Security Directory

U

Univention GmbH

univention.de

0

Univention GmbH is a well-established German technology company specializing in open source Identity and Access Management (IAM) solutions, primarily targeting the education sector and public administration. With over 20 years of experience and managing 35 million identities, the company offers scalable, secure, and integrated IAM products such as Nubus, UCS@school, and UCS. Their business model focuses on providing software solutions, support, training, and integration services to organizations seeking digital sovereignty and efficient IT management. The website reflects a mature market position with strong trust signals and a professional presentation. Technically, the website is built on WordPress with modern plugins and tools including WPBakery Page Builder, Gravity Forms, and Matomo for analytics. The site is well-optimized for performance, mobile responsiveness, and SEO, with comprehensive metadata and structured data enhancing discoverability. Privacy compliance is robust, featuring a cookie consent mechanism and a detailed privacy policy. The use of Matomo analytics indicates a privacy-conscious approach to user tracking. From a security perspective, the site enforces HTTPS, employs security headers, and avoids exposing sensitive data. However, it lacks a dedicated security policy or incident response page and does not provide a vulnerability disclosure or security.txt file. These gaps represent opportunities for improvement in transparency and readiness. Overall, the security posture is strong with no evident vulnerabilities or risks. The domain WHOIS data aligns well with the company's profile, showing consistent registration details and domain age appropriate for the business history. No privacy protection is used in WHOIS, which supports transparency. The website is fully accessible without WAF or blocking mechanisms, enabling thorough analysis. Strategic recommendations include publishing explicit security and incident response policies, establishing a vulnerability disclosure process, and providing data protection officer contact details to enhance compliance and trust. These steps will strengthen the company's security culture and customer confidence while maintaining its leadership in open source IAM solutions.

T

TechnologyMountains

technologymountains.de

0

TechnologyMountains is a German-based technology collaboration network that aims to accelerate business progress by linking companies with technical expertise and bridging the gap between industry and science. The website presents a professional and consistent brand image focused on fostering technological leadership among its members. The technical infrastructure is built on WordPress with common plugins such as WooCommerce and caching mechanisms, providing moderate performance and good mobile optimization. However, the site lacks critical privacy and security policies, contact information, and advanced security headers, which lowers its overall security posture. No WAF or blocking mechanisms were detected, allowing full content accessibility. The WHOIS data is minimal but consistent with hosting providers, with no privacy protection or suspicious patterns identified. Overall, the site is safe for general audiences and serves a business-to-business market segment.

G

GSG Berlin GmbH

gsg.de

0

GSG Berlin GmbH is a well-established real estate company specializing in leasing office, commercial, and warehouse spaces primarily in Berlin. With over 60 years of experience and a portfolio exceeding 1 million square meters, it serves a diverse clientele including startups, craftsmen, and SMEs. The company emphasizes flexibility in space usage and offers value-added services such as highspeed fiber internet and electric vehicle charging stations. The website reflects a strong market position with multiple locations and a broad tenant network. Technically, the website is built on WordPress using modern plugins and frameworks, optimized for performance and mobile responsiveness. It integrates analytics and marketing tools like Google Tag Manager and HubSpot, and employs a cookie consent mechanism compliant with GDPR. Security best practices are observed with HTTPS, security headers, and no visible vulnerabilities, though a dedicated security policy and incident response information are absent. Overall, the site demonstrates a mature digital presence with good privacy compliance and professional content. The domain registration data is minimal but consistent with the business claims. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Strategic recommendations include publishing a formal security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance. Regular security audits of third-party scripts and further accessibility improvements would strengthen the security posture and user experience.

A

AGI - Information Management Consultants

dandelon.com

0

dandelon.com is a specialized academic library catalog enrichment platform operated by AGI - Information Management Consultants, based in Germany. It serves a European community of academic libraries by providing AI-enhanced indexing, translation, and detailed content extraction from printed and electronic books. The platform is non-commercial, free for private use, and emphasizes privacy and data protection. Technically, it is built on IBM Domino/XPages with Dojo and Bootstrap, hosted on German public library infrastructure. Security posture is good with HTTPS and minimal tracking, though DNSSEC and security headers could be improved. The website is well-structured, content-rich, and trustworthy with a long domain history.

I

iRights.Lab

irights-lab.de

0

iRights.Lab is a German non-profit organization dedicated to promoting digital rights, digital literacy, and digital ethics. The organization provides educational resources, workshops, and advocacy initiatives aimed at civil society, educators, and public administration. Their digital presence includes projects like the Enter-Award and the iRights.Lab Academy, positioning them as a recognized entity in the digital rights and education sector in Germany. The website is professionally designed, mobile-optimized, and offers content primarily in German with English support.

F

Friedrich-Althoff-Konsortium e.V.

althoff-konsortium.de

0

The Friedrich-Althoff-Konsortium e.V. is a regional non-profit consortium serving scientific institutions in Berlin and Brandenburg, providing access to licensed electronic publications and scientific information. The website is hosted on WordPress.com, leveraging WordPress CMS and Jetpack for content management and analytics. The site is well-structured, primarily in German, with an English version available, targeting academic and research institutions. Security posture is moderate with HTTPS enabled but lacking explicit security headers and incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and compliance transparency.

