Security Directory

I

Immanuel Albertinen Diakonie gGmbH

albertinen-wirbelsaeulenzentrum.de

0

Albertinen Wirbelsäulenzentrum is a specialized healthcare provider focusing on neurochirurgie, unfallchirurgie, and orthopädie with locations in Hamburg-Schnelsen and Hamburg-Volksdorf. It operates under the umbrella of Immanuel Albertinen Diakonie gGmbH, a reputable non-profit healthcare group in Germany. The website presents a professional and comprehensive overview of their medical services, targeting patients and healthcare professionals in the region. Technically, the site is built on TYPO3 CMS, employs modern web standards, and is optimized for mobile and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are absent. Privacy compliance is strong, with a clear privacy policy and cookie banner. Overall, the site is trustworthy, well-branded, and serves its healthcare audience effectively.

A

Albertinen Herz- und Gefäßzentrum

albertinen-herzzentrum.de

0

Albertinen Herz- und Gefäßzentrum is a specialized healthcare provider focused on heart, vascular, and circulatory diseases with locations in Hamburg-Schnelsen and Hamburg-Volksdorf. It operates under the parent organization Immanuel Albertinen Diakonie and offers advanced medical services including heart surgery, cardiology, and vascular surgery. The website is professionally designed, content-rich, and targets patients, referring physicians, and medical professionals. It emphasizes modern diagnostic and surgical techniques combined with patient-centered care. Technically, the site is built on TYPO3 CMS, is mobile-optimized, and includes accessibility features. Security posture is good with HTTPS and privacy consent mechanisms, though some security headers and explicit incident response policies are missing. Overall, the site is trustworthy and well-positioned in the regional healthcare market.

I

Immanuel Albertinen Diakonie

immanuelalbertinen.de

0

Immanuel Albertinen Diakonie is a large, established non-profit organization operating primarily in healthcare and social services across Hamburg, Berlin-Brandenburg, and Südthüringen in Germany. The website reflects a mature digital presence powered by TYPO3 CMS, offering comprehensive information about their services, subsidiaries, and career opportunities. The organization demonstrates strong branding consistency and trust indicators, including detailed contact information and social media presence. Technically, the site is well-implemented with modern web standards, good accessibility, and SEO practices. Security posture is strong with HTTPS and security headers in place, though explicit security policies and incident response information are not publicly detailed. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

F

Fazenda

fazenda.de

0

Fazenda is a German-based non-profit organization providing Christian addiction support through community-based self-help therapy known as "Höfe der Hoffnung". The website is built on the Wix platform, leveraging standard Wix technologies and polyfills, and is primarily targeted at men, women, and youth seeking recovery from addiction within a faith-based environment. The site presents a good quality design and content relevant to its mission but lacks critical compliance and security documentation such as privacy and cookie policies. Technically, the site is moderately optimized with good mobile responsiveness but could improve SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and formal policies. Overall, the site is safe for general audiences and does not contain adult or explicit content.

U

Universität Freiburg

uni-freiburg.de

0

The Universität Freiburg website represents a large, reputable public university in Germany, offering a wide range of academic programs and research activities. The site targets students, researchers, and the academic community, providing information about study programs, admissions, and university news. Technically, the website is built on WordPress with modern CSS frameworks like Tailwind, and it is hosted on a regional academic network (BelWü), ensuring reliable infrastructure. The site is mobile-optimized and accessible, with good SEO practices evident. Security-wise, the site uses HTTPS with strong SSL configuration and employs Piwik (Matomo) for analytics, indicating moderate user tracking. However, it lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the domain registration and DNS setup are consistent with the university's identity, supporting high legitimacy and trustworthiness.

B

Berufe der Kirche Freiburg

berufe-der-kirche-freiburg-shop.de

0

Berufe der Kirche Freiburg operates a specialized e-commerce platform focused on church professions and related educational and devotional materials. The website targets individuals involved in church work, youth education, and religious communities primarily in Germany. The business model combines product sales with informational content, positioning itself as a niche provider in the non-profit and educational sectors. The platform uses Shopware CMS and modern web technologies to deliver a responsive and user-friendly experience. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit cookie consent mechanisms. Contact information is clearly provided, enhancing trust, though no direct email contacts or social media presence are visible. Overall, the site is professional and trustworthy with room for improvement in privacy compliance and security best practices.

F

Freiburger Orientierungsjahr

freiburger-orientierungsjahr.de

0

The Freiburger Orientierungsjahr website represents a small, regionally focused educational and faith-based orientation year program affiliated with the Archdiocese of Freiburg. It offers young adults a structured year for personal development, study and career orientation, and faith strengthening. The website is professionally designed with clear navigation and consistent branding, targeting primarily German-speaking youth seeking guidance after high school. Technically, the site uses Edith CMS, jQuery, Bootstrap, and Matomo analytics, hosted on professional infrastructure with HTTPS and cookie consent mechanisms in place. Security posture is solid with no critical vulnerabilities detected, though some security best practices like security headers and incident response policies could be improved. Overall, the site is trustworthy, GDPR compliant, and safe for general audiences.

V

VDI Technologiezentrum GmbH

vditz.de

0

VDI Technologiezentrum GmbH is a well-established innovation agency and project management organization with over 50 years of experience. The company focuses on implementing innovative funding programs in key future-oriented sectors such as digitalization, sustainability, mobility, security, education, and health. Positioned as a leading project carrier in Germany, VDI TZ serves a broad audience including businesses, research institutions, and public clients across Germany and Europe. Their business model revolves around fostering research, shaping innovations, organizing networks, and communicating scientific knowledge.

