Security Directory

L

Literaturbüro NRW e.V.

literaturbuero-nrw.de

0

Literaturbüro NRW e.V. is a well-established non-profit organization based in Düsseldorf, Germany, dedicated to promoting literature and culture across North Rhine-Westphalia. Founded in 1980, it supports authors and young talents through events, publications, and educational projects. The organization is publicly funded by the city of Düsseldorf and the state of NRW, positioning it as a key cultural institution in the region. The website reflects this mission with clear content, event calendars, and resources for writers and literature enthusiasts. Technically, the website is built on Drupal 10, indicating a modern and maintainable CMS platform. The site is mobile-optimized, accessible, and well-structured with good SEO practices. Hosting appears stable with known DNS providers. However, there is no visible cookie consent mechanism or advanced security headers, which could be improved to enhance compliance and security posture. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. No incident response or security policy pages are published, and no vulnerability disclosure mechanism is evident. Social media integration is strong, but no analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the security posture is solid but could benefit from additional headers and privacy enhancements. The overall risk is low given the non-profit cultural nature of the organization and the absence of suspicious indicators. Strategic recommendations include implementing cookie consent, publishing security policies, adding security headers, and considering a vulnerability disclosure page to improve transparency and compliance.

M

Ministerium für Kultur und Wissenschaft des Landes Nordrhein-Westfalen

mkw.nrw

0

The website www.mkw.nrw is the official online presence of the Ministry for Culture and Science of the State of North Rhine-Westphalia, Germany. It serves as a comprehensive portal for information on cultural affairs, scientific research, education, and political education within the region. The site is well-branded with official logos and images, targeting a broad audience including citizens, researchers, cultural professionals, students, and media representatives. The business model is that of a government entity providing public services and information. Technically, the site is built on Drupal CMS with modern web technologies including Bootstrap and Font Awesome. It employs Matomo analytics with privacy-conscious settings such as respecting Do Not Track and providing cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses standard security headers, and does not expose sensitive data. However, it lacks publicly visible privacy policy and terms of service pages on the homepage, which are recommended for full compliance and transparency. WHOIS data is privacy protected or unavailable, which is typical for official government domains, and does not raise legitimacy concerns given the domain's .nrw regional TLD and content. Overall, the site demonstrates a strong security posture and professional presentation with minor gaps in privacy documentation. It is a trustworthy and authoritative source for its intended audience.

K

kajado GmbH

kajado.de

0

kajado GmbH is a small, established digital agency based in Dortmund, Germany, founded in 2014. The company specializes in web design, web development using WordPress, TYPO3, and Laravel, e-commerce solutions including WooCommerce and Magento, and comprehensive online marketing services such as SEO, SEA, content marketing, and social media marketing. They also offer workshops and seminars, serving clients across Germany from Berlin to Berchtesgaden. The website reflects a professional and consistent brand image with clear contact information and strong trust signals including customer testimonials and third-party review integration. Technically, the website is built on WordPress 6.7.2 with popular plugins like Yoast SEO and WPBakery Page Builder, supported by Borlabs Cookie for GDPR-compliant cookie management. The site is mobile-optimized, moderately performant, and SEO-friendly. Hosting appears to be managed via your-server.de based on nameservers. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Security-wise, the site demonstrates good practices but lacks explicit published security policies or incident response contacts. GDPR compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. No terms of service or vulnerability disclosure policies were found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. The overall risk is low, with recommendations to enhance security headers, publish security and incident response policies, and consider a vulnerability disclosure mechanism to further strengthen trust and compliance.

A

Accredible

coursefinder.io

0

CourseFinder.io is an online platform operated by Accredible that enables users to find professional development courses and obtain digital credentials to advance their careers. The website targets professionals seeking to enhance their skills and gain marketable badges. The platform integrates modern web technologies including Angular and analytics tools such as PostHog and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and browser compatibility checks, though there is room for improvement in security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service in the provided content. Overall, the platform appears legitimate and professionally maintained, serving a niche in the education sector focused on credentialing and career advancement.

A

Accredible Ltd

accredible.com

0

Accredible Ltd operates a leading digital credential platform that enables organizations in higher education, professional training, and workforce development to create, issue, and manage digital badges and certificates. The platform emphasizes brand control, learner engagement, and real-world outcomes through features like pathways, spotlight directories, and analytics. The company positions itself as a trusted partner for credentialing programs, offering integrations and professional services to maximize program growth. Technically, the website is built on Webflow CMS and integrates a broad array of modern marketing, analytics, and tracking tools including Google Tag Manager, HubSpot, Hotjar, and ProfitWell. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though security headers and vulnerability disclosure policies could be improved. The WHOIS data is unavailable or privacy-protected, which is common for SaaS companies but introduces moderate uncertainty about domain registration details. The website demonstrates strong business credibility and privacy compliance, including GDPR adherence and cookie consent mechanisms. No direct contact emails or phone numbers were found in the provided content, but social media presence on LinkedIn and Twitter is confirmed. Overall, Accredible presents a mature, professional digital presence with a strong market position in the digital credentialing space. Security and privacy practices are solid but could benefit from enhanced transparency around incident response and vulnerability disclosures.

