Security Directory

B

Betty Barclay

bettybarclay.com

0

Betty Barclay operates as a well-established women's fashion brand focused on retail and e-commerce, targeting modern women seeking stylish and quality clothing for various occasions. The website presents a professional and user-friendly shopping experience with clear navigation, comprehensive content, and trust signals such as certifications and social media presence. Technically, the site uses a modern tech stack including Shopware, PHP 8.2, and advanced commerce services, with good mobile optimization and accessibility. However, the absence of HTTPS/SSL and missing DNS records represent critical security and infrastructure weaknesses that significantly impact the site's trustworthiness and security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is functional and credible but requires urgent security improvements to protect user data and enhance trust.

N

NETZhelfer GmbH

netzhelfer.de

0

NETZhelfer GmbH is a specialized online marketing agency based in Esslingen, Germany, offering services such as Google Ads management, SEO, web design and development, WordPress maintenance, and social media marketing. The company has established a strong market position, recognized by awards and a high volume of positive customer reviews, positioning itself as a trusted partner for small and medium-sized enterprises seeking digital growth. The website demonstrates a mature digital infrastructure built on WordPress with modern plugins and accessibility features, ensuring a good user experience across devices. Security posture is solid with HTTPS enforced and GDPR compliance mechanisms in place, although some security headers could be improved. Overall, the site reflects a professional, trustworthy, and customer-focused business with transparent contact information and strong branding.

M

MTU Aero Engines AG

mtu.de

0

MTU Aero Engines AG is Germany's leading engine manufacturer and a globally recognized player in the aerospace industry. The company specializes in the manufacturing and maintenance of commercial and military aircraft engines as well as industrial gas turbines. Their website reflects a mature digital presence with comprehensive content targeting industry professionals, investors, and potential employees. The site is built on TYPO3 CMS and employs modern web technologies including JavaScript libraries and Piwik/Matomo analytics for user tracking. Security practices such as HTTPS enforcement and cookie consent mechanisms are in place, although explicit security policy and incident response information are not publicly detailed. Overall, the website demonstrates a strong professional image, good technical implementation, and compliance with privacy regulations.

T

TUI Cruises GmbH

tuicruises.com

0

TUI Cruises GmbH operates the Mein Schiff® fleet, offering premium inclusive cruise vacations with a focus on comfort, excellent gastronomy, and a relaxed atmosphere. The company is positioned as a major player in the premium cruise market, supported by its parent company, TUI Group. The website demonstrates a mature digital infrastructure using modern technologies such as React and Next.js, with strong mobile optimization and user experience. Security measures include HTTPS, comprehensive security headers, and a cookie consent mechanism, reflecting a good security posture. Privacy policies are comprehensive and GDPR compliant, with clear user consent options. Overall, the site presents a professional and trustworthy image, supporting the company's market position.

B

BENTELER

benteler.de

0

BENTELER is a well-established enterprise specializing in metal processing with a strong focus on automotive and industrial sectors. Founded in 1876, the company has a significant global presence with 90 locations worldwide, offering a diverse range of products including automotive components, steel/tube products, mechanical engineering, and glass processing equipment. The website reflects a mature business model targeting industrial clients and partners, with a clear emphasis on sustainability and innovation. Technically, the website is built on TYPO3 CMS, utilizing modern web technologies such as ES6 JavaScript modules, lazy loading, and SVG icons. It demonstrates excellent mobile optimization, accessibility, and SEO practices, ensuring a fast and user-friendly experience. The presence of comprehensive meta tags, structured data, and multi-language support further enhance its digital maturity. From a security perspective, the site enforces HTTPS, employs Google reCaptcha for bot prevention, and implements a granular cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policy and incident response contact details are not prominently available, suggesting areas for improvement. Overall, BENTELER's website is professional, secure, and compliant, reflecting its enterprise status and global operations. Strategic enhancements in security transparency and incident response readiness could further strengthen its trustworthiness and compliance posture.

