Security Directory

O

OX LOGISTIC LTD.

ox-logistic.de

0

OX LOGISTIC LTD. is a specialized logistics and transport company based in Germany, offering a wide range of services including express shipping, value shipping, weapons transport, weekend shipping, direct drives, and more. The company operates primarily in Germany with international reach, leveraging partnerships such as with KEP GmbH to provide efficient and reliable courier services. Their website is professionally designed, mobile-optimized, and provides comprehensive service information and contact options. Technically, the site is built on WordPress with common plugins for forms, cookies, and animations, and uses HTTPS for secure communication. Security posture is adequate but could be improved with additional security headers and policies. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the company presents a trustworthy and professional online presence suitable for business clients seeking logistics solutions.

The website 'LitVideo Trailer-Datenbank' operated by qub media GmbH provides a niche service focused on the online distribution of book trailers for publishers, authors, bloggers, and online shop operators. The platform aims to enhance marketing efforts by integrating video content to increase user engagement and conversion rates. The business model centers on providing a specialized media service within the German market, targeting a small-sized company profile with consistent branding and a clear service offering. Technically, the website employs a basic but functional technology stack including HTML, CSS, JavaScript with jQuery, and Google Analytics for tracking. Hosting appears to be managed via generic German hosting providers as inferred from the nameservers. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. No CMS or modern frameworks were detected. From a security perspective, the site lacks visible security headers and cookie consent mechanisms, despite using Google Analytics, which raises privacy compliance concerns. HTTPS status and SSL configuration could not be confirmed from the data provided. No incident response or security policies are published, and no forms or input fields were detected to assess input security. The WHOIS data is structured and publicly available, with no privacy protection, supporting legitimacy, though the domain status 'connect' is unusual. Overall, the website is functional and serves its business purpose but requires improvements in security posture, privacy compliance, and technical modernization to enhance trust and user experience. Strategic recommendations include implementing HTTPS with strong SSL, adding security headers, deploying cookie consent mechanisms, and publishing clear security and incident response policies.

B

buchreport

buchreport.de

0

buchreport is a specialized German media outlet focused on providing news, analyses, and bestseller information for the German-speaking book industry. The website offers a variety of services including SPIEGEL-Bestseller lists, e-paper publications, and industry insights targeted at professionals and stakeholders in the book market. The site is built on WordPress CMS and employs modern web technologies such as jQuery, lazy loading, and slick sliders to enhance user experience. Advertising is managed through multiple ad networks including Revive Adserver, Yieldlove, and Google DoubleClick, with privacy management scripts indicating GDPR awareness. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, though explicit security headers and policies are not fully published. The website is accessible without WAF or blocking mechanisms, and content is safe for general audiences.

L

Leistungsgemeinschaft Buchhandel eG

lg-buch.de

0

Leistungsgemeinschaft Buchhandel eG operates as a premium cooperative for independent local bookstores in Germany, providing membership benefits, partnerships with publishers, and support for challenges such as digitalization and cost pressures. The website is built on WordPress using the Divi theme, enhanced with SEO and cookie consent plugins, reflecting a moderate to good level of digital maturity. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies could improve resilience. Overall, the site is professional, GDPR compliant, and trustworthy, serving a niche retail market effectively.

G

G. Umbreit GmbH & Co. KG

umbreit.de

0

G. Umbreit GmbH & Co. KG operates a professional and comprehensive website focused on book distribution, e-commerce solutions, and related services primarily targeting book retailers, publishers, and e-commerce businesses in Germany. The company offers a broad portfolio including logistics, digital content, and customer support, positioning itself as a key regional player in the retail and e-commerce sectors. The website is built on TYPO3 CMS with modern frontend technologies and integrates Matomo analytics for privacy-conscious user tracking. Security posture is solid with HTTPS and secure forms, though improvements are recommended in cookie consent and security policy transparency. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates good technical maturity, business credibility, and user experience, making it a trustworthy platform for its target audience.

Q

qub media GmbH

qub-media.com

0

qub media GmbH is a small, Germany-based media company specializing in professional video production, marketing services, and video distribution. Established since 2006, the company serves clients in publishing, NGOs, food manufacturing, consulting, and event management sectors. The website reflects a professional business model with clear service offerings and a consistent brand presence. Technically, the site is built on WordPress using modern themes and plugins, hosted by a reputable provider (Hetzner Online GmbH). The site is mobile-optimized and integrates Google Analytics with IP anonymization for user tracking. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, and no cookie consent mechanism is present, indicating room for compliance improvement. Overall, the domain registration and website content align well, supporting legitimacy and trustworthiness.

E

EHC Bayreuth "Die Tigers" e.V.

ehc-bayreuth.de

0

EHC Bayreuth "Die Tigers" e.V. is a German ice hockey club focused on training and developing players across various age groups, emphasizing passion and community involvement. The website serves as a hub for fans, players, and members, offering news, team information, a fan shop, and membership applications. The club operates primarily as a non-profit entity with revenue from memberships, merchandise sales, and donations. Technically, the site is built on WordPress with WooCommerce and SportsPress Pro, integrating social media and payment services like PayPal. The site is well-structured, mobile-optimized, and GDPR compliant with clear privacy and cookie policies. Security posture is good with HTTPS and some security best practices, though additional security headers could enhance protection. Overall, the site is professional, trustworthy, and serves its community effectively.

