Security Directory

M

Minimax GmbH

minimax.de

0

Minimax GmbH is a well-established leader in the fire protection industry with over 120 years of experience. The company offers a broad range of fire detection, suppression, and prevention systems tailored for various industries including energy, manufacturing, and transportation. Their market position is strong, supported by a comprehensive portfolio of products and services, including maintenance and training. The website reflects a professional and consistent brand image targeting industrial and commercial clients seeking reliable fire safety solutions. Technically, the site uses modern JavaScript modules, a CDN for content delivery, and integrates popular analytics and marketing tools such as Google Analytics and Facebook Pixel. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, leaving the site vulnerable to interception and undermining user trust. Security headers are properly configured, but the lack of HTTPS significantly lowers the security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is functional and professional but requires urgent security improvements to align with best practices and protect users.

L

Lovely Systems GmbH

lovelysystems.com

0

Lovely Systems GmbH is a small technology company specializing in building and operating digital platforms, focusing on multi-platform applications and large-scale web services. Their website presents a modern chat interface and highlights their expertise in scalable digital solutions. The company maintains a presence on GitHub and LinkedIn, supporting their credibility and outreach to developers and businesses seeking digital platform services. Technically, the website uses modern JavaScript and CSS features but suffers from slow load times and lacks a content management system. Security posture is weak due to the absence of a valid SSL certificate, no HTTPS support, and missing security headers, which exposes users to potential risks. Privacy compliance is minimal, with no visible privacy or cookie policies, and limited user tracking via GoatCounter analytics. Overall, the site is functional but requires significant improvements in security and privacy to meet industry standards.

Shotview is a well-established artist management agency founded in 2002, specializing in representing photographers, stylists, casting professionals, and other creatives in the media and fashion industries. With offices in Berlin, Paris, and Vienna, the company offers strategic guidance, production expertise, and a platform for artists to showcase their work internationally. The website reflects a professional and visually rich portfolio showcasing featured projects and artists. Technically, the site uses modern frameworks such as Vue.js and Nuxt.js, hosted on Heroku and served via Cloudflare CDN. However, the absence of a valid SSL certificate is a critical security flaw, exposing users to risks and undermining trust. Additionally, the lack of privacy, cookie, and security policies indicates compliance gaps that should be addressed to meet GDPR and general best practices. Contact information is clearly provided, including multiple office addresses, emails, and phone numbers, supporting business credibility.

A

applied international informatics GmbH

aiinformatics.com

0

Applied international informatics GmbH is a German IT service provider specializing in SAP consulting, digital transformation, and managed cloud services targeted primarily at the Mittelstand (small and medium-sized enterprises) in Germany. The company positions itself as a trusted partner offering comprehensive IT solutions including licensing, maintenance, and cloud hosting. Their website reflects a professional and consistent brand presence with clear contact information and social media engagement. Technically, the site is built on WordPress with modern frameworks like React and includes SEO optimizations and cookie consent mechanisms compliant with GDPR. However, the website suffers from a critical security deficiency due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Performance is also suboptimal with a slow page load time. Security best practices such as HTTP security headers and modern TLS protocols are missing, which lowers the overall security posture. Despite these issues, the business credibility remains high given the clear certifications and trust signals. Strategic improvements in security infrastructure and performance optimization are recommended to enhance trust and compliance.

Bahlsen GmbH & CO. KG is a well-established German company specializing in the production and sale of high-quality pastries, cookies, and wafers with a history spanning over 130 years. The website targets consumers interested in premium bakery products and maintains a strong brand presence with localized content for multiple countries. Technically, the site is built using modern frameworks such as Next.js and React, hosted on Vercel, and integrates a headless CMS (Storyblok) for content management. However, the website currently lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. While security headers like Content-Security-Policy and Strict-Transport-Security are present, the absence of HTTPS and modern TLS protocols significantly weakens the security posture. Privacy compliance is partially met with a comprehensive privacy policy and terms of use, but no cookie consent mechanism is detected. Overall, the site demonstrates good business credibility and professional content but requires urgent security improvements.

HEWI Heinrich Wilke GmbH is a well-established German manufacturer specializing in sanitary and hardware solutions with a strong emphasis on universal design and accessibility. The company offers a wide range of products and services targeting professional care, public, hotel, education, and home sectors. Their website reflects a mature digital presence with comprehensive content, multi-language support, and integration of modern web technologies such as Pimcore CMS and Google Tag Manager. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. While privacy policies and consent mechanisms are implemented, the lack of advanced security configurations like DMARC, DNSSEC, and CAA records suggests room for improvement in domain and email security. Overall, the business demonstrates high credibility and professionalism, but urgent remediation of SSL and TLS issues is recommended to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

BWF Offermann, Waldenfels & Co. KG

bwf-group.com

0

BWF Offermann, Waldenfels & Co. KG operates the BWF Group, a mature and internationally recognized family-owned manufacturing business specializing in industrial filters, wool felts, technical needle felts, and plastic profiles. With 1,800 employees and 16 production sites worldwide, the company holds a strong market position as a technology leader in its sectors. The website reflects a professional and comprehensive presentation of their business, subsidiaries, and product offerings, targeting industrial clients globally. Technically, the site is built on TYPO3 CMS with modern JavaScript and PHP backend, but lacks critical HTTPS security, which significantly impacts its security posture. The presence of SPF and DMARC records indicates attention to email security, while social media and sustainability statements enhance trust and transparency. Overall, the site is content-rich and well-structured but requires urgent security improvements.

