Security Directory

E

EP NEO

kitaportal-sh.de

0

The KitaPortal Schleswig-Holstein is an official government online platform designed to facilitate the search and registration for childcare places within the Schleswig-Holstein region of Germany. It serves parents, childcare facilities, and daycare providers by offering a centralized, user-friendly interface for place search, selection, pre-registration, and status tracking. The portal is mandatory for all childcare facilities since August 2020, ensuring comprehensive coverage and streamlined processes for childcare placement. Technically, the website is built using modern web technologies, primarily Angular 19.2.14, with Bootstrap for styling and custom SVG icons. The platform is hosted via INWX nameservers, indicating professional hosting arrangements. The site is mobile-optimized and accessible, with good navigation and content relevance. However, some SEO and privacy compliance aspects such as cookie consent mechanisms and security headers could be improved. From a security perspective, the site enforces HTTPS and uses secure form inputs, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The privacy policy is comprehensive and GDPR compliant, but cookie consent is missing. Overall, the security posture is solid but could benefit from enhancements in headers and transparency. The overall risk assessment is low, with the site presenting a trustworthy and professional government service. Strategic recommendations include implementing cookie consent, adding security headers, publishing security policies, and conducting regular security audits to maintain compliance and trust.

T

Tourist-Info Bad Segeberg

badsegeberg-tourismus.de

0

The website www.badsegeberg-tourismus.de serves as the official tourism portal for the city of Bad Segeberg, Germany. It provides comprehensive information on local attractions, events such as the Karl-May-Spiele, accommodation booking assistance, and regional products. The site targets tourists and visitors seeking detailed and reliable information about the region. The business model appears to be a government or municipal tourism service focused on promoting local tourism and supporting visitors. Technically, the website is built on the ikiss CMS platform, utilizing jQuery and jQuery UI libraries, with responsive design elements such as slicknav for mobile navigation. The site includes accessibility features and SEO best practices, with a moderate performance profile. Integration with Google Translate enhances usability for international visitors. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, explicit security headers and incident response policies are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows consistency with the design and hosting provider, Advantic GmbH, supporting legitimacy. Overall, the website is professional, trustworthy, and well-suited for its purpose. Strategic improvements could include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen security posture and trust.

W

Wege-Zweckverband der Gemeinden des Kreises Segeberg

wzv.de

0

The Wege-Zweckverband der Gemeinden des Kreises Segeberg (WZV) operates as a regional public utility focused on sustainable waste management and municipal services within the Kreis Segeberg area in Germany. Their website provides comprehensive information on waste disposal schedules, recycling services, environmental education, and career opportunities, targeting local residents and municipalities. The organization positions itself as a responsible and engaged environmental service provider with a clear regional focus. Technically, the website is built on the Joomla CMS platform, leveraging modern web technologies such as Bootstrap for responsive design, FontAwesome for icons, and Leaflet for interactive maps. Accessibility is enhanced through the Eye-Able assistive technology integration. The site demonstrates good mobile optimization and structured navigation, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs CSRF tokens in forms, indicating a baseline security posture. However, the absence of explicit security headers and lack of visible incident response or vulnerability disclosure policies suggest areas for improvement. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy, though cookie consent mechanisms are not evident. Overall, the website is professional, trustworthy, and well-suited for its public service mission. Strategic enhancements in security headers, contact transparency, and cookie consent would further strengthen its security and compliance posture.

L

leanact GmbH

meldooplus.de

0

MeldooPLUS is a specialized software solution aimed at helping German municipalities and administrative staff manage citizen requests digitally, improving efficiency and saving time. The website presents a professional and focused business offering with clear target audience alignment and a niche market position in government digital services. The company behind the website is leanact GmbH, based in Braunschweig, Germany, which adds credibility and local relevance. Technically, the website is built on WordPress using Elementor for page building, with Matomo analytics for user behavior tracking and Real Cookie Banner Pro for GDPR-compliant cookie consent management. The site is well-structured with comprehensive metadata, Open Graph tags, and JSON-LD structured data, supporting SEO and social media integration. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the website enforces HTTPS, uses appropriate security headers, and does not expose sensitive data. Cookie consent mechanisms are robust and documented, supporting GDPR compliance. However, there is no publicly available security policy or incident response information, which could be improved to enhance trust and preparedness. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy and professional digital presence for its intended audience.

K

Karl-May-Spiele Bad Segeberg

karl-may-spiele.de

0

Karl-May-Spiele Bad Segeberg is a well-established cultural event organizer specializing in live outdoor theater performances based on Karl May's works. The website serves as a comprehensive platform for ticket sales, fan merchandise, and visitor information, targeting families and fans of western-themed entertainment. The business has a strong market position in Germany with a history dating back to 1952. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality, enhanced by Yoast SEO and Borlabs Cookie for privacy compliance. The site demonstrates good digital maturity with modern technologies, responsive design, and SEO optimization, although some improvements in accessibility and security headers could be made. From a security perspective, the site uses HTTPS and cookie consent mechanisms effectively, with no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not present, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and compliant with GDPR, providing a safe and user-friendly experience. Strategic recommendations include adding security headers, publishing a security policy, and enhancing accessibility features to further strengthen the security posture and user trust.

