Security Directory

C

C3 marketing agentur GmbH

myc3.com

0

C3 marketing agentur GmbH is a German marketing and advertising agency with offices in Tirschenreuth and Regensburg. The company offers a broad range of services including website development, e-commerce solutions, print and graphic design, photography, video, 3D media, and advertising campaigns. Their market position appears well-established with over two decades of presence and a strong regional footprint. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content in German, targeting businesses seeking marketing services in Germany. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as SVG graphics and JavaScript modules. Accessibility features and cookie consent mechanisms are implemented, reflecting a mature digital infrastructure. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS domain registration data is a notable concern, potentially indicating privacy protection or an unregistered domain, which slightly reduces trustworthiness. Overall, the website presents a professional and trustworthy front for a marketing agency, but domain registration transparency and enhanced security disclosures would improve credibility and compliance posture.

P

PANTHER REISEN e.K.

panther-reisen.de

0

PANTHER REISEN e.K. is a small, regional travel agency based in Augsburg, Germany, specializing in cruises, flights, sport-related travel, and group travel. The company emphasizes personalized customer service and expert consulting, positioning itself as a trusted local specialist. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to travelers interested in various international destinations and sports events. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and integrates accessibility tools such as the BarriGo widget, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact information and social media presence, supporting strong business credibility.

P

PRIMOSPORT

shop-primosport.de

0

Primosport operates an e-commerce platform focused on providing team sports equipment, including football, handball, and volleyball products, primarily targeting sports clubs and athletes in Germany. The website branding and content are consistent with a retail business model specializing in sports gear with custom team shops. Technically, the site uses common web technologies such as Google Tag Manager for analytics and Cloudflare for DNS services, indicating a moderate level of digital maturity. However, the absence of visible privacy and cookie policies, as well as lack of security headers, suggests room for improvement in compliance and security practices. The security posture is basic, with no detected WAF or blocking mechanisms, but also no advanced security measures clearly implemented. Overall, the site is functional but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

W

wikonect GmbH

pneumo-industrieforum.de

0

The website represents the Industrieforum Pneumologie, an event organized by wikonect GmbH in Germany, targeting medical professionals in pneumology and related healthcare fields. It serves as an information portal for the event held alongside the 66th Congress of the German Society for Pneumology and Respiratory Medicine. The site provides event details, contact information, and compliance with GDPR and cookie regulations. Technically, the site is built on WordPress with common plugins and uses Matomo for analytics, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks explicit security policies or incident response details. Overall, the site is professional, trustworthy, and compliant with relevant privacy laws.

D

Deutsche Herzstiftung e.V.

herzstiftung.de

0

Deutsche Herzstiftung e.V. is Germany's largest independent non-profit organization dedicated to providing information and support to patients and interested parties in the field of heart diseases. The website serves as a comprehensive resource for patient education and awareness, positioning itself as a trusted authority in cardiology-related health information. The organization operates primarily in the healthcare and non-profit sectors, targeting patients and the general public seeking reliable heart health information. Technically, the website is built on Drupal 10, leveraging modern web technologies including Cloudflare for DNS and CDN services, Google Tag Manager for analytics, Cookiebot for cookie consent management, and Eye-Able for accessibility enhancements. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure suitable for its audience. From a security perspective, the site enforces HTTPS, employs cookie consent with granular user controls, and integrates bot protection via hCaptcha. While explicit security headers are not fully visible in the HTML, the overall posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR-aligned cookie management. Overall, the website presents a professional, trustworthy, and user-friendly platform aligned with its mission. Strategic recommendations include enhancing security headers, maintaining up-to-date third-party libraries, and expanding contact information transparency to further strengthen user trust and compliance.

C

concedra GmbH

concedra.de

0

concedra GmbH is a German-based communications and digital agency specializing in branding, marketing, design, and digital development services including websites, apps, and software consulting. The company operates nationally with a small team and has received recognition such as the German Brand Awards. Their website is professionally designed using TYPO3 CMS, featuring clear navigation, mobile optimization, and GDPR-compliant cookie consent mechanisms. Security measures include HTTPS and Google reCAPTCHA on forms, though explicit security policies and incident response contacts are not published. Overall, the site reflects a trustworthy and credible business with good technical infrastructure and privacy compliance.

E

▷ Umfragetool | KI-Auswertung | Kostenlos | DSGVO-konform

easy-feedback.de

0

Easy-Feedback.de is a German-based online survey tool provider offering AI-powered survey evaluation with a focus on GDPR compliance. The website targets businesses and organizations seeking secure and privacy-conscious feedback solutions. Technically, the site is built on WordPress using Elementor and Yoast SEO, with performance and mobile optimization rated as good. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks visible security policies and contact information for incident response. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and compliance documentation.

The website fs-world.org serves as an authoritative platform for consolidating and publishing world ranking lists for Formula SAE/Formula Student competitions globally. Operated by Formula Student Germany GmbH, it targets student teams participating in these competitions, providing a transparent and methodical ranking system based on recent event results. The platform is niche-focused and well-positioned within the educational motorsport community, offering valuable benchmarking services without commercial intent. Technically, the website is straightforward, built with standard HTML and CSS, hosted via Cloudflare, and secured with HTTPS. While the site performs adequately with basic mobile optimization and accessibility, it lacks advanced security headers and DNSSEC, which could enhance its security posture. No CMS or complex frameworks are detected, indicating a simple and maintainable infrastructure. From a security perspective, the site benefits from HTTPS and domain transfer protections but would improve by implementing DNSSEC, security headers, and publishing a formal security policy. No forms or user data collection mechanisms are present, reducing attack surface. Privacy compliance is partial, with a privacy policy available but no cookie consent or GDPR-specific indicators. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy, safe, and professionally maintained, with a clear focus on educational content. Strategic improvements in security and privacy compliance would enhance its resilience and user trust.

