Security Directory

W

Word­press Web­site mit Datenschutz­garantie!

dswebsite.de

0

The website dswebsite.de offers specialized WordPress hosting and website creation services with a strong emphasis on GDPR compliance, consent management, and security features. It targets small to medium businesses, freelancers, and enterprises in Germany seeking reliable and privacy-focused WordPress solutions. The business model is subscription-based with tiered pricing plans tailored to different customer needs. Technically, the site is built on WordPress using the Divi theme and incorporates modern plugins such as Borlabs Cookie for consent management and Matomo for analytics, hosted on webgo.de servers. Security posture is robust with HTTPS enforced, daily backups, malware scanning, and spam filtering, although explicit security headers and vulnerability disclosure mechanisms are not evident. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a credible service provider in its niche.

V

VR-Bank eG

vrbank-eg.de

0

VR-Bank eG operates as a regional cooperative bank in Germany, providing local banking and financial services to its community. The website serves as an informational portal highlighting the bank's offerings and commitment to local customer service. The technical infrastructure is based on modern web technologies including Angular Material and uses Dynatrace for performance monitoring, indicating a moderate level of digital maturity. However, the site lacks visible privacy and cookie policies, which impacts compliance and trust. Security posture is moderate with no explicit security headers or incident response information found, suggesting room for improvement in security transparency and best practices. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security disclosures to improve user trust and regulatory adherence.

S

Sparkasse Aachen

sparkasse-aachen.de

0

Sparkasse Aachen is a regional financial institution providing a broad range of banking and financial services including online banking, loans, investments, insurance, and personal advisory services. The website targets both private and corporate customers with a comprehensive digital presence and strong local market positioning, supported by awards and certifications. Technically, the site is built on a modern CMS platform (likely Adobe Experience Manager), uses HTTPS with good security practices, and integrates monitoring and analytics tools such as Dynatrace and Google Analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with session management and cookie consent mechanisms, though explicit security policy and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations, making it a reliable digital channel for the bank's customers.

R

Rausgegangen GmbH

zentrale.events

0

Rausgegangen GmbH operates the website zentrale.events as a centralized platform for event organizers, venues, and artists primarily in Germany. The platform offers integrated services including event publishing, ticketing, and targeted marketing, positioning itself as one of the largest event recommendation platforms in Germany. The business model leverages a freemium approach with additional marketing services, targeting cultural professionals and event goers. Technically, the site is built using modern web technologies such as React and Next.js, with privacy-conscious analytics via Matomo and a comprehensive cookie consent mechanism provided by Iubenda. The website is mobile-optimized and well-structured, providing a good user experience.

O

OXID eSales

oxid.jobs

0

OXID eSales operates a professional job listing website targeting candidates interested in the e-commerce sector. The site is built on TYPO3 CMS and integrates modern marketing and consent management tools such as HubSpot and Usercentrics, indicating a mature digital infrastructure. The website is well-designed, mobile-optimized, and provides a clear employer branding message. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit privacy policies and terms of service are missing, which could impact compliance. No direct contact information or incident response channels are provided, limiting transparency in security matters. Overall, the site is legitimate and trustworthy but could improve in privacy and security disclosures.

E

EHI Retail Institute GmbH

ehi.de

0

The EHI Retail Institute GmbH is a scientific research institute based in Cologne, Germany, serving the retail sector with approximately 850 members. The organization focuses on research, publications, events, and community engagement to support retail industry stakeholders. The website reflects a professional and well-structured digital presence, leveraging WordPress CMS with the Divi theme and modern JavaScript libraries such as UIkit, Splide.js, and GSAP. It integrates advanced search capabilities via Fact-Finder and employs Borlabs Cookie for privacy compliance. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers and explicit privacy policies are missing. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by the professional content and structured data. Overall, the website is trustworthy, content-rich, and well-optimized for its audience.

F

FactFinder

fact-finder.de

0

FactFinder is a well-established German company specializing in AI-driven search and product discovery solutions for eCommerce businesses. With over 20 years of experience and a client base exceeding 2,000 online shops, FactFinder offers a comprehensive SaaS platform that enhances conversion rates through personalized shopping experiences. The company holds multiple industry awards, underscoring its market leadership and innovation. Technically, the website employs modern JavaScript libraries, consent management, and analytics tools, ensuring a robust digital presence with good performance and mobile optimization. Security practices include HTTPS enforcement and input validation, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a credible resource for eCommerce technology solutions.

F

Fachagentur Wind und Solar

fachagentur-wind-solar.de

0

Fachagentur Wind und Solar is a German organization dedicated to promoting environmentally compatible use of wind and solar energy. Acting as an interface between science, practice, and politics, it supports the energy transition with in-depth analyses, expert information, and practical guidance. The website is professionally designed, content-rich, and regularly updated with news, publications, and events focused on renewable energy topics. The target audience includes policymakers, practitioners, researchers, and local communities interested in wind and solar energy development. Technically, the site runs on TYPO3 CMS, hosted on AWS infrastructure, and uses Matomo for privacy-respecting analytics. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, GDPR compliant, and provides valuable resources in the renewable energy sector.