S

Staatsbibliothek zu Berlin and Zentral- und Landesbibliothek Berlin (ZLB)

openbiblio.social

0

OpenBiblio.Social is a specialized Mastodon instance serving the German-speaking library and information professional community. It is hosted and administered by reputable public institutions, namely the Staatsbibliothek zu Berlin and the Zentral- und Landesbibliothek Berlin (ZLB). The platform provides a decentralized social media environment focused on fostering professional dialogue and networking within the library sector. The website content is primarily in German and offers clear guidance on community rules, moderation, and first steps for new users. Technically, the site leverages Mastodon 4.4.8, Ruby on Rails, and modern JavaScript frameworks, ensuring a contemporary and mobile-optimized user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is good with a clear privacy policy, but lacks cookie consent mechanisms and terms of service documentation. Overall, the site demonstrates a high level of professionalism and trustworthiness, supported by institutional backing and open-source transparency.

J

Jacob Stoy

jacobstoy.de

0

Jacob Stoy's website serves as a personal portfolio for a German musician and graphic designer, showcasing artistic projects including performances, books, installations, and websites. The business operates in a niche creative market with a small scale and targets a general audience interested in arts and culture. The website is built using modern technologies such as SvelteKit and Sanity CMS, indicating a contemporary digital infrastructure with moderate performance and good mobile optimization. However, the site lacks advanced SEO and accessibility features. Security posture is minimal with no detected HTTPS confirmation or security headers, and privacy compliance is basic with only a privacy policy page present but no cookie consent mechanism. No contact information or social media links are provided, limiting direct engagement and trust signals. Overall, the site is functional and professionally designed but requires improvements in security, privacy, and contact transparency to enhance credibility and compliance.

B

Büro Bum Bum

buerobumbum.com

0

Büro Bum Bum is a small creative collective specializing in visual communication and design, based in Berlin, Germany. The website serves as a showcase portfolio highlighting various projects including screenprints and illustrations. The business appears to be well-established with a domain age dating back to 2013, consistent with the company's founding period. The target audience is general, focusing on clients interested in creative visual communication services. Technically, the website is built using Angular 16, employs responsive design, and integrates Google Analytics with IP anonymization, indicating a moderate level of digital maturity. However, there are gaps in privacy compliance as no privacy or cookie policies are present, and no consent mechanisms are implemented. Security posture is adequate with HTTPS enabled but lacks important security headers and DNSSEC is not enabled. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

A

ASPprofessionell.de e. K.

aspprofessionell.de

0

ASPprofessionell.de e. K. is a specialized hosting provider based in Germany, offering ASP, ASP.NET, and PHP hosting services with a focus on high availability and personalized customer support. Established in 1999, the company targets small to medium-sized enterprises and public institutions, emphasizing reliability and tailored hosting solutions. Their service portfolio includes Windows and Linux hosting, MS SQL Server support, backup systems, SSL and MIME certificates, domain registration, and SMS services. The website content is primarily in German and reflects a niche market position with a long-standing reputation.

S

Stadt Trier

trier.de

0

The Stadt Trier website serves as the official digital portal for the city of Trier, Germany, providing a broad range of municipal services, citizen information, cultural events, and administrative resources. It targets residents, visitors, and businesses, positioning itself as a comprehensive government resource. The site is well-branded, professionally designed, and offers extensive navigation and content coverage, reflecting a mature digital presence for a public sector entity. Technically, the website employs a modern technology stack including jQuery, Bootstrap 4, and privacy-focused analytics via Matomo, hosted on Azure Cloud infrastructure. Accessibility features such as Eye-Able tools and social share privacy plugins enhance user experience and compliance. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site uses HTTPS and privacy-respecting analytics, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website presents a low-risk profile with a high degree of trustworthiness and professionalism. Strategic improvements in security headers and incident response transparency would further enhance its security posture.

C

CYBERsicher

transferstelle-cybersicherheit.de

0

CYBERsicher is a German government-related initiative dedicated to enhancing cybersecurity awareness and capabilities among small and medium-sized enterprises (SMEs), startups, and craft businesses. The website serves as a comprehensive platform offering free resources, workshops, events, and emergency support services tailored to the needs of the Mittelstand. It positions itself as a national hub for cybersecurity knowledge transfer and practical assistance, leveraging partnerships and official backing to build trust and reach its target audience effectively. The content is well-maintained, regularly updated, and presented in a professional manner, reflecting a strong commitment to user education and support. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WP Rocket, ensuring good performance, SEO optimization, and mobile responsiveness. The use of Borlabs Cookie indicates attention to privacy compliance and user consent management. Hosting is provided via rzone.de, and the site employs HTTPS with a solid SSL configuration. Accessibility and navigation are well-implemented, contributing to a positive user experience. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent mechanisms. However, it lacks explicit published security policies, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced transparency and trust. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the security posture is solid but could be improved with additional documentation and security headers. The overall risk assessment is low, with the site appearing trustworthy and professionally managed. Strategic recommendations include publishing dedicated security and incident response policies, adding security headers, and considering a vulnerability disclosure framework. These steps would further strengthen the site's security maturity and user confidence.