ZF Friedrichshafen AG operates a comprehensive website focused on commercial vehicle solutions, targeting logistics and public transport sectors. The company is a leading global supplier of driveline and transmission systems, offering advanced technologies such as automated driving, electric mobility, and digital fleet solutions. The website demonstrates a high level of professionalism, with clear navigation, rich content, and multimedia integration. Technically, the site employs modern JavaScript libraries, Piwik PRO analytics, and Kaltura video players, ensuring a robust digital infrastructure. Security measures include HTTPS enforcement and a Content Security Policy, alongside a comprehensive cookie consent mechanism compliant with GDPR. No critical vulnerabilities or blocking mechanisms were detected, indicating a secure and accessible platform. Overall, the site reflects a mature digital presence aligned with enterprise standards.

zu Hause e.V. is a small non-profit organization based in Germany dedicated to the social integration of immigrants. The website provides information about integration courses, language learning, homework help, and community projects aimed at supporting immigrants in their adaptation to German society. The target audience primarily consists of immigrants and newcomers seeking educational and social support. The organization operates locally with a focus on community engagement and educational services. Technically, the website uses older JavaScript libraries such as prototype.js and scriptaculous.js, with CSS styling and lightbox functionality. The site appears to have basic mobile optimization and accessibility features but lacks modern CMS or advanced frameworks. Performance is moderate, and SEO is basic with meta tags present but no advanced structured data or Open Graph tags. From a security perspective, the site lacks HTTPS, security headers, and any visible privacy or cookie policies, indicating significant compliance and security gaps. No contact emails or phone numbers are provided on the main page, and no incident response or security policies are evident. These factors reduce the overall trust and security posture of the website. Overall, the website serves its informational purpose but requires urgent improvements in security, privacy compliance, and contact transparency to enhance trustworthiness and protect user data.

Fahrschule Hemauer GmbH is a well-established driving school based in Germany, serving the Regensburg, Neutraubling, and Nittendorf areas. With over 30 years of experience, the company specializes in quality driving education including specialized training for disabled individuals and older adults. Their services cover a broad range of driving license classes and preparatory courses such as MPU preparation and remedial driving courses. The website reflects a professional local business with clear service offerings and a dedicated team. Technically, the site is built on WordPress using modern plugins and themes, optimized for SEO and mobile devices, though performance is moderate. Security posture is adequate with HTTPS enforced but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is comprehensive and transparent, enhancing business credibility.

The website meierhofer.de is currently a placeholder page indicating that the domain has been newly registered via the German domain registrar united-domains.de. The page contains no business content, contact information, or interactive elements, serving solely to confirm domain reachability. The target audience is domain registrants and customers of united-domains.de who may configure the domain further via their portal. Technically, the site is simple HTML and CSS with no scripts or analytics, hosted likely by united-domains.de. The security posture is minimal with no HTTPS or security headers detected in the provided data, and no privacy or cookie consent mechanisms on the page. Overall, the site is not yet operational as a business website and lacks content and security maturity.

K

KWS SAAT SE & Co. KGaA

kws.com

0

KWS SAAT SE & Co. KGaA is a longstanding enterprise specializing in high-yield seed production and agricultural solutions, serving farmers globally with a strong emphasis on innovation and sustainability. The company maintains a robust digital presence with modern web technologies and comprehensive content targeting farmers, investors, and job seekers. Their market position is strong, particularly in sugarbeet seeds, supported by extensive research and digital services like myKWS. Technically, the website employs Vue.js and modern frontend practices, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be enhanced. Privacy compliance is well addressed with a detailed privacy policy and granular cookie consent. Overall, the site reflects a professional, trustworthy, and mature digital presence aligned with the company's enterprise status.

E

ELITEDOMAINS

btc.at

0

The website btc.at is a domain sales landing page operated through ELITEDOMAINS, a domain marketplace and escrow service provider. It offers the domain btc.at for sale with clear instructions on the purchase process, payment methods, and domain transfer. The site targets individuals and businesses interested in acquiring premium domains. Technically, the site is built using Angular framework with modern web fonts and responsive design, providing a good user experience and basic SEO optimization. Security posture is moderate with no visible security headers or explicit HTTPS enforcement in the HTML, but the use of escrow and verified payment methods adds trust. Privacy compliance is basic with a privacy policy linked externally but no cookie consent mechanism visible. Business credibility is moderate due to the lack of direct contact emails or phone numbers, relying instead on a contact form linked to the marketplace platform. Overall, the site is functional and professional but could improve in security transparency and privacy compliance.

G

Gebr. Heinemann SE & Co. KG

gebr-heinemann.com

0

Gebr. Heinemann SE & Co. KG is a globally recognized enterprise specializing in travel retail, operating both as a retailer and distributor across multiple channels including airports, border crossings, cruise ships, and diplomatic zones. The company collaborates with luxury brands and offers a diverse product portfolio ranging from cosmetics to fashion and accessories. Their market position is strong, supported by regional centers in Singapore and Miami, and a headquarters in Hamburg, Germany. Technically, the website leverages modern frameworks such as Next.js and React, with integrated cookie consent management via Usercentrics and analytics through Google Tag Manager. The site is well-optimized for mobile and SEO, providing a good user experience. Security posture is solid with HTTPS enforced and consent mechanisms in place, though some security headers and explicit incident response contacts are missing. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

Sparkasse Neunkirchen operates as a regional financial institution in Germany, providing a wide range of banking and financial services including online banking, loans, insurance, investment products, and advisory services. The website is targeted at both private and corporate customers, reflecting a comprehensive digital presence with clear navigation and professional branding consistent with the Sparkassen-Finanzgruppe. The business model focuses on regional banking with strong local engagement and digital service offerings.