I

inixmedia

communice.de

0

inixmedia operates as a specialized provider of communice®web, a content management system tailored for municipal websites and intranet projects in Germany. The company targets local government entities and public institutions, offering a scalable, legally compliant, and user-friendly platform. Their market position is supported by over 20 years of experience and approximately 500 installations across Germany. The website reflects a professional and consistent brand image, emphasizing ease of use, legal compliance, and comprehensive support services. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript and CSS, with integrations such as OpenStreetMap and CookieFirst for consent management. The site demonstrates good mobile optimization and accessibility features, with a moderate performance profile. Security practices include HTTPS enforcement, SSL certificates, and regular updates, although explicit security headers are not evident in the provided content. From a security perspective, the site maintains a good posture with encrypted data transmission and daily backups. However, there is room for improvement in publishing explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is partially demonstrated through cookie consent but lacks a clearly accessible privacy policy and terms of service. Overall, the website presents a trustworthy and professional digital presence suitable for its government and public sector audience. Strategic recommendations include enhancing transparency around privacy and security policies, implementing security headers, and providing clear incident response contacts to further strengthen trust and compliance.

K

Kölner Studierendenwerk

kstw.de

0

The Kölner Studierendenwerk website serves as a comprehensive portal for student welfare services in Cologne, Germany. It offers a broad range of services including housing, financial aid, counseling, gastronomy, and childcare, targeting students and university affiliates. The site is built on TYPO3 CMS and employs Matomo analytics, reflecting a modern and privacy-conscious technical infrastructure. The website is well-structured, mobile-optimized, and provides clear navigation, enhancing user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit incident response documentation. Overall, the site demonstrates a high level of professionalism and trustworthiness appropriate for a public service organization.

B

BURG Services GmbH & Co. KG

burg-services.de

0

BURG Services GmbH & Co. KG is a German-based medium-sized company specializing in promotional products and advertising gifts. The company positions itself as a reliable and innovative partner for businesses seeking customized promotional solutions. Their website reflects a professional B2B business model with a strong network of 65 partner brands and certifications such as the EU Organic Bio certification. The site is built on Drupal 9, leveraging modern web technologies and includes integrations with Google Analytics and Tag Manager for marketing insights. The website is well-structured, mobile-optimized, and provides comprehensive information including privacy and cookie policies, terms of service, and contact details. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response details are absent. WHOIS data is minimal but consistent with the business claims, using GoDaddy DNS services. Overall, the site demonstrates a mature digital presence suitable for its market segment.

F

Friesland Camping

friesland-camping.de

0

Friesland Camping is a small hospitality business focused on providing nature-centric camping and glamping experiences in the Friesland region of Germany. The website showcases their offerings including seecamping, green tiny houses, and family-friendly nature adventures. The business targets families and nature lovers seeking tranquility and outdoor recreation. Technically, the website is built on the Squarespace platform, leveraging its CMS and hosting services, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS and HSTS enabled, though the site lacks explicit privacy and terms of service pages, which are recommended for compliance and trust. Contact information is limited to a contact form without direct emails or phone numbers, which could be improved for better user engagement and credibility. Overall, the site is professional and trustworthy but could enhance privacy compliance and contact transparency.

J

JadeBay GmbH

jade-bay.de

0

JadeBay GmbH is an inter-municipal development company serving the JadeBay region in Germany, focusing on economic promotion, workforce development, and innovation support. The website clearly communicates its mission and services to regional businesses, job seekers, and investors, positioning itself as a key regional development agency. Technically, the site employs a modern tech stack including Google Analytics with consent management, jQuery, and a CMS likely Redaxo. The site is mobile-optimized and well-structured with good SEO practices. Security posture is solid with HTTPS and Content-Security-Policy headers, though additional security headers and explicit security policies could enhance protection. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and aligned with its business objectives.

J

Jade-Weser-Park

jadeweserpark.de

0

The website jadeweserpark.de represents a small-scale business or organization based in Germany, as indicated by the domain and language usage. The site is built on WordPress using the Astra theme and Elementor page builder, reflecting a moderate level of digital maturity. The technical infrastructure is standard for small business websites, with modern technologies and a cookie consent mechanism implemented to comply with GDPR requirements. However, the site lacks explicit privacy policies, terms of service, and detailed business or contact information, which limits its transparency and user trust. Security posture is adequate with HTTPS enabled and cookie consent in place, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is functional but basic, with moderate risks related to compliance and security best practices.

A

AWV Jade e.V.

awv-jade.de

0

AWV Jade e.V. is a well-established regional business association founded in 1919, representing over 420 member companies in the Jade economic region of Germany. The organization focuses on advocating for economic interests, providing legal advice, networking opportunities, and continuing education. Their website reflects a mature digital presence with modern WordPress infrastructure, active event management, and comprehensive content tailored to their target audience of regional businesses. Technically, the site uses standard and reputable plugins and libraries, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with clear policies and GDPR-aligned cookie management. Overall, the site projects professionalism and trustworthiness, supporting the organization's market position as a key regional economic voice.