H

Hafen Hamburg Marketing e.V.

hafen-hamburg.de

0

Hafen Hamburg Marketing e.V. operates the official website for the Port of Hamburg, Germany's largest seaport and a major European logistics hub. The website provides comprehensive information on port operations, shipping schedules, events, statistics, and partner organizations. It targets logistics professionals, shipping companies, regional stakeholders, and tourists. The business model focuses on port marketing, promotion, and providing valuable data to stakeholders. The site is well-branded and professionally maintained, reflecting a large, established organization in the transportation sector. Technically, the website uses a modern tech stack including ProcessWire CMS, jQuery, MapLibre GL, and Matomo analytics. It is mobile-optimized and features good SEO practices. Hosting appears stable with nameservers linked to a known hosting provider. Performance is moderate with good user experience and navigation clarity. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No incident response or security policy information is publicly available. Analytics usage is moderate with Matomo tracking. Overall, the website is trustworthy, professional, and content-rich with minor areas for security and privacy improvement. There are no signs of malicious or adult content, and the domain registration aligns with the business purpose. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing security policies to improve trust and compliance.

SoliNet Rheinland-Pfalz operates as a non-profit advisory service dedicated to supporting individuals affected by digital violence within the Rheinland-Pfalz region of Germany. The website offers confidential, free, and multilingual online counseling services, focusing on emotional support, evidence preservation, content removal, legal guidance, and online safety education. The organization positions itself as a central resource for victims of digital violence, aiming to empower and protect users in digital spaces. Technically, the website is built on WordPress with Elementor, hosted likely by netcup GmbH, and employs modern web technologies such as jQuery. The site is accessible, mobile-optimized, and presents a professional design with consistent branding. Security-wise, HTTPS is enforced, but the absence of security headers and explicit privacy or cookie policies indicates room for improvement. No analytics or tracking scripts were detected, suggesting a privacy-conscious approach. Overall, the site is trustworthy and safe for general audiences, with no adult or questionable content. However, the lack of direct contact details and formal privacy documentation slightly reduces compliance confidence.

M

Medienanstalt Rheinland-Pfalz

wmk-rlp.de

0

The website 'Woche der Medienkompetenz Rheinland-Pfalz' is a government-backed initiative focused on promoting media literacy across the Rheinland-Pfalz region in Germany. It serves a broad audience including schools, families, sports clubs, and seniors, providing educational resources and campaigns to combat misinformation and enhance trustworthy information dissemination. The site is well-positioned within its regional market, supported by numerous reputable partners and government entities. Technically, the website is built on TYPO3 CMS, hosted by Schlund Technologies, and employs privacy-conscious analytics via Matomo with cookie-less tracking by default. The site demonstrates good mobile optimization, clear navigation, and professional design, reflecting a mature digital infrastructure suitable for its public service mission. From a security perspective, the website enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security policies or incident response contacts, and security headers are not visibly implemented. No vulnerabilities or sensitive data exposures were detected, indicating a solid security posture but with room for improvement in transparency and header security. Overall, the website is trustworthy, compliant with privacy regulations, and serves its educational purpose effectively. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security culture.

M

Medienanstalt Rheinland-Pfalz

oktv-rlp.de

0

The website www.oktv-rlp.de serves as the official platform for Offene Kanäle (Open Channels) in Rheinland-Pfalz, Germany, providing citizens with opportunities to create and broadcast local television content. Operated under the auspices of the Medienanstalt Rheinland-Pfalz, it supports community media engagement through volunteer associations and offers services such as live streaming, workshops, and content upload. The site is well-established with over 30 years of history and maintains a strong regional presence. Technically, the website is built on WordPress 6.8.3 with a custom theme and uses several plugins including Contact Form 7, Complianz GDPR for cookie management, FooBox for image lightbox, and Matomo for analytics. The site employs HTTPS with good SSL configuration and uses hCaptcha for form protection, reflecting a moderate to good digital maturity. Mobile optimization is basic but functional, and SEO practices are adequately implemented. From a security perspective, the site enforces HTTPS and cookie consent mechanisms, uses encrypted email addresses to reduce scraping, and integrates hCaptcha to mitigate spam. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and there is no published security.txt or vulnerability disclosure policy. The overall security posture is moderate with room for improvement in header implementation and incident response transparency. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained. It effectively serves its community media mission with clear contact information and transparent policies. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving mobile and accessibility features to further strengthen its security and user experience.

B

Bildungszentrum BürgerMedien e.V.

bz-bm.de

0

Bildungszentrum BürgerMedien e.V. (BZBM) is a non-profit educational organization focused on media training and citizen media networking primarily in the German regions of Rheinland-Pfalz, Hessen, Baden-Württemberg, and Ostbelgien. Founded in 1995, it is supported by regional media authorities and local government, offering seminars, workshops, and projects to empower community media producers and broadcasters. The website reflects a professional and consistent brand image with clear navigation and relevant content for its target audience of media practitioners and citizens interested in media education. Technically, the website is built on a modern WordPress platform using up-to-date libraries such as jQuery and Bootstrap, with plugins for GDPR compliance, contact forms, and media embedding. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security headers and a published security policy or incident response contact. No signs of blocking or WAF interference were detected, allowing full content access and analysis. The domain registration data is consistent with the organization's history and branding, supporting legitimacy. Privacy compliance is strong, with a comprehensive privacy policy and cookie management system. Overall, the website presents a trustworthy and professional digital presence for a regional non-profit media education entity, with recommendations to enhance security headers and publish incident response information to further strengthen its security posture.