dp.Plattform is a German digital platform dedicated to supporting small and medium-sized enterprises (KMU) in their digital transformation initiatives. The platform facilitates project implementation through partnerships with Mittelstand-Digital centers, providing access to digitalization projects, practical examples, and collaborative opportunities. The website is professionally designed with consistent branding and clear navigation, targeting primarily German SMEs interested in digital innovation. Technically, the site employs modern JavaScript modules, jQuery, and third-party analytics tools such as eTracker and Signalize, hosted on a Plesk environment. Mobile optimization and SEO practices are adequately implemented, contributing to a positive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, the platform demonstrates a trustworthy and professional online presence with moderate technical sophistication and compliance with GDPR requirements.

B

Bundesministerium für Wirtschaft und Klimaschutz

mittelstand-digital.de

0

Mittelstand-Digital is a German government initiative under the Bundesministerium für Wirtschaft und Klimaschutz, focused on supporting small and medium-sized enterprises (SMEs) in their digital transformation journey. The website offers comprehensive information, practical examples, workshops, and tools related to digitalization, artificial intelligence, and cybersecurity. It serves as a trusted resource with official government backing, targeting the German SME sector with free and neutral guidance. Technically, the website employs modern web technologies including JW Player for video content, Slick Slider for UI elements, and eTracker for analytics, all integrated with user consent mechanisms. The site is mobile-optimized, accessible, and performs moderately well. Hosting is managed via managed-ip.com name servers, consistent with a professional government hosting environment. From a security perspective, the site enforces HTTPS, uses cookie consent banners, and requires explicit user consent for video tracking services. While explicit security headers are not fully detailed, no vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear GDPR-aligned policies and a named data protection officer contact. Overall, the website presents a low-risk profile with high trustworthiness and professionalism. It effectively balances user privacy, security, and usability, making it a reliable digital resource for its target audience.

W

WAREMA Renkhoff SE

warema-group.com

0

WAREMA Renkhoff SE operates as a leading manufacturer specializing in innovative sun protection and plastic engineering solutions. The company holds a strong market position in its sectors, offering a broad portfolio that includes sun and weather protection products as well as precision plastic components for automotive, medical, and sun protection industries. Their business model emphasizes innovation, partnership, and quality, targeting both B2B and end consumers. The website reflects a professional corporate presence with consistent branding and comprehensive content in German, supported by multiple subsidiary brands and active social media channels. Technically, the website employs modern web technologies including Google Tag Manager and a Usercentrics consent management platform, ensuring GDPR compliance and user privacy controls. The site is mobile-optimized with good SEO practices and moderate performance. However, some security best practices such as explicit security headers are not evident from the provided data. The absence of WHOIS registration details raises concerns about domain legitimacy, though the professional presentation and contact information mitigate some risk. From a security perspective, HTTPS is enforced and privacy policies are comprehensive, but the lack of visible security headers and incident response information suggests room for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a solid security posture but would benefit from enhanced transparency and security policy disclosures. Strategically, it is recommended to verify domain registration status, implement additional security headers, publish clear incident response contacts, and maintain rigorous privacy compliance to strengthen trust and resilience. The company’s digital maturity is good, supporting its market leadership and customer engagement effectively.

H

HFO Health Facility Operations Services GmbH

vamed-care.com

0

VAMED care operates a network of over 60 healthcare facilities across Germany, Austria, Switzerland, and the Czech Republic, specializing in acute medical care, rehabilitation, nursing, and prevention. With a workforce exceeding 13,000 employees, the organization emphasizes medical and therapeutic excellence, aiming to improve patient well-being and quality of life. The website reflects a professional healthcare provider targeting patients, medical professionals, and potential employees, offering detailed information about services and career opportunities. Technically, the website employs modern web technologies including jQuery 3.6.0 and custom JavaScript for interactive features such as cookie consent management and image sliders. The site is mobile-optimized with good SEO practices and a clear navigation structure. However, no CMS or hosting provider details are evident, and no advanced frameworks are detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks visible security headers and explicit incident response or security policy disclosures. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and business information appear consistent and professional. Overall, the website presents a trustworthy and professional healthcare service provider but would benefit from enhanced transparency in domain registration, improved security headers, and clearer contact information for security and compliance inquiries.

N

Neher Systeme GmbH & Co. KG

neher.de

0

Neher Systeme GmbH & Co. KG operates a professional website focused on high-quality insect protection products including custom-fit fly screens for windows, doors, and light shafts. The company positions itself as a market leader in Germany with patented technology and a strong dealer network. The website is built on WordPress with modern plugins and frameworks, showing good technical maturity and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or privacy issues were detected. Overall, the site reflects a trustworthy and professional business with clear customer engagement channels.

