Security Directory

B

buff.rocks GmbH

buff.media

0

buff.rocks GmbH is a small digital and advertising agency based in Magdeburg, Germany, specializing in creative and strategic services including TYPO3 CMS web projects, design, campaigns, content marketing, hosting, and digital transformation. The company is part of the +Pluswerk network, enhancing its market position and service capabilities. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages TYPO3 CMS, modern JavaScript libraries, and Matomo analytics for user tracking, with good performance and accessibility features. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. WHOIS data is unavailable or malformed, limiting domain registration trust verification, but the business legitimacy is supported by consistent branding, client testimonials, and industry memberships. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility.

W

WBV - Westfälischer Bibliographischer Verlag

kirchenrecht.shop

0

Kirchenrecht.shop is an e-commerce platform specializing in customized and preconfigured legal text collections related to the Evangelische Kirche von Westfalen. The business operates in a niche market serving church members and legal professionals interested in church law. The website is professionally designed with clear navigation and offers a Rechtstexte-Konfigurator tool for personalized document creation. The platform is built on a Shopware Saltation theme, leveraging modern web technologies and Google reCAPTCHA for form protection. Hosting and domain registration are consistent with the business location and operations, supporting legitimacy. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, though improvements are possible by enabling DNSSEC and adding security headers. Privacy compliance is adequate with a comprehensive privacy policy linked externally, but no cookie consent mechanism is present. Overall, the website is safe, trustworthy, and well-positioned within its market niche.

Z

Zartbitter e.V. Köln

sinaundtim.de

0

Zartbitter e.V. Köln operates the 'Sina und Tim' project, a well-established non-profit initiative focused on preventing sexual abuse of children through educational materials such as picture books, theater plays, audio plays, and expert lectures. The organization has a strong market position in Germany as a pioneer in this sensitive field, supported by donations and sponsorships. The website reflects this mission with clear, child-appropriate content and a professional presentation. Technically, the website is built on WordPress with modern plugins and themes, including a robust cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized, accessible, and performs moderately well. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Overall, the site demonstrates a responsible approach to privacy and security, with transparent contact information and no signs of malicious activity or adult content. The domain registration is consistent with the organization's profile, though registrant details are minimal. Strategic recommendations include enhancing security headers, adding terms of service, and publishing a security policy to further strengthen trust and compliance.

Z

Zartbitter e.V. Köln

washilft.org

0

WAS HILFT is a German non-profit project operated by Zartbitter e.V. Köln, dedicated to combating sexual violence through education, support, and awareness. The website offers multimedia content, legal information, and prevention theater aimed primarily at youth and their social circles. The project is funded by governmental and city institutions, reinforcing its legitimacy and trustworthiness. Technically, the website is built on WordPress with common plugins and demonstrates good mobile optimization and user experience. Security posture is adequate with HTTPS and cookie consent implemented, though improvements such as enabling DNSSEC and security headers are recommended. Privacy compliance is strong, with a comprehensive privacy policy and cookie management in place. Overall, the website is professional, trustworthy, and safe for general audiences.

Zartbitter e.V. operates an online webshop focused on educational and preventive materials related to child protection, sexual abuse prevention, and child rights. The website offers a variety of products including books, brochures, posters, and multimedia targeted primarily at parents, educators, and professionals working with children and youth. The business model is a niche non-profit e-commerce platform serving the German-speaking market (Germany, Austria, Switzerland). Technically, the website is built on WordPress with WooCommerce and uses several plugins for product display, discount rules, and GDPR compliance. The site is mobile-optimized and uses HTTPS, but lacks some advanced security headers. Performance is moderate with a good user experience and clear navigation. From a security perspective, the site enforces HTTPS and has a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. However, security headers like Content-Security-Policy and HSTS are not evident and should be implemented. There is no published security policy or incident response contact information. Overall, the website is safe, professional, and trustworthy for its target audience. The lack of direct contact information and detailed WHOIS data slightly limits business credibility assessment. Strategic improvements in security headers and transparency around security policies would enhance trust and compliance.

Tribune Group GmbH is a Berlin-based investment, holding, and management company specializing in media, education, and lifestyle projects globally. The company operates multiple subsidiaries and partner platforms primarily focused on dental and pharmaceutical continuing education, as well as lifestyle media. Their market position is supported by recognized certifications such as ADA CERP and ACPE accreditation, indicating a strong foothold in professional education sectors. Technically, the website employs modern frontend technologies including Bootstrap 4.3.1, jQuery, and Owl Carousel, providing a responsive and user-friendly experience. However, the site lacks some advanced security headers and explicit privacy and cookie policies, which are critical for compliance and trust. The domain registration is consistent with the business claims, showing a well-established presence since 2009. Security posture is moderate; while HTTPS is implied, no security headers or DNSSEC are enabled, and no incident response or vulnerability disclosure information is provided. The absence of privacy and cookie policies reduces privacy compliance scores. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance measures. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling security headers and DNSSEC, establishing incident response contacts, and improving accessibility and SEO features to strengthen digital maturity and trustworthiness.