E

ECOMAL Europe GmbH

ecomal.com

0

ECOMAL Europe GmbH is a well-established specialty distributor of electronic components with a strong European presence through 15 subsidiaries. The company focuses on distributing passive components, discrete semiconductors, and electromechanical components, partnering with notable global manufacturers. Their website reflects a mature business with clear branding, comprehensive contact information, and a user-friendly interface targeting electronics industry professionals. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and session management in place, though some security headers and explicit policies are missing. Overall, the website demonstrates good digital maturity and business credibility, supporting their market position as a trusted distributor in Europe.

O

OSRAM GmbH

osram.com

0

OSRAM GmbH is a global leader in innovative and sustainable lighting solutions, offering a broad portfolio including LED lamps, luminaires, and light management systems. The company targets B2B customers across automotive, entertainment, and industrial sectors, positioning itself as a key player in the energy and transportation industries. The website reflects a mature enterprise with consistent branding and a professional online presence. Technically, the site employs modern JavaScript libraries, consent management tools, and integrates analytics and marketing services with user privacy considerations. Security posture is strong with HTTPS and consent mechanisms, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements.

S

SPIRIT/21 GmbH

spirit21.com

0

SPIRIT/21 GmbH is a well-established IT service provider with over 25 years of experience and a team of approximately 500 IT experts across nine locations in the DACH region. The company offers a broad portfolio of IT services including cloud solutions, smart workplace technologies, SAP services, IT security, and consulting. Their market position is strong within the regional IT services sector, serving a diverse client base from international corporations to medium-sized enterprises. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website leverages modern technologies such as HubSpot CMS, Cookiebot for consent management, and integrates multiple analytics and marketing tools including Google Analytics, LinkedIn Insight Tag, and Facebook Pixel. The site is hosted likely behind Cloudflare, ensuring good performance and security. Mobile optimization and accessibility are well addressed, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, uses security cookies to differentiate bots, and implements a detailed cookie consent mechanism compliant with GDPR. While explicit incident response contacts and vulnerability disclosure mechanisms are not found, the presence of ISO 27001 certification and governance pages indicate a mature security posture. No critical vulnerabilities or exposed sensitive data were detected. Overall, SPIRIT/21 demonstrates a high level of digital maturity, security awareness, and compliance with privacy regulations. The website serves as a trustworthy and professional platform reflecting the company's business credibility and technical competence.

B

Berg & Macher

startupalm.com

0

Berg & Macher is a German-based organizational consulting firm specializing in organizational development, strategy implementation, leadership, and corporate culture transformation. The company targets medium-sized enterprises seeking to become resilient and adaptable in a rapidly changing business environment. Their website reflects a professional and consistent brand image with comprehensive service offerings and client testimonials that reinforce their market position. Technically, the site is built on WordPress using WPBakery and integrates modern marketing and analytics tools such as HubSpot, Google Analytics, and Facebook Pixel. Security posture is strong with HTTPS enforced, GDPR-compliant cookie consent, and no visible vulnerabilities. However, some HTTP security headers could be improved. Overall, the website demonstrates a mature digital presence with good privacy compliance and user experience.

G

Groupe SEB WMF Retail GmbH

wmf.com

0

WMF Onlineshop is the official e-commerce platform of Groupe SEB WMF Retail GmbH, a historic German company with over 170 years of tradition in premium kitchenware and coffee machines. The website offers a comprehensive product catalog, including cutlery, pots, pans, coffee machines, and kitchen accessories, targeting consumers seeking high-quality kitchen products. The platform integrates modern technologies such as Magento 2 with Hyvä Theme, Alpine.js, and various marketing and analytics tools, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS and employs monitoring tools like New Relic. It also implements robust privacy and cookie consent mechanisms via OneTrust, ensuring GDPR compliance. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly configured, representing an area for improvement. No critical vulnerabilities or WAF blocking were detected, indicating a secure and accessible platform. Overall, WMF Onlineshop demonstrates a high level of professionalism, technical sophistication, and compliance with privacy regulations. It effectively balances user experience, security, and business needs, positioning itself as a trustworthy and reputable online retailer in the premium kitchenware market.