D

Deutscher Eishockey-Bund e. V.

deb-online.de

0

The Deutscher Eishockey-Bund e. V. is the official national governing body for ice hockey in Germany, providing news, game results, national team information, and league management. The website serves as an information hub for ice hockey enthusiasts, players, and stakeholders within Germany. It is positioned as a medium-sized non-profit organization with a clear focus on the sport's development and promotion in the country. Technically, the website is built on WordPress with a modern plugin ecosystem including WPBakery, Ultimate VC Addons, and Modern Events Calendar, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks advanced security headers and incident response information. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security practices.

I

IBE.DE GmbH

ibe.de

0

IBE.DE GmbH operates a specialized online booking portal for business travel, targeting small and medium-sized enterprises in Germany. The platform offers integrated booking and management services for flights, trains, hotels, and rental cars, emphasizing ease of use, no online booking fees, and centralized travel management. The company leverages over 15 years of experience and positions itself as a reliable, local provider with technology developed in Augsburg. The website is professionally designed, mobile-optimized, and provides clear navigation and social media presence, enhancing its market credibility. Technically, the website is built on WordPress 6.4.2 using the Uncode theme and custom child themes, hosted via SchlundTech. It uses modern JavaScript libraries like jQuery and MediaElement.js for media handling. The site demonstrates moderate performance and basic accessibility features. However, explicit security headers and cookie consent mechanisms are absent, indicating room for improvement in security and privacy compliance. From a security perspective, the site uses HTTPS and includes a login form with password fields, but lacks visible security policies, incident response contacts, or vulnerability disclosure information. No exposed sensitive data or vulnerabilities were detected in the HTML content. The domain WHOIS data aligns with the hosting and business claims, supporting legitimacy. The site holds an IATA accreditation badge, reinforcing trust. Overall, the website presents a trustworthy and professional business travel service with solid business credibility and technical foundation. Enhancements in security headers, privacy consent, and incident response transparency would further strengthen its security posture and compliance standing.

S

Sports Trade GmbH

sprade.tv

0

SpradeTV is a specialized streaming platform operated by Sports Trade GmbH, focusing on delivering live and on-demand ice hockey content primarily from German leagues. The service targets ice hockey fans seeking comprehensive coverage including live games, highlights, and exclusive content via apps and YouTube membership. Technically, the website is built on a modern Angular framework with responsive design and good performance, leveraging Swiper.js for interactive content sliders. Security posture is solid with HTTPS and key security headers implemented, though DNSSEC is not enabled and cookie consent mechanisms are absent, indicating room for compliance improvement. The domain registration aligns well with the business, showing legitimacy and consistency. Overall, the site presents a professional and trustworthy platform with minor gaps in privacy compliance and security policy transparency.

A

ATG Entertainment

atgentertainment.de

0

ATG Entertainment is a globally recognized leader in live theater entertainment, producing musicals and shows, operating theaters, and organizing tours primarily in Germany. The company boasts a large scale operation with over 18 million visitors annually and 72 theaters worldwide. Their digital presence is modern and professional, leveraging Next.js and Vercel hosting, with strong mobile optimization and accessibility. Security posture is solid with HTTPS, Cloudflare DNS, and comprehensive cookie consent management via Cookiebot, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with GDPR-aligned cookie management and privacy policy. Overall, the website reflects a mature and trustworthy entertainment business with room for enhanced transparency in security and contact information.

S

simpilio® Internetagentur

simpilio.de

0

simpilio® Internetagentur is a small German internet agency specializing in web design, online shops, CMS solutions, and online marketing primarily serving businesses and creatives in Saxony and other German cities. The company presents a professional and consistent brand image with comprehensive service offerings and a focus on user-friendly, GDPR-compliant websites. Their technical infrastructure includes legacy but functional technologies such as jQuery and FancyBox, with hosting provided by kasserver.com. They employ Matomo and Google Analytics for user tracking with explicit consent mechanisms, reflecting a mature approach to privacy compliance. Security posture is solid with HTTPS, CAPTCHA protections, and consent management, though updating legacy libraries and adding explicit security headers would enhance their defenses. Overall, simpilio® demonstrates a trustworthy and professional online presence with good business credibility and technical implementation.

S

Sparkasse Zwickau

spk-zwickau.de

0

Sparkasse Zwickau is a regional financial institution in Germany offering a broad range of banking and financial services including online banking, accounts, credit cards, loans, investments, insurance, and real estate services. The website targets both private and corporate customers and positions itself as a trusted local financial partner with a strong digital presence. The site is well-structured, professionally designed, and provides comprehensive product information and customer support channels. Technically, the website uses modern web technologies and is likely built on Adobe Experience Manager CMS, ensuring a robust and scalable platform. Mobile optimization and accessibility features are well implemented, enhancing user experience across devices. Security posture is strong with HTTPS enforced and session management features, although some security headers could be improved. Privacy compliance is evident with clear cookie consent mechanisms and detailed privacy policies. Overall, the website reflects a mature digital infrastructure suitable for a large financial institution with high trustworthiness and professionalism.