S

Spartan Race

spartan.com

0

Spartan Race operates a professional e-commerce platform focused on obstacle course race event registrations and merchandise sales. The website targets fitness enthusiasts and athletes seeking challenging physical events. The business is positioned as a leading global organizer in its niche, leveraging Shopify as its e-commerce platform and integrating multiple marketing and analytics tools to optimize customer engagement and sales. The technical infrastructure is modern and robust, with good mobile optimization and performance. Security posture is strong with HTTPS enforcement and security headers, though explicit privacy and terms policies are not clearly presented in the analyzed content. The absence of WHOIS data is due to privacy protection, which is common and justified for commercial entities. Overall, the website demonstrates a mature digital presence with room for improvement in privacy transparency and contact information availability.

A

AVM GmbH

myfritz.net

0

The website sso.myfritz.net serves as the secure login portal for MyFRITZ!Net, a service provided by AVM GmbH, a recognized German technology company specializing in home networking products. The platform allows users to authenticate and manage their FRITZ! devices through a centralized account. The site is professionally designed with consistent branding and provides links to comprehensive privacy and terms of service documents hosted on official AVM domains. The target audience is primarily users of FRITZ! products seeking device management and account access.

T

Tourismusverein Obermain-Jura e. V.

obermain-jura.de

0

Obermain.Jura is a regional tourism organization promoting the Obermain-Jura area in Germany, focusing on outdoor activities, cultural experiences, health and wellness, and family-friendly tourism. The website serves as a comprehensive portal for visitors, offering information on hiking, biking, local landmarks, gastronomy, and accommodations. The organization positions itself as a key regional tourism promoter with a strong emphasis on accessibility and user experience. Technically, the website is built on WordPress 6.8.1, utilizing modern libraries such as Bootstrap 5.2.3, Leaflet for maps, and FontAwesome for icons. It employs GDPR-compliant cookie management via the Complianz plugin and integrates Matomo analytics for privacy-conscious visitor tracking. The site is mobile-optimized and includes advanced accessibility features, including a dedicated accessibility assistant. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent mechanisms. However, explicit HTTP security headers are not detected, and no formal security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the analysis. The domain WHOIS data is consistent with the website's regional tourism purpose, indicating legitimacy and trustworthiness. Overall, Obermain.Jura demonstrates a mature digital presence with strong content quality, good technical implementation, and solid privacy compliance. Strategic improvements in security headers and incident response transparency could further enhance its security posture and trustworthiness.

The website stellen.center currently serves only a 404 Not Found error page in German, indicating that the site content is inaccessible or missing. There is no visible business information, metadata, or structured data to analyze. The domain is registered since 2020 with a reputable registrar and hosted on Hetzner servers, suggesting legitimacy of the domain registration but no active web presence. The technical infrastructure appears minimal with no detected CMS, scripts, or external integrations. Security posture cannot be properly assessed due to lack of content and headers, but no WAF or blocking mechanisms are detected. Overall, the site is inactive or misconfigured, resulting in a very low trust and quality score.

B

BAMBERG Tourismus & Kongress Service

tagen-in-bamberg.de

0

The website 'Tagen in Bamberg' serves as a regional platform promoting Bamberg as an ideal location for meetings, conferences, and events. Operated by BAMBERG Tourismus & Kongress Service, it offers comprehensive services including venue listings, event programs, and support services tailored to corporate and event planners. The site is professionally designed with clear navigation and is optimized for mobile devices, providing a positive user experience. Technically, it employs modern JavaScript libraries, Google Tag Manager, and a GDPR-compliant cookie consent mechanism, reflecting a moderate level of digital maturity. Security-wise, the site uses HTTPS and cookie consent but lacks visible advanced security headers or explicit security policies, indicating room for improvement. Overall, the website is trustworthy, compliant with privacy regulations, and well-positioned within its niche, though it could enhance its security posture and transparency further.

F

Frankenhotel Drei Kronen Memmelsdorf GmbH

drei-kronen.de

0

Frankenhotel Drei Kronen Memmelsdorf GmbH operates a traditional hotel and brewery guesthouse located in Memmelsdorf near Bamberg, Germany. The business emphasizes a blend of Franconian culinary tradition and modern hospitality, offering hotel accommodations, brewery tours, event hosting, and regional tourism packages. The company holds recognized certifications such as the 3-Sterne-Superior hotel classification and the DEHOGA Umweltcheck Gold award, underscoring its commitment to quality and environmental responsibility. The website is professionally designed, mobile-optimized, and rich in content, targeting tourists, business travelers, and local visitors interested in authentic Franconian experiences. Technically, the site uses a modern stack including Bootstrap, jQuery, Matomo analytics, and Pimcore CMS, hosted on Hetzner infrastructure, ensuring reliable performance and good SEO practices.