I

iPoint-systems gmbh

kerp.at

0

iPoint-systems gmbh operates a sophisticated software platform focused on Impact Intelligence, product compliance, and sustainability performance management. The company targets a broad audience including C-suite executives, product designers, and compliance experts, positioning itself as a recognized specialist in supply chain sustainability software. Their offerings include compliance software, sustainability tools, consulting services, and training, supported by certifications such as ISO 9001:2015 and ISO/IEC 27001:2022. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries like Swiper.js and integrates Google Tag Manager for analytics. The site is well-structured, mobile-optimized, and professionally designed, reflecting a mature digital presence. Security posture is solid with HTTPS and some best practices, but lacks visible security headers and explicit incident response contacts. Privacy compliance is partially addressed with a privacy policy but lacks a cookie consent mechanism despite tracking scripts. Overall, the domain registration aligns well with the business identity, supporting high legitimacy and trustworthiness.

M

METRO AG

metro-cc.com

0

METRO AG operates as a leading international wholesaler specializing in food service and wholesale for professional customers such as HoReCa and Traders. The company maintains a strong market position with over 30 countries of operation, 623 wholesale stores, 94 delivery depots, and an online marketplace. Their business model focuses on multichannel marketing and tailored services, supported by a portfolio of own brands and subsidiaries. Technically, the website is built on a modern stack including Sitecore CMS, Bootstrap, and integrates analytics tools like Google Analytics and Siteimprove, with good mobile optimization and accessibility. Security posture is solid with cookie consent mechanisms, CSRF protection, and no visible vulnerabilities, though security headers and incident response contacts could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR, reflecting a mature digital presence for an enterprise-level retail business.

The website statec-binder.at serves as a login portal for konsoleH, a server and account management interface provided by Hetzner Online GmbH, a well-known German hosting provider. The site offers access to webmail and account administration services, targeting users of Hetzner's hosting infrastructure. The portal is minimalistic, with basic content and limited user interface elements, primarily serving as a gateway to other Hetzner services. Technically, the site is built with simple HTML and CSS, hosted on Hetzner infrastructure. It lacks modern web features such as mobile optimization, accessibility enhancements, and SEO best practices. The absence of HTTPS on the domain is a significant technical and security shortfall, although the base URL points to a secure Hetzner server. No analytics or tracking technologies are detected, indicating minimal data collection. From a security perspective, the lack of HTTPS and security headers exposes users to potential risks. No privacy, cookie, or terms of service policies are present, which is a compliance gap especially under GDPR. The site does not provide contact or incident response information, limiting transparency and user trust. However, the external links and branding align with Hetzner, lending some credibility. Overall, the website is functional but basic, with critical security and compliance deficiencies. Strategic improvements in SSL implementation, security headers, privacy policies, and user experience are recommended to enhance trust and protect users.

O

objectflor

wir-leben-boden.de

0

objectflor operates as a specialized flooring partner focusing on design, rubber, and vinyl flooring products. The company targets both consumers and professionals seeking quality flooring solutions, positioning itself as an established player in the manufacturing sector within Germany. The website content is well-structured, professionally designed, and provides relevant information about products, trends, and sustainability, supporting a positive market presence. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and Font Awesome. It employs Usercentrics CMP for cookie consent and Matomo for privacy-conscious analytics, reflecting a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses a consent management platform, but lacks visible advanced security headers and explicit security policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the website presents a trustworthy and professional image with moderate to good technical and security posture. Strategic improvements in security headers, incident response transparency, and terms of service publication would further strengthen the site’s compliance and trustworthiness.

Niederberger Gruppe is a well-established German company specializing in facility services, including cleaning, technical services, and facility management. With over 90 years of experience, it holds a strong market position in Germany, serving a broad range of industries with tailored service offerings. The website reflects a professional and comprehensive presentation of their services and locations, targeting business clients across Germany. Technically, the site is built on modern frameworks such as Next.js and React, ensuring fast performance, mobile optimization, and good SEO practices. Security measures include HTTPS enforcement, Google reCAPTCHA v3 integration, and a cookie consent mechanism that respects user privacy by not using cookies. The absence of exposed sensitive data and the presence of privacy and legal policies indicate a mature security posture. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, making it a reliable digital presence for the company.

The website creativvideo.de is a basic WordPress site with minimal content, primarily serving as a placeholder or starter blog related to video editing (Videobearbeitung). It lacks substantive business information, contact details, or privacy and cookie policies, which limits its credibility and compliance posture. The site uses an outdated WordPress version (4.9.26) and older jQuery libraries, which pose security risks. No security headers or HTTPS enforcement are evident from the provided content, further reducing the site's security posture. Overall, the site appears to be a small-scale or personal project rather than a professional business platform.