Formula Student Germany operates as a premier educational competition focused on the design and construction of prototype racing cars, emphasizing electric and autonomous vehicle technologies. It serves students, educational institutions, and automotive industry partners by providing a platform for practical engineering experience and industry networking. The website reflects a well-established presence with consistent branding and comprehensive content about the competition's structure and disciplines. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries, hosted behind Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and explicit policies could enhance trust. Privacy compliance is adequate with a clear privacy policy but lacks cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-suited for its educational and industry audience.

T

Thieme Gruppe

thieme.de

0

Thieme Gruppe is a well-established German healthcare and medical publishing company focused on providing high-quality medical information and digital health services. The website demonstrates a strong commitment to accessibility, data protection, and compliance with international standards such as ISO 27001 and GDPR. The technical infrastructure leverages modern CMS technology (Scrivito) and includes cookie consent mechanisms, indicating a mature digital presence. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities. However, the absence of WHOIS registration data introduces a minor trust concern. Overall, the site is professional, secure, and compliant, serving a broad audience of healthcare professionals and related stakeholders.

G

GRÜN IT Group GmbH

sepa.net

0

SEPA.net, operated by GRÜN IT Group GmbH, provides an innovative online payment system specializing in SEPA direct debit transactions across Europe. The service targets online merchants and buyers, enabling seamless payment processing without requiring buyer registration. The platform offers multiple integration options including purchase buttons, iFrame/mobile integration, API interfaces for recurring payments, and a WordPress plugin for WooCommerce stores. The website is professionally designed, mobile-optimized, and provides clear business and contact information, enhancing user trust and accessibility. Technically, the website is built on WordPress with WooCommerce and utilizes modern JavaScript libraries and plugins such as jQuery, MediaElement.js, and WPBakery Page Builder. SEO is well-implemented with Yoast SEO plugin, and the site employs HTTPS with strong SSL encryption. Cookie consent mechanisms and privacy policies are in place, reflecting GDPR compliance. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and trustworthiness. From a security perspective, SEPA.net demonstrates good practices including transaction authorization via security TAN, adherence to German data protection laws, and encrypted communications. Nonetheless, the site lacks explicit incident response and vulnerability disclosure information, which could be improved to enhance transparency and readiness. Overall, the platform presents a solid security posture suitable for its payment processing business model. The main risk identified is the missing WHOIS data, which impacts domain trust and could affect user confidence. Strategic recommendations include publishing security headers, adding incident response details, and maintaining regular security audits. These steps will strengthen the platform's security and compliance stature, supporting its growth and market position.

L

Landesregierung Mecklenburg-Vorpommern

mecklenburg-vorpommern.de

0

The website www.regierung-mv.de is the official government portal for the state of Mecklenburg-Vorpommern, Germany. It serves as a comprehensive information hub for the state's government activities, ministries, press releases, events, and public services. The portal targets citizens, media, businesses, and other stakeholders interested in regional governance and public affairs. It offers accessible content including videos with sign language and pages in simplified language, reflecting a strong commitment to inclusivity and public engagement. Technically, the site uses a custom UI framework with standard web technologies and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforcement and cookie consent mechanisms aligned with GDPR, though explicit security headers and incident response policies are not publicly detailed. The domain registration data aligns well with the official government entity, indicating high legitimacy and trustworthiness. Overall, the site is professional, trustworthy, and well-maintained, supporting the state's communication and transparency objectives.

U

University of Hohenheim

uni-hohenheim.de

0

The University of Hohenheim is a well-established German higher education institution specializing in agricultural sciences, natural sciences, business, economics, and social sciences. The website serves as a comprehensive portal for prospective students, staff, alumni, and other stakeholders, offering detailed information on degree programs, research, events, and university news. The institution positions itself as a leading university with a strong emphasis on research and international collaboration. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Bootstrap and Matomo for analytics. The site demonstrates good performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Hosting is managed via academic network nameservers (belwue.de), indicating reliable and specialized hosting. From a security perspective, the site enforces HTTPS, disables cookies in analytics, and respects Do Not Track settings, showcasing a privacy-conscious approach. However, there is room for improvement in implementing security headers and explicit cookie consent mechanisms. No vulnerabilities or exposed sensitive data were detected, and the login form appears secure. Overall, the website reflects a high level of professionalism, trustworthiness, and compliance with GDPR. The risk profile is low, with recommendations focusing on enhancing security headers and privacy transparency to further strengthen the security posture.

P

Potsdam Institute for Climate Impact Research

pik-potsdam.de

0

The Potsdam Institute for Climate Impact Research (PIK) is a well-established research institute specializing in climate impact research, resilience, and policy. The website reflects a professional and structured digital presence, primarily targeting researchers, policymakers, and academic audiences. It offers extensive information on research departments, projects, publications, and IT services supporting scientific collaboration. The technical infrastructure is based on the Plone CMS platform with modern web technologies such as Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks visible security headers and explicit security or privacy policies. No advertising or tracking scripts are present, indicating a privacy-conscious approach. WHOIS data confirms the domain's legitimacy and alignment with the institute's profile.