Steigenberger Hotels GmbH operates within the hospitality industry under the parent company H World International. The website focuses on career opportunities across various job levels including internships, entry-level, and experienced professionals. It highlights the company's brand portfolio and employee benefits, targeting job seekers interested in hospitality careers. The company maintains a consistent brand presence with multiple subsidiary hotel brands and a clear corporate structure. Technically, the website uses common web technologies such as jQuery and Parsley.js for form validation and AJAX submissions. Hosting is provided via Amazon AWS infrastructure. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Performance data is unavailable, but the site structure and content indicate a professional implementation. Security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing users to potential risks. While some security headers are present, critical TLS protocols and cipher suites are missing. Privacy compliance is partial; a privacy policy and terms of service exist, but no cookie consent mechanism or incident response information is found. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional in content and design but requires urgent security improvements to protect user data and comply with modern standards. Strategic enhancements in SSL deployment, privacy mechanisms, and security best practices are recommended to strengthen trust and compliance.

zeb.rolfes.schierenbeck.associates gmbh is a leading European strategy, management, and IT consulting firm specializing in the financial services industry. The company offers a broad range of consulting services including transformation, regulatory compliance, and corporate education, targeting banks, insurance companies, and financial technology specialists. Their market position is strong within Europe, supported by multiple subsidiary domains and partner sites across key financial markets. The website is professionally designed with excellent content quality and clear navigation, supporting a positive user experience and strong brand consistency. Technically, the website is built on Drupal 11 with modern frameworks such as Bootstrap and integrates analytics tools like Matomo and Google Tag Manager. Accessibility features and cookie consent mechanisms are implemented, reflecting good digital maturity. However, the website suffers from critical security issues due to the absence of a valid SSL certificate and lack of HTTPS support, which significantly impacts the security posture and overall trustworthiness. Security headers are well configured, but the lack of TLS protocols and OCSP stapling are notable vulnerabilities. Privacy compliance is strong, with comprehensive privacy and cookie policies and GDPR adherence. The company maintains active social media channels and provides clear contact information, enhancing business credibility. Overall, while the business and content aspects are excellent, urgent improvements in SSL/TLS configuration are necessary to elevate the security posture and user trust.

The Würth Group is a globally established enterprise specializing in the development, manufacturing, and distribution of assembly and fastening materials. With over 400 companies in 80 countries and more than 2,800 branches, it holds a world market leader position in its core business. The website reflects a mature digital presence with consistent branding and comprehensive corporate information primarily targeting industrial and business clients. Technically, the site employs modern web technologies including Bootstrap, jQuery, and the FirstSpirit CMS, ensuring good mobile optimization and user experience. However, a critical security deficiency is the absence of a valid SSL certificate and enabled TLS protocols, severely impacting the site's security posture. Privacy and cookie policies are present and GDPR compliant, indicating attention to data protection regulations. Overall, the site is professional and credible but requires urgent remediation of its SSL/TLS configuration to ensure secure communications and maintain trust.

ChargePoint, Inc. operates the be.ENERGISED platform, a modular SaaS solution designed to support businesses in building and expanding electric vehicle (EV) charging services. The website targets enterprises, fleet operators, partners, and EV drivers primarily in Germany and Europe, offering comprehensive services including charge point operation, software integration, billing, roaming, and white-label solutions. The company holds a strong market position with significant penetration among Fortune 50 companies and a large active charging network. Technically, the site is built on Drupal 10 and hosted on Pantheon, with integrations such as Google Tag Manager and Google Maps API enhancing functionality. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, despite the presence of some security headers and GDPR-compliant privacy and cookie policies. Overall, the site demonstrates high content quality and business credibility but requires urgent improvements in security infrastructure to protect user data and maintain trust.