W

Welcome Hotels GHG Beteiligungsgesellschaft mbH

welcome-hotels.com

0

Welcome Hotels GHG Beteiligungsgesellschaft mbH operates a network of 14 hotels across Germany, offering accommodation, wellness, and event hosting services. The company emphasizes sustainability, demonstrated by its GreenSign certification, and targets a broad audience including tourists, business travelers, and event organizers. The website is professionally designed, mobile-optimized, and provides comprehensive information about hotel locations, amenities, and special offers. Technically, the site uses modern JavaScript libraries and integrates cookie consent mechanisms, ensuring compliance with privacy regulations. Security posture is good with HTTPS enforced, though some security headers are missing and no explicit security policy or incident response information is published. The WHOIS data is unavailable, which slightly reduces transparency but the overall business credibility remains high based on website content and trust indicators.

F

Ferienwohnungen in Bamberg und Umgebung

fewo-in-bamberg.de

0

The website fewo-in-bamberg.de operates as a specialized regional platform offering listings and booking referrals for private holiday apartments, apartments, and houses in Bamberg and its surroundings. It targets tourists and visitors seeking accommodation in this German region, providing a comprehensive directory of over 110 private rental options with detailed contact information and booking links to external platforms such as Booking.com and Airbnb. The platform also offers availability calendars and local tourist tips, enhancing the user experience for vacation planning. Technically, the website is built on Drupal 7 CMS, utilizing jQuery 2.2.4 and Bootstrap 3.4.1 frameworks, along with Flexslider for image carousels. While the site is mobile-optimized and features a professional design with clear navigation, the use of Drupal 7, which is end-of-life, poses potential security risks. The site enforces HTTPS and includes privacy and cookie policies compliant with GDPR, but lacks visible terms of service and incident response contact information. From a security perspective, the site benefits from HTTPS and some security headers but misses critical headers like Content Security Policy and X-Frame-Options. No security.txt or vulnerability disclosure information is present. The absence of updated CMS and some security best practices suggests moderate security posture with room for improvement. Overall, the website is a credible and trustworthy regional hospitality platform with good content quality and user experience. However, it should prioritize upgrading its CMS, enhancing security headers, and adding incident response and vulnerability disclosure information to strengthen its security and compliance posture.

M

Mohrenhaus - Das Haus für schöne Sachen

mohren-haus.de

0

Mohren-Haus is a German-based e-commerce retailer specializing in lifestyle, gifts, kitchenware, home decor, fashion, and accessories. The website presents a well-structured online shop with a clear focus on branded and quality products, targeting a general audience interested in unique and beautiful items. The business appears to be a small local/regional player with an online presence to expand its reach. Technically, the website uses modern web technologies including Google Tag Manager and Facebook Pixel for marketing and analytics, hosted on Alfahosting with consistent WHOIS data. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policy pages, although a cookie consent mechanism is present. Overall, the website is legitimate and trustworthy but could improve transparency and security practices.

L

Landhaus Sponsel-Regus

sponsel-regus.de

0

Landhaus Sponsel-Regus is a family-run 4-star wellness hotel located in the Franconia region of Germany, targeting families and wellness tourists. The website presents a professional and consistent brand image with a focus on hospitality and wellness services. The technical infrastructure leverages a custom CMS platform with common web technologies such as jQuery, Matomo analytics, and Google Tag Manager, with cookie consent mechanisms in place. Security posture is generally good with HTTPS enforced and consent-based analytics, but lacks explicit security headers and updated libraries. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the website is trustworthy and professionally maintained but could improve in transparency and security best practices.

B

bed and breakfast - Privatunterkünfte

bed-and-breakfast.de

0

bed-and-breakfast.de is a German hospitality website specializing in private accommodation bookings including guest rooms, holiday apartments, trade fair rooms, and rooms for workers. The business operates through local agencies that personally vet hosts, offering a trusted and personalized alternative to hotels. The website targets tourists, business travelers, and workers seeking affordable and varied lodging options across over 30 regions in Germany. Technically, the site is built on Joomla CMS, leveraging OpenStreetMap and TomTom APIs for mapping, and uses modern JavaScript libraries for UI enhancements. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS, security headers, and CSRF protections, though it lacks explicit cookie consent and incident response disclosures. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

G

Geburtshaus Levi Strauss Museum

levi-strauss-museum.de

0

The Geburtshaus Levi Strauss Museum is a specialized cultural institution located in Buttenheim, Germany, dedicated to the life and legacy of Levi Strauss, the inventor of blue jeans. The museum offers exhibitions, educational programs, and a museum shop, targeting general visitors, fashion enthusiasts, and cultural tourists. It holds a niche market position with international recognition through awards. Technically, the website is built on WordPress using a child theme of Twenty Twenty-One, hosted on servers associated with flessio.com and flessio.de. The site demonstrates good mobile optimization and SEO practices but lacks advanced security headers and cookie consent mechanisms. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security policy transparency and headers. Overall, the website is professional, trustworthy, and provides clear contact information and social media presence, supporting its credibility as a legitimate museum entity.