M

Max-Planck-Institut für Chemie

mpic.de

0

The Max-Planck-Institut für Chemie website serves as the digital presence of a reputable German research institute focused on atmospheric chemistry, climate science, and related fields. The site provides scientific content, information about research groups, publications, events, and career opportunities. It targets scientists, students, and the general public interested in environmental and chemical research. Technically, the website employs modern web technologies including RequireJS, Bootstrap, and Slick Carousel, hosted on GWDG infrastructure with a CMS from JustRelate CX Cloud. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS and CSRF protections, but lacks explicit security headers and published security policies. Privacy compliance is limited by the absence of visible privacy and cookie policies. Overall, the domain registration and hosting align with the Max-Planck-Gesellschaft, confirming legitimacy. Recommendations include publishing privacy and cookie policies, enhancing security headers, and providing incident response contacts to improve trust and compliance.

L

Leibniz-Institut für Troposphärenforschung e.V. (TROPOS)

tropos.de

0

The Leibniz-Institut für Troposphärenforschung e.V. (TROPOS) is a German non-profit research institute specializing in atmospheric sciences, focusing on aerosols and clouds. It holds a strong position within the scientific community as a member of the Leibniz Association, offering research, publications, educational programs, and public outreach. The website reflects a professional and consistent brand image with comprehensive scientific content primarily in German, also offering English alternatives. The target audience includes researchers, students, and the general public interested in atmospheric research. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating Matomo analytics with privacy-conscious configurations such as cookie disabling. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is solid with HTTPS enforced, but lacks some security headers and explicit incident response or security policies. Privacy compliance is good with a comprehensive privacy policy, but no cookie consent mechanism is present. Overall, the security posture is sound with no detected vulnerabilities or suspicious content. The domain registration aligns with the institution's German research identity, using DNS servers from the German research network. Contact information is clearly provided, enhancing business credibility. Recommendations include adding security headers, cookie consent, and publishing security policies to further strengthen trust and compliance.

Future Ocean is a well-established marine science research network affiliated with Kiel University and several prominent research institutions in Germany. The website serves as an educational and outreach platform providing information on marine research, exhibitions, citizen science, and academic programs. The target audience includes researchers, students, educators, and the general public interested in ocean sustainability. Technically, the website uses standard web technologies with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data supports the legitimacy and long-term presence of the organization.

G

GFZ Helmholtz-Zentrum für Geoforschung

gfz-potsdam.de

0

GFZ Helmholtz-Zentrum für Geoforschung is Germany's national center for solid earth research, focusing on geoscientific studies of the Earth's geosphere and related systems. The website serves a broad audience including researchers, students, policymakers, and the public, providing scientific publications, research data, and educational resources. It operates under the Helmholtz Association umbrella, indicating a strong institutional backing and national significance. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. It uses HTTPS with good SSL configuration and respects user privacy through cookie consent mechanisms. Security posture is solid with no detected vulnerabilities or exposed sensitive data, though explicit security policies and incident response contacts are not published. Privacy compliance is strong, with GDPR-aligned policies and consent banners. The domain WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is a trustworthy, professional platform for geoscientific research dissemination, with recommendations to enhance security transparency and incident response readiness.

F

Forschungszentrum Jülich GmbH

fz-juelich.de

0

Forschungszentrum Jülich GmbH is a prominent German research institution specializing in digital transformation, climate protection, energy transition, and sustainable bioeconomy. It operates as a large-scale public research center and is a founding member of the Helmholtz Association, positioning itself as a leader in scientific innovation and high-performance computing in Europe. The website reflects a professional and comprehensive digital presence, targeting researchers, industry partners, students, and the general public interested in advanced scientific research and technology transfer. Technically, the site leverages modern frameworks such as React and Plone CMS, with a focus on accessibility, mobile optimization, and SEO best practices. Security posture is strong with HTTPS enforcement, security headers, and privacy-conscious analytics via Matomo. However, explicit incident response and vulnerability disclosure information are not prominently available, representing an area for improvement. Overall, the site is trustworthy, well-branded, and aligned with the organization's mission and sector.

F

Forschungsinstitut für Nachhaltigkeit (RIFS)

rifs-potsdam.de

0

The Forschungsinstitut für Nachhaltigkeit (RIFS) is a medium-sized research institute affiliated with the GFZ Helmholtz Zentrum Potsdam, focusing on sustainability and societal transformation research. The website is professionally designed using Drupal 10 and incorporates modern web technologies such as Bootstrap 5, Matomo analytics, and lazy loading for performance optimization. It offers comprehensive content including news, dossiers, and research results targeted at academics, policymakers, and sustainability stakeholders. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the website presents a trustworthy and authoritative digital presence for the institute.

D

Deutsches Klimarechenzentrum GmbH

dkrz.de

0

The Deutsches Klimarechenzentrum GmbH (DKRZ) operates as a national service center providing high-performance computing and data management infrastructure to support climate research in Germany. The website reflects a well-established organization focused on delivering computational resources, data storage, and expert services to the scientific community engaged in climate modeling and simulations. Their market position is strong within the German and international climate research ecosystem, emphasizing collaboration and advanced technological support. Technically, the website is built on the Plone CMS platform, leveraging Bootstrap for responsive design and Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization, clear navigation, and professional content presentation. However, some improvements could be made in accessibility and the implementation of security headers. From a security perspective, the site enforces HTTPS and uses script integrity attributes, but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is trustworthy, professional, and serves its target audience effectively. Strategic enhancements in security headers, cookie consent, and incident response transparency would further strengthen its security posture and compliance.