D

Deutsche Telekom AG

deutsche-telekom.com

0

Deutsche Telekom AG operates a comprehensive corporate website providing detailed information about its integrated telecommunications services, corporate responsibility, investor relations, and innovation initiatives. The company is positioned as a leading global telecommunications provider with a strong focus on transparency and stakeholder engagement. The website infrastructure is built on modern web technologies with a custom CMS, leveraging nginx and Varnish caching, and hosted on AWS. While the site is well-structured, mobile-optimized, and rich in content, the current SSL certificate is invalid or missing, which significantly impacts the security posture. Security headers are properly configured, but the lack of valid HTTPS and modern TLS protocols is a critical vulnerability. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature privacy stance. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent remediation of SSL issues to ensure secure user interactions.

iteratec GmbH is a medium-sized, established software development company founded in 1996, with multiple offices across Germany, Austria, and Poland. The company specializes in digital transformation, AI and data analytics, IT security, and sustainable technology solutions, targeting enterprises in automotive, energy, and logistics sectors. Their website reflects a professional and comprehensive digital presence, leveraging TYPO3 CMS and modern web technologies. However, a critical security gap exists due to the absence of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts their security posture. Privacy and cookie policies are well implemented with consent mechanisms, indicating good compliance with GDPR. Overall, the company demonstrates strong business credibility and digital maturity but must urgently address its SSL/TLS configuration to improve security and trust.

The website for kerstin-schleicher.de currently serves as a placeholder or customer menu page for Lind & Quittek GmbH, a small company based in Mannheim, Germany. The site content is minimal and displays a message indicating the requested domain could not be found on the server, suggesting the domain is not actively hosting business content or services. The technical infrastructure includes common JavaScript libraries and the Bulma CSS framework, but lacks a valid SSL/TLS certificate and modern HTTPS configuration, which significantly impacts security and trustworthiness. Security headers are present but insufficient without proper SSL. No privacy, cookie, or terms of service policies are found, indicating poor compliance with privacy regulations. Overall, the website's digital maturity is low, with poor content quality and minimal user engagement features.

Ö

Ökovolt Solartechnik GmbH

oekovolt.com

0

Ökovolt Solartechnik GmbH is a well-established company specializing in photovoltaic solutions for industry, commerce, municipalities, real estate developers, and private households. With over 15 years of experience, the company offers comprehensive services including planning, financing, installation, and operation of photovoltaic large-scale systems. Their market position is strong, supported by detailed project references and a professional online presence. Technically, the website is built on WordPress with modern SEO and analytics tools, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which undermines security and trust. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and clear privacy policies. Overall, the company demonstrates a mature digital infrastructure but must urgently address SSL issues to improve security posture and user trust.

N

nora systems GmbH

nora.com

0

nora systems GmbH is a globally recognized manufacturer specializing in high-quality rubber floor coverings, headquartered in Germany with a history dating back to 1950. The company holds a strong market position as a leader in resilient flooring solutions across multiple sectors including healthcare, education, industry, and public buildings. Their business model focuses on manufacturing and direct sales, supported by innovative installation and cleaning systems. The website reflects a professional and comprehensive digital presence with rich content tailored to architects, builders, and facility managers. Technically, the site is built on Sitecore CMS and served via Microsoft IIS, with integrations for marketing and analytics through Google Tag Manager and Usercentrics consent management. However, the absence of a valid SSL certificate and HTTPS implementation represents a critical security gap, exposing the site to potential risks. Privacy and cookie policies are well implemented, indicating good compliance with GDPR standards. Overall, the site demonstrates strong business credibility but requires urgent security improvements to protect user data and enhance trust.

Hermes Europe GmbH operates a mature and professionally presented website focused on integrated supply chain and logistics solutions, targeting national and international trading companies. The company positions itself as a leading expert in the transportation sector, offering services such as global e-commerce support, parcel distribution, and specialized handling solutions. The website content is well-structured, with clear navigation and multilingual support, reflecting a large enterprise with multiple subsidiaries. Technically, the site is hosted on Google Cloud infrastructure using nginx and incorporates modern analytics and consent management tools. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture, exposing users to potential risks. Privacy policies and cookie consent mechanisms are present and appear GDPR compliant, supporting responsible data handling practices. Overall, the domain registration data corroborates the business legitimacy and maturity, but urgent improvements in security configurations are recommended.

P

perma-tec

perma-tec.com

0

perma-tec is a globally recognized leader in manufacturing automatic lubrication systems, offering innovative and reliable solutions that reduce maintenance costs and prevent equipment failures. Their product portfolio includes single- and multi-point lubrication systems, connected solutions like perma CONNECT, and comprehensive services such as installation and technical training. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site is built on the Flow Framework and Neos CMS, with Apache hosting and uses Matomo for analytics, indicating a privacy-conscious approach. However, the absence of a valid SSL certificate and HTTPS support is a significant security vulnerability, exposing users to risks and undermining trust. Security headers are partially implemented, but the lack of TLS protocols and cipher suites further weakens the security posture. Privacy policies and cookie consent mechanisms are present and comprehensive, supporting GDPR compliance. Overall, the site is content-rich and business credible but requires urgent security improvements to protect users and enhance trust.