S

Stiftung MKFS

mkfs.de

0

The MedienKompetenz Forum Südwest (MKFS) is a German non-profit educational foundation focused on promoting media literacy, especially in digital and social media contexts. With over 25 years of experience, MKFS provides educational projects, free materials, and workshops targeting youth, educators, and media-interested individuals primarily in the Southwest Germany region. The website reflects a well-established organization with consistent branding and trusted partnerships with regional media authorities. Technically, the site is built on WordPress, uses Matomo for privacy-conscious analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS and cookie consent enforcement, though additional security headers and formal security policies could enhance protection. Overall, the site is professional, accessible, and trustworthy, with no detected adult or questionable content.

S

Stiftung MedienKompetenz Forum Südwest

silver-tipps.de

0

Silver Tipps is a German non-profit educational platform dedicated to empowering older adults with digital literacy and safe internet usage skills. The website offers a variety of content including articles, videos, online lectures, and quizzes, supported by reputable media and governmental partners. The target audience is primarily seniors seeking to overcome digital barriers and gain confidence in using modern technologies. The project is backed by the Stiftung MedienKompetenz Forum Südwest and other regional media authorities, positioning it as a trusted resource in the digital education sector for older populations. Technically, the website is built on WordPress with a modern tech stack including jQuery and privacy-focused Matomo analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The use of privacy-respecting analytics and absence of commercial advertising reflect a strong commitment to user privacy and non-commercial educational goals. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and a visible cookie consent mechanism, which are areas for improvement to enhance compliance with EU regulations. No critical vulnerabilities or suspicious elements were detected, and the WHOIS data indicates a legitimate domain registration consistent with the project's nature. Overall, Silver Tipps presents a professional, trustworthy, and well-structured platform with a clear mission. Strategic recommendations include implementing a cookie consent banner, adding security headers, publishing a security policy, and providing direct contact information to further strengthen trust and compliance.

M

Medienförderung RLP GmbH

mf-rlp.de

0

Medienförderung RLP GmbH is a regional media funding agency based in Rheinland-Pfalz, Germany, operating as a subsidiary of the Medienanstalt Rheinland-Pfalz. Supported by the state government and major broadcasters such as SWR and ZDF, the organization aims to support creative and innovative media professionals in digital media sectors including audio-visual works, games, and online series. The website serves as an information and application portal for funding opportunities, providing clear guidance on application processes and showcasing funded projects. The target audience is media creators and producers within or connected to Rheinland-Pfalz. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Gutentor, leveraging Bootstrap 5 for responsive design. The site is hosted by SchlundTech, a reputable German hosting provider, and uses HTTPS with a good SSL configuration. The site is mobile-optimized and SEO-friendly, with structured data and Open Graph tags enhancing discoverability. However, some accessibility features are basic, and no cookie consent mechanism was detected, which is a GDPR compliance gap. From a security perspective, the site enforces HTTPS and uses secure forms for search and login. No security headers were detected in the provided data, and no explicit security or incident response policies are published. There are no visible vulnerabilities or exposed sensitive data. The absence of a cookie consent banner and security.txt or vulnerability disclosure policy are areas for improvement. Overall, the website is professional, trustworthy, and well-aligned with its public funding mission. The risk profile is low, but compliance with privacy regulations could be enhanced by implementing cookie consent and publishing security policies. Strategic recommendations include improving privacy compliance, adding security headers, and publishing incident response contacts to strengthen trust and security posture.

D

Daimler Buses GmbH

omniplus-on.com

0

OMNIplus ON is a digital service platform operated by Daimler Buses GmbH, focused on providing comprehensive digital solutions for bus and coach fleet management. The platform offers services including fleet monitoring, driver support, procurement management, and data integration, positioning itself as a key enabler for bus and coach companies to optimize operations and vehicle availability. The website reflects a mature digital infrastructure with modern technologies such as React and Material-UI, delivering a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though some security headers could be improved. Privacy compliance is strong, featuring comprehensive privacy and cookie policies with consent mechanisms. Overall, the site demonstrates high professionalism and trustworthiness, aligned with the Daimler brand.

D

Docter Optics

docteroptics.com

0

Docter Optics is a well-established German company specializing in the development and serial production of customized optical components and systems, serving various industrial sectors including automotive, medical technology, and biometrics. The website reflects a mature digital presence with a professional design, clear navigation, and a focus on B2B clients. Technically, the site uses modern CMS (Contao), integrates consent management via Usercentrics, and employs Google Analytics 4 with IP anonymization, indicating a good level of digital maturity and privacy awareness. Security posture is solid with HTTPS enabled and standard security headers, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the domain registration is consistent with the company's history, supporting legitimacy. Strategic improvements include publishing privacy and security policies, enabling DNSSEC, and adding vulnerability disclosure mechanisms.