M

Markant AG

markant.com

0

Markant AG is a well-established European service provider specializing in connecting suppliers and retailers within the food retail, wholesale, and specialty trade sectors. The company offers a broad range of services including payment processing, finance and security, product information management, and market analysis, aiming to optimize and automate supply chain and administrative processes. With a strong market presence, Markant serves over 15,000 suppliers and 200 retailers across multiple countries, positioning itself as a key player in the retail services industry. The website reflects a mature digital infrastructure built on TYPO3 CMS, integrating modern tracking and video technologies to enhance user engagement and marketing efforts. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response policies could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

Piatnik is a well-established Austrian/German board game and playing card publisher with a strong market presence in the retail sector. The company offers a broad portfolio including board games, card games, puzzles, and personalized products through its online shop. Their website reflects a mature digital presence with clear navigation, brand consistency, and community engagement features such as a club and game tester programs. Technically, the site uses modern web technologies and provides a responsive experience, though some security headers and explicit policies could be improved. The security posture is moderate with HTTPS usage and cookie consent implemented, but lacks visible advanced security policies or incident response contacts. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy business.

GÜNTHER Heisskanaltechnik GmbH is a medium-sized German manufacturer specializing in hot runner and cold runner systems for injection molding applications, serving plastics and silicone processing industries globally. The company positions itself as a technology leader with over 40 years of expertise, offering innovative, energy-efficient, and reliable solutions. Their website reflects a professional and comprehensive digital presence, featuring detailed product information, technical services, and customer support including augmented reality assistance and seminars. The technical infrastructure is based on the Contao CMS with modern JavaScript libraries, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and cookie consent mechanisms. Business credibility is high, supported by certifications such as ISO 9001 and ISO 14001, and consistent domain registration data. Overall, the website is trustworthy, well-maintained, and aligned with the company's business objectives.

T

Tipico Careers

tipico-careers.com

0

Tipico Careers is the official recruitment portal for Tipico, a leading sports betting provider in Germany and a recognized technology company in the gaming industry. The website serves as a comprehensive platform for job seekers, showcasing open roles, company culture, and benefits. The business positions itself strongly in the sports betting market with a focus on innovation, teamwork, and excellence. The site targets professionals interested in careers within sports betting and technology sectors, emphasizing a vibrant and inclusive work culture. Technically, the website employs modern web technologies including jQuery, Popper.js, Google Tag Manager, Microsoft Clarity, Hotjar, and Crazy Egg for analytics and user experience optimization. The site is mobile-optimized, accessible, and SEO-friendly with proper meta tags and structured data. Performance is moderate with multimedia content and video integration. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR. However, explicit security headers and published security policies are absent, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected. The domain registration details are consistent with the business claims, enhancing trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, making it a reliable platform for prospective employees. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure information to further strengthen security posture and trust.

G

Gastronomie Geflüster

hoga-pr.de

0

Gastronomie Geflüster is a German-language online newspaper dedicated to the gastronomy and hospitality sector, providing news, event coverage, legal and tax information, and product reviews. It targets gastronomy professionals, chefs, and restaurant owners, positioning itself as a niche media outlet within Germany's hospitality industry. The website operates on a WordPress platform using the Hueman theme and integrates common technologies such as jQuery, Google Fonts, Google Analytics, and Google Adsense for advertising and tracking. Social media presence on Instagram, YouTube, and Twitter supports audience engagement. Security posture is moderate with HTTPS enabled but lacks comprehensive security headers and vulnerability disclosure mechanisms. Privacy compliance is basic with a privacy and cookie policy present, including consent mechanisms. Overall, the website is functional, professionally designed, and provides relevant content for its audience, though improvements in security and explicit contact information could enhance trust and compliance.

B

Brainloop AG

brainloop.com

0

Brainloop AG is a German-based technology company specializing in secure online collaboration and data room solutions for enterprises, particularly targeting DAX-40 companies and corporate governance professionals. Their product suite includes Brainloop MeetingSuite, BoardRoom, DealRoom, and CollaborationRoom, designed to facilitate confidential document handling and secure communication both internally and with external partners. The company positions itself as a leading provider in the DACH region with a strong focus on information security and compliance. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security-wise, the site enforces HTTPS and respects Do Not Track signals, but lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced compliance and protection. Overall, the domain registration data aligns well with the company's identity, supporting legitimacy and trust. Strategic recommendations include implementing cookie consent, publishing a security policy, and enhancing security headers to strengthen the security posture further.