S

Spreewind GmbH

windenergietage.de

0

The Windenergietage website represents a well-established and professional event platform focused on the wind energy sector in Germany. It organizes the 33rd edition of its conference in 2025, attracting over 4200 participants, indicating a strong market position and relevance in the renewable energy industry. The site offers detailed program information, multiple forums, and networking opportunities, targeting industry professionals, project developers, legal experts, and investors. The business model centers on event organization and industry networking, supported by advertising and sponsorship opportunities. Technically, the website is built on WordPress with common plugins such as Contact Form 7 and Ajax Search Lite, using jQuery and other standard libraries. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enabled and no exposed sensitive data, though security headers are not detected and cookie consent mechanisms are missing, which are areas for improvement. From a security and compliance perspective, the site maintains GDPR compliance with a comprehensive privacy policy but lacks visible cookie consent and explicit security or incident response policies. No vulnerabilities or suspicious patterns were detected. The WHOIS data aligns with the website's legitimacy, showing consistent domain registration and DNS setup without privacy protection, appropriate for the business type. Overall, the website is professional, trustworthy, and content-rich, serving its target audience effectively. Strategic recommendations include implementing cookie consent, adding security headers, and publishing security policies to enhance compliance and trust.

E

EDF power solutions Deutschland

mit-energie-arbeiten.de

0

EDF power solutions Deutschland is a medium-sized company specializing in the development, construction, and operation of renewable energy projects including onshore and offshore wind, photovoltaic systems, and battery storage solutions. As part of the international EDF power solutions group, it holds a strong market position in the German renewable energy sector. The website is professionally designed, mobile-optimized, and provides comprehensive information about the company’s services, values, and career opportunities. Technically, the site uses modern web technologies including Craft CMS, JavaScript modules, and Splide.js for interactive elements, hosted on performant infrastructure. Security posture is solid with HTTPS, CSRF protections, and cookie consent mechanisms, though it lacks explicit security policies or incident response contacts. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

E

E. Breuninger GmbH & Co.

breuninger.com

0

E. Breuninger GmbH & Co. is a well-established German premium department store specializing in fashion, beauty, shoes, and accessories, with a history spanning over 140 years. The company operates a comprehensive e-commerce platform targeting fashion consumers primarily in Germany and neighboring countries. Their online presence is supported by a modern, well-designed website that offers fast delivery and a 30-day return policy, positioning them strongly in the retail market. Technically, the website employs modern JavaScript modules, CSS custom properties, and integrates a robust cookie consent mechanism via OneTrust, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, contributing to a positive user experience. Security-wise, the website enforces HTTPS, includes multiple security headers, and shows no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS registration data is a notable anomaly, although the strong branding and verified social media presence mitigate concerns about legitimacy. Overall, the website demonstrates a high level of professionalism, security, and privacy compliance, with room for improvement in publishing explicit security policies and incident response information.

K

KaDeWe

kadewe.de

0

KaDeWe is a historic and iconic luxury department store based in Berlin, Germany, with a strong market position in retail and hospitality sectors. The website reflects a mature digital presence built on WordPress with modern marketing and UX tools, including cookie consent and social media integration. Security posture is good with HTTPS and privacy-conscious analytics, though lacking explicit privacy policies and security headers. The site is professional and trustworthy, targeting affluent shoppers interested in fashion, beauty, and gourmet food. No blocking or WAF challenges were detected, allowing full content analysis.

R

ROY ROBSON

royrobson.com

0

ROY ROBSON is a well-established premium menswear brand based in Germany, with a history dating back to 1922. The company designs and produces formal and smart casual menswear, serving both direct consumers and B2B clients. The website reflects a mature digital presence with multilingual support and strong branding. Technically, the site is built on WordPress with Elementor and uses modern plugins for SEO and cookie consent. Security posture is generally good with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with cookie consent but no explicit privacy policy found in the provided content. Contact information is not visible on the homepage, which may affect user trust. Overall, the site is professional, secure, and credible but could improve transparency and security practices.

B

Berufsgenossenschaft für Gesundheitsdienst und Wohlfahrtspflege (BGW)

bgw-online.de

0

The Berufsgenossenschaft für Gesundheitsdienst und Wohlfahrtspflege (BGW) operates as a statutory accident insurance provider for individuals working in the health and social services sectors in Germany. The website serves as a comprehensive portal offering information on accident insurance, prevention, rehabilitation, health protection, and training services. It targets professionals and organizations within the healthcare and welfare industries, positioning itself as a trusted and established institution within the German social system. Technically, the website is built on the CoreMedia CMS platform, hosted on Colt Technology Services infrastructure, and employs modern web technologies including JavaScript and CSS. It integrates analytics tools such as Matomo and eTracker for user behavior tracking, although it lacks a visible cookie consent mechanism. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. From a security perspective, the site enforces HTTPS and mentions the use of two-factor authentication for member services, indicating a commitment to protecting user data. However, explicit security headers are not evident, and no public security or incident response policies are found. The WHOIS data shows professional hosting but limited registrant details, which is typical for large institutional domains. Overall, the website demonstrates a strong business credibility and technical maturity with minor gaps in privacy compliance and security transparency. It is safe for general audiences and free from adult or questionable content.

D

Deutscher Verlag für Gesundheitsinformation GmbH

leading-medicine-guide.de

0

Leading Medicine Guide is a German healthcare expert portal operated by Deutscher Verlag für Gesundheitsinformation GmbH, founded in 2001. The website provides a curated directory of highly qualified German medical specialists and clinics across various medical fields, targeting patients and healthcare consumers seeking expert medical advice and treatment options in Germany. The business model centers on providing trusted healthcare information and facilitating connections between patients and medical professionals. The site maintains a consistent brand presence and good content quality, supporting its niche market position in the German healthcare sector. Technically, the website employs a moderate technology stack including jQuery, Cookiebot for cookie consent management, Matomo for analytics, and Google Tag Manager. It uses HTTPS and includes structured data for SEO and social media integration. The site is mobile-optimized with good navigation and accessibility features, although some improvements in security headers and performance optimization could be made. From a security perspective, the site implements a comprehensive cookie consent mechanism with granular user controls, indicating good privacy compliance efforts. However, no explicit privacy policy or terms of service pages were detected in the provided content, and WHOIS data is missing or domain registration is unconfirmed, which raises concerns about domain legitimacy. No security policy or incident response information is published, and security headers appear absent, suggesting room for improvement in security posture. Overall, the website is professional and trustworthy in content and business presentation but would benefit from enhanced transparency in domain registration, explicit privacy and security policies, and improved security best practices to strengthen user trust and compliance with data protection regulations.