F

Friedrich Hotel GmbH

schlafen-in-bamberg.de

0

Friedrich Hotel GmbH operates a family-run chain of hotels and holiday apartments in and around Bamberg, Germany. The company targets tourists, business travelers, families, and groups, offering accommodation services across multiple properties including Hotel National, Hotel Rosenhof, Hotel Alt Bamberg, Hotel Bamberg Inn, and Ferienwohnungen Neumann. The website presents a professional and consistent brand image with clear contact information and booking options. Technically, the site uses modern JavaScript libraries, Google Tag Manager for analytics, and a consent management platform to comply with GDPR requirements. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and consent mechanisms in place, though some security headers and explicit policies could be improved. Overall, the domain and WHOIS data appear legitimate and consistent with the business claims.

Personenschiffahrt Kropf GmbH & Co KG operates a specialized passenger shipping service in Bamberg, Germany, offering scenic boat tours through the UNESCO World Heritage area. The company targets tourists and local visitors seeking leisure and sightseeing experiences on the water. Their business model focuses on providing scheduled and special cruises with onboard services, catering also to group reservations. The website reflects a small local business with consistent branding and clear service offerings. Technically, the site is built on the cm4all CMS platform hosted by Strato, using older JavaScript libraries and standard web technologies. The site is mobile-optimized and provides basic accessibility and SEO features. Security posture is moderate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and uses outdated libraries that could pose risks. No incident response or security policy information is provided. Overall, the website is professional and trustworthy for its business scope but could improve technical and security aspects.

Regio Augsburg Tourismus GmbH operates as the regional tourism authority for Augsburg, Bavaria, Germany, providing comprehensive tourism information, guided tours, accommodation listings, and cultural event promotion. The website serves as a multilingual portal targeting tourists and visitors interested in exploring Augsburg's rich historical and cultural heritage. The business model focuses on destination marketing and visitor engagement through digital content and downloadable brochures.

C

Colourbox

colourbox.de

0

Colourbox is a large German-based stock media agency offering over 26 million royalty-free images, videos, and vectors for purchase. The company targets businesses and individuals requiring licensed digital media for web, print, and social media use. The website demonstrates a mature technical infrastructure leveraging modern JavaScript frameworks, CDN hosting via AWS Cloudfront, and integration with Google Tag Manager for analytics and marketing. While the site is well-designed and content-rich, it lacks explicit privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. Security posture is adequate with HTTPS enabled but could be improved by implementing security headers and publishing incident response policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency.

E

elementare teilchen GmbH

elementare-teilchen.de

0

elementare teilchen GmbH is a specialized agency focused on TYPO3 CMS development, web design, and programming services primarily serving clients in Germany. Their portfolio includes reputable institutions such as universities and government-related organizations, positioning them as a trusted niche provider in the technology sector. The company emphasizes a content-first approach and offers tailored web solutions with a strong design and technical foundation. Technically, the website employs modern frameworks like Bootstrap and uses optimized assets such as WebP images and self-hosted fonts, indicating a moderate to good level of digital maturity. Hosting is provided by SchlundTech, a professional hosting provider, and the site is mobile optimized with clear navigation and good content relevance. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security headers and published security policies, which are areas for improvement. Privacy compliance is partial, with a privacy policy linked but no cookie consent mechanism or GDPR explicit statements visible. Overall, the website is professional and trustworthy but could enhance its security posture and privacy compliance to meet higher standards.

V

vbw Stiftung Lebensgrundlagen Bayern

vbw-slb.de

0

The vbw Stiftung Lebensgrundlagen Bayern is a non-profit foundation focused on promoting sustainable social and ecological projects within Bavaria, Germany. It offers financial support through various funding awards ranging from 10,000 to 250,000 Euros annually, with a total funding volume of up to 600,000 Euros. The foundation targets individuals, organizations without profit motives, and educational institutions engaged in community and environmental sustainability initiatives. The website provides an online platform for registration and application, facilitating a structured and transparent funding process.