W

WAREMA Renkhoff SE

warema.com

0

WAREMA Renkhoff SE is a well-established manufacturer specializing in high-quality sun protection solutions such as awnings, blinds, roller shutters, and patio roofs. The company targets both private and business customers across multiple European countries, supported by dedicated portals and multilingual websites. Their market position is strong, supported by consistent branding and a comprehensive product offering. Technically, the website employs modern web technologies including StencilJS and a consent management platform, ensuring good performance, mobile optimization, and GDPR compliance. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data is notable but does not detract significantly from the site's legitimacy given the professional presentation and extensive online presence. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations.

M

Mittelstand-Digital Zentrum Zukunftskultur

digitalzentrum-zukunftskultur.de

0

Mittelstand-Digital Zentrum Zukunftskultur is a German organization dedicated to supporting small and medium-sized enterprises (SMEs) in their digital transformation journey, focusing on building future-proof corporate cultures. The center offers a variety of services including workshops, events, practical examples, and media resources, all aimed at fostering digital responsibility, sustainability, and the adoption of artificial intelligence technologies. It operates as part of the nationwide Mittelstand-Digital network and is funded by the German Federal Ministry for Economic Affairs and Energy (BMWK), positioning it as a trusted partner for SMEs in Germany. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and jQuery, hosted on Hetzner servers. SEO is well-implemented with Yoast SEO Premium, and the site is mobile-optimized with good performance. Analytics are handled via Matomo with privacy-respecting configurations such as DoNotTrack and disabled cookies, reflecting a strong commitment to user privacy. From a security perspective, the site enforces HTTPS and employs anti-spam measures on forms, but lacks visible security headers and formal security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive GDPR-compliant privacy policy, though cookie consent mechanisms are absent. Overall, the website presents a professional, trustworthy, and content-rich platform for its target audience of German SMEs. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security and vulnerability disclosure policies to further strengthen trust and compliance.

D

dealerdesk GmbH

dealerdesk.com

0

Dealerdesk GmbH operates a specialized CRM platform tailored for automotive dealerships, offering integrated services such as lead management, marketing automation, and customer communication tools including WhatsApp and video chat. The company is well-established in the German automotive sector with a significant user base and recognized market presence. Technically, the website is built on WordPress with modern web technologies and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Overall, the site reflects a professional and trustworthy business with no critical vulnerabilities detected.

J

Jobijoba

jobijoba.de

0

Jobijoba is a German job search engine providing a comprehensive platform for job seekers to find employment and training opportunities across various sectors and professions. The website is well-branded, with consistent design and clear navigation, targeting primarily the German job market. It offers services such as job alerts, categorized job listings by industry, profession, location, and company, and integrates cookie consent management to comply with privacy regulations. Technically, the site uses modern analytics tools like Google Tag Manager and Piano Analytics, and is hosted on OVH, a reputable hosting provider. The site is mobile-optimized and SEO-friendly, with proper metadata and Open Graph tags enhancing social sharing and search visibility. Security-wise, the site enforces HTTPS and uses a consent management platform, but lacks visible security headers and explicit security policies. No contact emails or phone numbers were found in the provided content, which limits direct communication channels. Overall, the website is professional and trustworthy but could improve privacy transparency and security posture.

R

Ringhotels

ringhotels.de

0

Ringhotels is a German hospitality business specializing in hotel bookings, wellness weekends, and conference hosting across Germany. The website targets travelers seeking authentic HeimatGenuss experiences and offers a professional platform for vacation planning. Technically, the site employs modern JavaScript frameworks, integrates Google Tag Manager and Facebook Pixel for analytics and marketing, and uses Cookiebot for cookie consent management. The site is mobile-optimized and has good SEO practices but lacks explicit privacy and terms of service pages in the provided content. Security posture is adequate with HTTPS and cookie consent but could be improved by adding security headers and incident response information. Overall, the domain registration is consistent with the business claims, indicating legitimacy and trustworthiness.

B

BWH Hotels

bwh.de

0

BWH Hotels operates as a hotel brand offering individual freedom and a strong worldwide network, targeting hotel owners and operators. The website is professionally designed using TYPO3 CMS and Bootstrap, with moderate performance and good mobile optimization. Consent management scripts indicate GDPR awareness, though explicit privacy and terms of service pages are not found. Security posture is adequate with HTTPS enabled but lacks explicit security headers and visible incident response contacts. Overall, the site is trustworthy and safe with no adult or questionable content detected.

G

GoDaddy Operating Company, LLC

arawa.com

0

This website is a professional domain sales landing page operated by GoDaddy, offering the premium domain 'arawa.com' for purchase. It targets individuals and businesses interested in acquiring premium domain names, providing secure transactions, multiple payment options, and customer support. The site is well-branded and consistent with GoDaddy's domain aftermarket business model. Technically, the site uses modern web technologies including React and Next.js, hosted on GoDaddy infrastructure, and demonstrates good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and reCAPTCHA integration, although explicit incident response and vulnerability disclosure information are not present. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy compliance. Overall, the site is trustworthy and professionally maintained, serving as a reliable platform for domain sales.