Industrie-Club Roffhausen is a small, local business association founded in 1992, focused on fostering economic collaboration and development at the Roffhausen industrial site in Germany. The website serves as an information portal for members and interested parties, offering details about membership benefits, events, and organizational structure. Technically, the site is built on WordPress with common plugins and frameworks like Bootstrap and jQuery, though some components such as jQuery are outdated, posing moderate security risks. The site uses HTTPS and implements cookie consent mechanisms, reflecting a reasonable level of privacy compliance. However, security headers are missing, and no explicit incident response or vulnerability disclosure policies are visible, indicating room for improvement in security posture. Overall, the website is professional, content-rich, and trustworthy, but could benefit from technical and security enhancements.

M

Metropolregion Nordwest

metropolregion-nordwest.de

0

Metropolregion Nordwest is a regional development organization focused on supporting and promoting activities that enhance regional visibility, competitiveness, and quality of life across the Nordwest metropolitan area in Germany. Their core activities include fostering cross-border cooperation, networking, lobbying, acquiring funding, and representing the region at various levels. The website reflects a professional and well-structured digital presence with clear navigation and relevant content aimed at regional stakeholders, businesses, and government entities. Technically, the site uses a custom CMS (NOL-IS), modern JavaScript, and includes a cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Overall, the site is trustworthy and serves its purpose effectively.

K

Klimaschutz- und Energieagentur Niedersachsen GmbH

klimaschutz-niedersachsen.de

0

Klimaschutz- und Energieagentur Niedersachsen GmbH operates as a regional competence center focused on climate protection, energy efficiency, and renewable energy initiatives within Lower Saxony, Germany. The agency provides informational resources, consulting services, and supports various stakeholders including municipalities, businesses, and societal groups. Their market position is that of an authoritative regional agency supported by the Lower Saxony Ministry for Environment, Energy and Climate Protection. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the website employs modern JavaScript libraries such as jQuery, Foundation-sites, and AOS for animations, alongside RequireJS for module loading. It integrates Google Tag Manager for analytics and CookieFirst for consent management, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured navigation. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism. However, it lacks explicit security headers and a published security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with a legitimate public agency domain. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

Bürgerhaus Schortens is a local cultural center in Germany that provides a diverse range of cultural events including cabaret, exhibitions, markets, and concerts. It serves as a community hub for cultural engagement and group meetings, targeting local residents and culture enthusiasts. The website reflects a small non-profit organization with a clear focus on community and cultural enrichment. Technically, the website uses a variety of common web technologies such as jQuery, Bootstrap, and FontAwesome, likely running on the Redaxo CMS platform. The site is mobile-optimized and provides a good user experience with clear navigation and event information. Security-wise, the site implements cookie consent mechanisms and uses Google Analytics for tracking, but lacks explicit security policies or incident response information. The domain registration data is consistent with the website's public cultural mission, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with GDPR requirements, though it could improve by adding terms of service and explicit security policies.

A

AlumniCampus TU Ilmenau

alumnicampus.de

0

AlumniCampus TU Ilmenau operates as a dedicated alumni network platform for graduates of Technische Universität Ilmenau, providing a community space for networking, mentoring, events, and career services. The platform is well-positioned within the niche educational sector, targeting university alumni primarily in Germany but also internationally. The website content is professionally curated, reflecting a strong affiliation with the university and offering relevant services to its members. Technically, the website employs standard web technologies including JavaScript, CSS, and HTML5, with embedded multimedia content such as YouTube videos. It is built on the NDAlumni CMS platform, which is specialized for alumni networks. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are adequately implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not provide explicit security or incident response policies. No cookie consent mechanism is present, which may pose compliance risks under GDPR. The absence of vulnerability disclosure policies and security.txt files suggests room for improvement in transparency and security culture. Overall, the website is trustworthy, safe, and professionally maintained, with minor gaps in privacy compliance and security best practices. Strategic enhancements in cookie consent, security headers, and incident response transparency would strengthen its security posture and regulatory compliance.

S

SWING e.V.

inova-ilmenau.de

0

inovailmenau is a well-established, student-organized career forum hosted at TU Ilmenau, Germany, serving as a key platform for students and companies to connect. The website effectively communicates event details, organizational background, and partnership information, targeting students and alumni seeking career opportunities. Technically, the site is built on WordPress with a modern tech stack including jQuery, Ecwid for e-commerce, and AWS Cloudfront CDN for content delivery. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced and some security headers present, but lacks advanced security policies such as CSP and incident response disclosures. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistency.

T

Thüringer Koordinierungsstelle Naturwissenschaft und Technik

thueko.de

0

Thüringer Koordinierungsstelle Naturwissenschaft und Technik (Thüko) is a regional non-profit organization dedicated to supporting young women in STEM education and careers in Thüringen, Germany. The website serves as an informational and networking platform, offering workshops, events, and career guidance tailored to female students and graduates in natural sciences, technology, engineering, and mathematics. The organization collaborates with universities and Fachhochschulen across Thüringen to promote successful studies and professional development in STEM fields. Technically, the website is built on WordPress 6.1.9, utilizing the UIkit frontend framework and jQuery libraries. It integrates Google Maps API and employs deferred script loading for performance optimization. The hosting is managed via kasserver.com, as indicated by the nameservers. The site demonstrates good mobile optimization, SEO practices, and a consistent branding approach, though accessibility features are basic. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers, a formal security policy, and incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. No analytics or advertising trackers were found, indicating minimal user tracking. Overall, the security posture is adequate but could be improved with additional headers and compliance features. The website content is safe, targeted at a general audience interested in STEM education for women, with no adult or questionable content. The domain WHOIS data is limited but consistent with a legitimate educational entity. The overall risk is low, with recommendations focusing on enhancing privacy compliance, security headers, and incident response readiness to strengthen trust and regulatory adherence.