P

Plasmatreat GmbH

plasmatreat.com

0

Plasmatreat GmbH is a medium-sized German company specializing in plasma technology and surface modification solutions for industrial applications. The company positions itself as a leading manufacturer and supplier of plasma equipment, serving diverse sectors including manufacturing, energy, transportation, and technology. Their business model focuses on B2B industrial clients, offering products, services, and training to optimize plasma treatment processes. The website reflects a professional and consistent brand image with multi-language support and detailed industry-specific content. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Font Awesome 7 Pro and Google Tag Manager integrated with Usercentrics for cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The absence of explicit privacy and terms of service pages is a notable gap in compliance documentation. From a security perspective, the site enforces HTTPS and employs consent management, but lacks explicit security headers and published security policies or incident response contacts. The WHOIS data is incomplete or unavailable, which raises some concerns about domain registration legitimacy. However, the professional presentation and presence of multiple subsidiaries and partner links support the company's credibility. Overall, the website is well-structured and trustworthy for its target industrial audience, but improvements in transparency around privacy, security policies, and domain registration verification are recommended to enhance trust and compliance.

M

Medienanstalt Rheinland-Pfalz

medienanstalt-rlp.de

0

Medienanstalt Rheinland-Pfalz is a regional media authority dedicated to enabling media participation and safeguarding media diversity in the German state of Rheinland-Pfalz. The organization focuses on media regulation, media literacy, citizen media, and media promotion, serving a broad audience including citizens, seniors, children, and media professionals. Their website is professionally designed, content-rich, and well-structured, reflecting their public service mission. Technically, the website is built on TYPO3 CMS and employs Matomo analytics configured to respect user privacy by disabling cookies. The site is hosted on domaincontrol.com nameservers and uses HTTPS to secure communications. Mobile optimization and accessibility are well implemented, providing a good user experience across devices. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The WHOIS data aligns with the website's regional and organizational identity, supporting legitimacy. Overall, the website demonstrates a strong security posture, excellent content quality, and good privacy compliance, making it a trustworthy platform for its intended audience.

V

Verbund Safer Internet DE

saferinternet.de

0

The website www.saferinternet.de serves as the German Safer Internet Centre, part of the EU's Digital Europe Programme. It provides educational resources, awareness campaigns, and support services focused on online safety for children, youth, parents, and educators. The site acts as a hub linking to partner organizations such as klicksafe, Nummer gegen Kummer, jugendschutz.net, and internet-beschwerdestelle.de, which collectively offer media literacy, helpline services, and complaint mechanisms for illegal online content. The business model is non-profit and government-supported, targeting a broad audience concerned with child and youth online protection in Germany. Technically, the website uses a basic technology stack including jQuery 1.7.1 and standard CSS, with no detected CMS or advanced frameworks. The site is moderately optimized for performance and mobile use but lacks modern security headers and updated libraries. No forms or data collection mechanisms were found on the analyzed page, and no analytics or tracking scripts were detected, indicating a privacy-conscious approach but also a lack of advanced digital maturity. From a security perspective, the site is accessible without WAF or blocking mechanisms, but it lacks visible security headers and privacy/cookie policies. The WHOIS data is minimal but consistent with a legitimate non-profit EU initiative. No vulnerabilities or exposed sensitive data were detected, but the outdated jQuery version and missing security headers present moderate risks. The site does not provide explicit contact or incident response information, which could be improved. Overall, the website is trustworthy, safe, and professionally presented with a clear mission. However, it would benefit from enhanced security practices, updated technology, and improved privacy compliance to strengthen its digital maturity and user trust.

B

Brain Appeal GmbH

brain-appeal.com

0

Brain Appeal GmbH is a specialized internet agency based in Mannheim, Germany, focusing on TYPO3 CMS and Symfony-based web development and consulting since 1998. The company offers tailored TYPO3 solutions including consulting, relaunches, extension development, and proprietary digital products such as time tracking and event calendar systems, primarily serving educational institutions and businesses. Their website is professionally designed, multilingual, and showcases recent projects and certifications, reflecting a mature and credible digital presence. Technically, the site uses TYPO3 CMS, Symfony, and Matomo analytics with privacy-conscious configurations. Security posture is good with HTTPS and cookie tracking disabled, though security headers and cookie consent mechanisms could be improved. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy, but the overall business credibility and website professionalism mitigate this risk. Strategic recommendations include enhancing security headers, implementing cookie consent, and clarifying domain registration details.

I

InsightCommodity

insightcommodity.com

0

InsightCommodity operates a specialized marketplace platform focused on providing data-driven solutions for energy and commodity markets. Powered by EEX and associated with Deutsche Börse Group, it offers a broad range of services including analytics tools, clearing services, weather and renewables data, and procurement solutions. The platform connects over 35 providers and vendors, targeting energy market professionals and commodity traders. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. Technically, the site is built on Magento 2 with modern JavaScript libraries such as RequireJS and jQuery, and includes GDPR-compliant cookie consent mechanisms. Hosting and domain registration are handled by reputable providers, ensuring a stable infrastructure. Performance is moderate with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and secure form handling, though improvements are recommended such as enabling DNSSEC and adding advanced security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear policies and consent mechanisms. Overall, InsightCommodity presents a trustworthy and professional platform with a strong market position in the energy data sector. Strategic recommendations include enhancing DNS security, publishing incident response contacts, and improving security headers to further strengthen trust and compliance.

European Commodity Clearing AG (ECC) is a central clearing house specializing in energy and commodity products, operating as part of the EEX Group. The company provides critical services including counterparty risk management, physical and financial settlement of transactions, and collateral management. ECC serves multiple exchanges within the EEX Group and partner exchanges, positioning itself as a key player in the European and international commodity markets. The website reflects a professional and comprehensive presentation of their services, governance, and regulatory compliance, targeting commodity market participants and financial entities. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Bootstrap, Owl Carousel, and others to deliver a responsive and user-friendly experience. The site includes cookie consent mechanisms and integrates Etracker for analytics, demonstrating a moderate level of user tracking balanced with privacy compliance. The site is well-structured with clear navigation and good SEO practices. From a security perspective, ECC demonstrates strong adherence to best practices, including HTTPS enforcement and ISO 27001 certification. However, there is room for improvement in implementing HTTP security headers and publishing explicit incident response or vulnerability disclosure information. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, indicating a trustworthy online presence. Overall, ECC's website is a secure, professional, and informative platform that effectively supports its business objectives and compliance requirements.