D

Deutsche Postcode Lotterie

deutschepostcode-lotterie.de

0

The Deutsche Postcode Lotterie operates a socially responsible lottery platform in Germany, allowing participants to win prizes based on their postal codes. The website is professionally designed, mobile-optimized, and provides comprehensive information about participation, prizes, and social impact. The platform is TÜV Saarland certified and regulated by the German gambling authority, enhancing its trustworthiness. Technically, the site uses modern frameworks such as Next.js and Storyblok CMS, hosted on Vercel, ensuring fast performance and good accessibility. Privacy compliance is well addressed with GDPR-aligned policies and a consent management platform. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Overall, the site presents a trustworthy and professional digital presence for a large non-profit lottery business.

P

Pigsar

pigsar.de

0

Pigsar is a specialized service provider in Germany focusing on the testing and calibration of high-pressure natural gas meters. Positioned as a leading test facility, the company offers precise and accurate metrology services primarily targeting industrial and commercial clients involved in natural gas measurement. The website reflects a professional business model centered on metrology and calibration services, supported by downloadable company brochures and multilingual content to serve a broader audience. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, hosted on Adacor nameservers. The site demonstrates good digital maturity with responsive design, SEO optimization, and a cookie consent mechanism compliant with GDPR. Google Tag Manager and Google Analytics are used for analytics and tracking, with clear user consent for statistics cookies. From a security perspective, the website enforces HTTPS and employs cookie consent for privacy compliance. However, it lacks explicit security headers and does not provide a public security policy or vulnerability disclosure page. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture but with room for improvement in transparency and header implementation. Overall, the website is trustworthy, professionally designed, and compliant with privacy regulations. The risk level is low, but strategic enhancements in security policy publication and header configurations would further strengthen the security posture and user trust.

V

Vier Gas Transport GmbH

viergas.de

0

Vier Gas Transport GmbH is a German company specializing in the acquisition, holding, and management of interests in gas transmission assets and the broader energy sector. Founded in 2012, it is the sole owner of Open Grid Europe, a leading European gas transmission system operator. The website targets investors and energy sector stakeholders, providing corporate, financial, and business news information. The business model focuses on asset management and energy sector investments, positioning Vier Gas as a significant player in European energy infrastructure. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, with frontend technologies including jQuery and Bootstrap. Hosting is provided by Adacor, indicated by the nameservers. The site demonstrates good mobile optimization, SEO practices, and moderate performance. The technical stack is modern and well-maintained, supporting a professional digital presence. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not publish explicit security or incident response policies. There is no cookie consent mechanism despite GDPR compliance indicated by the privacy policy. No vulnerabilities or malicious content were detected. Overall, the security posture is solid but could be improved by implementing additional headers and transparency measures. The overall risk assessment is low, with the website presenting a trustworthy and professional corporate image. Strategic recommendations include enhancing security headers, publishing incident response information, implementing cookie consent, and adding a vulnerability disclosure policy to strengthen compliance and trust.

D

DOKYO

dokyo.de

0

DOKYO is a Hamburg-based full-service advertising agency specializing in creating multi-channel, integrated brand and product advertising campaigns. They serve notable clients such as AXE, Dove, and Ben & Jerry’s, positioning themselves as a creative agency that leverages pop culture to make brands more emotional, relevant, and popular. The agency has a strong market presence with over 150 campaigns for more than 30 brands over 15 years, supported by a B CORP certification indicating social and environmental responsibility. Technically, the website is built with modern web standards including HTML5, CSS3, and JavaScript, utilizing the Swiper.js library for interactive sliders. Hosting is provided by Strato AG, a German hosting provider, consistent with the agency’s location. The site is mobile optimized with good SEO practices and basic accessibility features, though there is room for improvement in accessibility and performance optimization. From a security perspective, the website enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers, published security policies, incident response contacts, and vulnerability disclosure mechanisms. No analytics or tracking scripts were detected, indicating a minimal user tracking approach. The WHOIS data is minimal but consistent with the hosting provider and geographic location, with no privacy protection that would raise suspicion. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but could enhance its security posture by adding explicit security policies, headers, and incident response information. The absence of direct contact emails or phone numbers on the main page may impact user trust and accessibility. Strategic improvements in these areas would strengthen the agency’s digital maturity and security readiness.

B

bontempo GmbH & Co. KG

bontempo.de

0

Bontempo GmbH & Co. KG is a medium-sized German agency and manufactory specializing in retail design, exhibition construction, shopfitting, and event services across Europe. The company positions itself as a creative partner turning spaces into brand experiences, serving a diverse clientele including notable brands in retail and events. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and uses Matomo for analytics with device fingerprinting. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, additional security headers and a formal security policy or incident response contact are absent. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with comprehensive privacy and cookie policies aligned with GDPR. Overall, the website presents a trustworthy and professional digital presence with minor areas for security and technical enhancement. The domain WHOIS data supports legitimacy and transparency, reinforcing business credibility.