S

Sonnenberg-Apotheke, Helge Lehnert e.K.

sonnenberg-apotheke.com

0

Sonnenberg-Apotheke is a well-established local pharmacy in Chemnitz, Germany, operating since 2001. The business offers a range of pharmaceutical services including certified travel vaccination advice, medication reservation, rental of medical devices, and substitution care for opioid-dependent patients. The website reflects a professional and consistent brand presence targeting local customers with additional online service capabilities. Technically, the site uses a modern front-end stack with Foundation framework and common JS libraries but lacks performance metrics and has no valid SSL certificate, which is a critical security concern. Security headers are partially implemented but the absence of HTTPS and modern TLS protocols significantly weakens the security posture. Privacy and cookie policies are present, indicating GDPR awareness, though the cookie consent mechanism is minimal. Contact information is clearly provided and consistent with WHOIS data, supporting business credibility. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

I

Ingenieurbüro Arnold

arnostatik.de

0

Ingenieurbüro Arnold is a small, regionally focused engineering firm specializing in construction planning, structural statics, energy demand calculations, sound insulation, and fire protection services in the Potsdam area of Germany. The company emphasizes quality, reliability, and cost optimization, serving private and commercial clients with over 30 years of experience. Their business model is project-based engineering consultancy with a strong local market presence. Technically, the website is built on WordPress with common plugins and a responsive design, but suffers from slow performance and lacks modern security features such as HTTPS. Security posture is weak due to the absence of SSL/TLS encryption, missing security headers, and no published security or incident response policies. Privacy compliance is basic with a privacy policy and cookie consent mechanism but no GDPR-specific indicators. Overall, the website is professional and credible but requires urgent security improvements to protect user data and enhance trust.

T

Triumph Intertrade AG

triumph.com

0

Triumph Intertrade AG operates a mature and well-established e-commerce platform specializing in lingerie and related apparel, primarily targeting the German market. The website demonstrates a high level of professionalism, rich content, and strong brand consistency, supported by a comprehensive customer loyalty program and active social media presence. The technical infrastructure leverages modern e-commerce technologies including Salesforce Commerce Cloud and Cloudflare for hosting and delivery, with integrated marketing and analytics tools such as Google Tag Manager and CQuotient. However, the absence of a valid SSL/TLS certificate on the main domain significantly undermines the site's security posture, exposing users to potential risks. Additionally, a subdomain takeover vulnerability on blog.triumph.com presents a notable security concern. Privacy and cookie policies are present and indicate GDPR compliance, with clear contact information and incident response channels available. Overall, the site is functional and credible but requires urgent security improvements to protect user data and maintain trust.

Z

Zentrum für Ethik in der Medizin (ZEM)

medizinethik-frankfurt.de

0

The Zentrum für Ethik in der Medizin (ZEM) was a specialized non-profit center focused on medical ethics, affiliated with the Evangelische Kirche in Hessen und Nassau (EKHN). Founded in 1996, it served as a key institution in the region until its closure in April 2025. The website provides information about its services, publications, and contact details, targeting individuals and organizations interested in medical ethics within the church and healthcare sectors in Germany. Technically, the site is built on TYPO3 CMS and uses Matomo for analytics, indicating a moderate level of digital maturity. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall, significantly impacting the site's security posture. The site implements a comprehensive cookie consent mechanism and provides clear privacy policy information, demonstrating good privacy compliance. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

R

Retronic Vertriebs GmbH

retronic.de

0

Retronic Vertriebs GmbH is an established German distributor specializing in electronic components, serving various industries including technology and transportation. With over 25 years of experience and TÜV ISO 9001:2015 certification, the company emphasizes long-term partnerships with manufacturers and offers tailored solutions for its clients. The website reflects a professional business model focused on reliability and technical orientation. Technically, the website is built on a modern WordPress platform using PHP 8.4.8 and Elementor for design. It incorporates SEO best practices via Yoast SEO and employs performance optimization tools like WP Rocket. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a significant security shortfall. Mobile optimization and accessibility are adequate, and cookie consent mechanisms comply with GDPR requirements. From a security perspective, the absence of HTTPS and TLS protocols severely undermines the site's security posture, exposing users to potential data interception risks. While cookie consent and privacy policies are well implemented, the site should urgently address SSL/TLS configuration to protect user data and improve trustworthiness. No incident response or vulnerability disclosure policies are evident. Overall, the site is functional and professional but requires critical security improvements. Strategic recommendations include immediate SSL certificate deployment, enabling modern TLS protocols, and enhancing security headers. These steps will elevate the site's security, compliance, and user trust, aligning with its reputable business standing.

A

alt-lichtenberg.de

alt-lichtenberg.de

0

The website alt-lichtenberg.de appears to represent a small local or community-oriented entity based in Germany, as indicated by the German language and domain registration details. The site is built on WordPress 5.2.3 with an Apache server running PHP 7.2.34, which is outdated and may pose security risks. The content is minimal with no visible business description, contact information, or terms of service, limiting its professional appeal and user engagement. A cookie consent banner is present, indicating some awareness of privacy compliance, but the privacy policy is only linked and not detailed on the homepage. The site lacks HTTPS, which is a critical security deficiency, exposing visitors to potential risks. Social media presence is limited to a Facebook page link. Overall, the digital maturity of the site is low, with basic mobile optimization and minimal SEO or accessibility features.