U

Univention GmbH

univention.com

0

Univention GmbH is a German-based company specializing in open source Identity and Access Management (IAM) solutions primarily targeting the education sector and public administration. With over 20 years of experience and managing 35 million identities, Univention offers scalable, secure, and user-friendly IAM products such as Nubus, UCS@school, and UCS. Their business model focuses on providing software solutions, integration packages, and support services to organizations seeking digital sovereignty and efficient IT management. The company maintains a strong market position with a medium-sized footprint and a clear focus on open source transparency and reliability. Technically, the website is built on WordPress CMS with modern plugins like WPBakery Page Builder, Matomo Analytics for privacy-respecting tracking, and Borlabs Cookie for consent management. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security best practices are observed with HTTPS enforcement, security headers, and no visible vulnerabilities. However, explicit security policies and incident response information are not publicly disclosed. The security posture is strong with good SSL configuration and privacy compliance, including GDPR-aligned privacy and cookie policies. Contact information is available via phone and contact forms, enhancing business credibility. The absence of WHOIS data for the domain reduces trust slightly but does not detract significantly from the overall legitimacy given the professional presentation and consistent branding. Overall, Univention GmbH presents a trustworthy and professional online presence with a focus on secure, open source IAM solutions for institutional clients. Strategic recommendations include publishing detailed security policies, incident response contacts, and vulnerability disclosure mechanisms to further enhance trust and compliance.

E

Eiffage Infra-Bau SE

eiffage-infra.de

0

Eiffage Infra-Bau SE is a large, well-established infrastructure construction company with over 150 years of experience, operating primarily in Germany and Europe. The company offers a broad range of construction and engineering services including infrastructure, rail, noise protection, and specialized construction sectors. Their website is professionally designed using TYPO3 CMS, featuring multilingual support and comprehensive organizational information. The technical infrastructure is modern and includes GDPR-compliant cookie consent and analytics via Google Tag Manager. Security posture is good with HTTPS enforced and basic security best practices observed, though some HTTP security headers could be improved. Contact information and multiple company locations are clearly provided, enhancing business credibility. No adult or questionable content is present, making the site safe for general audiences.

D

Deutsche Telekom

telekom-domains.de

0

The website represents a secure login portal for Telekom Deutschland GmbH's domain management system, facilitating the registration and administration of internet domain names and DNS zones. It serves primarily Telekom's domain customers and administrators, reflecting the company's position as a leading telecommunications provider in Germany. The platform is branded consistently with Deutsche Telekom's corporate identity and provides clear contact channels for support. Technically, the site is built using JavaServer Faces with PrimeFaces 11.0.0 and jQuery, indicating a mature enterprise web application stack. While the site shows moderate performance and basic mobile optimization, it lacks advanced SEO and accessibility features. Security practices include secure cookies and password input protections, but HTTP security headers are not evident, suggesting room for improvement. From a security perspective, the site does not exhibit vulnerabilities or exposed sensitive data. However, the absence of explicit security policies and incident response information publicly available limits transparency. The WHOIS data is restricted due to DENIC policies but aligns with Telekom's infrastructure, supporting legitimacy. Overall, the site is trustworthy and professionally maintained. Recommendations include enhancing security headers, improving mobile responsiveness and accessibility, and publishing clear security and incident response policies to strengthen user trust and compliance posture.

C

CREAPLUS

creaplus.com

0

CREAPLUS is a well-established European cybersecurity and AI consulting, distribution, and software development firm founded in 2008. The company specializes in delivering comprehensive cybersecurity solutions including cryptography, AI, and software development services to regulated industries such as banking, pharmaceuticals, telecommunications, and energy. Their market position is strong with over 15 years of experience and multiple certifications including ISO 27001 and Cyber Essentials Plus. Technically, the website is built on WordPress with modern plugins like Elementor and Slider Revolution, hosted with Cloudflare DNS and a reputable registrar. Security posture is good with HTTPS and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional, content-rich, and trustworthy, targeting enterprise clients seeking secure innovation in cybersecurity and AI.

R

Robert Bosch Stiftung

deutsches-schulportal.de

0

Deutsches Schulportal is a German educational platform affiliated with the Robert Bosch Stiftung, focusing on improving school quality through articles, dossiers, expert opinions, and events. The website serves educators, school leaders, and policymakers with rich, well-structured content and practical resources. Technically, the site is built on WordPress with modern SEO and performance optimizations, including WP Rocket and Yoast SEO, and integrates analytics and consent management tools. Security posture is strong with HTTPS and no visible vulnerabilities, though explicit security policies and contact information are lacking. Overall, the site is professional, trustworthy, and well-positioned in the German education sector.