S

Stadt Ilmenau

ilmenau.de

0

The website www.ilmenau.de serves as the official digital portal for the city of Ilmenau, Germany, providing comprehensive information and services related to municipal governance, citizen services, tourism, economic development, and cultural events. It targets a broad audience including residents, visitors, and businesses, positioning itself as a central hub for local government communication and engagement. The site demonstrates a consistent and professional brand presence aligned with its governmental role. Technically, the website employs a modern technology stack including Bootstrap 4.5, jQuery, and various accessibility and UI enhancement libraries. The CMS appears to be REDAXO, a popular German CMS. The site is mobile-optimized and includes accessibility features such as font resizing and contrast adjustments, enhancing usability for diverse users. From a security perspective, HTTPS is enforced as indicated by the base URL, but explicit security headers are not evident in the HTML source. No security or incident response policies are published, and no vulnerability disclosure mechanisms are present. Privacy compliance is partially addressed with a comprehensive privacy policy, but lacks a cookie consent mechanism. Social media presence is official and consistent with the city’s identity. Overall, the website is trustworthy and professionally maintained, with room for improvement in security headers, cookie consent, and incident response transparency. The risk level is low given the nature of the site and its content, but enhancements in security posture would strengthen user trust and compliance.

D

DIPF | Leibniz Institute for Research and Information in Education

eduresearch.social

0

eduresearch.social is a specialized decentralized social network powered by Mastodon, focused on the educational research community. It is operated by the DIPF | Leibniz Institute for Research and Information in Education, a reputable German public research institute. The platform facilitates communication, community building, and knowledge transfer between educational researchers, practitioners, and institutions. The website content is bilingual (German and English), professionally presented, and includes comprehensive terms of use, liability disclaimers, and contact information. The business model is non-commercial, supporting academic exchange and research infrastructure.

B

Berlin-Brandenburgische Akademie der Wissenschaften (BBAW)

dwds.de

0

The Digitales Wörterbuch der deutschen Sprache (DWDS) is a comprehensive academic resource providing extensive digital dictionaries, text corpora, and linguistic statistics focused on the German language from 1600 to the present. It is operated under the auspices of the Berlin-Brandenburgische Akademie der Wissenschaften (BBAW), positioning it as a leading scholarly platform for linguistic research and education. The website targets researchers, linguists, educators, and language enthusiasts, offering free access to a rich set of lexical and textual data, along with interactive tools such as word games and a mobile app.

R

Home

regioit.de

0

The website www.regioit.de represents a German business with a focus on IT services or related technology sectors, as inferred from the domain and technical setup. The site uses the DNN CMS platform and integrates cookie consent management via Cookiebot, along with analytics and marketing tracking through eTracker and Facebook Pixel. However, the website lacks explicit privacy policy, terms of service, and contact information pages, which are critical for compliance and user trust. The technical infrastructure is moderately modern with HTTPS enabled and basic JavaScript libraries, but security headers are missing, indicating room for improvement in security posture. Overall, the site is accessible without WAF or blocking mechanisms, and content is safe for general audiences.

W

Westfälische Nachrichten

wn.de

0

Westfälische Nachrichten is a well-established regional news publisher focused on the Münster and Münsterland regions in Germany. The website offers comprehensive news coverage, ePaper subscriptions, advertising services, and newsletters targeting the general public in the region. The business model relies on advertising and subscription revenue streams. Technically, the site uses modern JavaScript libraries, consent management tools, and tracking services while maintaining GDPR compliance. The website is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the domain and WHOIS data indicate a legitimate and trustworthy media organization with no suspicious patterns detected.

B

Bistum Münster

bistum-muenster.de

0

Bistum Münster is the second largest Catholic diocese in Germany, serving nearly two million Catholics with a broad range of spiritual, educational, and social services. The website reflects a mature digital presence built on TYPO3 CMS, featuring comprehensive content about church activities, pastoral care, education, and community support. The site is well-structured, mobile-optimized, and integrates social media channels to engage its audience effectively. GDPR and cookie compliance are well addressed, enhancing user trust. Technically, the site uses modern frontend libraries and frameworks such as Foundation, jQuery, and Slick Carousel, ensuring a responsive and accessible user experience. Hosting appears to be on a reputable German research network, supporting reliability and security. However, the site lacks explicit security policies and incident response contacts, which could be improved to strengthen its security posture. Security-wise, HTTPS is enforced, and no obvious vulnerabilities or exposed sensitive data were detected. The site uses some third-party scripts but does not appear to employ extensive tracking or advertising networks, aligning with its non-profit religious mission. The WHOIS data is limited but consistent with the organization's identity, supporting legitimacy. Overall, Bistum Münster's website is a professional, trustworthy, and content-rich platform that effectively serves its community and stakeholders. Strategic improvements in security transparency and policy publication would further enhance its credibility and resilience.