R

Ralf Knoblauch

ralfknoblauch.de

0

Ralf Knoblauch operates a small-scale artistic and pastoral service business focused on creating sculptures symbolizing human dignity and engaging in social pastoral work in Bonn, Germany. The website serves as a platform to showcase his art, projects, exhibitions, and auctions, targeting a general audience interested in art and social issues. Technically, the site is built on WordPress using the Customizr Pro theme and several plugins including Jetpack and Ultimate Auction. The infrastructure is moderate in performance with good mobile optimization and basic SEO and accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic but present, with a privacy policy and cookie banner. Overall, the website is professional and trustworthy for its niche, though improvements in security and analytics configuration are recommended.

A

Angelika Kamlage

foto-exerzitien.de

0

The website www.foto-exerzitien.de represents a small, specialized business operated by Angelika Kamlage, offering spiritual and creative retreats focused on photography and biographical work. The business targets individuals seeking personal growth and reflection through structured retreats and courses, both in-person at scenic locations and online. The site is well-positioned in a niche market with a clear value proposition and positive participant testimonials. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Complianz GDPR, ensuring good SEO and privacy compliance. Hosting is provided by webgo.de, and the site uses HTTPS with a valid SSL certificate. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, explicit security headers are not detected, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the security posture is good but could be improved with additional headers and documented policies. The overall risk assessment is low, with no signs of malicious activity or suspicious domain registration patterns. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date software to mitigate potential vulnerabilities. The website is trustworthy, professionally maintained, and compliant with relevant privacy regulations.

C

Coachen mit Herz

coachenmitherz.de

0

Coachen mit Herz is a small German coaching service provider specializing in personal and team coaching, spiritual guidance, and seminars. The website presents a professional and consistent brand image with clear service descriptions and client testimonials, targeting individuals and teams seeking personal development and coaching support. The business operates primarily through direct client engagement and personalized sessions. Technically, the website is built on WordPress using common plugins such as Jetpack and Elementor, hosted on webgo.de servers. The site is moderately optimized for performance and mobile devices, with good SEO practices and basic accessibility features. Security posture is solid with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is partially met with a comprehensive privacy policy but no cookie consent mechanism. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

herCAREER is a leading European career and networking platform focused on empowering women through events, educational content, and community engagement. The platform offers career expos, networking opportunities, podcasts, and an academy to support professional growth. The website is well-designed, mobile-optimized, and provides comprehensive privacy and cookie policies compliant with GDPR. Technically, it is built on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is strong with HTTPS and cookie consent management, though explicit security headers were not confirmed. The absence of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional content and social presence. Overall, herCAREER presents a trustworthy and professional digital presence with room for minor security enhancements.

B

Bundesministerium für Bildung und Forschung (BMBF)

fona.de

0

The website www.fona.de serves as the official platform for the German Federal Ministry of Education and Research (BMBF) focused on sustainability research (FONA). It provides comprehensive information on sustainability topics, current news, events, and research coordination. The platform targets researchers, policymakers, and the general public interested in sustainable development. The site is well-branded with consistent government logos and maintains a professional and trustworthy appearance. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with integration of Cookiebot for consent management and Matomo for analytics. Hosting is managed via net-server.de, and the site uses HTTPS with good SSL configuration. Accessibility and SEO optimizations are well implemented, ensuring a positive user experience across devices. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms to comply with GDPR. However, explicit security headers like Content-Security-Policy and incident response contacts are not evident, representing areas for improvement. No vulnerabilities or suspicious content were detected, and the domain registration aligns with the official government entity, supporting high legitimacy. Overall, the website demonstrates a strong security posture, good privacy compliance, and excellent content quality. Strategic recommendations include publishing a formal security policy, incident response contacts, and enhancing security headers to further strengthen trust and compliance.

H

Heinrichs Messtechnik GmbH

heinrichs.eu

0

Heinrichs Messtechnik GmbH is a well-established German company specializing in process instrumentation with over 100 years of experience. Their product portfolio includes various types of flow meters such as Coriolis, Variable Area, Magnetic Inductive, Flap, and Vortex Flow meters, targeting industrial and energy sectors. The company maintains a professional online presence with a WordPress-based website using the Avada theme, integrating modern analytics and cookie consent tools. Technically, the website is well-structured, mobile-optimized, and performs moderately well, though some improvements in accessibility and security headers are recommended. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but explicit security policies and incident response contacts are missing. Overall, the website reflects a credible and trustworthy business with room for enhanced privacy compliance and security transparency.