The Universität Hamburg is a large, well-established public university in Germany, serving over 42,000 students and recognized as one of the leading research and education institutions in Northern Germany. The website reflects a comprehensive academic institution offering a wide range of study programs, research initiatives, and community engagement services. It targets students, researchers, faculty, and administrative staff, providing extensive information on academic offerings, research projects, career services, and events. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and multimedia content such as videos and image carousels. It uses analytics tools like eTracker and error monitoring via BetterWeb, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices and clear navigation. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks visible security headers and explicit incident response or vulnerability disclosure information. Privacy compliance is partially addressed with a comprehensive privacy policy, but no explicit cookie consent mechanism was detected. Contact information is primarily via a feedback form, with no direct emails or phone numbers publicly listed. Overall, the website is professional, trustworthy, and well-maintained, with minor areas for improvement in security headers, cookie consent, and incident response transparency. The domain and hosting are consistent with a reputable academic institution, with no signs of suspicious activity.

S

STARFACE GmbH

starface.com

0

STARFACE GmbH is a well-established German telecommunications company specializing in software-based VoIP telephone systems for digital communication. Their offerings include cloud-hosted PBX solutions, virtual machine editions for self-hosting, and hardware appliances, targeting small to large enterprises. The company maintains a strong market position supported by a mature domain, multiple awards, and a comprehensive product portfolio. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for mobile and SEO, and includes multilingual support. Security posture is good with HTTPS enforced and cookie consent implemented, though some improvements such as enabling DNSSEC and publishing explicit security policies are recommended. Overall, the website is professional, trustworthy, and business-focused with moderate user tracking and good advertising transparency.

T

Talk Online Panel GmbH

talkonlinepanel.com

0

Talk Online Panel GmbH operates a reputable online survey platform targeting European users, primarily in Germany, offering paid participation in market research surveys with rewards redeemable for cash or vouchers. The company is well-established since 2014, with a strong market presence and over 1.3 million members. The website is built on Drupal 10, employs modern analytics and marketing tools, and demonstrates good technical and privacy compliance maturity. Security posture is solid with HTTPS and client transfer protection, though DNSSEC and some security headers could be improved. Overall, the platform presents a trustworthy and professional service with clear privacy and cookie policies, supported by recognized certifications and trust seals.

K

Kombiverkehr Deutsche Gesellschaft für kombinierten Güterverkehr mbH & Co. KG

einfach-intermodal.de

0

Kombiverkehr Deutsche Gesellschaft für kombinierten Güterverkehr mbH & Co. KG operates a professional blog website 'Einfach intermodal' focused on intermodal freight transport in Germany. The site provides industry news, project updates, and insights targeted at logistics professionals and transport stakeholders. The company is positioned as a significant player in the German intermodal transport sector, offering digital services such as customer portals and data platforms. Technically, the website is built on WordPress with modern plugins for SEO, cookie management, and user experience enhancements. Hosting is provided by Hetzner, a reputable German hosting provider. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is professional, compliant with GDPR, and trustworthy, serving as a credible information source for its target audience.

E

ENERCON

enercon.de

0

ENERCON is a leading manufacturer and service provider specializing in onshore wind turbines and integrated green energy solutions. The company positions itself as a pioneer in wind energy, offering a comprehensive portfolio that spans turbine manufacturing, service and maintenance, SCADA remote monitoring, training, and energy marketing and financing. Their website reflects a mature digital presence with professional design, multilingual support, and clear navigation aimed at business customers and stakeholders in the renewable energy sector. Technically, the website leverages modern technologies including Webflow CMS, Cookiebot for consent management, and Matomo for privacy-focused analytics. Hosting is managed via Netlify for staging and Azure DNS for domain services, indicating a robust infrastructure. Performance and mobile optimization are good, with accessibility and SEO practices well implemented. From a security perspective, the site enforces HTTPS and uses Cookiebot to manage cookie consent, enhancing privacy compliance. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and no public security or incident response policies are published. There is no vulnerability disclosure or security.txt file, which could improve transparency and trust. Overall, the website is professional, trustworthy, and compliant with GDPR, with a strong business credibility score. Recommendations include enhancing security headers, publishing security policies, and providing clearer incident response contacts to further strengthen the security posture and user trust.

ZF Friedrichshafen AG is a global technology leader specializing in advanced mobility products and systems for passenger cars, commercial vehicles, and industrial technology. The company serves vehicle manufacturers, mobility providers, and startups, focusing on electrification and sustainable mobility solutions. Their extensive product portfolio and global presence position them strongly in the transportation and technology sectors. The website reflects a mature digital presence with comprehensive corporate, sustainability, and investor information, supporting their market leadership. Technically, the website employs modern web technologies including JavaScript frameworks, Piwik PRO analytics, and responsive design optimized for mobile devices. The site demonstrates good SEO and accessibility practices, with structured data enhancing search engine understanding. Performance is moderate, with opportunities for further optimization. From a security perspective, the site enforces HTTPS and includes a Content Security Policy header, though additional security headers could enhance protection. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. Contact and compliance information is readily available, supporting transparency. Overall, the website presents a low-risk profile with strong business credibility and professional digital infrastructure. The absence of WHOIS data reduces transparency but does not detract from the site's legitimacy given the extensive corporate content and recent press activity.