B

bayme vbm

baymevbm.de

0

bayme vbm is a prominent employer association representing the metal and electrical industries in Bavaria, Germany. With approximately 3,600 member companies, it provides advocacy, legal support, training, and networking services to its members. The organization operates under the umbrella of the Vereinigung der Bayerischen Wirtschaft e. V. (vbw), reinforcing its strong regional and industry presence. The website is professionally designed, multilingual (German and English), and offers comprehensive resources and tools tailored to its target audience of businesses in manufacturing and related sectors. Technically, the website employs modern JavaScript libraries such as Swiper.js and Vimeo Player API, integrates cookie consent mechanisms compliant with GDPR, and uses accessibility tools like eyeAble. The site is responsive and optimized for mobile devices, with good SEO and accessibility practices. Security-wise, the site enforces HTTPS, implements standard security headers, and uses secure forms for login. However, it lacks a dedicated security policy or incident response page and does not provide a vulnerability disclosure or security.txt file. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. The WHOIS data aligns with the business claims, showing consistency and legitimacy. The site uses etracker for analytics and tracking with user consent, maintaining good privacy compliance. Social media presence across major platforms enhances trust and outreach. The risk level is low, but improvements could be made by publishing explicit security policies and incident response contacts to enhance transparency and preparedness. The website serves its business purpose effectively with high professionalism and user experience.

C

Christie's

christies.com

0

Christie's is a globally recognized auction house specializing in fine art, luxury goods, and antiques. The company operates both live and online auctions, complemented by bespoke private sales, targeting collectors and luxury buyers worldwide. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its audience. Technically, the site leverages modern frameworks such as React and StencilJS, integrates advanced analytics tools including Microsoft Application Insights and Adobe DTM, and employs robust cookie consent mechanisms to ensure privacy compliance. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the brand's prominence and website quality. Strategic recommendations include enhancing transparency around security policies and incident response, and publishing vulnerability disclosure information to further strengthen trust and compliance.

P

portfolio institutionell

portfolio-institutionell.de

0

portfolio institutionell is a leading German media outlet specializing in institutional capital investment. The website offers comprehensive news, expert interviews, event information, and industry analysis targeted at institutional investors such as pension funds, insurance companies, and asset managers. The business operates primarily in the finance and media sectors, with a strong focus on the German market. The company is well-established with a founding date around 2018 and maintains a professional online presence with consistent branding and high-quality content. Technically, the website is built on WordPress using Bootstrap and jQuery, enhanced with modern plugins for cookie consent (CookieYes) and forms (Contact Form 7). The site is mobile-optimized, SEO-friendly, and uses structured data to improve search engine visibility. Performance is moderate, with room for optimization. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No blocking or WAF challenges were detected, allowing full content access. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact information is available, though no direct company emails were found in the HTML content. The domain WHOIS data aligns well with the website's business claims, indicating legitimacy and trustworthiness. Overall, portfolio institutionell presents a professional, secure, and compliant digital platform serving a niche but important market segment in Germany.

T

TV Oberfranken

tvo.de

0

TV Oberfranken operates as a regional media broadcaster serving the Oberfranken region in Germany, providing news and television content to approximately one million residents. The website functions as a digital platform for news dissemination, livestreaming, and media library access, targeting local audiences in cities such as Bamberg, Bayreuth, and Coburg. The business model centers on regional broadcasting and news reporting, positioning TV Oberfranken as a key local media outlet.

N

Natur Erlebnis Wäldla

waeldla.de

0

Natur Erlebnis Wäldla is a regional initiative focused on enhancing the quality of life and promoting nature-based tourism in the Frankenwald region of Germany. It is a collaborative project among the municipalities of Presseck, Marktrodach, and the city of Wallenfels, supported by the LEADER program. The website showcases various nature and recreational facilities such as info centers, trails, playgrounds, and parks, targeting both local residents and visitors. The content is well-structured and presented in German, emphasizing community engagement and regional attractions. Technically, the website is built on TYPO3 CMS with Bootstrap framework, featuring responsive design and accessibility considerations. It integrates Google Maps for interactive location display, although map loading requires user consent. The hosting appears to be managed by a web agency, as indicated by the nameservers. Performance is moderate with good SEO and mobile optimization. From a security perspective, the site uses HTTPS and has some security headers, but lacks advanced headers like Content-Security-Policy. There is no visible cookie consent mechanism despite having a cookie policy, and no incident response or vulnerability disclosure information is provided. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional for a small regional government/non-profit project. Recommendations include implementing a cookie consent banner, publishing terms of service and incident response contacts, and enhancing security headers to improve compliance and security posture.

E

European Collaboration Summit

collabsummit.eu

0

The European Collaboration Summit website represents a well-established technology conference focused on Microsoft 365, AI, and related modern work technologies. It serves a large audience of IT professionals and business leaders, offering extensive sessions, networking, and sponsorship opportunities. The technical infrastructure leverages modern web frameworks (Astro, Angular) and integrates multiple analytics and marketing tools, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting its position as a leading event in its sector.