O

Opus Marketing GmbH

opus-marketing.de

0

Opus Marketing GmbH is a German branding agency specializing in transforming visions and ideas into impactful brands with a focus on strategic branding, digital transformation, and sustainability. The company targets businesses seeking creative and strategic brand development and positions itself as a medium-sized agency with a consistent and professional brand presence. Technically, the website is built on WordPress using WPBakery and integrates modern marketing and analytics tools such as Usercentrics for cookie consent, Google Tag Manager, and Facebook Pixel. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support and lack of security headers, which significantly impacts its security posture. Performance is also suboptimal with a slow load time and large page size. Overall, the business credibility and content quality are high, but technical and security improvements are necessary to enhance trust and compliance.

U

Ulrike Lahrs Steuerberatungskanzlei

kanzleilahrs.de

0

Ulrike Lahrs Steuerberatungskanzlei is a small, local tax consultancy firm based in Twistringen, Germany, specializing in tax advisory, accounting, payroll, and tax declaration services. The website presents a professional and clear business description targeting individuals and businesses seeking tax-related services in the region. The technical infrastructure is based on the IONOS MyWebsite platform, utilizing Apache server and common JavaScript libraries such as jQuery and Cookiebot for cookie consent management. However, the website lacks HTTPS support, which significantly undermines its security posture. Security headers are partially implemented, but the Content Security Policy is in report-only mode and permits unsafe script execution, increasing risk. Privacy compliance is addressed with a GDPR-compliant privacy and cookie policy, but no terms of service or explicit security policies are found. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

A

akaryon

akaryon.com

0

Akaryon is a mature small-sized company founded in 1999, specializing in software development with a focus on environmental informatics and sustainability tools. Their offerings include websites, webshops, CSR reporting tools, CO2 calculators, and support for funding applications. The company targets organizations, companies, and municipalities aiming to digitalize sustainability management. Technically, the website is built on WordPress with a variety of plugins for SEO, forms, and cookie management. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

The website noack-vision.com is currently a placeholder page hosted by united-domains AG, indicating that the domain has been newly registered but not yet configured with any business content or services. The page serves solely to confirm domain registration and availability, providing links to the registrar's main site for domain management and related services. There is no direct business presence or operational content on this domain at this time. From a technical perspective, the site is minimalistic, using basic HTML and CSS without any advanced frameworks or CMS. It is hosted on united-domains' webspace platform but lacks HTTPS support, security headers, and performance optimizations. No analytics, tracking, or advertising technologies are present, reflecting the placeholder nature of the site. Security posture is weak due to the absence of SSL/TLS encryption and security headers, exposing visitors to potential risks if sensitive data were to be transmitted. However, since the site contains no forms or user inputs, the immediate risk is low. Privacy compliance is minimal, with no cookie consent or privacy policy hosted on the domain itself, only links to the registrar's policies. Overall, the domain is legitimate and consistent with a newly registered domain awaiting configuration. The lack of content and security features results in a low AI score and indicates no active business operations or risk factors beyond the absence of HTTPS. Strategic recommendations include securing the domain with SSL, deploying actual business content, and implementing privacy and security best practices before going live.

B

bulthaup

bulthaup.com

0

bulthaup is a premium kitchen brand specializing in high-quality kitchen concepts and living space solutions. The company operates a multilingual WordPress-based website that serves as a platform for product information, dealer location, and appointment scheduling. The site targets affluent consumers and businesses seeking bespoke kitchen solutions, positioning itself as a premium retail brand with a global dealer network. Technically, the website employs modern JavaScript libraries and WordPress plugins, including hCaptcha for form security and Cookiebot for cookie consent management. However, the site lacks a valid SSL certificate and modern TLS support, which significantly weakens its security posture. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Overall, the website is professional and content-rich but requires urgent improvements in SSL/TLS configuration to enhance security and trust.

H

HiPP

hipp.de

0

HiPP is a well-established German brand specializing in organic baby food and related care products. Their website serves as both an informational resource and an e-commerce platform, targeting parents and families with young children. The site is rich in content, well-structured, and offers multiple engagement channels including a BabyClub and social media presence. Technically, the site is built on TYPO3 CMS and uses modern web technologies and consent management tools, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which significantly impacts its security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business appears credible and trustworthy, but the security weaknesses pose a risk to user trust and data protection.

E

ECE Projektmanagement G.m.b.H. und Co. KG

ece.de

0

ECE Projektmanagement G.m.b.H. und Co. KG operates a professional and comprehensive website focused on real estate development and management, particularly shopping centers, work & live spaces, and residential projects. The company positions itself as a large player in the German real estate market with a strong portfolio and innovative projects. The website is built on TYPO3 CMS and includes rich content, a contact form, social media integration, and a cookie consent mechanism compliant with GDPR. However, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical security flaw. Security headers are partially implemented but the SSL/TLS configuration is severely lacking, exposing the site to risks. The WHOIS data is consistent with the business claims, showing no privacy protection or suspicious registrations. Overall, the site is professional and trustworthy from a business perspective but requires urgent security improvements to protect user data and enhance trust.