W

WindEnergy Hamburg

windenergyhamburg.com

0

WindEnergy Hamburg operates as a premier global event platform dedicated to the wind energy sector, facilitating networking, knowledge exchange, and business development for onshore and offshore wind industries. The website reflects a mature digital presence with comprehensive event information, exhibitor directories, and conference programs, positioning it as a key player in the renewable energy event market. Technically, the site leverages TYPO3 CMS and integrates modern tools such as Google Tag Manager and Usercentrics for analytics and consent management, indicating a commitment to user experience and privacy compliance. Security posture is solid with HTTPS and consent mechanisms, though some security headers could be enhanced. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional site and active social media channels. Strategic recommendations include improving explicit security headers, enhancing accessibility, and publishing clear security policies to bolster trust and compliance.

W

WEB Windenergie Deutschland GmbH

web.energy

0

WEB Windenergie Deutschland GmbH is a medium-sized renewable energy company based in Germany, specializing in wind, solar, and hydropower energy production. The company has a strong market presence with over 25 years of experience and operates numerous energy plants. Their website reflects a professional and modern digital presence built on TYPO3 CMS, featuring comprehensive content, clear navigation, and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS registrant data slightly reduces trust but does not detract significantly from the company's legitimacy given the professional presentation and business information available. Overall, the website is well-designed, compliant with GDPR, and supports business credibility through clear contact details and social media integration.

H

hansgrohe

hansgrohe.de

0

Hansgrohe is a premium manufacturer specializing in bathroom and kitchen fixtures, offering high-quality faucets, showers, and related products. The website serves as a brand showcase and e-commerce platform targeting quality-conscious consumers primarily in Germany and other international markets. The site demonstrates a mature digital infrastructure with advanced consent management and multiple analytics integrations, reflecting a strong commitment to GDPR compliance and user privacy. Security posture is robust with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly visible. Overall, the website is professional, trustworthy, and well-positioned in its market segment.

H

hansgrohe

hansgrohe.com

0

hansgrohe is a premium international brand specializing in manufacturing and retailing high-quality bathroom and kitchen fixtures such as faucets, showers, and kitchen sinks. The company targets quality-conscious consumers and professionals seeking modern and durable products. The website reflects a mature digital presence with localized versions for multiple countries, indicating a broad market reach. Technically, the site employs a modern tech stack including SAP Hybris, Google Tag Manager, Piwik PRO, and New Relic monitoring, supporting a robust and scalable infrastructure. Security practices are strong with HTTPS enforcement, cookie consent management, and CSRF protections, though explicit security policy disclosures are absent. Overall, the site is professional, secure, and compliant with privacy regulations, supporting hansgrohe's market position as a trusted premium brand.

N

Novalnet AG

novalnet.de

0

Novalnet AG is a German-based payment service provider offering comprehensive payment solutions tailored for various business models. The company provides a broad range of payment options through a single integration, targeting businesses that require efficient and secure payment processing. With ISO 27001 certification and GDPR compliance, Novalnet positions itself as a trustworthy and secure partner in the finance and technology sectors. The website reflects a professional and consistent brand image, supporting its market position as a reliable PSP in Europe. Technically, the website is built on WordPress and incorporates modern JavaScript libraries and marketing tools such as LinkedIn Insight and Writesonic's Botsonic widget. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility enhancements could be beneficial. Security measures include HTTPS enforcement, security headers, and cookie consent mechanisms, contributing to a strong security posture. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the company's claims, supporting legitimacy. However, the absence of a public vulnerability disclosure or security.txt file and explicit incident response contacts suggests areas for improvement in transparency and incident readiness. Overall, Novalnet AG's digital presence is robust, secure, and professional, with room for enhancements in security communication and accessibility.

K

Kombiverkehr GmbH & Co. KG

kombiverkehr.de

0

Kombiverkehr GmbH & Co. KG operates as a leading intermodal transport network provider in Germany and Europe, specializing in flexible terminal-to-terminal rail connections and offering over 170 trains per night. The company targets logistics businesses seeking sustainable and efficient rail freight solutions, positioning itself as a key player in environmentally friendly logistics. Their website reflects a mature digital presence with comprehensive service descriptions and customer engagement portals. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, integrating modern JavaScript libraries and Matomo analytics for privacy-conscious tracking. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not publicly disclosed. Overall, Kombiverkehr demonstrates a professional and trustworthy online presence aligned with its business operations.