The FC St. Pauli Museum website serves as a digital gateway promoting the museum's mobile app, targeting fans and visitors interested in the cultural heritage of the FC St. Pauli football club. The business operates as a non-profit cultural institution based in Germany, leveraging digital platforms such as Google Play and Apple App Store to distribute its app. The website content is well-structured, visually consistent, and provides clear calls to action for app downloads, supported by official social media channels and endorsements from reputable German cultural bodies. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript, with minimal external dependencies. It integrates Umami analytics for privacy-conscious user tracking. The site is mobile-optimized and offers a good user experience, although accessibility and SEO optimizations are basic. No advanced CMS or hosting details are evident from the content. From a security perspective, the website lacks visible security headers and does not provide explicit security or incident response policies. The absence of a cookie consent mechanism indicates partial GDPR compliance, though a privacy policy is present and accessible. No forms or direct contact information are provided, limiting data exposure risks but also reducing user engagement options. Overall, the website presents a trustworthy and professional front for the museum app, with low risk from a security and privacy standpoint. Strategic improvements in security headers, cookie consent, and published policies would enhance compliance and user trust. The domain WHOIS data was not provided, limiting the ability to assess domain registration legitimacy and history fully.

L

Landesmuseum Württemberg

landesmuseum-stuttgart.de

0

The Landesmuseum Württemberg website represents a well-established cultural institution focused on showcasing regional history and art in Stuttgart, Germany. The museum offers a variety of exhibitions, educational programs, and visitor services, positioning itself as a key cultural hub in the region. The website is professionally designed, content-rich, and targets a broad audience interested in history and culture. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies and integrating Matomo analytics for user insights. The site demonstrates good mobile optimization and accessibility features, enhancing user experience across devices. Security-wise, the website enforces HTTPS and implements a comprehensive cookie consent mechanism, aligning with GDPR requirements. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure information, which are areas for improvement. Overall, the domain and website content are consistent and legitimate, with no signs of malicious activity or suspicious patterns. Strategic recommendations include publishing security and incident response policies, enhancing security headers, and formalizing vulnerability disclosure processes to strengthen trust and compliance.

E

EDF power solutions Deutschland GmbH

edf-re.de

0

EDF power solutions Deutschland GmbH is a medium-sized company specializing in the development, construction, and operation of renewable energy projects in Germany, focusing on onshore and offshore wind, photovoltaic systems, and battery storage solutions. The company targets industrial and commercial customers, offering tailored energy storage and generation solutions to support the energy transition. The website reflects a professional and modern digital presence with clear navigation, comprehensive content, and multilingual support. Technically, the site uses Craft CMS, modern JavaScript modules, and lazy loading for performance optimization. Security measures include HTTPS, CSRF protection, and cookie consent mechanisms, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates a strong security posture with room for improvement in security headers and vulnerability disclosure. The WHOIS data aligns well with the business claims, confirming legitimacy and consistency. The company maintains active social media profiles and partners with relevant industry sites, enhancing credibility.

H

HRworks GmbH

hrworks.de

0

HRworks GmbH operates the website www.hrworks.de, providing comprehensive HR software solutions tailored for small and medium-sized enterprises in Germany. Their offerings include personnel management, time tracking, travel expense management, payroll integration, and personnel development tools. The company positions itself as a trusted and established player with over 25 years of experience and more than 350,000 users, supported by multiple industry awards and recognitions. The website is professionally designed, mobile-optimized, and rich in content, targeting HR professionals and SMEs seeking efficient digital HR transformation.

N

Nintendo

nintendo.com

0

Nintendo is a globally recognized leader in the video game industry, offering a wide range of gaming consoles, software, and digital services. The official German website serves as a localized portal providing product information, account management, and customer support tailored for German-speaking users. The site reflects Nintendo's strong market position and commitment to user engagement through a professional and well-branded online presence. Technically, the website employs modern web technologies, including CDN delivery, asynchronous JavaScript loading, and cookie consent frameworks, ensuring fast performance and compliance with privacy regulations such as GDPR. Security measures are robust, with HTTPS enforced and multiple security headers implemented, contributing to a high security posture. No critical vulnerabilities or suspicious activities were detected. The absence of WHOIS data is noted but likely due to privacy or registry policies rather than malicious intent. Overall, the website demonstrates a mature digital infrastructure aligned with Nintendo's enterprise status and global brand reputation.

S

Solar Solutions GmbH

aeg-industrialsolar.de

0

AEG Solar, operated by Solar Solutions GmbH, is a medium-sized company specializing in solar energy products including solar modules, inverters, and energy storage systems. The company positions itself as a trusted brand with widespread recognition among installers and customers, targeting homeowners, businesses, and project developers seeking sustainable energy solutions. Their business model focuses on manufacturing and distributing holistic photovoltaic solutions to empower energy independence and environmental responsibility. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted by One.com A/S. The site demonstrates good digital maturity with responsive design, SEO optimization, and cookie consent mechanisms compliant with GDPR. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and some recommended security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and user consent mechanisms. However, the absence of a published security policy or incident response contact is noted. Overall, the website is professional, trustworthy, and well-aligned with its business goals. Strategic improvements in DNS security, security headers, and incident response transparency would enhance its security posture and trustworthiness.