Albert Berner Deutschland GmbH operates a comprehensive B2B e-commerce platform specializing in professional tools, chemicals, and related products primarily serving the automotive and industrial sectors in Germany. The company is well-established with a strong market position and a broad product catalog supported by detailed categorization and user-friendly navigation. Technically, the website employs modern JavaScript libraries, consent management tools, and extensive marketing and analytics integrations, indicating a mature digital infrastructure. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the site's security posture. Despite this, the site maintains good privacy compliance with clear policies and consent mechanisms. Overall, the business is credible and professional, but urgent remediation of the SSL/TLS issue is recommended to enhance security and trust.

P

Phoron Group GmbH

phoron.com

0

Phoron Group GmbH is an established international SAP consulting firm founded in 2004, specializing in SAP Cloud ERP, technology consulting, and sustainability solutions. The company targets medium and large enterprises, offering a comprehensive portfolio of SAP-related services. The website is professionally designed, content-rich, and consistent with the company's business model and market positioning. Technically, the site runs on Drupal 10 with Apache server and integrates Google Tag Manager and Sendinblue for marketing and analytics. However, a critical security weakness is the lack of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Business credibility is supported by trust indicators such as certifications and social media presence, though direct contact emails and phone numbers are not publicly visible. Overall, the site demonstrates strong business and content quality but requires urgent security improvements.

G

GEA Group Aktiengesellschaft

gea.com

0

GEA Group Aktiengesellschaft is a leading global supplier of systems and components primarily serving the food, beverage, and pharmaceutical industries. Founded in 1881 and headquartered in Germany, GEA offers a comprehensive portfolio including machinery, plants, advanced process technology, components, and services. The company is publicly listed and recognized for its sustainability efforts, being part of major sustainability indices. Technically, the website is built on modern frameworks such as Next.js and hosted on Microsoft Azure, with a Sitecore CMS backend, providing a rich and well-structured user experience across multiple languages. However, the security posture is currently weak due to the absence of a valid SSL/TLS certificate and lack of HTTPS support, which poses significant risks to data integrity and user trust. Privacy and cookie policies are well implemented and GDPR compliant, reflecting a strong commitment to data protection. Overall, the website demonstrates high professionalism and business credibility but requires urgent improvements in its security infrastructure to align with best practices and protect its users.

R

R-Biopharm AG

r-biopharm.com

0

R-Biopharm AG is a well-established German company specializing in clinical diagnostics, food and feed analysis, and nutrition care solutions. With over 35 years of experience and a presence in more than 120 countries, the company offers a broad portfolio of innovative products and services targeting healthcare professionals and the food industry. Their website reflects a professional and content-rich digital presence, supporting multiple languages and providing comprehensive information about their divisions and corporate responsibility initiatives. Technically, the site is built on WordPress with modern SEO and marketing tools, though performance could be improved. Security posture is currently weak due to the absence of a valid SSL certificate and HTTPS support, which is a critical risk that should be addressed immediately. Privacy compliance is strong, with clear policies and cookie consent mechanisms in place. Overall, the company demonstrates high business credibility and trustworthiness, but must prioritize securing their web infrastructure to protect users and maintain reputation.

L

Langmatz GmbH

langmatz.de

0

Langmatz GmbH is a medium-sized German company specializing in the development and manufacturing of infrastructure products for telecommunications, energy, and transportation sectors. Their product portfolio includes cable ducts, network distributors, outdoor enclosures, and related infrastructure components. The company positions itself as a leading European provider with a strong focus on quality and customer-centric solutions. Technically, the website is built on the Pimcore CMS platform, uses modern JavaScript libraries such as Swiper.js, and integrates Google reCAPTCHA for form security. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture of the site. Privacy and terms of service policies are present and comprehensive, supporting GDPR compliance. Contact information is clearly provided, including emails, phone numbers, and physical address, alongside active social media channels. Overall, while the business and content quality are excellent, the lack of proper SSL/TLS configuration is a critical security gap that needs immediate remediation.

fiskaly GmbH is a technology company specializing in cloud-based fiscalization solutions tailored for European markets including Germany, Austria, Spain, Italy, and France. Their services focus on enabling retailers and POS providers to comply with complex fiscal regulations through APIs and cloud services. fiskaly holds a strong market position as a leading provider of cloud TSS solutions in Germany and is expanding its footprint across Europe. The website demonstrates a professional, well-branded presence with comprehensive content, customer testimonials, and partner endorsements. Technically, the website is built on a modern Next.js framework hosted on Netlify, leveraging React and various marketing and analytics tools such as Google Tag Manager and Visual Website Optimizer. The site is mobile-optimized and accessible, with good SEO practices. However, a critical security issue is present due to an invalid or missing SSL certificate and disabled TLS protocols, which significantly impacts the security posture. Security-wise, fiskaly implements several best practices including HSTS and security headers, and holds ISO 27001 certification, indicating a mature security framework. Despite this, the lack of a valid SSL certificate and TLS support is a major vulnerability that must be addressed urgently to protect user data and maintain trust. Overall, fiskaly presents a credible and professional business with strong compliance and technical capabilities but must remediate critical SSL/TLS issues to ensure secure and trustworthy operations online.