C

Code Week Germany

codeweek.de

0

Code Week Germany is a well-established grassroots educational initiative supported by the European Commission, focused on promoting coding and digital literacy among children and youth across Germany and Europe. The website effectively communicates its mission, events, and community engagement through a professional and accessible digital platform powered by TYPO3 CMS. The technical infrastructure is modern, secure, and optimized for performance and accessibility, including HTTPS enforcement and security headers. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. The security posture is solid, though the site could benefit from explicit security and incident response policies. Overall, the site demonstrates high legitimacy, trustworthiness, and a strong community presence, making it a reliable resource for its target audience.

Bücherei St. Lamberti Ochtrup is a small local public library in Germany offering a wide range of educational and community services including media lending, workshops, and digital catalog access. The website is well-structured, informative, and targets a broad audience including children, families, and schools. The library emphasizes media literacy and community engagement through events like robotics workshops and puzzle exchanges. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, hosted by a German provider, and employs HTTPS for secure communication. The site is mobile-optimized and provides clear navigation and contact information. Security posture is good with HTTPS enabled, but lacks some security headers and cookie consent mechanisms. No forms or analytics scripts were detected, indicating minimal data collection. Overall, the site is trustworthy and professionally maintained, though improvements in privacy compliance and security headers are recommended.

A

Ansiedlungs- und Wohnungsbaugesellschaft mbH Soltau

aws-soltau.de

0

The Ansiedlungs- und Wohnungsbaugesellschaft mbH Soltau (AWS) is a municipal real estate and economic development company focused on the city of Soltau, Germany. Their core business includes the development and marketing of residential and commercial properties, as well as providing rental services. The website targets local businesses, investors, and residents seeking housing or commercial space. The company positions itself as a trusted local partner with decades of experience and strong regional networks. Technically, the website is built on WordPress 5.6.16 with common plugins such as Contact Form 7 and accessibility enhancements. The site uses HTTPS and includes a CAPTCHA on its contact form to mitigate spam. Performance and mobile optimization are good, with clear navigation and professional design. Analytics are implemented via Google Tag Manager, indicating moderate user tracking. From a security perspective, the site enforces HTTPS and uses CAPTCHA on forms but lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and appear GDPR compliant, though terms of service and vulnerability disclosure mechanisms are absent. Overall, the website is professional, trustworthy, and well-suited for its municipal real estate purpose. Strategic improvements include adding security headers, publishing security policies, and enhancing privacy transparency to further strengthen trust and compliance.

S

Stadtwerke Soltau GmbH & Co. KG

sw-soltau.de

0

Stadtwerke Soltau GmbH & Co. KG is a regional energy utility provider based in Soltau, Germany, offering a broad range of services including electricity, gas, heating, water, wastewater, solar energy, electromobility, internet, and house connection services. The company positions itself as a forward-thinking and innovative leader in the regional energy market, emphasizing sustainability and the energy transition. Their website reflects a professional and comprehensive digital presence with clear navigation, modern design, and extensive customer support options. Technically, the site is built on Joomla CMS with modern JavaScript libraries and hosted on AWS infrastructure, indicating a mature digital infrastructure. Security posture is solid with HTTPS, cookie consent mechanisms, and obfuscated emails, though some security headers and explicit security policies are missing. Overall, the site is trustworthy, GDPR compliant, and provides multiple contact channels. Recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and continuing to maintain transparency and compliance.

M

mecodia GmbH

kommunenfunk.de

0

Kommunenfunk is a German-based digital citizen communication platform developed by mecodia GmbH, targeting municipalities and local governments to enhance citizen engagement through personalized communication channels such as email and messaging apps. The company positions itself as a niche provider with a focus on GDPR-compliant, audited data protection and seamless integration via API. The website reflects a professional and consistent brand image with clear contact information and a user-friendly interface. Technically, the site is built on WordPress with the Avada theme and uses Matomo analytics configured for privacy. Security posture is solid with HTTPS and privacy-respecting analytics, though it lacks explicit security policies and incident response information. Overall, the site is credible, well-maintained, and suitable for its target audience.

M

Marktplatz GmbH

k-werft.de

0

k•werft, operated by Marktplatz GmbH, is a specialized service provider focused on delivering modern, accessible, and citizen-friendly municipal web portals primarily for German municipalities, cities, and districts. With over two decades of experience since its founding in 1999, the company has established a strong market position with a high customer retention rate and a portfolio of successful projects. Their key offerings include integration of eGovernment services, content management via NEOS CMS, and tailored municipal digital products. The website reflects a professional and consistent brand image targeting public sector clients.

S

Soltau-Touristik

soltau-touristik.de

0

Soltau-Touristik operates as the official tourism and visitor information service for the city of Soltau, Germany, focusing on promoting local attractions, events, accommodations, and services to tourists and visitors. The website serves as a regional tourism authority hub, providing comprehensive information and booking options, targeting travelers interested in the Lüneburger Heide region. The business model centers on destination marketing and visitor engagement, supported by official certifications and a clear contact presence. Technically, the website is built on TYPO3 CMS and leverages modern front-end technologies such as jQuery, Bootstrap, and FontAwesome. It demonstrates good mobile optimization, accessibility features, and SEO practices. The site integrates Google Analytics and Tag Manager for user tracking, balanced with GDPR-compliant cookie consent mechanisms. Multi-language support is provided via Google Translate, enhancing accessibility for international visitors. From a security perspective, the site uses HTTPS with anonymized IP tracking in analytics, includes a cookie consent banner, and employs accessibility tools. However, it lacks explicit security headers and does not provide a public security policy or incident response information. No vulnerabilities or suspicious content were detected, indicating a mature security posture appropriate for its business type. Overall, the website is professional, trustworthy, and well-aligned with its business goals. It provides a safe and user-friendly experience for visitors, with clear contact details and official trust indicators. Strategic improvements could include enhancing security headers and publishing a security policy to further strengthen trust and compliance.