D

Dental Tribune International

dental-tribune.com

0

Dental Tribune Germany is a professional online portal delivering daily news, webinars, market and product information focused on the dental industry in Germany. It is part of the global Dental Tribune International network, providing dental professionals, students, and industry stakeholders with up-to-date trends and innovations in dentistry. The website offers a variety of content including news articles, educational webinars, events, and a marketplace for dental products and services. Technically, the site is built on WordPress, leveraging modern web technologies such as jQuery, Bootstrap, and Matomo analytics, and is hosted on AWS Cloudfront CDN, ensuring reasonable performance and availability. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though some security headers could be improved. Privacy compliance is moderate with a cookie consent mechanism present but no explicit privacy policy found in the provided content. The domain WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, but the website content and branding align with a reputable international dental media company. Overall, the site is professional, content-rich, and serves its target audience effectively.

O

OEMUS MEDIA AG

oemus.com

0

OEMUS MEDIA AG is a well-established German media company specializing in dental medicine publications and professional education. The company offers a broad portfolio including specialist journals, seminars, and congresses targeting dental professionals. Their website reflects a mature business with a strong market position in the healthcare media sector, supported by 30 years of experience. Technically, the site uses standard web technologies such as jQuery and hosts media assets on Amazon S3, delivering moderate performance with good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and HTTP security headers. Privacy compliance is supported by a comprehensive privacy policy, though no cookie consent mechanism was detected. Overall, the website is professional, trustworthy, and content-rich, serving its target audience effectively.

J

Jugendliche stärken

jugendlichestaerken-niedersachsen.de

0

Jugendliche stärken Niedersachsen is a regional educational and support platform focused on strengthening youth mental health and social cohesion in schools. The platform targets students, teachers, and parents in Niedersachsen, Germany, providing educational content, guidance, and resources to foster understanding and support for psychological challenges. It is a publicly funded initiative, indicated by the presence of the Niedersachsen logo and the MSH project logo, emphasizing its non-profit and educational nature. The website is well-structured, with clear navigation and content tailored to its audience, including dedicated sections for different user groups and topics related to mental health and social influences. Technically, the website employs modern web technologies such as htmx and hyperscript for dynamic content loading and interaction, and is hosted on AWS infrastructure. It uses Matomo for privacy-conscious web analytics with explicit cookie consent and opt-out mechanisms, reflecting a strong commitment to user privacy and GDPR compliance. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and integrates cookie consent with Do Not Track settings in analytics. However, it lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data and DNS configuration align with the hosting provider and business claims, supporting the legitimacy of the domain and platform. Overall, Jugendliche stärken Niedersachsen presents a trustworthy, privacy-conscious, and professionally maintained platform serving an important educational and social function. Strategic improvements could include adding explicit security policies, enhancing security headers, and publishing incident response and vulnerability disclosure information to further strengthen trust and compliance.

Z

Zartbitter e.V.

zartbitter.de

0

Zartbitter e.V. is a German non-profit organization focused on counseling and prevention of sexual violence against children and youth. The organization provides direct counseling services, educational workshops, and training for parents and professionals. It is recognized nationally for its engaging materials and theater productions addressing sensitive topics such as digital violence and children's rights. The website reflects a mature, well-structured digital presence with clear branding and comprehensive content tailored to its target audience. Technically, the website is built on WordPress using Elementor and several specialized plugins for events, SEO, and cookie management. Hosting is provided by SchlundTech, a reputable German hosting provider. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine understanding. Privacy and cookie policies are implemented with consent mechanisms, reflecting good compliance with GDPR. Security posture is solid with HTTPS enforced and no obvious vulnerabilities or exposed sensitive data. However, some recommended security headers are not explicitly detected, and no formal security policy or incident response contact is published. The site does not appear to use extensive tracking or advertising, focusing instead on user privacy and minimal data collection. Overall, Zartbitter e.V. presents a trustworthy, professional online presence appropriate for a sensitive non-profit mission. Strategic improvements could include publishing a security policy, adding vulnerability disclosure information, and enhancing security headers to further strengthen trust and compliance.

S

SCHWING Stetter

schwing.de

0

SCHWING Stetter is a well-established German manufacturer specializing in concrete machinery and equipment, including truck-mounted concrete pumps, mixers, stationary pumps, and mixing plants. The company serves the construction industry globally with a broad product portfolio and after-sales services. Their website reflects a professional and consistent brand presence, targeting construction professionals and equipment buyers. The site is built on TYPO3 CMS and employs modern web technologies with a focus on privacy, as evidenced by the use of Matomo analytics and a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and domain registration consistent with the business history. However, there is room for improvement in security headers and published security policies. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

D

DJK Landesverband NRW e.V.

vollwertsport.de

0

The website www.vollwertsport.de represents the DJK Landesverband NRW e.V., a small non-profit organization focused on promoting values in sports through seminars, events, and educational products. The site serves a niche audience interested in sports education and community engagement within the NRW region of Germany. The business model revolves around non-profit activities supplemented by an e-commerce shop offering value-based sports products. Technically, the site is built on a modern WordPress platform using WooCommerce and Avada theme, with SEO and cookie consent mechanisms properly implemented. Security posture is good with HTTPS and cookie consent, though some security headers and explicit policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and legal pages. No critical security or content safety issues were detected.