N

NavVis GmbH

navvis.com

0

NavVis GmbH is a technology company specializing in advanced reality capture and digital twin solutions, serving industries such as surveying, construction, manufacturing, and process plants. The company offers a combination of hardware products like the NavVis MLX and VLX series, alongside software platforms such as NavVis IVION, enabling clients to capture, process, and access spatial data efficiently. NavVis positions itself as an innovative leader in handheld and wearable laser scanning technology with a strong B2B focus. Technically, the website is built on the HubSpot CMS platform, integrating modern analytics and marketing tools including Google Tag Manager, Matomo, Hotjar, and Usercentrics for privacy compliance. The site is well-optimized for SEO, mobile responsiveness, and accessibility, featuring structured data and comprehensive cookie consent mechanisms. From a security perspective, the site enforces HTTPS with strong SSL configurations and includes standard security headers. Forms are protected with reCAPTCHA, and no exposed sensitive data or vulnerable libraries were detected. However, the absence of explicit incident response contacts and vulnerability disclosure policies represents an area for improvement. Overall, the website demonstrates a high level of professionalism, technical maturity, and privacy compliance, though the lack of WHOIS transparency slightly impacts trustworthiness. Strategic recommendations include publishing terms of service, incident response information, and vulnerability disclosure details to enhance security posture and user trust.

H

Hengstler GmbH

hengstler.com

0

Hengstler GmbH is a German technology and manufacturing company specializing in encoders, counters, relays, and thermal printers tailored to industrial applications. The company positions itself as an experienced technology partner offering customized solutions with a focus on quality and sustainability. Their market presence is supported by certifications such as ISO 9001 and ATEX, indicating compliance with international quality and safety standards. The website targets industrial customers and technology partners, emphasizing reliability and innovation. Technically, the website is built on modern frameworks including Next.js and React, hosted on Vercel, and integrates analytics and search tools like Google Tag Manager and Algolia. The site demonstrates good performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Privacy compliance is addressed with a comprehensive privacy policy and cookie consent mechanisms. From a security perspective, the site enforces HTTPS, implements standard security headers, and avoids exposing sensitive data. However, no explicit security policy or incident response information is published, which could be improved. The absence of WHOIS data for the domain is a concern but does not detract significantly from the overall trustworthiness given the professional site content and clear contact information. Overall, Hengstler GmbH's website reflects a solid business and technical foundation with good security and privacy practices. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance transparency and trust.

E

Erzbistum Freiburg

fortbildung-ebfr.de

0

The website www.fortbildung-ebfr.de serves as the official platform for pastoral education and training within the Archdiocese of Freiburg, Germany. It offers a range of educational services including workshops, coaching, supervision, and online learning targeted at clergy, pastoral workers, educators, and volunteers. The site reflects a well-structured and consistent brand aligned with its non-profit religious mission. Technically, the site is built on Edith CMS, leveraging common web technologies such as jQuery, Bootstrap, and Matomo analytics. Hosting and DNS infrastructure are consistent with the content provider, indicating a stable technical foundation. Security posture is adequate with HTTPS enabled and some privacy-aware analytics configurations; however, the absence of explicit privacy and cookie policies and missing security headers represent compliance and security gaps. Overall, the site is safe, professional, and trustworthy but would benefit from enhanced privacy compliance and security best practices.

S

Stiftungen der Erzdiözese Freiburg

katholische-stiftungen-freiburg.de

0

The website 'Stiftungen der Erzdiözese Freiburg' represents a regional non-profit foundation network dedicated to supporting church-related and social projects in the Freiburg area of Germany. It offers services including funding projects, managing donations, and maintaining church properties. The site is well-positioned within its niche, targeting donors, church members, and community stakeholders with a transparent and trustworthy approach. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Borlabs Cookie for privacy compliance, hosted on kasserver.com. The security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, accessible, and compliant with GDPR, reflecting a mature digital presence for a non-profit entity.

D

Diözesanstelle Berufe der Kirche

berufe-der-kirche-freiburg.de

0

The website 'Diözesanstelle Berufe der Kirche' serves as an informational and advisory platform focused on church-related professions and vocational guidance within the Archdiocese of Freiburg, Germany. It targets individuals interested in pursuing careers in the church, offering coaching, orientation, and event information. The site is positioned as a regional non-profit service with strong ties to the church community and affiliated organizations. Technically, the site is built on Edith CMS, uses modern JavaScript libraries like jQuery and FontAwesome, and integrates Matomo analytics with respect for user privacy preferences. The hosting and domain registration are consistent with the organization's identity, indicating legitimacy and trustworthiness. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and explicit cookie consent mechanisms are recommended. Overall, the site presents professional content with clear navigation and a consistent brand image, supporting its mission effectively.

W

Web Commerce GmbH

konradsblatt-online.de

0

Konradsblatt is a regional weekly newspaper serving the Catholic community of the Freiburg Archdiocese in Germany. It offers news, commentary, and religious content through its website, e-paper subscriptions, and an online shop. The website is professionally designed with clear navigation and targets readers interested in church-related news and events. The business operates in the media and non-profit sectors, leveraging digital platforms to extend its reach. Technically, the website uses Edith CMS as its content management system, with frontend technologies including jQuery, Bootstrap, and FontAwesome. It employs Matomo analytics with cookie disabling features to track user interactions while respecting privacy preferences. The site is hosted with UI-DNS name servers and uses HTTPS, ensuring secure communications. Mobile optimization and SEO practices are well implemented, though accessibility could be improved. From a security perspective, the website enforces HTTPS and uses some security headers but lacks comprehensive security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy or cookie policy pages found, though a cookie consent mechanism is present. Overall, the website is trustworthy and professionally maintained, with a strong business credibility score. Strategic improvements in privacy disclosures, security headers, and incident response transparency would enhance its security posture and compliance standing.