The Berlin University Alliance is a prominent academic consortium in Berlin, Germany, comprising four major universities and a university hospital. It focuses on collaborative research addressing global societal challenges, knowledge exchange, promoting talent, and fostering international partnerships. The alliance operates under the German Excellence Strategy and is funded by federal and state bodies, positioning it as a key player in the academic and research landscape of Berlin. Technically, the website is built on a Ruby on Rails framework with Infopark CMS Fiona, hosted likely on university or research network infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security measures include HTTPS and CSRF protections, but lack explicit security headers and published incident response policies. The security posture is solid with no evident vulnerabilities or exposed sensitive data. However, the absence of a cookie consent mechanism and security policy pages suggests areas for compliance improvement. The WHOIS data is transparent and consistent with the academic nature of the alliance, enhancing trustworthiness. Overall, the website is professional, content-rich, and trustworthy, serving its academic audience effectively. Strategic enhancements in privacy compliance and security transparency would further strengthen its posture.

S

Studierendenwerk Bielefeld

studierendenwerk-bielefeld.de

0

Studierendenwerk Bielefeld is a regional public service organization providing essential student services including canteen (Mensa) operations, BAföG financial aid, student housing, and childcare in Bielefeld and surrounding cities such as Detmold, Höxter, Lemgo, and Minden. The website is professionally designed using TYPO3 CMS and optimized with Yoast SEO, targeting students and stakeholders in the education sector. Contact information is clearly presented, and the site offers detailed menus and news updates relevant to its audience. Technically, the site employs modern web technologies including SVG graphics and deferred JavaScript loading, ensuring good mobile responsiveness and accessibility. However, some security best practices such as explicit security headers and cookie consent mechanisms are not evident. The site uses HTTPS, which is a critical security feature. From a security perspective, the website shows a moderate security posture with no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response information suggests room for improvement in transparency and preparedness. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is trustworthy and serves its educational mission effectively. Strategic improvements in security headers, privacy consent, and vulnerability disclosure would enhance its compliance and security posture further.

K

Katholische Hochschule Nordrhein-Westfalen

katho-nrw.de

0

Katholische Hochschule Nordrhein-Westfalen (katho) is a medium-sized, internationally oriented educational institution based in Germany, specializing in Social Work, Health, and Theology. The website demonstrates a strong commitment to international cooperation with over 60 partner universities worldwide, offering diverse study programs, research projects, and continuing education courses. The institution targets students, educators, and researchers seeking global academic engagement. Technically, the site is built on TYPO3 CMS with modern libraries like jQuery and Bootstrap, and integrates Matomo for analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie consent and privacy policies, though explicit security headers and incident response information are absent. Overall, the website is professional, accessible, and trustworthy, supporting the institution's educational mission effectively.

S

Stadt Wesel

wesel.de

0

The website www.wesel.de serves as the official digital presence of the city government of Wesel, Germany. It provides comprehensive information and services related to municipal governance, culture, leisure, education, economic development, and public announcements. The site targets residents, visitors, and local businesses, offering online services and community engagement tools. The business model is that of a government entity focused on public service delivery and community information dissemination. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies including JavaScript and CSS. It incorporates cookie consent management and analytics via eTracker, ensuring GDPR compliance. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms. However, it lacks some advanced security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing additional security headers, publishing a security policy, and ensuring robust form protections. These steps would further strengthen the site's security and compliance stance.

S

Stadt Ibbenbüren

ibbenbueren.de

0

The website www.ibbenbueren.de serves as the official municipal portal for the city of Ibbenbüren, Germany. It provides a broad range of online services and information tailored to citizens, local businesses, and visitors, including administrative services, social benefits, cultural events, and urban planning. The site is well-positioned as a trusted government resource with a clear focus on accessibility and user engagement through social media channels and visual assistance tools. Technically, the site employs a mature technology stack centered around jQuery and proprietary CMS components, delivering a responsive and accessible user experience. While performance is moderate, the site benefits from good SEO practices and a clear navigation structure. The cookie consent mechanism and privacy policy demonstrate compliance with GDPR requirements. From a security perspective, the site shows good practices such as no exposed sensitive data and consent-based cookie usage. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No WAF or blocking mechanisms interfere with content accessibility. Overall, the website is a reliable and professional municipal platform with strong content quality and privacy compliance. Strategic improvements in security transparency and technical hardening would further strengthen its posture and user trust.