D

DJK Sportjugend

djk-sportjugend.de

0

DJK Sportjugend is a German non-profit youth sports organization affiliated with the Catholic DJK-Sportverband. It focuses on inclusive youth work, social and cultural diversity, and prevention initiatives such as anti-racism and sexualized violence prevention. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content relevant to its target audience of young people and sports communities. Technically, the site uses modern web technologies and a consent management platform to ensure GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the domain registration and website content are consistent and trustworthy, supporting a strong legitimacy score.

S

Sportvereinigung Deutsche Jugendkraft Spandau (DJK Spandau)

djk-spandau.de

0

Sportvereinigung Deutsche Jugendkraft Spandau (DJK Spandau) is a German non-profit sports club offering a variety of sports activities such as badminton, boule, gymnastics, Nordic walking, skate biathlon, sports shooting, table tennis, volleyball, and archery. The club targets local community members including children, adults, and people interested in inclusive sports programs. The website reflects a well-structured and accessible platform with clear navigation and content relevant to its audience. It maintains partnerships with reputable sports organizations, enhancing its community presence and trustworthiness. Technically, the website is built on Joomla CMS with modern web technologies including Bootstrap and jQuery. It is hosted on servers associated with kasserver.com and employs HTTPS with a cookie consent mechanism compliant with GDPR. Accessibility features such as screen reader support and contrast modes are implemented, indicating a commitment to inclusive design. Performance is moderate with good mobile optimization. From a security perspective, the site uses HTTPS and cookie consent banners but lacks visible security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is minimal but consistent with a legitimate hosting setup. Overall, the security posture is adequate but could be improved with additional headers and documented policies. The overall risk assessment is low with recommendations to enhance security headers, add incident response contact information, and maintain regular updates to Joomla and plugins. The website is professional, trustworthy, and compliant with privacy regulations, serving its community effectively.

S

SiteCockpit

sitecockpit.com

0

SiteCockpit is a professional SaaS provider specializing in digital accessibility solutions, offering products such as accessibility widgets, monitoring tools, and statement generators. The company targets businesses and website owners aiming to comply with accessibility regulations and improve user experience. Their market position is that of a specialized technology provider with integrations across major CMS and e-commerce platforms. Technically, the website employs modern JavaScript frameworks like Alpine.js, integrates with HubSpot for marketing and analytics, and uses Usercentrics for consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the website is well-designed, mobile-optimized, and GDPR-compliant, supporting a high level of trust and professionalism. However, the absence of WHOIS data slightly reduces transparency and trustworthiness. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and incident response contacts to enhance security posture and trust.

H

Hagemeister GmbH & Co. KG

hagemeister.de

0

Hagemeister GmbH & Co. KG is a German manufacturing company specializing in clinker bricks, including facade clinker, paving clinker, shaped clinker, and functional clinker bricks. The company targets architects, builders, and construction professionals, providing high-quality building materials that contribute to aesthetic and functional construction projects. Their website reflects a professional and consistent brand image with a clear focus on their product offerings and services. Technically, the website is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager, HubSpot, and Cookiebot for analytics, marketing, and cookie consent management. The site is mobile-optimized with good SEO and accessibility features, providing a positive user experience. Performance is moderate, with room for optimization. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security policies and incident response contacts are not found, which could be improved. The domain registration data is consistent with the business identity, indicating legitimacy and trustworthiness. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security policy transparency and technical performance could further enhance trust and resilience.

E

Evangelische Kirche von Westfalen

kirchenrecht-westfalen.de

0

The website kirchenrecht-westfalen.de serves as an official online legal reference system for the Evangelical Church of Westphalia, providing comprehensive access to church laws, ordinances, and related legal documents. It targets church officials, legal professionals, and members interested in church law. The platform offers systematic navigation, search functionality, and downloadable e-book formats, positioning itself as a trusted resource within its niche. Technically, the site employs Bootstrap for responsive design, Font Awesome for icons, and Matomo (Piwik) for analytics, indicating a modern and privacy-conscious infrastructure. Hosting is managed by SchlundTech, a known German hosting provider. The site is mobile-optimized with good navigation clarity and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, reflecting GDPR awareness. However, no explicit privacy policy, terms of service, or security headers were detected, suggesting areas for compliance and security enhancement. No vulnerabilities or suspicious content were found, and the domain registration aligns well with the church's identity, supporting legitimacy. Overall, the site is a professional, secure, and trustworthy resource for church law, with recommendations to improve privacy disclosures and security headers to enhance compliance and user trust.