B

Bundesinstitut für Arzneimittel und Medizinprodukte (BfArM)

drks.de

0

The Bundesinstitut für Arzneimittel und Medizinprodukte (BfArM) is a German federal government agency responsible for the regulation and oversight of pharmaceuticals and medical devices. The website serves as an authoritative source for clinical trial registration (DRKS), pharmacovigilance, medical device regulation, and related regulatory information. It targets healthcare professionals, researchers, regulatory bodies, and the general public seeking official information on clinical studies and medical product safety. The site is built on the Government Site Builder CMS, featuring a professional, accessible, and mobile-optimized design with comprehensive navigation and content relevant to its regulatory mission. Technically, the website employs modern web standards including responsive CSS, SVG graphics, and a manifest for progressive web app capabilities. It uses HTTPS with good SSL configuration and implements cookie consent mechanisms compliant with GDPR, including opt-in for statistical cookies via Matomo analytics. No advertising or third-party marketing tools are detected, reflecting its government nature. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent. However, explicit security headers and a public security or incident response policy are not evident. No vulnerabilities or exposed sensitive data were found. WHOIS data is minimal but consistent with a government domain managed by German federal IT infrastructure. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It provides a secure and user-friendly platform for disseminating critical regulatory information. Strategic recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and providing clearer direct contact information for security incidents.

R

Robert Koch-Institut

rki.de

0

The Robert Koch-Institut (RKI) is the central federal institution in Germany responsible for disease surveillance and prevention. The website serves as an authoritative public health portal providing comprehensive information, research data, and guidance on infectious and non-infectious diseases. It targets public health professionals, government agencies, researchers, and the general public. The RKI holds a strong market position as Germany's leading public health authority. Technically, the website is built on the Government Site Builder CMS, featuring modern HTML5, CSS3, and JavaScript technologies. It is hosted by ITZBund, a government IT service provider, and demonstrates good mobile optimization, accessibility, and SEO practices. The site employs Matomo analytics with anonymized data collection and a robust cookie consent mechanism, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses secure forms, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or suspicious activities were detected. Privacy compliance is strong, with GDPR-aligned policies and transparent cookie management. Overall, the RKI website is a professional, trustworthy, and well-maintained government resource with excellent content quality and privacy practices. Strategic improvements could include adding security headers and publishing a formal security policy to enhance trust and compliance further.

D

DZG – Deutsche Zentren der Gesundheitsforschung

deutschezentren.de

0

The Deutsche Zentren der Gesundheitsforschung (DZG) is a government-funded consortium focused on advancing health research in Germany. It operates through eight specialized research centers targeting major diseases such as diabetes, cancer, infections, and neurodegenerative disorders. The organization is positioned as a leading national health research network with strong institutional backing from the German Federal Ministry of Education and Research (BMBF). The website reflects a professional and comprehensive digital presence, offering detailed information about research areas, news, and collaboration opportunities. Technically, the site is built on WordPress using Oxygen Builder, with modern JavaScript libraries and a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and privacy-conscious analytics implementation, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

M

medXmedia Consulting KG

medxmedia.de

0

medXmedia Consulting KG is a specialized full-service agency focusing on medical communication, serving a niche market of medical societies, associations, NGOs, clinics, and practices primarily in Germany. The company has been operating since 2010 and offers services including press and public relations, marketing, and consulting. Their website reflects a professional and consistent brand image with clear service offerings and client logos, indicating a stable market position within the healthcare communication sector. Technically, the website is built on WordPress with Elementor and Yoast SEO, showing a modern and maintainable infrastructure. Mobile optimization and SEO practices are well implemented, although performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response disclosures. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced compliance and security transparency.

A

AKTIN

aktin.org

0

AKTIN is a German healthcare infrastructure platform specializing in the collection and utilization of digital routine data from acute and emergency care settings. It supports healthcare research, surveillance, quality management, and benchmarking, collaborating notably with the Robert Koch Institute and being part of the Network University Medicine (NUM). The platform targets healthcare providers, research institutions, and emergency care professionals, offering data infrastructure and analytical services to improve emergency care quality and public health surveillance. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Elementor, hosted by Netcup. While the site is generally well-structured and optimized for SEO and mobile use, minor issues like missing DNSSEC and a Google Maps API error were identified. The site uses WP Statistics for analytics with minimal user tracking. From a security perspective, HTTPS is properly implemented, and no critical vulnerabilities were detected. However, the absence of DNSSEC and security headers, along with missing explicit security policies and incident response information, suggests room for improvement. Privacy compliance is good, with a comprehensive privacy policy present, though no cookie consent mechanism was found. Overall, AKTIN presents a professional, trustworthy, and well-established platform in the healthcare sector with a solid technical foundation and good business credibility. Strategic improvements in security and privacy mechanisms would enhance its posture further.

D

Deutsches Institut für Medizinische Dokumentation und Information (DIMDI) / Robert Koch-Institut (RKI) / DIVI

intensivregister.de

0

The DIVI-Intensivregister website serves as an authoritative German government-backed platform that collects and disseminates daily data on intensive care capacities and COVID-19 patient statistics across approximately 1,100 acute hospitals. It plays a critical role in monitoring healthcare capacity and supporting pandemic response efforts. The site is technically built on a modern Angular framework with Material Design, offering a responsive and user-friendly interface with comprehensive content including data visualizations, downloadable reports, and regular blog updates. Security posture is moderate with HTTPS presumably enabled but lacking explicit security headers and formal privacy or cookie policies, which are areas for improvement. The domain registration and hosting align well with the official nature of the site, reinforcing its legitimacy. Overall, the site is a trusted resource for healthcare professionals, government officials, and the public, though enhancements in privacy compliance and security best practices are recommended.