S

Stadt Soltau

soltau.de

0

Stadt Soltau operates an official municipal government website providing comprehensive citizen services, tourism information, event calendars, and online services tailored to residents and visitors of Soltau, Germany. The website is well-branded, consistent, and targets a general audience seeking local government and community information. The business model is focused on public service delivery with a medium-sized municipal scope. Technically, the site uses a mature ASP.NET Web Forms platform with contentXXL CMS, integrating modern JavaScript libraries and accessibility tools, ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit incident response contacts are missing. Privacy policies are comprehensive and GDPR compliant. Overall, the site is trustworthy and professionally maintained, with strong legitimacy supported by consistent WHOIS data and official contact information.

Bücherei St. Lamberti Ochtrup is a local public library in Germany offering a wide range of educational and community services including media lending, robotics workshops, 3D printing, and digital media access. The library actively engages with its community through events and innovative programs such as puzzle exchanges and coding activities, positioning itself as a modern educational hub. The website is built on the Neos CMS platform using the Flow PHP framework, reflecting a modern and maintainable technical infrastructure. It is hosted on servers associated with online-now.de and uses HTTPS for secure communication. Security posture is good with no visible vulnerabilities or exposed sensitive data, though security headers are not detected and could be improved. Privacy compliance is adequate with a clear privacy policy but lacks a cookie consent mechanism. Contact information and social media links are clearly presented, enhancing business credibility. Overall, the website is professional, trustworthy, and well-suited for its target audience.

L

Leibniz-Institut für Bildungsmedien | Georg-Eckert-Institut

gei.de

0

The Leibniz-Institut für Bildungsmedien | Georg-Eckert-Institut is a reputable German research institute specializing in educational media research. It operates under the Leibniz-Gemeinschaft umbrella and offers a broad range of research projects, scientific publications, events, and knowledge transfer services targeting academics, educators, policymakers, and the general public. The website reflects a mature organization with a 50-year history, emphasizing transparency and outreach through multilingual content and social media engagement. Technically, the site is built on TYPO3 CMS, employs modern web standards, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and session management, though explicit security policies and incident response contacts are not published. Overall, the domain and website present a trustworthy and professional digital presence consistent with an established non-profit educational research entity.

S

Stadt Eschweiler

eschweiler.de

0

The website www.eschweiler.de is the official digital presence of the city of Eschweiler, Germany. It serves as a comprehensive portal for residents, businesses, and visitors, offering detailed information on city administration, social services, education, culture, economic development, and public safety. The site is well-structured with deep navigation menus and localized content primarily in German, with some English sections for economic development. The business model is that of a public sector municipal government website, focusing on information dissemination and service facilitation. Technically, the site is built on the ionas4 CMS platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and SystemJS for module loading. It employs Matomo analytics, indicating a privacy-conscious approach to user tracking. The hosting appears to be managed by RegioIT Aachen, a regional provider, with secure HTTPS configuration and use of integrity attributes for resources. Mobile optimization and accessibility are good, supporting a wide range of users. From a security perspective, the site enforces HTTPS and includes some security best practices, though additional headers like Content-Security-Policy could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy and cookie policy present, including consent mechanisms. However, no explicit incident response or vulnerability disclosure policies were found. Overall, the website presents a low-risk profile with a high degree of trustworthiness and professionalism. Strategic recommendations include enhancing security headers, publishing incident response contacts, and considering a formal vulnerability disclosure policy to further strengthen security posture and transparency.

L

Land Sachsen-Anhalt

sachsen-anhalt.de

0

The website www.sachsen-anhalt.de serves as the official state government portal for Sachsen-Anhalt, Germany. It provides comprehensive information about the state's ministries, public services, initiatives, news, and job postings. The portal targets citizens, businesses, and interested parties within the region, positioning itself as a trusted and authoritative source of governmental information and services. The business model is that of a government information portal, focusing on transparency and public engagement. Technically, the site is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery. Accessibility is a key focus, with tools like Eye-Able and ReadSpeaker integrated to assist users with disabilities. The site is mobile-optimized and demonstrates good SEO practices. Hosting is managed by Dataport AöR, a known IT service provider for public sector entities. From a security perspective, the site enforces HTTPS and uses security best practices such as secure cookies and accessibility features. However, explicit security headers like Content-Security-Policy are not clearly present, and there is no published security policy or incident response contact. No vulnerability disclosure or security.txt file is found, which could be improved to enhance transparency and security posture. Overall, the website is professional, trustworthy, and well-maintained with a strong focus on accessibility and user experience. Strategic recommendations include implementing a cookie consent mechanism, publishing security and incident response policies, and adding a vulnerability disclosure policy to further strengthen security and compliance.

U

Universität Rostock

uni-rostock.de

0

Universität Rostock is a historic and well-established public university in Germany, founded in 1419, offering a broad range of educational and research services. The website serves multiple audiences including students, researchers, the public, and partner organizations. It demonstrates a mature digital presence with a modern CMS (TYPO3) and a well-structured, content-rich site. The university maintains a strong brand identity and trust signals through certifications and social media engagement. Technically, the site uses modern JavaScript libraries and is mobile-optimized, though performance is moderate. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit incident response or vulnerability disclosure information. Privacy compliance is mostly met with a comprehensive privacy policy, but cookie consent mechanisms are missing. Overall, the site is professional, trustworthy, and safe for general audiences.