E

Exit Games GmbH

photonengine.com

0

Photon Engine, operated by Exit Games GmbH, is a leading provider of multiplayer game backend services, offering a comprehensive suite of products including Photon Fusion, Quantum, Realtime, Chat, and Voice. The company targets game developers and studios worldwide, supporting over 1.4 billion monthly players and more than 1 million developers. Their business model is SaaS-based, providing scalable cloud infrastructure and communication tools for multiplayer games across multiple platforms including mobile, PC, consoles, and VR/AR. Technically, the website demonstrates a mature digital infrastructure with modern web technologies, fast performance, and excellent mobile optimization. The use of Google Tag Manager and Cloudflare Insights indicates active analytics and performance monitoring. The site is well-structured with comprehensive documentation and multilingual support, enhancing accessibility and user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and a public security policy or incident response contacts are not evident, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the strong market presence and trust indicators. Overall, Photon Engine presents a professional, trustworthy, and technically sound platform with strong compliance and privacy practices. Strategic enhancements in security transparency and contact availability would further strengthen their security posture and user trust.

U

Umweltinstitut München

umweltinstitut.org

0

Umweltinstitut München e.V. is a well-established non-profit organization focused on environmental protection, sustainable agriculture, and renewable energy advocacy in Germany. The website reflects a mature digital presence with comprehensive content targeting environmentally conscious individuals and stakeholders. Their market position is that of a reputable environmental advocacy group with a medium-sized organizational footprint, founded in 1999. Technically, the website is built on WordPress with modern web technologies including jQuery, lazy loading, and cookie consent management via Borlabs Cookie. Hosting is provided by Hetzner, a reputable German hosting provider. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate rather than fast. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. No exposed sensitive data or vulnerable libraries were detected. Privacy compliance is partial; while cookie consent is implemented, no explicit privacy policy page was found, which is a compliance gap. Overall, the website is trustworthy and professional, with strong branding and social media integration. The main risks relate to privacy policy absence and missing security headers. Strategic improvements in these areas would enhance compliance and security posture.

A

Aurelia Stiftung

aurelia-stiftung.de

0

Aurelia Stiftung is a German non-profit foundation dedicated to the protection of bees and biodiversity. The organization advocates for sustainable agricultural practices, educates the public, and supports targeted projects to prevent ecosystem collapse. Their website reflects a professional and consistent brand image, targeting environmentally conscious individuals and stakeholders interested in biodiversity conservation. The foundation operates primarily through donations and public engagement. Technically, the website is built on WordPress with modern SEO and cookie management plugins, ensuring good performance and mobile responsiveness. The use of HTTPS and a cookie consent mechanism demonstrates a commitment to security and privacy compliance. However, some security headers are missing, and no explicit security or incident response policies are published. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy policies are comprehensive and GDPR compliant, with clear cookie consent management. Contact is primarily via web forms, with no direct email or phone contacts publicly listed. WHOIS data is minimal but consistent with the foundation's profile and domain age. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic improvements could include adding explicit security policies, incident response contacts, and enhancing security headers to further strengthen the security posture.

G

Gaming Aid e.V.

gaming-aid.de

0

Gaming Aid e.V. is a small German non-profit organization dedicated to charitable activities within the gaming community. The website serves as the official online presence, providing information about the organization and its mission. The site targets gamers and supporters interested in contributing to charitable causes related to gaming. The business model is non-profit, focusing on community engagement and aid rather than commercial revenue. The organization appears to be relatively young, founded around 2020, and maintains a consistent brand image across its digital assets. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search engine optimization. It employs common web technologies such as jQuery and integrates hCaptcha for form security. Hosting is provided by hostpress.de, a reputable German hosting provider. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are well implemented, including structured data and meta tags. From a security perspective, the website enforces HTTPS and uses hCaptcha to protect forms, which are positive indicators. However, it lacks several important security headers that could enhance protection against common web threats. No explicit security or incident response policies are published, and no vulnerability disclosure or data protection officer information is available. The absence of a privacy policy and terms of service pages represents a compliance gap, especially under GDPR regulations. Overall, the website is safe and appropriate for general audiences, with no adult or explicit content detected. The domain registration data aligns well with the organization's stated founding date and hosting provider, supporting legitimacy. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing additional security headers, and enhancing transparency around data protection and incident response to improve trust and compliance.

B

BKK Dachverband

bkk-pflegefinder.de

0

The BKK PflegeFinder website is a well-structured, professional service platform operated by the BKK Dachverband to assist insured persons in Germany with finding suitable care services including nursing homes, ambulatory care, day and night care, and support offers. The platform provides comprehensive information including quality reports and payment details, targeting BKK insured individuals and their families. Technically, the site uses modern frontend technologies such as Bootstrap 5, jQuery, and FontAwesome, with a self-hosted Matomo analytics setup that is currently disabled, reflecting a privacy-conscious approach. The presence of a cookie consent mechanism and chatbot enhances user experience and compliance. Security posture is adequate with HTTPS enforced and session management in place, but lacks explicit security headers and published security policies. Overall, the site is trustworthy, with consistent branding and clear navigation, though it could improve by publishing terms of service and incident response information.

B

BKK Dachverband

bkk-klinikfinder.de

0

The BKK Klinikfinder website is a professionally designed and well-structured healthcare information platform operated by the BKK Dachverband. It provides BKK insured persons in Germany with a comprehensive hospital search tool based on official quality reports. The site offers multiple search filters and additional resources such as checklists and related service finders for care, doctors, and midwives. Technically, the site uses modern web technologies including Bootstrap, jQuery, and self-hosted Matomo analytics, ensuring good performance, mobile optimization, and privacy compliance. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks published security policies or incident response contacts. Overall, the site is trustworthy, privacy-conscious, and well-aligned with its target audience.