S

Sensorbis GmbH

sensorbis.com

0

Sensorbis GmbH operates a cloud-based telemetry data management platform focused on Internet of Things (IoT) devices and sensors. The company provides subscription services enabling users to acquire, store, visualize, and export telemetry data with real-time charts, maps, and alert notifications. Their target audience includes IoT device operators, industrial machinery managers, and fleet tracking services. The business model centers on SaaS subscriptions with API and web interface management capabilities. The website content is professionally presented with consistent branding and relevant business descriptions, positioning Sensorbis as a niche player in the IoT telemetry cloud market. Technically, the website is built on ASP.NET WebForms with jQuery and Bootstrap, indicating a mature but somewhat dated technology stack. Performance is moderate to slow with a page load time exceeding 5 seconds and a large page size. Mobile optimization and accessibility are basic but functional. The site includes cookie consent mechanisms and privacy policy documentation, though GDPR compliance is not explicitly confirmed. Analytics tracking is present but disabled. From a security perspective, the site suffers from critical issues including the absence of a valid SSL certificate, missing DNS records, and lack of security headers. HTTPS is enforced in the application logic but without a valid certificate, exposing users to risks. No advanced security policies or incident response contacts are published. These vulnerabilities significantly reduce the security posture and trustworthiness of the site. Overall, Sensorbis GmbH presents a credible small technology company with a focused IoT telemetry service offering. However, critical security improvements are necessary to protect user data and enhance trust. Addressing SSL and DNS issues should be prioritized to improve the security score and user confidence.

K

Knorr-Bremse AG

knorr-bremse.com

0

Knorr-Bremse AG is a global leader in manufacturing braking systems and safety-critical sub-systems for rail and commercial vehicles. With a history spanning over 28 years, the company holds a strong market position as an innovator in mobility and transport technologies. Their business model focuses on delivering advanced braking and safety solutions, complemented by comprehensive investor relations and career development programs. Technically, the website is built on a modern Angular framework, hosted on Nginx and Amazon CloudFront, with good SEO and accessibility features. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, resulting in no HTTPS support, which significantly impacts the security posture. The site implements strong security headers and content policies but lacks advanced SSL configurations and session management. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional and trustworthy but requires urgent SSL deployment to enhance security and user trust.

Z

Zahnarztpraxis Dr. Christian Pastor

zahnarzt-pastor.de

0

Zahnarztpraxis Dr. Christian Pastor is a small, local dental and oral surgery practice based in Beilstein, Germany. The website presents a professional image with a comprehensive range of dental services including prophylaxis, implantology, oral surgery, and aesthetic dentistry. The practice emphasizes patient-centered care and modern technology. Technically, the website is built using modern frameworks such as Nuxt.js and Vue.js, hosted by agenturserver.de, and includes cookie consent mechanisms and Google Tag Manager for analytics. However, the site lacks HTTPS encryption, which is a critical security flaw. Security headers are minimal, and no advanced security policies or incident response information is provided. The WHOIS data is consistent with the business claims, supporting legitimacy. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

T

The Jodel Venture GmbH

jodel-app.com

0

Jodel is a technology company operating a hyperlocal community social app designed to connect users instantly with people around them, primarily targeting young professionals and students (Gen Z and Y). The platform offers local tips, news, stories, and a tailored advertising service for brands, HR campaigns, and market research. The website is built on WordPress using Elementor and Elementor Pro, hosted behind Cloudflare CDN. Despite a professional design and good content quality, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security concern. Cookie consent is managed via Cookiebot, indicating good privacy compliance practices. However, no explicit contact information or security policies are found on the homepage, limiting direct user engagement and incident response readiness.

J

Jarltech Europe GmbH

jarltech.com

0

Jarltech Europe GmbH is a well-established specialist distributor in the technology sector, focusing on point-of-sale and automatic identification equipment across Europe. With a mature domain and a broad manufacturer partnership network, it serves a large customer base with premium distribution services. The website is professionally designed, content-rich, and provides comprehensive legal and privacy information, reflecting a strong commitment to GDPR compliance and user privacy. Technically, the site uses Drupal 10 with modern web technologies and integrates reputable analytics and marketing tools, although performance is moderate. Security posture is weakened by the absence of a valid SSL certificate and disabled TLS protocols, which is a critical risk that should be addressed promptly. Overall, the business demonstrates high credibility and transparency, but the security configuration requires urgent improvement to protect user data and maintain trust.