K

Kulturzentrum Merlin

merlinstuttgart.de

0

Kulturzentrum Merlin is a non-profit socio-cultural center located in Stuttgart, Germany, focusing on providing a platform for concerts, literature, children's activities, films, and festivals. The website positions itself as a local cultural hub serving a general audience with family-friendly content. Technically, the site is built on WordPress using the Divi theme and several plugins including Yoast SEO and Contact Form 7, indicating a moderate level of digital maturity. The site is mobile optimized and uses HTTPS, but lacks some advanced security headers and explicit privacy and terms of service pages. Security posture is adequate but could be improved with better header implementation and explicit security policies. Overall, the website is trustworthy and professional, though it would benefit from enhanced privacy compliance and clearer contact information.

T

Türkische Gemeinde Deutschland

tgd.de

0

Türkische Gemeinde Deutschland (TGD) is a German non-profit umbrella organization representing the interests of people with Turkish migration backgrounds. The website provides comprehensive information about their projects, member associations, and societal topics such as participation, equality, and diversity. The organization targets migrants and stakeholders interested in integration and social inclusion. Technically, the website is built on WordPress using WPBakery Page Builder and several plugins, with a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers are not explicitly detected. Privacy compliance is strong with detailed GDPR-compliant policies and consent management. Overall, the site is professional, trustworthy, and well-structured, supporting the organization's mission effectively.

D

Deutsches Zentrum für Integrations- und Migrationsforschung DeZIM e.V.

dezim-institut.de

0

The Deutsches Zentrum für Integrations- und Migrationsforschung DeZIM e.V. is a German non-profit research institute specializing in integration, migration, discrimination, and racism studies. The website serves as a professional platform to disseminate research findings, publications, and event information targeting academics, policymakers, and practitioners. The institute is funded by the German Federal Ministry for Family Affairs, Senior Citizens, Women and Youth, indicating strong institutional backing and credibility. Technically, the website is built on TYPO3 CMS with modern frameworks like Bootstrap and jQuery, and it integrates accessibility tools such as ReadSpeaker webReader. The site is well-optimized for mobile and SEO, with a clear navigation structure and professional design. Security-wise, HTTPS is enforced, and a cookie consent mechanism is implemented with Matomo analytics configured for privacy. However, additional security headers and explicit security policies could enhance the security posture. Overall, the website is trustworthy, compliant with GDPR, and provides a safe browsing experience.

P

ProjectTogether

projecttogether.org

0

ProjectTogether is a German non-profit organization established in 2012 that aims to bring together society, politics, and economy for collaborative social impact. The website reflects a mature digital presence with a modern WordPress CMS using Elementor and Astra theme, integrated with marketing and analytics tools such as HubSpot, MailerLite, and Usercentrics for cookie consent. The organization maintains active social media channels on Facebook, Twitter (X), and LinkedIn, enhancing its community engagement and trustworthiness. Technically, the site is well-structured with good SEO and mobile optimization, though performance is moderate. Security posture is adequate with HTTPS enforced and domain registration transparency, but could be improved by enabling DNSSEC and adding additional security headers. Privacy compliance is basic, lacking explicit privacy and terms of service pages, which should be addressed to meet GDPR standards fully. Overall, the website is professional and trustworthy, serving its non-profit mission effectively.

R

Robert Bosch Stiftung

bosch-stiftung.de

0

The Robert Bosch Stiftung website represents a large, well-established non-profit foundation linked to the Bosch corporate group. The foundation focuses on funding and supporting projects in health, education, and global issues to promote a just and sustainable future. The website is professionally designed with excellent content quality, clear navigation, and consistent branding. It targets NGOs, educational institutions, policymakers, and the general public interested in social and global topics. Technically, the site uses Drupal 11 CMS with modern web technologies and moderate performance. Privacy compliance is strong, with clear cookie consent mechanisms and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly provided. Overall, the site is trustworthy, safe, and professionally maintained.

Z

ZEOK e.V. Leipzig

zeok.de

0

ZEOK e.V. Leipzig is a small non-profit organization focused on promoting open culture, anti-racism, and peaceful coexistence in Leipzig, Saxony, and across Germany. The website presents a professional and well-structured digital presence built on WordPress with the Kadence theme and related plugins, supporting educational and cultural initiatives such as workshops, publications, and festivals. The organization targets educators, activists, and the general public interested in diversity and anti-discrimination efforts. Technically, the site is well implemented with modern technologies, good mobile optimization, and SEO best practices. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though some security headers and explicit policies are missing. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professional, reflecting the organization's mission and activities effectively.

K

korientation e.V.

korientation.de

0

korientation e.V. is a small non-profit organization based in Germany, dedicated to serving the Asian-German and Asian diasporic communities with a focus on cultural, political, and social issues. The organization operates as a self-organization and network, providing community events, political education, publications, and collaborative projects against racism. Their market position is niche but well-established within their community, with a history dating back to 2008. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with modern plugins and libraries, hosted likely by a German hosting provider, and implements HTTPS with cookie consent mechanisms. Security posture is good but could be improved by adding explicit security headers and incident response policies. No critical vulnerabilities or suspicious patterns were detected. Overall, the site is trustworthy and well-maintained, with moderate user tracking via analytics and a clear privacy policy compliant with GDPR.