B

BKK Dachverband

bkk-arztfinder.de

0

The BKK ArztFinder website is a professional service platform operated by the BKK Dachverband, aimed at assisting statutory health insurance members in Germany to find doctors, dentists, and other healthcare providers. The site offers a user-friendly search interface with multiple filtering options and links to related healthcare services such as hospital, care, and midwife finders. The platform is well-branded and consistent with the parent organization's identity. Technically, the website uses a modern frontend stack including jQuery, Bootstrap, and FontAwesome, with responsive design and accessibility features. The site implements a cookie consent mechanism compliant with GDPR, using Matomo analytics in a privacy-conscious manner (disabled by default until consent). No major technical or security flaws are evident, though security headers and explicit security policies are absent. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks a published security policy, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is consistent with a legitimate organization, with no privacy protection or suspicious patterns, supporting the site's trustworthiness. Overall, the site is a trustworthy, well-maintained healthcare service platform with good privacy compliance and moderate security posture. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure would enhance its security maturity and user trust.

B

BKK Dachverband e.V.

bkk-meindv.de

0

BKK Dachverband e.V. operates the BKK MeinDV portal, a centralized web platform for members to manage their profiles and access various information portals related to the BKK healthcare association. The website is professionally designed, primarily targeting German-speaking members of the BKK Dachverband. It provides essential services such as login authentication, user registration, and feedback submission, positioning itself as a key digital touchpoint for the organization’s members. Technically, the website employs a modern tech stack including jQuery, Bootstrap 5, and Popper.js, ensuring responsive design and moderate performance. The site uses HTTPS with CSRF protection on forms, indicating a good baseline security posture. However, some security headers are missing, and no explicit cookie consent mechanism is present, suggesting room for improvement in compliance and security hardening. From a security perspective, the site demonstrates good practices such as encrypted connections and secure form handling but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. No suspicious or malicious content was detected, and the site is free from adult or questionable content, making it safe for general audiences. Overall, the website is a credible and professional portal for the BKK Dachverband community, with a solid technical foundation and good privacy compliance. Strategic enhancements in security headers, cookie consent, and transparency around security policies would further strengthen its trustworthiness and compliance posture.

G

Generation Digitale GmbH & Co. KG

generationdigitale.net

0

Generation Digitale GmbH & Co. KG is a Hamburg-based digital agency specializing in web, video on demand, digital signage, and emerging technologies such as AR and VR. Established since 2002, the company offers comprehensive digital solutions including enterprise technology integration, UX/UI design, and online video platform development. Their market position is that of an experienced innovator serving businesses, brands, and public institutions with a focus on user-centered and technology-driven products. Technically, the website leverages modern Microsoft .NET technologies, Umbraco CMS, and cloud services like Azure, indicating a mature digital infrastructure. Privacy compliance is robust, with detailed GDPR-aligned policies and an opt-in cookie consent mechanism using Matomo analytics. Security posture is moderate, with room for improvement in security headers and explicit incident response disclosures. Overall, the website is professional, content-rich, and trustworthy, though the absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy.

A

AlsterCloud GmbH

alstercloud.de

0

AlsterCloud GmbH is a small, Hamburg-based online marketing agency specializing in web design, Google Adwords, SEO, and social media marketing. Founded in 2017, the company targets local businesses seeking to enhance their digital presence. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with modern plugins for SEO and caching, supported by Google Analytics and Tag Manager for analytics, and Usercentrics for cookie consent management. Security posture is solid with HTTPS and reCAPTCHA integration, though explicit security headers and policies are absent. Overall, the site is trustworthy and well-optimized for its market segment.

Z

zone35 GmbH & Co. KG

bkk-ernaehrungscoach.de

0

The website www.bkk-ernaehrungscoach.de is an established German-language online nutrition coaching platform operated by zone35 GmbH & Co. KG. It offers interactive tools such as an online check for calorie needs, motivational training, and weekly newsletters to support users in achieving healthier eating habits. The platform targets health-conscious consumers seeking guidance on nutrition and lifestyle improvements. Technically, the site is built on the TYPO3 CMS framework with a modern tech stack including jQuery and Bootstrap, delivering a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and formal security policies. Overall, the site demonstrates good business credibility with clear contact information and trust signals such as user testimonials. No critical vulnerabilities or compliance gaps were detected, making it a trustworthy resource for its audience.

Z

zone35 GmbH & Co. KG

zone35.de

0

zone35 GmbH & Co. KG is a medium-sized, owner-managed digital agency based in Berlin, specializing in healthcare and welfare sectors. Established in 1999, the company offers strategic planning, crossmedia design, and tailored digital solutions including online consulting platforms such as beranet.de. Their market position is solid within their niche, supported by a portfolio of projects and partnerships with health-focused digital products. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates Piwik/Matomo analytics, reflecting a mature digital infrastructure with good mobile optimization and SEO practices. Security posture is good with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response details are absent. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting a positive business credibility profile.

L

Leafworks

leafworks.de

0

Leafworks is a small consulting firm specializing in customer experience and CX management, targeting businesses seeking to improve their customer interactions. The website is built on a modern WordPress infrastructure using popular plugins and themes such as Yoast SEO, Astra, Elementor, and WP Rocket, indicating a moderate level of digital maturity. The site is well-designed, mobile-optimized, and provides relevant content aligned with its consulting services. However, the security posture is limited, with no visible security headers, privacy or cookie policies, or incident response information, which could expose the business to compliance and security risks. The absence of explicit contact information reduces transparency and trust. Overall, the website is functional and professional but requires improvements in privacy compliance and security practices to enhance trustworthiness and regulatory adherence.