M

Munich Business School

munich-business-school.de

0

Munich Business School is a well-established private higher education institution in Germany specializing in international business education. It offers a range of degree programs including Bachelor, Master, MBA, and DBA with a strong emphasis on practical experience, small class sizes, and societal impact. The school holds multiple prestigious accreditations such as AACSB and FIBAA, positioning it as a leading private business school in Germany. Technically, the website is built on TYPO3 CMS and integrates modern marketing and analytics tools like Google Tag Manager and Matomo, along with a consent management platform for GDPR compliance. However, a critical security weakness is the absence of a valid SSL certificate, resulting in no HTTPS availability, which significantly impacts the site's security posture. Privacy policies and cookie consent mechanisms are well implemented, reflecting good compliance practices. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

Z

Zukunftsinstitut GmbH

zukunftsinstitut.de

0

Zukunftsinstitut GmbH is a reputable future research and consulting company based in Germany with a subsidiary in Austria. The company specializes in transforming exclusive trend analyses into actionable strategies and concepts for organizations. Their market position is strong, supported by a professional website, a broad range of services including research, consulting, publishing, keynotes, and conferences, and a solid client base evidenced by displayed client logos. Technically, the website is built on HubSpot CMS, leveraging modern JavaScript libraries and integrates Google Analytics and Tag Manager for marketing and analytics. However, the security posture is weak due to the absence of a valid SSL certificate and disabled TLS protocols, which poses a critical risk. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and maintain credibility.

KrankenhausExperte is a small German healthcare information website offering a searchable database of over 2,000 hospitals in Germany, along with health-related articles. The platform targets patients and individuals seeking hospital information and facilitates hospital contact and appointment scheduling. Technically, the site uses basic web technologies such as nginx, JavaScript, CSS, and HTML5 but lacks modern CMS or frameworks. Performance and mobile optimization are basic, and no analytics or tracking tools are detected. Security posture is weak due to the absence of HTTPS, SSL certificates, and security headers, exposing users to potential risks. Compliance is poor with no privacy, cookie, or terms of service policies present. Overall, the site is functional but lacks professionalism and trust indicators, limiting its credibility and user confidence.

G

GCI Management

gci-management.com

0

GCI Management is a consulting and investment firm focusing on investment management, capital markets, M&A, corporate performance, strategy, and sustainability, primarily serving German-speaking markets with offices referenced in Munich and Vienna. The website is built on WordPress with common plugins for SEO and multilingual support, but lacks critical security configurations such as a valid SSL certificate, resulting in HTTP-only access. The site includes basic SEO metadata and structured data but does not provide privacy, cookie, or terms of service policies, nor explicit contact information. Security posture is weak due to missing HTTPS and modern TLS protocols, exposing visitors to potential risks. Overall, the website presents a basic but professional front with moderate business credibility but requires significant improvements in security and privacy compliance to meet modern standards.

A

All for One Customer Experience GmbH

b4b-solutions.com

0

All for One Customer Experience GmbH is a Germany-based technology company specializing in delivering innovative customer experience solutions leveraging the SAP Customer Experience Suite. Positioned as a SAP Platinum Partner and part of the All for One Group, the company offers comprehensive cloud-based services including consulting, software implementation, and custom development to enhance customer journeys and digital transformation for businesses. The website reflects a professional and consistent brand image targeting enterprises seeking to optimize their customer engagement and sales processes. Technically, the website is hosted on Amazon Web Services using Amazon S3 and CloudFront CDN, employing modern web technologies such as JSON-LD structured data and OneTrust for cookie consent management. The site is well-optimized for SEO, accessibility, and mobile responsiveness, providing a high-quality user experience. However, performance metrics were not available. From a security perspective, while the site implements several important security headers and content security policies, it critically lacks a valid SSL/TLS certificate and does not support modern TLS protocols, resulting in a poor security posture. This exposes users to risks and undermines trust. Privacy compliance is strong with comprehensive privacy and cookie policies and consent mechanisms in place. Overall, the website demonstrates strong business credibility and digital maturity but requires urgent remediation of SSL/TLS issues to ensure secure communications and maintain trust. Strategic improvements in security infrastructure will significantly enhance the site's risk profile and user confidence.

V

Vaillant

vaillant-group.com

0

Vaillant Group is a globally recognized leader in the energy sector, specializing in climate-friendly heating, cooling, and hot water solutions including heat pumps and gas condensing boilers. The company operates in over 60 countries with a workforce of approximately 16,000 employees, emphasizing sustainability and digital services. The website reflects a mature and professional business with consistent branding and comprehensive content tailored to customers, partners, and potential employees. Technically, the site leverages modern JavaScript libraries, lazy loading, and CDN hosting via Amazon S3 and CloudFront, with a CMS likely based on e-Spirit. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, severely impacting the security posture. Privacy and cookie policies are present and GDPR compliant, and the site integrates Google Tag Manager for analytics and Consentmanager.net for consent management. Overall, the site is well-structured and user-friendly but requires urgent security improvements.