J

Josefs-Gesellschaft gAG

jg-gruppe.de

0

Josefs-Gesellschaft gAG is a large, established German non-profit organization operating in the healthcare and social services sector. The company provides a broad range of services including rehabilitation for people with disabilities, elderly care, and healthcare services through hospitals and medical centers. The website reflects a professional and comprehensive digital presence with a strong focus on accessibility and user experience. Technically, the site is built on ASP.NET with modern JavaScript libraries and uses eTracker for analytics, implementing cookie consent mechanisms to comply with privacy regulations. Security posture is good with HTTPS enforced and no visible vulnerabilities, although some security headers and explicit incident response information are missing. Overall, the domain registration data aligns well with the organization's claims, supporting legitimacy and trustworthiness.

A

Albertinen Krankenhaus

albertinen.de

0

Albertinen Krankenhaus is the largest non-profit hospital in Hamburg, Germany, offering a wide range of specialized medical and nursing services. It operates under the parent organization Immanuel Albertinen Diakonie and maintains multiple specialized centers such as heart and vascular, tumor, and geriatric medicine centers. The website is professionally designed using TYPO3 CMS, providing comprehensive information for patients, healthcare professionals, and referring doctors. The hospital emphasizes medical expertise and patient care quality, supported by testimonials and certifications. Technically, the site is well-structured, mobile-optimized, and accessible, though some modern security headers and privacy compliance features are missing. Contact information is clearly presented, including phone and physical address, with a functional search form.

E

Evangelisches Amalie Sieveking Krankenhaus

amalie.de

0

Evangelisches Amalie Sieveking Krankenhaus is a regional hospital located in Hamburg-Volksdorf, Germany, providing a wide range of inpatient and outpatient medical services including orthopedics, endocrine surgery, cardiology, and birth assistance. The hospital operates under the parent organization Immanuel Albertinen Diakonie and maintains a strong focus on quality management, patient safety, and ethical standards. The website is professionally designed using TYPO3 CMS, offering comprehensive information for patients, medical professionals, and prospective employees. Technical infrastructure is modern with good mobile optimization and accessibility features. Security posture is solid with HTTPS and consent mechanisms for third-party content, though some security headers and incident response details could be improved. Overall, the hospital demonstrates high business credibility and trustworthiness with clear contact information and extensive partnerships.

S

Scholz Promotion Service GmbH

scholzpromotion.de

0

Scholz Promotion Service GmbH is a medium-sized German company specializing in sustainable and creative promotional products and full-service fulfillment solutions. The company holds ISO certification and EcoVadis Gold status, positioning itself as a quality and sustainability-focused supplier in the retail promotional products sector. Their services include sourcing, logistics, custom shop systems, and product design, targeting business clients seeking innovative marketing merchandise. Technically, the website is built on TYPO3 CMS with modern frontend frameworks and integrates multiple analytics and marketing tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response disclosures are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting a strong business credibility profile.

S

Setra Buses

setra-bus.com

0

Setra Buses operates a professional and comprehensive website showcasing their premium bus and coach models, sales services, and after-sales support. The company targets transport operators and fleet managers with a strong emphasis on quality and design. The website is built on a modern technical stack with Adobe Experience Manager CMS, uses Matomo analytics, and implements Usercentrics for GDPR-compliant consent management. Security posture is good with HTTPS and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data for the domain is a notable concern, potentially indicating a new registration or privacy protection, which slightly reduces trustworthiness. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations.

D

Daimler Buses GmbH

bus-store.com

0

BusStore, operated by Daimler Buses GmbH, is a leading European platform specializing in the sale and purchase of pre-owned buses and coaches. The company leverages its affiliation with Daimler Truck AG and renowned brands like Mercedes-Benz and Setra to offer a broad and reliable range of vehicles. Their business model includes vehicle sales, trade-ins, financing, leasing, and comprehensive after-sales services through the OMNIplus network, positioning them as a market leader in the transportation sector across Europe. Technically, the website is built on TYPO3 CMS, utilizing modern JavaScript and consent management tools like Usercentrics. The site is well-structured, mobile-optimized, and provides a rich user experience with multilingual support and detailed location and contact information. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses nonce tokens for form security. Privacy compliance is robust with clear privacy and cookie policies and GDPR adherence. However, there is no explicit public security policy or incident response contact, and WHOIS data is unavailable, which slightly impacts trust. Overall, the website presents a professional, trustworthy, and secure platform for its business operations. The main risk lies in the lack of WHOIS transparency, which should be addressed to enhance domain legitimacy. Strategic recommendations include publishing a security policy, incident response details, and a vulnerability disclosure program to further strengthen security posture and trust.

D

Daimler Buses GmbH

omniplus.com

0

OMNIplus, operated by Daimler Buses GmbH, is a leading service provider specializing in bus and coach maintenance, repair, and digital services across Europe. The website showcases a comprehensive portfolio including service contracts, 24-hour mobility services, workshop expertise, spare parts, and innovative digital solutions branded as OMNIplus ON. The company targets bus operators and fleet managers, positioning itself as a trusted enterprise-level partner in the transportation sector. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating Matomo analytics with user consent management via Usercentrics. The site is well-structured, mobile-optimized, and provides a professional user experience with clear navigation and rich content. However, some security best practices such as explicit security headers and vulnerability disclosure mechanisms are absent. From a security perspective, the site enforces HTTPS and employs consent mechanisms for privacy compliance, reflecting a mature privacy posture. The absence of WHOIS domain registration data is a notable anomaly that warrants further investigation, though the website content and business information strongly indicate legitimacy under Daimler Buses GmbH. Overall, the website presents a low risk profile with strong business credibility and privacy compliance, but improvements in security headers and domain registration transparency are recommended to enhance trust and security posture.