R

run.events GmbH

run.events

0

run.events GmbH operates a sophisticated AI-powered event management platform designed to streamline the entire event lifecycle from planning to post-event analytics. The company targets event organizers, agencies, venues, and associations, offering a comprehensive SaaS solution that integrates planning, marketing automation, ticketing, delivery, and analytics. Their market position emphasizes cost savings, enhanced security, and automation, positioning them as a modern alternative to traditional event management tools. Technically, the website leverages modern frameworks such as Astro and React, hosted on Azure with integrations to major analytics and marketing platforms including Google Analytics, HubSpot, LinkedIn, and Microsoft Clarity. The site is well-optimized for performance, mobile responsiveness, and SEO. Security posture is strong with HTTPS enforced, clientTransferProhibited domain status, and cookie consent mechanisms, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is robust with clear policies and consent banners. Overall, the domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

B

BKK Budapesti Közlekedési Központ

bkkinfo.hu

0

BKK Budapesti Közlekedési Központ is the primary public transportation authority in Budapest, Hungary, providing comprehensive travel planning, ticketing, and real-time traffic updates. The website serves residents and visitors with detailed information on public transport services, accessibility, and operational changes. It holds a strong market position as the official transport provider with a large user base. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and MapLibre GL JS for interactive maps. It is hosted likely behind Cloudflare, ensuring good performance and security. The site is mobile-optimized and accessible, with clear navigation and professional design. Security posture is solid with HTTPS enforced and secure login forms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident in the HTML and could be improved. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and well-maintained, with no detected vulnerabilities or suspicious content. Strategic recommendations include enhancing security headers and continuous monitoring of third-party scripts to maintain security integrity.

N

nextbike GmbH

molbubi.hu

0

MOL Bubi is a well-established public bike-sharing service operating in Budapest, Hungary, managed by nextbike GmbH in partnership with BKK and the city of Budapest. The service offers environmentally friendly urban mobility solutions with flexible rental options via a dedicated mobile app. The website reflects a professional and consistent brand image, targeting urban commuters and tourists seeking convenient transport alternatives. Technically, the site leverages modern web technologies including Bootstrap, jQuery, and integrates third-party analytics and marketing tools such as Google Analytics and Facebook Pixel, hosted on AWS and Cloudflare CDN, ensuring good performance and availability. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though the absence of a public security policy and incident response contacts suggests room for improvement. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media presence, supporting user confidence.

H

Hochschule Coburg

hs-coburg.de

0

Hochschule Coburg is a German university of applied sciences offering academic programs in construction, design, technology, natural sciences, social work, health, economics, and insurance. It serves students and the academic community primarily in Germany, positioning itself as a regional educational institution with a medium organizational size. The website is built on WordPress using the Avada theme and several plugins, indicating a modern and maintainable technical infrastructure. Hosting appears to be managed by a reputable academic provider (LRZ). Security posture is solid with HTTPS enabled and no evident vulnerabilities, though explicit security headers and privacy policies are missing. Contact information and social media presence are well established, enhancing business credibility. Overall, the site is professional, trustworthy, and safe for general audiences.

V

Vereinigung der Bayerischen Wirtschaft e. V.

vbw-bayern.de

0

The website www.vbw-bayern.de represents the Vereinigung der Bayerischen Wirtschaft e. V., a voluntary, cross-sector economic interest association for the Bavarian economy. It serves as a key platform for economic policy advocacy, information dissemination, and member services targeting Bavarian businesses and stakeholders. The site features rich content including events, publications, podcasts, and press releases, reflecting an active engagement with its audience. The business model is non-profit and focused on regional economic representation, positioning vbw as a leading economic association in Bavaria. Technically, the site employs a modern web stack with JavaScript, CSS, and HTML5, utilizing libraries such as Swiper.js for interactive sliders and etracker for analytics. The site is mobile-optimized, accessible, and SEO-friendly, though it appears to use a custom or proprietary CMS. Performance is moderate, with good mobile and accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. Security headers are minimal but present, and no critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. Overall, the site is trustworthy, professional, and compliant with privacy regulations, serving its business purpose effectively. Strategic improvements in security transparency and header implementation would further strengthen its security posture.

S

Stadt Marktredwitz

marktredwitz.de

0

Stadt Marktredwitz operates an official municipal government website serving the residents and visitors of Marktredwitz, Germany. The site provides city information, news, events, and public services, positioning itself as a local government authority portal. The website uses a stable but somewhat dated technology stack including Bootstrap 3 and FontAwesome 4.6.2, with cookie consent managed by Usercentrics. Hosting is managed via INWX nameservers, consistent with a German-based entity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and formal privacy or terms of service documentation. Contact information and incident response details are not explicitly present in the provided content, limiting user support and compliance transparency. Overall, the site is professional and trustworthy for its intended audience but would benefit from enhanced privacy and security documentation.

S

Stadt Lichtenfels

lichtenfels.de

0

The website www.lichtenfels.de serves as the official online portal for the city of Lichtenfels, Germany. It provides residents and visitors with comprehensive information about city administration, public services, local news, events, and urban planning. The site targets a general audience including local citizens and stakeholders interested in municipal affairs. The business model is that of a government municipal service platform, focusing on transparency and accessibility. The website is well-branded with consistent use of official logos and colors, and it integrates a robust accessibility tool to support users with disabilities.