D

Domain-Offensive

do.de

0

Domain-Offensive is a German-based domain registration and web hosting provider offering affordable, secure, and climate-neutral services including domain hosting, webspace, DNS, SSL, and email solutions. The company operates under Greenmark IT GmbH and targets individuals and businesses seeking reliable web project partners. The website demonstrates a mature digital infrastructure built on WordPress with Elementor and Yoast SEO, optimized for performance and mobile responsiveness. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and a comprehensive cookie consent mechanism compliant with GDPR. While explicit security headers could be enhanced, the overall security posture is solid with no evident vulnerabilities. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

O

Oranto GmbH

studienplattform.ch

0

Oranto GmbH operates the Studienplattform.ch, a specialized software platform designed to facilitate clinical and non-clinical studies with integrated CMS, CRM, and LMS capabilities. The company positions itself as a niche provider with a decade of experience, offering tailored study design and management solutions primarily targeting research institutions and clinical study leaders. The platform emphasizes data protection and GDPR compliance, catering to a German-speaking audience with professional and clear content presentation. Technically, the website is built on TYPO3 CMS and employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and incident response transparency. Overall, the website demonstrates a mature digital presence with good usability and trustworthiness, though cookie consent and formal security policies could be enhanced for full compliance.

O

Oranto GmbH

study-platform.eu

0

Oranto GmbH operates the Study-Platform.eu website, offering a comprehensive software solution for clinical and non-clinical study management. Their platform integrates survey systems, content management, participant management (CRM), learning management (LMS), and statistical monitoring tools, emphasizing GDPR compliance and data protection. The company targets researchers and organizations requiring flexible, customizable study design and execution tools. The website reflects a niche market position with a decade of experience in customized study software development. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and Matomo analytics configured to disable cookies, indicating a privacy-conscious approach. The site is mobile-optimized, accessible, and well-structured with good SEO practices. However, some improvements are needed in cookie consent mechanisms and publishing security policies. From a security perspective, the site uses HTTPS with good SSL configuration and avoids third-party API integrations, reducing attack surface. No critical vulnerabilities or exposed sensitive data were detected. The absence of explicit security headers and incident response information suggests room for enhancement in security posture. WHOIS data is unavailable due to EURid privacy policies, which is common but slightly reduces transparency. Overall, the website presents a professional, trustworthy front for a small technology company specializing in study software solutions. Strategic recommendations include implementing cookie consent, publishing terms and security policies, adding security headers, and providing vulnerability disclosure contacts to strengthen compliance and trust.

G

Greystyle.com

greystyle.com

0

Greystyle.com is a small German-based graphic and web design company established since 2002, specializing in clean programming solutions and elegant design. Their market position is niche-focused, serving clients primarily in the cultural and ecclesiastical sectors in Germany. The website showcases a comprehensive portfolio of projects, emphasizing CMS development, corporate design, and print media. Technically, the site uses XHTML, JavaScript libraries including jQuery and Highslide, and Matomo for analytics, but includes some outdated Flash content. Security posture is moderate with privacy policies in place and anonymized analytics, but lacks visible security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional presentation. Overall, the site is functional and trustworthy but would benefit from modern security and privacy enhancements.

F

FRAMETRAXX UG (haftungsbeschränkt)

frametraxx.de

0

FRAMETRAXX UG operates a specialized e-commerce platform offering royalty-free (gemafreie) music for various applications including YouTube, advertising, film, and commercial use. The company targets content creators, agencies, and businesses seeking legally secure music licensing solutions. Their market position is that of a niche provider with a comprehensive catalog and clear licensing models, supported by a professional website and trusted client logos. Technically, the website is built on the Gambio e-commerce platform with modern JavaScript libraries and Google Tag Manager integration, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

D

Deutsche Atlantische Gesellschaft e.V.

ata-dag.de

0

The Deutsche Atlantische Gesellschaft e.V. is a German non-profit organization dedicated to informing and engaging the public on German and European security policy, NATO objectives, and transatlantic relations. The organization operates through events, seminars, lectures, podcasts, and publications, targeting individuals and entities interested in security and defense topics. Their market position is that of an established, reputable non-profit within the government and policy sector in Germany. Technically, the website is built on WordPress, utilizing common libraries such as jQuery, Bootstrap, and Font Awesome, with SEO optimization via Yoast. Hosting appears to be managed through kasserver.com. The site is moderately performant, mobile-optimized, and includes analytics via Matomo, reflecting a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and uses CAPTCHA on contact forms, alongside a cookie consent mechanism. However, it lacks explicit security headers, a published security policy, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy policy or terms of service pages found. Overall, the website presents a professional and trustworthy front for the organization, with good content quality and business credibility. Security and privacy practices could be enhanced to meet higher compliance standards and improve user trust.

Brangs + Heinrich is a German-based company specializing in packaging solutions, including stretch films and other protective packaging materials. The company targets business customers requiring packaging and securing products, positioning itself as a solutions provider in the manufacturing sector. The website is built on WordPress with a moderate technical infrastructure, including common plugins for multilingual support, forms, and search functionality. The use of Cookiebot for cookie consent demonstrates a commitment to privacy compliance. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers are not detected and incident response information is absent. Overall, the website is professional and trustworthy, with room for improvement in explicit contact information and security policies.