The website 'Zeit für Mich' is a German health promotion initiative operated by BKV - Interessengemeinschaft Betriebliche Krankenversicherung e. V., focusing on strengthening personal resources and promoting a healthy work-life balance. It offers information, online self-assessment tests, and access to quality-approved prevention courses such as relaxation techniques and yoga. The target audience primarily includes working adults interested in health and stress management. The business model is non-profit, supported by statutory health insurance entities in Germany, aiming to provide accessible health resources and course subsidies. Technically, the site is built on WordPress using the Understrap child theme, incorporating jQuery and Google Fonts. The infrastructure appears standard for a small non-profit website, with moderate performance and good mobile optimization. SEO and accessibility are basic but functional. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS as indicated by resource URLs, but no explicit security headers were detected in the provided data. There is no evidence of vulnerability disclosure mechanisms or security policies. Contact information is clearly provided, but privacy and cookie policies are absent, which is a compliance gap. No forms or data collection points were found on the homepage, reducing immediate risk exposure. Overall, the website is professional, trustworthy, and safe for general audiences. However, improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

The website 'Ich hab's gecheckt!' is a German health awareness campaign focused on educating the public about metabolic syndrome and promoting a healthy lifestyle to prevent cardiovascular diseases. It is operated by the BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V., a non-profit health insurance interest group based in Berlin. The site provides educational content and an online health check tool to engage users in monitoring their health. The target audience is the general German-speaking public interested in health and wellness. Technically, the website is built on WordPress using the Understrap theme framework with a child theme. It employs common web technologies such as jQuery and Popper.js. The site is served over HTTPS with a moderate performance profile and good mobile optimization. However, it lacks advanced security headers and structured data markup, which could improve SEO and security posture. From a security perspective, the site uses HTTPS and a cookie consent mechanism, but it does not provide a privacy policy or incident response information. No security.txt file or vulnerability disclosure policy is present. The absence of security headers like CSP and HSTS reduces the overall security score. No tracking or advertising scripts were detected, indicating minimal user tracking. Overall, the website is trustworthy and professional with clear contact information and a consistent brand presence. The main risks relate to incomplete privacy compliance and security best practices. Strategic recommendations include publishing a privacy policy, implementing security headers, and providing incident response contacts to enhance user trust and regulatory compliance.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-bettgefluester.de

0

Bettgeflüster is a German health campaign operated by the BKV association, focusing on promoting healthy sleep habits through educational content, multimedia resources, and downloadable materials. The campaign targets the general public interested in improving sleep quality and overall health. The website is built on WordPress, leveraging modern web technologies such as Breeze caching and Google Fonts, and is hosted with domain control services consistent with the domain registration. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content. Security posture is solid with HTTPS enforced, though it lacks some security headers and cookie consent mechanisms, which are recommended for GDPR compliance. Contact information is clearly provided with official email and physical address, enhancing business credibility.

I

Interessengemeinschaft Betriebliche Krankenversicherung e.V. (BKV)

bkv-verein.de

0

The Interessengemeinschaft Betriebliche Krankenversicherung e.V. (BKV) operates as a coalition of company-related health insurance funds in Germany, representing approximately one million insured individuals. The organization engages with political, administrative, and association stakeholders to advocate for its members' interests. The website serves as an information hub, providing news, campaigns, and resources related to corporate health insurance and prevention initiatives. The target audience includes companies with company health insurance funds, insured persons, and relevant policy makers. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs modern web technologies including jQuery and Matomo for analytics. The site is hosted on DomainControl nameservers and demonstrates good mobile optimization and SEO practices. Cookie consent is implemented with clear user options and detailed cookie information, reflecting compliance with GDPR requirements. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism to manage user privacy preferences. However, explicit security headers and published security policies or incident response contacts are absent, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website presents a professional and trustworthy digital presence aligned with its business purpose. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding a vulnerability disclosure mechanism to strengthen the security posture and user trust.

S

Schuelbe Promotion Service GmbH

krones-merchandising.com

0

The KRONES Merchandise Shop is an e-commerce platform operated by Schuelbe Promotion Service GmbH, specializing in branded promotional and fan merchandise for the KRONES brand. The website targets customers and fans interested in purchasing official KRONES products. The business operates in the e-commerce sector with a focused niche market. The website is professionally designed with consistent branding and provides a user-friendly shopping experience. Technically, the site uses the Cosmoshop platform with jQuery and related libraries, delivering moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism via Cookiebot, but lacks advanced security headers and visible contact or security policy information, which could be improved. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, although the website content and compliance features suggest a legitimate business presence. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security practices.

I

Internationale Bodenseekonferenz IBK

ibk-gesundheit.org

0

The website ibk-gesundheit.org represents the International Bodenseekonferenz (IBK) initiative focused on awarding the IBK-Preis for health promotion and prevention projects in the Bodensee region. It serves as an informational platform presenting project details, award winners, and upcoming events, targeting regional stakeholders in healthcare and social sectors. The site is built on TYPO3 CMS and integrates modern privacy and analytics tools such as Cookiebot and Matomo, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and some HTTP security headers are missing. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and a detailed privacy policy. However, explicit contact information and security policies are not prominently provided. Overall, the site is professional, trustworthy, and well-aligned with its non-profit mission.