D

Deutscher Rat für Wiederbelebung – German Resuscitation Council (GRC) e.V.

grc-org.de

0

The Deutscher Rat für Wiederbelebung (German Resuscitation Council, GRC) is a reputable non-profit organization founded in 2007, dedicated to improving resuscitation awareness and training in Germany. The website serves as a comprehensive platform for public education, professional training, scientific publications, and event organization related to resuscitation. It targets both laypersons and medical professionals, emphasizing increasing lay resuscitation rates and public health impact. Technically, the website employs a modern but custom technology stack including jQuery, bxSlider, and Google Analytics with IP anonymization, hosted on rzone.de infrastructure. The site is mobile-optimized and well-structured, providing a good user experience and SEO presence. However, it lacks some advanced security headers and formal security policies. From a security perspective, the site uses HTTPS and basic privacy compliance mechanisms such as cookie consent and a detailed privacy policy. There is no visible incident response or vulnerability disclosure information, which could be improved. The WHOIS data aligns well with the organization's public information, indicating legitimacy and consistency. Overall, the website is professional, trustworthy, and well-maintained, with minor recommendations to enhance security posture and transparency. The risk level is low, but improvements in security headers and incident response disclosures would strengthen trust and compliance.

M

Medizinisch Wissenschaftliche Verlagsgesellschaft mbH & Co. KG

mwv-berlin.de

0

Medizinisch Wissenschaftliche Verlagsgesellschaft mbH & Co. KG is a specialized German publishing company focusing on healthcare, medicine, psychiatry, and psychology. The company offers a broad range of publishing products including books, e-books, apps, open access content, and organizes healthcare-related events and congresses. Their target audience includes healthcare professionals, researchers, and academic institutions. The website is professionally designed with consistent branding and clear navigation, supporting a medium-sized business presence in the healthcare publishing sector. Technically, the website employs a mature technology stack including AngularJS, Bootstrap, Magento for e-commerce, and a Content Builder CMS. It uses Matomo analytics for privacy-conscious visitor tracking and implements a comprehensive cookie consent mechanism compliant with GDPR. The site is mobile optimized and performs moderately well, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent best practices. However, it lacks visible security headers and does not publish a dedicated security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. WHOIS data confirms domain registration consistency and legitimacy, supporting trustworthiness. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen its posture.

D

Deutsche Interdisziplinäre Vereinigung für Intensiv- und Notfallmedizin e.V. (DIVI)

divi25.de

0

The website www.divi25.de represents the 25th Congress of the Deutsche Interdisziplinäre Vereinigung für Intensiv- und Notfallmedizin e.V. (DIVI), a leading German professional association in intensive and emergency medicine. The site serves as an information and registration portal for the congress scheduled for December 2025 in Hamburg. It targets medical professionals including physicians and nurses, providing detailed program information, registration options, and educational resources. The business model is non-profit, focusing on professional development and scientific exchange within the healthcare sector. Technically, the website is built on Joomla CMS with the Yootheme template and leverages modern web technologies such as jQuery and UIkit for responsive design and user experience. The site is mobile-optimized, accessible, and SEO-friendly, with embedded consent mechanisms for third-party content like YouTube videos. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and includes user consent for tracking embedded content, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy compliance is strong with visible privacy and cookie policies and GDPR considerations. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen security posture and user trust.

A

AG Lungensport in Deutschland e.V.

lungensport.org

0

AG Lungensport in Deutschland e.V. is a well-established non-profit organization dedicated to promoting lung sports and physical therapy for patients with respiratory and lung diseases in Germany. With over 25 years of history, it operates a nationwide network of lung sports groups, provides training and certification for exercise instructors, and offers online programs and educational resources. The organization collaborates with academic institutions and has received notable awards, reinforcing its credibility and impact in the healthcare sector. Technically, the website is built on the Contao Open Source CMS platform, utilizing common web technologies such as jQuery and Colorbox. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and professional design. Analytics are implemented via Piwik (Matomo), indicating a moderate level of user tracking. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks certain security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. The WHOIS data is privacy protected, which is typical for non-profit entities, and no suspicious patterns were detected. Overall, the site demonstrates a solid security posture but could benefit from improvements in privacy compliance and security best practices. The overall risk assessment is low, with the site appearing trustworthy and professionally managed. Strategic recommendations include implementing security headers, adding a cookie consent banner, publishing security policies, and enhancing accessibility features to further strengthen the site's security and compliance posture.

D

Deutsche Atemwegsliga e.V.

lungentag.de

0

Deutscher Lungentag is a German non-profit initiative operated by Deutsche Atemwegsliga e.V., focused on lung health awareness, prevention, and education. The website serves as a platform for disseminating information about respiratory diseases, organizing events, and providing educational materials to patients, healthcare professionals, and the general public. The organization positions itself as a reputable source within the German healthcare sector, leveraging expert contributions and up-to-date event information to engage its audience. Technically, the website is built on the Contao CMS platform and employs modern web technologies such as jQuery, Materialize CSS, and Matomo analytics for user tracking. The site is mobile-optimized with a clear navigation structure and professional design, although some SEO and accessibility features could be enhanced. The presence of HTTPS ensures secure communication, but the absence of security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. From a security perspective, the website demonstrates a moderate security posture with no visible vulnerabilities or exposed sensitive data. However, the lack of explicit security policies, incident response contacts, and cookie consent banners suggests gaps in compliance with GDPR and best practices. The WHOIS data is minimal but consistent with the website's German healthcare focus, supporting the legitimacy of the domain. Overall, Deutscher Lungentag presents a trustworthy and professional online presence with solid business credibility. Strategic improvements in security headers, privacy compliance, and incident response readiness would further strengthen its security posture and regulatory adherence.