S

Sachsenröder GmbH & Co. KG

sachsenroeder.com

0

Sachsenröder GmbH & Co. KG is a well-established German manufacturing company specializing in innovative natural fiber-based materials such as Vulkanfiber SAVUTEC® and Laufrollen GESADUR®. Founded in 1881, the company holds a strong market position as a pioneer in sustainable industrial materials, offering products that contribute to environmental responsibility and high performance. Their website reflects a professional and consistent brand image, targeting industrial and sustainability-conscious audiences. Technically, the site is built on WordPress with modern plugins for SEO, translation, and cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact and business information.

I

Institut der deutschen Wirtschaft

iwd.de

0

The website www.iwd.de serves as the information service of the Institut der deutschen Wirtschaft, providing up-to-date economic analyses, research results, and background information on current economic topics primarily focused on Germany and Europe. It targets professionals, policymakers, academics, and the general public interested in economic affairs. The business model revolves around disseminating economic knowledge through articles, dossiers, newsletters, and interactive graphics, positioning itself as a reputable and authoritative source in the German economic research landscape. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript, CSS, and integrates analytics tools such as Matomo and Google Tag Manager. It employs Usercentrics for GDPR-compliant consent management. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine visibility. Hosting is managed via domaincontrol.com (GoDaddy), a common and reliable provider. From a security perspective, the website enforces HTTPS with a strong SSL configuration and uses consent management for cookies, reflecting good privacy practices. However, it lacks explicit security headers and published security policies or incident response contacts, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The site demonstrates a moderate to high security posture but could enhance transparency and technical security controls. Overall, www.iwd.de is a professional, trustworthy, and content-rich platform with strong compliance to privacy regulations and a solid technical foundation. Strategic recommendations include implementing security headers, publishing a security policy and incident response information, and adding a security.txt file to facilitate vulnerability disclosures. These steps would further strengthen the site's security posture and trustworthiness.

The website arbeitgebernet.de serves as a members-only portal for the Vereinigung Bergischer Unternehmerverbände e.V. (VBU®), a regional business association in Germany. It provides comprehensive resources and tools to support employers in areas such as labor law, social law, tariff agreements, personnel management, and economic data. The portal targets member companies, offering them access to categorized documents, newsletters, surveys, and seminar registrations. The business model is membership-based, focusing on delivering specialized content and services to its audience. The website maintains a professional and consistent brand presence, reinforcing trust among its users. Technically, the site employs a traditional web stack with jQuery UI, Modernizr, and Piwik (Matomo) for analytics. The site is moderately optimized for mobile devices and performance, with deferred script loading and responsive images. However, it lacks advanced security headers and publicly visible privacy or cookie policies, which are critical for compliance and user trust. The login form collects user credentials securely via HTTPS, but no explicit security policies or incident response contacts are provided. From a security perspective, the site benefits from HTTPS and basic best practices but misses opportunities to enhance security posture through headers and transparency about data protection. The absence of privacy and cookie policies, as well as vulnerability disclosure information, indicates gaps in compliance with GDPR and modern security standards. No suspicious or malicious content was detected, and the site is safe for general audiences. Overall, arbeitgebernet.de is a professionally maintained portal with solid business credibility but requires improvements in privacy compliance and security transparency to meet higher standards. Strategic enhancements in these areas will strengthen user trust and regulatory adherence.

C

Cruise Gate Hamburg GmbH

cruisegate-hamburg.de

0

Cruise Gate Hamburg GmbH operates the cruise terminals in Hamburg, managing berth allocations and serving as the central contact for cruise operators. The company also markets Hamburg as a cruise destination internationally. The website is professionally designed, primarily in German, and targets cruise operators, passengers, and tourism stakeholders. Technically, the site uses modern JavaScript libraries such as jQuery and Video.js, with a CMS likely Kirby. It is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is good with HTTPS enforced, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact is mainly via forms, with no direct emails or phone numbers visible. Social media presence is strong, enhancing trust and engagement.

H

Hamburg Port Authority (HPA)

tideelbe.info

0

The website www.tideelbe.info serves as an informational blog managed by the Hamburg Port Authority (HPA), focusing on sediment management and the Tideelbe river to ensure navigable water depths for ships in Hamburg's harbor. It provides news, analyses, and downloadable reports targeted at the general public and stakeholders in maritime transport and environmental sectors. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on TYPO3 CMS, a reputable open-source content management system, and employs Matomo analytics configured to respect user privacy by disabling cookies and honoring DoNotTrack signals. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured content. However, no explicit cookie consent mechanism was detected, which may impact full GDPR compliance. From a security perspective, the site uses HTTPS and shows good security practices, but lacks visible security headers and published security policies or incident response contacts. The WHOIS data for the domain is unavailable or protected, limiting transparency and trust verification, though the official branding and content quality mitigate some concerns. Overall, the website presents a trustworthy and professional platform for disseminating port-related environmental information, with moderate technical and privacy compliance maturity. Strategic improvements in cookie consent, security policy publication, and WHOIS transparency would enhance its security posture and user trust.