H

Hochschule für Angewandte Wissenschaften Hamburg

haw-hamburg.de

0

The website www.haw-hamburg.de represents the Hochschule für Angewandte Wissenschaften Hamburg, a leading university of applied sciences in Northern Germany. It offers a broad range of bachelor and master degree programs, research initiatives, and continuing education services. The institution targets students, prospective students, staff, alumni, and academic partners, emphasizing quality education and research. The site is professionally designed with consistent branding and clear navigation tailored to diverse user groups. Technically, the site is built on TYPO3 CMS with Bootstrap and uses Matomo analytics configured to disable cookies, reflecting some privacy awareness. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is good with HTTPS enforced, but lacks visible security headers and formal privacy or cookie policies. WHOIS data aligns with the academic nature of the domain, showing consistency and legitimacy. Overall, the site is trustworthy and professional but would benefit from enhanced privacy disclosures and security headers.

B

Berliner Hochschule für Technik

bht-berlin.de

0

The Berliner Hochschule für Technik (BHT) is a public technical university located in Berlin, Germany, offering over 70 Bachelor and Master degree programs primarily in engineering, natural sciences, and economics. The institution is well-positioned in the education sector with a strong focus on applied sciences, research, and transfer activities. The website reflects a mature digital presence with comprehensive content targeting students, prospective students, staff, and industry partners. Technically, the site is built on TYPO3 CMS with a dated but functional technology stack including jQuery 1.9.1 and uses modern web design principles ensuring good mobile optimization and accessibility. Security posture is adequate with GDPR-compliant privacy and cookie policies, though improvements in security headers and incident response contact details are recommended. Overall, the website is professional, trustworthy, and serves its educational mission effectively.

U

Universität Erfurt

uni-erfurt.de

0

Universität Erfurt is a medium-sized public university in Germany specializing in humanities and social sciences, offering Bachelor and Master degree programs alongside active research initiatives. The website is built on TYPO3 CMS and integrates Matomo for analytics, reflecting a modern and mature technical infrastructure. The site is well-designed, mobile-optimized, and provides clear navigation for diverse audiences including prospective students, current students, researchers, alumni, and staff. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding explicit security headers and cookie consent mechanisms. Overall, the website demonstrates high professionalism and trustworthiness, supporting the university's academic mission effectively.

T

Technische Universität Ilmenau

tu-ilmenau.de

0

Technische Universität Ilmenau is a research-intensive German university specializing in engineering and natural sciences, offering a broad range of Bachelor, Master, and dual degree programs. It is recognized as one of Germany's leading universities in terms of third-party funding and patent activity. The university serves a diverse audience including prospective students, current students, alumni, researchers, and career seekers. Its business model centers on education, research, technology transfer, and international collaboration. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content.

W

Württembergische Landesbibliothek

wlb-stuttgart.de

0

The Württembergische Landesbibliothek Stuttgart is a regional state library serving the Stuttgart area and Baden-Württemberg region. It provides extensive cultural, scientific, and educational resources including special collections, exhibitions, and courses. The website is professionally maintained using TYPO3 CMS and offers a clear catalog search functionality and event information. The target audience includes researchers, students, and the general public interested in cultural and scientific knowledge. Technically, the website uses a modern CMS platform (TYPO3) with jQuery libraries and enforces HTTPS. The site shows moderate performance and basic mobile optimization. Accessibility features are present but could be improved. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS and uses no-cache meta tags but lacks HTTP security headers and a cookie consent mechanism. No vulnerability disclosure or incident response information is provided. The WHOIS data is consistent with a legitimate German public institution. Overall, the security posture is good but could be enhanced with additional headers and policies. The website content is safe for general audiences with no adult or questionable content. Contact information is clearly provided, though no direct emails are visible. The site lacks terms of service and cookie policy banners, which could be improved for compliance. Overall, the site is trustworthy, professional, and well-aligned with its public service mission.

D

Deutsche Sporthochschule Köln

dshs-koeln.de

0

The Deutsche Sporthochschule Köln website represents a specialized German university dedicated exclusively to sports and movement sciences. It serves students, faculty, researchers, and alumni with educational programs, research initiatives, and community engagement. The site is well-branded and professionally maintained, reflecting its unique market position as Germany's sole university focused on sport sciences. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries, and integrates a robust consent management platform (Usercentrics) ensuring GDPR compliance. Hosting appears stable with NetCologne nameservers. Security posture is solid with HTTPS and privacy controls, though it lacks some advanced security headers and public incident response information. Overall, the site is trustworthy, content-rich, and compliant with privacy regulations, making it a reliable digital presence for the institution.

S

Stadt Dorsten

schluesselposition.de

0

The website schluesselposition.de serves as the official career portal for the city of Dorsten, Germany, providing job listings and employer information for public sector positions. It targets job seekers interested in municipal and public administration roles, emphasizing the importance of each position within the city administration. The site is well-branded and consistent with the city's official identity, offering a professional and trustworthy user experience. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, with modern JavaScript libraries such as jQuery, Slick Carousel, and SweetAlert2 enhancing interactivity. Hosting is provided by Hetzner, a reputable German hosting provider. The site includes Matomo analytics for privacy-conscious user tracking but lacks a cookie consent mechanism. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for enhanced security posture. No vulnerabilities or suspicious content were detected. Overall, the site is a reliable and professional municipal career portal with good content quality and technical implementation. Strategic improvements in privacy compliance and security best practices would further strengthen its trustworthiness and user confidence.