R

RAA Berlin

raa-berlin.de

0

RAA Berlin is a medium-sized non-profit organization based in Germany focused on diversity, inclusion, and community engagement. Their website highlights projects, publications, and educational offerings aimed at promoting social inclusion and addressing marginalization. The organization maintains a consistent brand presence and targets a general audience interested in social issues. Technically, the website is built on TYPO3 CMS, hosted by netcup, and integrates accessibility tools to enhance user experience. The site is well-structured, mobile-optimized, and provides multilingual options. Security posture is moderate with HTTPS assumed but lacking explicit security headers and incident response contacts. Privacy compliance is good with a comprehensive privacy policy but no visible cookie consent mechanism. Overall, the website is professional, trustworthy, and safe for general audiences.

E

Each One Teach One (EOTO) e.V.

eoto-archiv.de

0

Each One Teach One (EOTO) e.V. is a small non-profit community organization based in Berlin focused on education, empowerment, and cultural preservation for Black, African, and Afro-diasporic communities. Founded in 2012, it operates a neighborhood library and organizes events, workshops, and advocacy initiatives. The website reflects a well-structured and content-rich platform targeting its community with multilingual support and clear navigation. Technically, the site uses modern web technologies including HTTPS and JavaScript libraries like Swiper.js for interactive content. Security posture is good with HTTPS enabled and no exposed sensitive data, though it lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy, professional, and safe for general audiences.

V

Verband binationaler Familien und Partnerschaften Leipzig

binational-leipzig.de

0

The Verband binationaler Familien und Partnerschaften Leipzig is a non-profit organization focused on supporting binational families and partnerships, operating primarily in Leipzig with nationwide relevance in Germany. Their services intersect family, migration, and education policy, providing advisory and support functions. The website reflects a professional and consistent brand image with clear contact information and a cookie consent mechanism, indicating attention to privacy compliance. Technically, the site is built on WordPress using modern themes and plugins, including Bootstrap and Google Tag Manager, hosted likely by 1&1 IONOS. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site is trustworthy and well-maintained, serving a specialized non-profit audience.

Y

Young Entrepreneurs in Science

youngentrepreneursinscience.com

0

Young Entrepreneurs in Science (YES) is a well-established non-profit educational program based in Germany, focused on equipping master’s students, doctoral candidates, and postdocs with entrepreneurial skills through free workshops and training programs. Supported by government ministries and business partners, YES aims to foster a cultural shift in science towards entrepreneurship and innovation. The website reflects a professional and consistent brand presence with clear messaging and a strong partnership ecosystem, including the Falling Walls Foundation as a parent organization. Technically, the site is built on WordPress with modern technologies and integrates multiple analytics and marketing tools, though it lacks a cookie consent mechanism and some security headers. Security posture is generally good with HTTPS and no exposed sensitive data, but could be improved by adding security policies and incident response contacts. Overall, the website is trustworthy, well-designed, and serves its target audience effectively.

F

Falling Walls Foundation

berlinscienceweek.com

0

Berlin Science Week is a well-established annual science and culture festival organized by the Falling Walls Foundation, showcasing hundreds of free events across Berlin. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. It targets a broad audience including researchers, students, and the general public interested in science. The technical infrastructure is modern, leveraging Drupal 10 CMS, Bootstrap, and various analytics and consent management tools. Security posture is good with HTTPS enabled and consent mechanisms in place, though some security headers could be improved. The domain is long-standing and consistent with the organization's history, enhancing trustworthiness. Overall, the website demonstrates strong compliance with privacy regulations and offers a rich user experience.

C

Creative Bureaucracy Festival

creativebureaucracy.org

0

Creative Bureaucracy Festival is a well-established international event focused on public sector innovation, attracting thousands of participants from government and civil society. The website is professionally designed using Drupal 10, with modern analytics and consent management tools implemented. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC and security headers could be improved. The domain registration data aligns well with the festival's founding and operations, indicating legitimacy. Overall, the website effectively supports the festival's mission and audience engagement.

W

Reiseberichte :: Welt bereisen

welt-bereisen.de

0

The website 'Welt bereisen' is a niche travel blog primarily focused on European travel, with a strong emphasis on cultural, historical, and religious sites. It offers detailed travel reports, photo galleries, and rich content aimed at travel enthusiasts interested in history and culture. The site is small-scale and appears to be managed by an individual or small team, with content quality rated as good and consistent branding. Technically, the site uses a custom CMS, modern web fonts, and common JavaScript libraries such as jQuery, along with Google Analytics and Piwik for tracking. It employs HTTPS and includes a cookie consent mechanism, indicating some level of GDPR compliance. However, explicit privacy policies and terms of service are missing, and no direct contact information is provided, which limits business credibility and privacy transparency. Security posture is moderate with HTTPS but lacks security headers and formal security policies. Overall, the site is safe, professional, and well-structured but could improve in privacy and security documentation.