I

Industrie – Wasser – Umweltschutz e.V.

iwu-dueren.de

0

Industrie – Wasser – Umweltschutz e.V. (IWU) is a regional non-profit association serving industrial companies with a focus on environmental law and water management. The organization provides legal advice, administrative procedure support, environmental policy representation, and training for environmental officers. It collaborates closely with regional industry associations and municipalities, positioning itself as a key environmental service provider in its region. The website reflects a professional and consistent brand image with clear service offerings and partner affiliations. Technically, the site is built on WordPress with Visual Composer and uses standard web technologies, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response information. Overall, the site is trustworthy and compliant with GDPR, though improvements in security practices and transparency could enhance its posture.

H

Haus der Industrie

hausderindustrie.de

0

Haus der Industrie is a German-language website likely representing an industrial or business entity, though explicit business details are not present in the accessible content. The site uses WordPress with common plugins such as Bootstrap and Visual Composer, indicating a standard CMS-based infrastructure. The technical setup is moderate with basic mobile optimization and no advanced analytics or marketing tools detected. Security posture is basic, with HTTPS enabled but lacking security headers and visible security policies. No privacy or cookie policies were found, and no contact information is provided, limiting user trust and compliance. Overall, the site is accessible and functional but lacks comprehensive business and security information.

V

Vereinigte Industrieverbände von Düren, Jülich, Euskirchen und Umgebung e.V.

extraviv.de

0

The website extraviv.de serves as a members-only information portal for the Vereinigte Industrieverbände von Düren, Jülich, Euskirchen und Umgebung e.V., a regional industry association in Germany. It provides employers and association members with access to documents, newsletters, event information, and other resources relevant to their business operations and networking. The site is primarily in German and targets local employers within the manufacturing and non-profit sectors. Technically, the site uses a custom or unknown CMS with JavaScript libraries such as jQuery UI and Modernizr, hosted on servers associated with kasserver.com. The design is professional and consistent, though mobile optimization and accessibility are basic. Security posture is moderate with a login form secured by POST but lacks advanced security headers and cookie consent mechanisms. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the website's business purpose, indicating legitimacy. Overall, the site scores well on business credibility and content quality but could improve technical implementation and security practices.

Internet Port Hamburg GmbH (IPHH) is a medium-sized German technology company specializing in datacenter solutions, colocation, managed services, and fiber optic network connectivity exclusively for business customers. Founded in 1996 and operating under the parent company Portus Data Centers Company, IPHH positions itself as a reliable partner offering customized infrastructure and consulting services tailored to enterprise needs. The website reflects a professional and consistent brand image with detailed service descriptions and certifications such as ISO/IEC 27001 and Health Data Hosting (HDS) France, underscoring its commitment to security and compliance. Technically, the website is built on the Contao Open Source CMS platform and leverages modern JavaScript libraries like jQuery, Swipe.js, and Colorbox for enhanced user experience. The site is mobile-optimized with good navigation clarity and moderate performance. However, there is room for improvement in accessibility and SEO optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and cookie consent mechanisms suggests areas for enhancement. The WHOIS data for the domain www.iphh.net is unavailable, which raises some concerns about domain registration transparency. Despite this, the website content, certifications, and contact information indicate a legitimate and established business. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, IPHH demonstrates a mature digital presence with a strong focus on security and customer service, though improvements in privacy compliance and domain registration transparency are recommended.

Internet Port Hamburg GmbH (IPHH) is a medium-sized German company founded in 1996, specializing in providing colocation, housing, managed services, and IP/fiber optic connectivity exclusively to business customers. Positioned as a reliable full-service provider, IPHH emphasizes personalized service, technical excellence, and compliance with industry standards such as ISO/IEC 27001 and Health Data Hosting (HDS) certifications. Their business model focuses on B2B enterprise clients requiring secure and customized data center solutions. The website reflects a professional and consistent brand image with clear contact information and detailed service offerings. Technically, the website is built on the Contao Open Source CMS and utilizes modern JavaScript libraries such as jQuery, Swipe.js, and Colorbox for enhanced user experience. The site is mobile-optimized with good navigation clarity and moderate performance. SEO and accessibility are basic but adequate for the target audience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers and cookie consent mechanisms are missing. The security posture is bolstered by the company's ISO certifications and clear emphasis on data center security. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. No explicit incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the website and business present a trustworthy and professional image with room for technical and compliance enhancements. Strategically, IPHH should verify and publish domain registration details, implement cookie consent mechanisms, and provide clear incident response contacts to strengthen security culture and regulatory compliance. These steps will improve customer trust and align with best practices in data protection and cybersecurity.

S

STORK Umweltdienste GmbH

stork-umwelt.de

0

STORK Umweltdienste GmbH is a medium-sized German company specializing in recycling, waste disposal, and raw material recovery with over 30 years of experience. The company operates from Magdeburg with a strong focus on environmental sustainability, supported by ISO 14001 certification. Their services include recycling, container services, mobile processing technology, and logistics leveraging trimodal transport connections. The website is professionally designed using TYPO3 CMS, providing clear navigation and multilingual support. Contact information and social media presence enhance business credibility. Security posture is good with HTTPS and cookie consent mechanisms, though no explicit security policy or incident response contacts are published. Overall, the website reflects a trustworthy and established business with a solid digital presence.