D

Daimler Truck AG

daimlertruck.com

0

Daimler Truck AG is a leading global manufacturer of commercial vehicles, operating over 40 production sites worldwide with a workforce exceeding 100,000 employees. The company offers a broad portfolio including light, medium, and heavy-duty trucks, buses, coaches, and tailored financial services. Their market position is strong as one of the largest commercial vehicle manufacturers globally, supported by a network of subsidiaries and brands such as Freightliner, Mercedes-Benz Trucks, and FUSO. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive corporate information. Technically, the site is built on TYPO3 CMS, integrates modern consent management via Usercentrics, and uses Matomo for analytics, indicating a focus on privacy and compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and a public security policy are absent. WHOIS data is unavailable, which slightly impacts transparency but the website's content and branding strongly support legitimacy. Overall, the site is well-structured, GDPR compliant, and professionally maintained.

M

Messe München GmbH

productronica.com

0

productronica.com is the official website for the world-leading trade fair for electronics development and manufacturing, organized by Messe München GmbH. The site provides comprehensive information about the event, including exhibitor directories, program highlights, and visitor services. It targets industry professionals and companies involved in electronics manufacturing technologies. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, it leverages modern JavaScript modules, cloud hosting, and a consent management platform to ensure compliance and performance. Security posture is strong with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is robust, with clear privacy and cookie policies and a user consent mechanism. Overall, the site demonstrates high business credibility and trustworthiness, supporting the event's global reputation.

K

KUKA

kuka.com

0

KUKA is a globally recognized enterprise specializing in intelligent robotics, plant, and systems engineering, driving digitization in the manufacturing industry. The company offers a broad portfolio including robot systems, autonomous mobile robotics, production machines, and comprehensive services such as technical support, training, and cybersecurity. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support, targeting industrial clients and system integrators worldwide. Technically, the site employs modern JavaScript libraries, cookie consent mechanisms, and Google Tag Manager for analytics, ensuring good performance and compliance with privacy regulations. Security posture is strong with HTTPS enforcement and secure forms, though explicit security headers and vulnerability disclosure mechanisms could be enhanced. WHOIS data is unavailable, which slightly reduces transparency but does not detract from the overall legitimacy given the professional corporate content and branding. Overall, KUKA's website demonstrates a high level of digital maturity and business credibility, suitable for its enterprise-scale operations in manufacturing automation.

T

Truck1 Sp.z.o.o.

alle-lkw.de

0

Truck1 Sp.z.o.o. operates Alle-Lkw.de, a well-established online marketplace specializing in used trucks and commercial vehicles in Germany. Founded in 2003, the platform offers a comprehensive catalog of over 350,000 listings including trucks, trailers, motorhomes, and other commercial vehicles. The business targets both individual buyers and dealers, providing services such as vehicle listings, dealer registration, advertising, and leasing options. The website is part of a broader Truck1 brand ecosystem with multiple regional domains, indicating a strong market presence in Europe and beyond. Technically, the website employs a modern infrastructure with extensive use of third-party analytics and marketing tools including Google Tag Manager, Facebook Pixel, TikTok Analytics, and Criteo for retargeting. The site is hosted on Google Cloud DNS with HTTPS enforced, ensuring secure communications. The design is responsive and optimized for mobile devices, with good SEO practices and structured data enhancing search visibility. From a security perspective, the site demonstrates good practices such as HTTPS usage and security headers, but lacks publicly available privacy and cookie policies, security policies, and vulnerability disclosure information. The extensive use of third-party scripts increases the attack surface and requires ongoing monitoring. No critical vulnerabilities or WAF blocking were detected, indicating a stable security posture. Overall, Alle-Lkw.de is a credible and professional platform with a solid business model and technical foundation. To enhance trust and compliance, it is recommended to publish comprehensive privacy and cookie policies, implement a security policy page, and consider a vulnerability disclosure program. These steps will improve privacy compliance and security transparency, supporting long-term business growth and user confidence.

Scholz Promotion operates a retail business focused on promotional products, as indicated by the domain and contact email. The current website is inactive, displaying a simple notice that the shop is not active and providing a customer service email and a link to the main company website. The technical infrastructure is minimal, relying on basic HTML and CSS with Google Fonts, and no advanced frameworks or CMS detected. The domain is registered in Germany with a reputable registrar and shows no privacy protection, aligning with the business location and language. Security posture is weak due to lack of HTTPS confirmation, missing security headers, and absence of privacy or cookie policies. No analytics or tracking technologies are present, indicating minimal digital maturity. Overall, the website is low in content quality and professionalism, reflecting its inactive status.

H

HERMLE AG

myhermle.de

0

HERMLE AG operates a professional customer portal at myhermle.de, providing registered customers with access to service requests and machine information. The portal supports user registration and login, targeting a B2B manufacturing audience primarily in Germany. The website demonstrates a consistent brand presence and offers essential business services digitally. Technically, the site uses modern frontend technologies such as Bootstrap 5, jQuery, and DataTables, ensuring a responsive and user-friendly experience. However, some areas such as accessibility and SEO could be improved. Security posture is adequate with HTTPS implied, but lacks explicit security headers and published security policies. Privacy compliance is partially met with a clear privacy policy and terms of service, but no cookie consent mechanism is present. Overall, the site is trustworthy and professionally maintained, with room for enhancements in security and privacy transparency.