The Alpha-1-Center website serves as a specialized non-profit platform dedicated to the rare disease Alpha-1-Antitrypsinmangel, primarily targeting medical professionals, patients, and researchers in German-speaking countries. It offers educational resources, online seminars, research awards, and patient registries, positioning itself as a key knowledge hub in this niche healthcare sector. The site is well-structured, content-rich, and professionally presented, reflecting a focused mission on disease awareness and support. Technically, the website is built on the Contao Open Source CMS platform, utilizing common web technologies such as jQuery, Modernizr, and embedded Vimeo videos. The site demonstrates good mobile optimization and accessibility but lacks advanced SEO and security headers. Analytics are implemented via Matomo, indicating moderate user tracking with some privacy considerations. From a security perspective, the site uses HTTPS but does not exhibit comprehensive security headers or a cookie consent mechanism, which are important for GDPR compliance. The WHOIS data is unavailable or malformed, limiting domain trust verification and slightly reducing overall credibility. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is a credible and valuable resource within its healthcare niche but would benefit from improved privacy compliance, enhanced security practices, and better WHOIS transparency to strengthen trust and regulatory adherence.

Georg Thieme Verlag operates Thieme Connect, a comprehensive online platform offering electronic medical and scientific products including e-books, e-journals, and e-learning solutions. The website targets healthcare professionals, researchers, and librarians, positioning itself as a trusted provider of specialized medical knowledge and educational resources. The platform is well-branded and professionally maintained, reflecting a mature digital presence in the healthcare publishing sector. Technically, the site employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and OneTrust for cookie consent, ensuring compliance with privacy regulations. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Overall, the site is safe, professional, and trustworthy with no adult or questionable content detected.

H

HENKELHIEDL GmbH & Co. KG

henkelhiedl.com

0

HENKELHIEDL GmbH & Co. KG is a Berlin-based creative and digital agency specializing in supporting brands and institutions through change with services including content creation, design, development, concept, and strategy consulting. The company serves a diverse clientele including public institutions, cultural organizations, and commercial brands, positioning itself as a trusted partner in the media and creative sectors. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions. Technically, the site is built on Webflow and integrates modern tools such as Google Tag Manager, Google Analytics, Klaro for cookie consent, and Weglot for multilingual support, indicating a solid digital infrastructure. Security posture is good with HTTPS enforced and consent management implemented, though the absence of explicit security headers and lack of visible incident response or security policy information suggest areas for improvement. The WHOIS data is missing or inaccessible, which raises some concerns about domain registration transparency, but the professional website and clear contact information mitigate immediate trust issues. Overall, the site demonstrates a high level of professionalism and compliance with privacy regulations, making it a credible digital asset for the company.

D

Deutsche Gesellschaft für Pneumologie und Beatmungsmedizin e.V.

pneumologie-kongress.de

0

The website pneumologie.de/kongress is the official portal for the 66th Congress of the German Society for Pneumology and Respiratory Medicine (DGP). It serves as an information hub for healthcare professionals specializing in pneumology, providing details about the congress program, registration, practical information, and press resources. The site is professionally designed, consistent in branding, and targets a specialized medical audience primarily in Germany. The business model is that of a non-profit professional society organizing educational and networking events in healthcare. Technically, the site uses the Snowboard CMS framework, Bootstrap icons, and Matomo analytics, indicating a modern and privacy-conscious infrastructure. The site is mobile optimized and performs moderately well with good SEO and accessibility basics. Security posture is solid with HTTPS and cookie consent implemented, though it lacks explicit security headers and published security policies. WHOIS data confirms domain legitimacy and consistency with the organization's profile. Overall, the site is trustworthy, professional, and well-maintained with no detected vulnerabilities or suspicious content.

A

Aktionsbündnis Nichtrauchen e.V. (ABNR)

abnr.de

0

Aktionsbündnis Nichtrauchen e.V. (ABNR) is a German non-profit coalition of 22 nationwide health organizations focused on tobacco and nicotine prevention advocacy. The website serves as an information hub for political lobbying, public awareness, and dissemination of publications and newsletters related to tobacco control. The organization targets health professionals, policymakers, and the general public in Germany. Technically, the website is built on the REDAXO CMS platform, uses jQuery and skrollr for UI effects, and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized with a clear navigation structure and consistent branding. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies. No contact emails or phone numbers are directly exposed, relying on a contact form instead. WHOIS data shows the domain is active with domaincontrol.com nameservers, typical for GoDaddy hosting, with no privacy protection but limited registrant info. Overall, the site is professional, trustworthy, and safe, with room for improvement in security policy transparency and technical security headers.

D

Deutsche Gesellschaft für Thoraxchirurgie

dgt-online.de

0

The Deutsche Gesellschaft für Thoraxchirurgie (DGT) is a well-established German non-profit medical society specializing in thoracic surgery. Founded in 1991, it focuses on advancing the field through education, research, certification, and collaboration among professionals. The website serves as a comprehensive portal for members, patients, and medical professionals, offering event information, certification details, and organizational insights. Technically, the site is built on WordPress with a modern plugin ecosystem supporting events and membership management. The site is accessible, mobile-optimized, and SEO-friendly, though it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is good with HTTPS enforced but could be improved by adding security headers and incident response information.