K

Kath. St. Marien - Oberschule Berlin

marienschule-berlin.de

0

Kath. St. Marien - Oberschule Berlin is a Catholic secondary school located in Berlin Neukölln, Germany, offering integrated secondary education and gymnasium programs. The website serves as an information platform for students, parents, and the local community, providing details about school life, events, job offers, and administrative services. The school is sponsored by the Archdiocese of Berlin, which is reflected in the website's branding and partner links. Technically, the site is built on Joomla CMS with modern web technologies including jQuery and Bootstrap, and it incorporates GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are not published. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

K

Katholische Schule Sankt Franziskus

kssf-berlin.de

0

Katholische Schule Sankt Franziskus is a well-established Catholic educational institution in Berlin offering primary, integrated secondary, and gymnasiale oberstufe education. The website reflects a mature digital presence with comprehensive content, including news, events, and detailed service information for students and parents. The technical infrastructure is based on Joomla CMS with modern web technologies and good mobile optimization. Security posture is solid with HTTPS, GDPR-compliant cookie consent, and no evident vulnerabilities. However, some security headers could be improved. Overall, the site is trustworthy and professionally maintained, supporting the school's long-standing reputation.

K

Katholische Schule Salvator

salvator-grundschule.de

0

Katholische Schule Salvator is a Catholic primary school located in Berlin, Germany, operating under the sponsorship of the Erzbistum Berlin. The website serves as an information portal for parents, students, and the local community, providing news, event updates, and essential school information. The school emphasizes a community-oriented, faith-based educational approach. The website is built on Joomla CMS and incorporates modern web technologies and GDPR-compliant cookie consent mechanisms. It offers clear contact details and regularly updated content, reflecting an active and engaged institution. Security-wise, the site uses HTTPS and cookie consent best practices but lacks explicit security policies or vulnerability disclosures. Overall, the site is trustworthy, professional, and well-maintained, suitable for its educational purpose.

K

Katholische Theresienschule Berlin

theresienschule.de

0

Katholische Theresienschule Berlin is a well-established Catholic educational institution operating under the Archdiocese of Berlin. The website serves as an information hub for students, parents, and the school community, providing news, event updates, and service information. The school emphasizes community engagement and offers a variety of extracurricular activities and workshops. The domain age and content reflect a mature and credible organization with a long history dating back over a century. Technically, the website is built on Joomla CMS with modern web technologies including jQuery and Bootstrap. It features a GDPR-compliant cookie consent mechanism and is served over HTTPS with good security practices. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some security headers and formal security policies are missing. From a security perspective, the site demonstrates a solid baseline with HTTPS enforcement and cookie management. There are no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contact is a gap that could be addressed to improve trust and preparedness. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website is trustworthy, professional, and well-maintained, suitable for its educational purpose. Strategic recommendations include enhancing security transparency, adding incident response information, and implementing additional security headers to further harden the site against potential threats.

K

Katholische Schule Sankt Hildegard

kssh-berlin.de

0

Katholische Schule Sankt Hildegard is a recognized Catholic educational institution in Berlin providing primary and secondary education with a focus on children and youth with specific educational needs. The website serves as an information portal for students, parents, and educators, offering news, events, and service information. The school is supported by the Archdiocese of Berlin and holds a digital education certification (fobizz Schule 2024/25). The site is well-structured, professionally designed, and regularly updated with relevant content.

S

Superchat

superchat.de

0

Superchat is a German-based technology company specializing in AI-powered messaging solutions for businesses. Their platform integrates popular communication channels such as WhatsApp Business to streamline customer interactions, automate follow-ups, and enhance sales and support processes. The company targets a broad range of industries and team functions, positioning itself as a comprehensive B2B SaaS provider with a strong focus on GDPR compliance and customer experience. Technically, the website is built on modern frameworks like Next.js and React, hosted on AWS infrastructure, and employs consent management tools to comply with privacy regulations. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers and policies are not publicly visible. Overall, the site demonstrates professional design, excellent content quality, and strong market positioning, but could improve transparency by publishing privacy policies and security disclosures.

K

Katholische Studierende Jugend

ksjberlin.de

0

KSJ Berlin is a non-profit youth organization focused on engaging students and young people in Berlin through volunteer activities, school participation, and societal involvement. The organization operates as part of the Catholic youth umbrella (BDKJ) but is inclusive of all beliefs. Their website provides information about membership, events, and community platforms such as a Discord server. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google Fonts, and is hosted with domain control services. It is mobile optimized and includes SEO best practices. Security-wise, the site enforces HTTPS, uses Google Analytics with IP anonymization, and implements a cookie consent banner, but lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and professionally maintained, suitable for its target audience of youth in Berlin.

okaJ is a small non-profit youth organization based in Berlin, Germany, focused on providing an open, catholic, and active community for young people. The organization supports youth groups within the church, offers networking opportunities, spiritual programs, and volunteer engagement. The website reflects a professional and consistent brand image targeting youth and youth groups in the Berlin area. Technically, the site is built on WordPress with common plugins and uses Google reCAPTCHA for form security. While the site is well designed and user-friendly, it lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the domain and website appear legitimate and trustworthy for their stated purpose.

