall, the security posture is weak, exposing the business to potential risks. The overall risk assessment suggests that while the business is legitimate and provides clear contact information, it should urgently improve its security and privacy practices to protect user data and enhance trust. Strategic recommendations include upgrading libraries, implementing HTTPS, publishing privacy and cookie policies, and adding security headers.

O

Orange Services

orange-services.de

0

Orange Services is a well-established full-service digital agency specializing in web development, SEO, SEM, and online marketing services primarily targeting small and medium-sized enterprises in the Munich and Stuttgart regions of Germany. The company emphasizes professional website and webshop creation, search engine optimization, and Google Ads campaign management to help clients improve their online visibility and business growth. The website reflects a consistent and professional brand image supported by strong trust indicators such as high customer ratings on ProvenExpert and certifications like Ryte Expert and Sistrix. Technically, the website is built on Drupal 7 CMS with jQuery 1.8.3 and integrates modern marketing and analytics tools including Google Analytics, Google Tag Manager, Calendly for scheduling, and CookieFirst for consent management. The site is mobile-optimized and SEO-friendly with proper meta tags and structured data. However, the use of older CMS and JavaScript libraries suggests some technical debt and potential security risks. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration uses privacy protection, which is common and justified for this type of business. Overall, the security posture is good but could be improved by updating technologies and adding formal security policies. The overall risk assessment is low with no critical issues found. Strategic recommendations include upgrading the CMS and JavaScript libraries, adding security headers, publishing security and incident response policies, and maintaining GDPR compliance. The website demonstrates a mature digital presence suitable for its target market with room for technical modernization and enhanced security transparency.

H

hotset

hotset.de

0

hotset GmbH is a medium-sized German company specializing in industrial heating and thermal engineering solutions. Established in 1973, it offers a broad portfolio of heating elements, thermosensor technology, and process control systems. The company maintains an international presence with subsidiaries in Malta, Singapore, USA, China, India, and Great Britain, positioning itself as a trusted development partner in the energy sector. The website reflects a mature digital infrastructure built on WordPress with modern plugins and SEO optimizations, providing a professional user experience and comprehensive content. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers could be improved. Privacy compliance is well addressed with a detailed privacy policy and cookie management. Overall, hotset demonstrates a high level of business credibility and digital maturity.