B

Beuroner Kunstverlag

klosterkunst.de

0

Beuroner Kunstverlag operates the Klostershop Beuron website, an e-commerce platform specializing in religious and monastic art, cards, books, candles, and gifts. The business targets Christian customers and religious communities interested in high-quality religious-themed products. The website is professionally designed with consistent branding and good navigation, optimized for mobile devices and accessibility. Technically, it leverages modern frameworks such as Bootstrap and jQuery, and is hosted on Hetzner servers, indicating a stable infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of privacy and terms of service pages indicates compliance gaps. No critical vulnerabilities or suspicious content were detected, and the WHOIS data aligns with a legitimate German business, albeit with limited registrant details.

xmlteam GmbH & Co KG operates in the transportation sector, providing specialized software solutions for the cruise and travel industry. Their flagship product, CruiseCompass, is accessible online without requiring software downloads and integrates with various mid-office systems used by travel agencies. The company targets travel professionals and agencies seeking efficient cruise management tools. The website is currently under maintenance but provides clear access points to their services and support. Technically, the website employs modern frameworks such as Bootstrap 5.1.3 and is hosted on Hetzner servers, indicating a reliable infrastructure. The site uses HTTPS, ensuring secure communication, but lacks advanced security headers and cookie consent mechanisms. The design and content quality are basic but functional, with room for improvements in accessibility and SEO. From a security perspective, the site demonstrates a good baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of security policies, incident response contacts, and vulnerability disclosure mechanisms suggests limited maturity in security governance. No tracking or analytics scripts were detected, indicating minimal user data collection. Overall, the website and domain appear legitimate and consistent with the business profile. Strategic improvements in security headers, privacy compliance, and user experience would enhance trust and compliance posture.

B

Bichinger Software & Consulting

bichinger.de

0

Bichinger Software & Consulting is a small technology company based in Germany specializing in professional web platform software development using Ruby on Rails and Vue.js. The company targets businesses seeking custom web platform solutions and consulting services. The website is currently offline with a placeholder message indicating renewal, limiting content availability and detailed business information. The technical infrastructure leverages modern frameworks and technologies, including PostgreSQL and Docker, indicating a contemporary development environment. However, the website lacks visible contact information, privacy policies, and terms of service, which impacts trust and compliance perception. Security posture shows basic implementation with CSRF tokens but lacks visible security headers and documented policies. Overall, the site is functional but minimal, with moderate technical maturity and room for improvement in security and compliance documentation.

B

Biosphärenreservat Bliesgau

biosphaere-bliesgau.eu

0

The website www.biosphaere-bliesgau.eu represents the Biosphere Reserve Bliesgau, a regional environmental and cultural preservation entity in Germany. It provides information about the biosphere reserve, events, and local products, targeting a general audience interested in environmental conservation and regional culture. The site is supported by European Union funding and regional government partners, indicating a strong legitimacy and community focus. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics with consent mechanisms, and shows good mobile optimization and SEO practices. However, explicit privacy and cookie policies are not clearly found, and no direct contact information is visible in the provided content. Security posture is good with HTTPS and no visible vulnerabilities, but security headers are not detected and no incident response or vulnerability disclosure information is provided. Overall, the site is professional and trustworthy but could improve transparency and compliance documentation.

B

Bundesverband professioneller Bildanbieter e.V.

bvpa.org

0

The Bundesverband professioneller Bildanbieter e.V. (BVPA) is a well-established non-profit association founded in 1970, representing professional image providers and related service companies primarily in Germany and Europe. The organization offers key services including interest representation, legal advice, networking events, publications on image usage fees, and training seminars. The website reflects a professional and consistent brand presence targeting industry professionals and stakeholders in the media and photography sectors. Technically, the site is built on a modern WordPress platform with WooCommerce and CherryFramework, hosted likely by IONOS SE, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, though improvements are recommended in DNSSEC deployment and security headers. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate online presence.

Y

yeswecan!cer gGmbH

yeswecan-cer.org

0

yeswecan!cer gGmbH operates Germany's largest digital self-help group for cancer patients, providing a platform for patient exchange, expert interaction, and community support. The organization is positioned as a trusted non-profit in the healthcare sector, leveraging digital tools including a mobile app and online events to empower patients and their families. Their market position is strong within Germany, supported by partnerships and a medical advisory board. Technically, the website is built on WordPress with modern SEO and consent management plugins, ensuring good performance and compliance with GDPR. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though improvements could be made in DNSSEC and security headers. Overall, the site is professional, trustworthy, and well-optimized for its audience.

V

Vision Zero e.V.

vision-zero-oncology.de

0

Vision Zero Oncology is a German non-profit initiative focused on reducing avoidable cancer deaths through collaboration among scientific, medical, and industrial stakeholders. The website serves as a platform for information dissemination, event promotion, and publication sharing, targeting healthcare professionals, researchers, and the public. Technically, the site uses a modern Bootstrap framework, integrates Cookiebot for GDPR-compliant cookie management, and employs Google reCAPTCHA for form security. The hosting is managed via One.com with HTTPS enforced, indicating a secure baseline. Security posture is solid with room for improvement in security headers and incident response transparency. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting its mission effectively.