F

Forchheim Erleben: Königsstadt Forchheim - das Tor zur Fränkischen Schweiz

forchheim-erleben.de

0

The website www.forchheim-erleben.de serves as the official tourism portal for the city of Forchheim and the surrounding Fränkische Schweiz region in Germany. It provides comprehensive information about local hotels, gastronomy, breweries, events, city tours, and brochures to assist visitors in planning their trips. The site targets tourists and visitors interested in cultural, culinary, and outdoor activities in the region. The business model focuses on regional tourism promotion and supporting local hospitality and retail sectors. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and incorporates modern web libraries such as jQuery, Slick Carousel, and FontAwesome Pro. It uses Google Analytics for visitor tracking and CookieFirst for cookie consent management, indicating a moderate level of digital maturity. The site appears to be mobile-optimized with a responsive design and provides a clear navigation structure. From a security perspective, the site uses HTTPS and anonymizes IP addresses in Google Analytics, but lacks visible security headers and published privacy or terms of service policies in the provided content. There is no evidence of a security.txt file or explicit incident response contacts. While no critical vulnerabilities or suspicious patterns were detected, the absence of some security best practices and compliance documentation suggests room for improvement. Overall, the website is a trustworthy and professional regional tourism portal with good content quality and user experience. However, enhancing privacy compliance, security headers, and providing clear contact and policy information would strengthen its security posture and user trust. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security headers, and establishing a vulnerability disclosure process.

B

Bamberg Tourismus

bamberg.info

0

Bamberg.info is the official tourism website for the city and region of Bamberg, Germany, a UNESCO World Heritage site. The site provides comprehensive information on cultural attractions, events, accommodations, guided tours, and local activities, targeting tourists, families, and groups. It serves as a central hub for planning visits, booking tickets, and exploring the region's rich heritage and leisure offerings. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates services like OpenStreetMap, YouTube, and Plausible Analytics. It features a GDPR-compliant cookie consent mechanism and privacy policy, reflecting good privacy practices. Security posture is moderate with HTTPS usage and cookie consent, though additional security headers could enhance protection. The WHOIS data is not publicly available, indicating privacy protection, which is justified for this type of public-facing tourism portal. Overall, the website is professional, trustworthy, and well-positioned in the hospitality sector.

V

Volksverpetzer

volksverpetzer.de

0

Volksverpetzer is an independent German media blog founded in 2017, dedicated to combating fake news through critical, honest, and ethical reporting. The site operates on a donation-funded business model and maintains a strong presence on multiple social media platforms. Technically, the website is built on WordPress using the Divi theme, enhanced with SEO and media embedding plugins, and is hosted with Cloudflare DNS services ensuring good performance and security. The security posture is solid with HTTPS enforced and no visible vulnerabilities, although security headers and formal policies are absent. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the site is professional, trustworthy, and safe for general audiences.

K

kununu

kununu.com

0

kununu is a leading employer review platform in the German-speaking region, providing anonymous company ratings, salary information, and workplace culture insights to job seekers and employees. The platform is owned by XING SE, a well-known professional networking company. The website targets users looking for transparent employer information to make informed career decisions. Technically, kununu employs modern web technologies including React with Next.js, and integrates advanced analytics and consent management tools such as Piwik PRO, Google Tag Manager, and Usercentrics CMP. The site is well-optimized for mobile devices and offers a professional user experience with clear navigation and relevant content. Security-wise, the website enforces HTTPS, implements key security headers, and manages user privacy effectively through cookie consent mechanisms. However, the absence of publicly available WHOIS data is unusual and warrants further verification. Overall, kununu demonstrates a mature digital presence with strong privacy and security practices, making it a trustworthy platform for its users.

E

EHI Retail Institute GmbH

ehi.org

0

EHI Retail Institute GmbH is a well-established scientific research institute based in Cologne, Germany, specializing in retail industry studies and services. With approximately 850 members, it offers research, publications, events, and community engagement focused on retail and related sectors. The website demonstrates a professional and modern digital presence built on WordPress with the Divi theme and various modern JavaScript libraries, indicating a mature technical infrastructure. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response information are not publicly available. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR adherence. Overall, the site is trustworthy and professionally managed, though the lack of WHOIS data limits domain registration trust assessment.

P

profihost

profihost.com

0

Profihost is a German managed hosting provider offering a broad range of IT infrastructure services including managed servers, cloud solutions, domain registration, and security services. The company targets businesses and professionals seeking reliable and high-performance hosting solutions. The website demonstrates a mature digital presence with professional design, clear navigation, and comprehensive service descriptions. Technically, the site uses modern web technologies, including Google Tag Manager for analytics and Consentmanager.net for cookie compliance, ensuring GDPR adherence. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers and published security policies are absent. The lack of WHOIS data for the domain raises concerns about domain registration status, which should be verified to ensure legitimacy. Overall, the website is professional and trustworthy, with room for improvement in security transparency and domain registration clarity.