K

KjG Berlin

kjg-berlin.de

0

KjG Berlin is a small non-profit Catholic youth organization based in Germany, focused on engaging young people in community activities, education, and events within the Catholic framework. The website serves as an informational and organizational platform for members and interested parties, providing updates, event information, and contact details primarily via email. The organization maintains a presence on social media platforms such as Instagram and Facebook to reach its target audience. Technically, the website is built on WordPress, utilizing standard web technologies such as PHP, JavaScript, and CSS. The site is served over HTTPS with a valid SSL certificate, ensuring secure communication. While the site demonstrates good mobile optimization and basic SEO practices, it lacks advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance and enhanced security. From a security perspective, the site shows a moderate security posture with HTTPS enabled but missing several security headers and no visible incident response or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a privacy policy present, but the absence of a cookie consent banner is a gap. Overall, KjG Berlin presents a trustworthy and professional online presence for a small non-profit organization. Strategic improvements in security headers, cookie consent, and incident response documentation would enhance compliance and security posture, supporting the organization's credibility and user trust.

J

Jugendverbände der Gemeinschaft Christlichen Lebens - Diözesanverband Berlin

j-gcl.berlin

0

J-GCL Berlin is a small non-profit youth organization focused on Christian community activities within the Berlin region. The website serves primarily as an informational portal presenting the organization's identity, social media presence, and contact email. The business model centers on community engagement and youth involvement in Christian life, positioning itself as a local entity without commercial operations. Technically, the website is built on a simple HTML5 and CSS stack with some JavaScript for UI enhancements, using the HTML5 UP design template and Font Awesome icons. The site is moderately optimized for mobile devices but lacks advanced SEO and accessibility features. Security posture is basic; while the domain is registered with a reputable German registrar and protected against unauthorized transfers, the site lacks DNSSEC, security headers, and visible HTTPS enforcement details. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Overall, the site is safe, with no adult or questionable content, but would benefit from enhanced security and compliance measures.

D

DJK Landesgemeinschaft Berlin e.V.

djk-berlin.de

0

DJK Landesgemeinschaft Berlin e.V. is a regional Catholic sports association in Berlin, Germany, serving approximately 500,000 members across more than 1,000 clubs nationally. The organization focuses on promoting sports activities, events, and community engagement within the Catholic sports community. Their website provides comprehensive information about the association, news, events, and member clubs, targeting members and interested parties in the sports and religious community. Technically, the website is built on AmphiCMS with standard web technologies such as HTML5, CSS3, JavaScript, and jQuery, featuring responsive design and moderate performance. Security posture is solid with HTTPS enforced, but lacks advanced security headers and incident response disclosures. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-structured, serving its non-profit mission effectively.

L

Lobbe

lobbe.app

0

Lobbe operates a German-language website providing digital tools and services for waste management, including a personalized waste collection calendar, container ordering, and recycling location information. The company targets residents in German municipalities where it operates, positioning itself as a regional service provider with a medium-sized business profile. The website is built on WordPress with modern plugins and demonstrates good content quality, accessibility, and SEO optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response details could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and serves its intended audience effectively.

L

Lobbe Containerdienst

containerdienst-lobbe.de

0

Lobbe Containerdienst is a German company specializing in container rental services for various waste types including construction debris and garden waste. The company offers an online platform for customers to order containers easily. The website is built on WordPress using Elementor and incorporates SEO best practices with Yoast SEO and structured data. The technical infrastructure is modern and supports good mobile optimization and accessibility. Security posture is adequate with HTTPS enabled and some privacy measures in place, but lacks explicit security policies and vulnerability disclosure mechanisms. Overall, the site is professional and trustworthy with room for improvement in privacy and security transparency.

M

Markt Thüngen

markt-thuengen.de

0

Markt Thüngen is a small municipal government entity located in Unterfranken, Germany, serving approximately 1,450 residents. The website provides comprehensive information about the community, local history, energy infrastructure including solar parks, and municipal services. It positions itself as a modern community rooted in tradition, with a focus on sustainability and local business support. The site is built on a WordPress platform using Elementor and Yoast SEO, indicating a moderate level of digital maturity. The technical infrastructure is stable with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled, but lacks some advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance. Overall, the website is professional, trustworthy, and serves its community well, though improvements in privacy compliance and security policies would enhance its risk profile.

S

Stadtwerke Hammelburg GmbH

stadtwerke-hammelburg.de

0

Stadtwerke Hammelburg GmbH is a regional utility company serving the Hammelburg area in Germany, providing essential services including electricity, gas, water, heat supply, and telecommunications via their HAB-Net DSL service. The company also operates local amenities such as the Saaletalbad swimming pool and parking facilities. Their market position is that of a trusted regional provider with a diversified portfolio catering to both residential and business customers. The website reflects a professional and consistent brand image with clear service offerings and customer support channels. Technically, the site is built on Joomla CMS with modern frontend technologies and includes a comprehensive GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS enforced and CSRF protections, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is accessible, well-structured, and trustworthy, supporting the company's credibility in the regional energy and telecommunications sectors.