O

OXID eSales AG

oxidforge.org

0

OXID eSales AG operates a professional knowledge base website dedicated to the OXID eShop e-commerce platform. The site targets developers, merchants, and partners by providing documentation, training, certification, modules, and community engagement channels. The company is well-established in Germany with a domain age consistent with its business history. Technically, the website uses modern front-end frameworks like Bootstrap and jQuery, hosted behind Cloudflare DNS, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protections, but lacks explicit security headers and privacy/cookie policies, which are areas for improvement. Overall, the site is professional, trustworthy, and content-rich, supporting a strong community and partner ecosystem.

Netbite is a German-based small business specializing in hosting and IT solutions tailored for small and medium-sized enterprises. Established in 2004, the company offers a range of services including webhosting, root servers, server housing, cloud infrastructure, and IT support such as Mac support and WLAN installations. Their market position is that of a niche provider focusing on reliable and secure hosting solutions with a local presence in Germany. The website is professionally designed with clear navigation and good mobile optimization, reflecting a mature digital presence. Technically, the website uses standard modern web technologies such as HTML5, CSS3, and JavaScript, hosted by Vautron Rechenzentrum AG. The site is served over HTTPS with Let’s Encrypt certificates, ensuring secure communications. However, some security best practices like DNSSEC and security headers are not implemented, representing areas for improvement. The site does not use any visible analytics or tracking technologies, indicating a privacy-conscious approach. From a security perspective, the site demonstrates a solid baseline with HTTPS and no exposed sensitive data. The absence of a dedicated security policy or vulnerability disclosure page suggests room for maturity in security governance. Contact information is clearly provided, but incident response and security contact channels are not explicitly stated. Overall, the security posture is good but could be enhanced with additional policies and technical controls. The overall risk assessment is low, with no signs of malicious content or vulnerabilities. Strategic recommendations include enabling DNSSEC, implementing security headers, adding a vulnerability disclosure policy, and introducing a cookie consent mechanism to improve privacy compliance. These steps will enhance trust and security culture while aligning with GDPR requirements.

B

BONN LIEST EIN BUCH, LITERATURHAUS BONN

bonnliesteinbuch.de

0

BONN LIEST EIN BUCH is a small local cultural initiative based in Bonn, Germany, focused on fostering community engagement through literature and reading circles. The website serves as a platform to share information about the initiative, its activities, and the concept of Wanderbücher (traveling books) circulated within the city. The business model is community-driven, targeting local residents interested in literature and cultural participation. Technically, the website is built on WordPress using the Divi theme and incorporates Yoast SEO for search engine optimization. The site loads Google Fonts and uses standard web technologies. Mobile optimization appears good, and the site structure supports basic accessibility and SEO best practices. However, no advanced frameworks or hosting provider details are explicitly identified. From a security perspective, the website lacks visible security headers and does not present privacy or cookie policies, which are critical for GDPR compliance given its German location. No incident response or vulnerability disclosure mechanisms are evident. The absence of contact information and security policies reduces the overall security posture and privacy compliance. Overall, the website is functional and professionally designed for its purpose but requires improvements in security, privacy compliance, and contact transparency to enhance trust and regulatory adherence.

The website bonnticket.de is an established German e-commerce platform specializing in the sale of tickets for a wide range of events including concerts, cultural performances, musicals, humor shows, sports, and leisure activities. It targets the general public in Germany seeking event tickets and related services such as ticket insurance and alerts. The platform is operated by DERTICKETSERVICE.DE GmbH & Co. KG, a legitimate company with consistent WHOIS registration data. Technically, the site employs modern JavaScript libraries like jQuery and Swiper.js, integrates Google Tag Manager for analytics, and uses a consent management platform to comply with GDPR requirements. The website design is professional, mobile-optimized, and offers clear navigation through event categories and cities. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security headers and published security policies. No vulnerabilities or suspicious content were detected. Overall, the site demonstrates a good balance of business credibility, privacy compliance, and technical implementation, suitable for its market niche.

M

Markt & Mittelstand – News, Analysen für den Mittelstand

marktundmittelstand.de

0

Markt & Mittelstand is a German media platform delivering current economic news, analyses, and strategies tailored for the German Mittelstand, i.e., medium-sized enterprises. The website positions itself as a niche media outlet focusing on business insights relevant to this audience. Technically, the site is built on TYPO3 CMS and integrates a comprehensive advertising ecosystem including Google Ad Manager, Amazon Ads, and multiple header bidding partners. GDPR compliance is addressed via a consent management platform, although explicit privacy and terms of service pages were not found in the analyzed content. Security posture is moderate with HTTPS enabled but lacking visible security headers and formal security policies. Overall, the site is professionally designed, mobile-optimized, and content-rich, targeting business professionals in Germany.