S

Studio Mitte Digital Media GmbH

smdm.at

0

Studio Mitte Digital Media GmbH is a small Austrian technology company specializing in digital solutions including web and software development, e-commerce, custom software, online marketing, and SEO services. The company positions itself as a creative and strategic partner for businesses seeking tailored digital media solutions, with a strong portfolio of regional clients and partnerships with major platforms such as Shopware and Shopify. The website is professionally designed, mobile-optimized, and accessible, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and uses Matomo for analytics, indicating a focus on privacy-conscious tracking. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but lacks explicit security headers and published security policies. WHOIS data is missing, which raises some concerns about domain registration legitimacy, though the business presence and content suggest a legitimate operation. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in security transparency and domain registration clarity.

exali AG operates a professional indemnity insurance platform targeting freelancers, self-employed professionals, and companies across Europe, with a focus on digital professions such as IT, media, and consulting. The company offers modular insurance products accessible via an online real-time calculator, enabling quick and tailored insurance coverage. The website is well-structured, professionally designed, and provides clear contact points including multiple customer care representatives, enhancing user trust and engagement. Technically, the site employs modern JavaScript libraries and consent management tools, ensuring compliance with privacy regulations and a good user experience across devices. Security posture is solid with HTTPS enforcement and consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. WHOIS data is missing or privacy protected, which slightly reduces transparency but is not uncommon for this business type. Overall, the site demonstrates a mature digital presence with good business credibility and moderate to strong security practices.

exali AG is a Swiss-based digital insurance provider specializing in professional liability and related insurance products tailored for freelancers, self-employed professionals, and companies primarily in IT, media, consulting, and eCommerce sectors. Founded in 2008, exali has established a strong market presence across 28 European countries with over 20,000 customers. Their business model emphasizes fast, flexible, and modular insurance solutions accessible online with personalized expert support. The website reflects a professional and trustworthy brand with comprehensive product information and strong customer testimonials, including a high eKomi rating. Technically, the website employs a modern JavaScript stack including RequireJS, jQuery, Google Tag Manager, and Usercentrics for consent management, ensuring GDPR compliance. The site is mobile-optimized with lazy loading and interactive UI components, delivering a good user experience and moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and a formal security policy page are absent. Overall, exali demonstrates a mature digital infrastructure and a strong security and privacy awareness, though improvements in explicit security documentation and headers could enhance their posture. The site is fully accessible without WAF or blocking mechanisms, supporting a high trust level for users and partners.

exali AG is a digital insurance provider specializing in tailored insurance solutions for freelancers, self-employed professionals, and companies primarily in the IT, media, consulting, and e-commerce sectors. Operating since 2008, exali offers modular insurance products such as IT liability, media liability, consulting liability, e-commerce insurance, D&O insurance, and cyber insurance. The company emphasizes fast online contract conclusion, personal expert support, and worldwide business protection, serving over 20,000 customers across 28 European countries. The website reflects a professional, well-structured digital presence with strong trust signals including customer testimonials and an eKomi Gold certification. Technically, the website employs modern JavaScript libraries including RequireJS, jQuery, and Google Tag Manager, with asynchronous loading and lazy loading of images to optimize performance. Usercentrics is integrated for consent management, ensuring GDPR compliance. The site is mobile-optimized and SEO-friendly, with clear navigation and comprehensive content. Security posture is good with HTTPS enforced and consent-based tracking, though explicit security headers and incident response policies are not publicly disclosed. The WHOIS data for the domain www.exali.at is unavailable, which slightly reduces the domain trustworthiness score. However, the overall business credibility and website quality remain high. No WAF or blocking mechanisms were detected, allowing full content accessibility and analysis. Overall, exali AG presents a mature digital insurance business with a strong market position in Europe, leveraging technology for efficient customer service and compliance. Strategic improvements could include publishing detailed security policies and incident response information, and ensuring WHOIS transparency to enhance domain legitimacy.

Multipage is a German regional digital platform operated by GBG AG that connects companies with regional multipliers such as municipalities, networks, and associations to increase visibility of job offers, news, and events. The platform operates on a subscription model charging companies a monthly fee to publish unlimited content, while regional partners embed this content for free on their websites. The website is built on TYPO3 CMS and integrates marketing and analytics tools such as Google Analytics, Google Tag Manager, and Sendinblue, reflecting a moderate level of digital maturity. Privacy compliance is addressed with GDPR-compliant cookie banners and privacy policies. Security posture is adequate with HTTPS and anonymized analytics but lacks advanced security headers and published security policies. Overall, the site is professional, well-structured, and trustworthy with no signs of malicious activity or content blocking.

The website virae.org serves as a personal portfolio for Michal Šimonfy, showcasing his artwork and webdesign services. It targets a general audience interested in digital media and creative design. The business model is primarily personal branding and portfolio display, with no evident commercial transactions or e-commerce features. The site has been active since 2007, indicating a stable online presence in the creative niche. Technically, the website uses basic HTML5, CSS, and jQuery (version 1.6.2) along with Google Analytics for visitor tracking. Hosting and DNS services are provided via Cloudflare, though DNSSEC is not enabled. The site demonstrates moderate performance and basic mobile optimization but lacks modern frameworks or CMS platforms. SEO and accessibility features are minimal but present. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which are recommended for enhanced protection. The use of an outdated jQuery version introduces potential vulnerabilities. No privacy, cookie, or terms of service policies are present, and no contact or incident response information is provided, limiting compliance with GDPR and other regulations. Overall, the website is a modest personal portfolio with moderate technical and security maturity. Strategic improvements in security headers, updated libraries, and privacy compliance would enhance trust and protection. The risk level is low given the non-commercial nature but could be improved to safeguard visitor data and reputation.

L

Lunadio

lunadio.com

0

Lunadio is a small technology-focused community platform aimed at early-stage founders and indie makers who want to turn side projects into viable businesses. The website offers a friendly Discord community, weekly mastermind calls, online meetups, a knowledge base, goal tracking, and special deals to support members in their entrepreneurial journey. The business model is based on community membership with a paid yearly subscription and a free trial period. The site is well-branded and professionally designed, targeting a niche market of indie makers and startup founders. Technically, the website is built using the Hugo static site generator, hosted on Netlify, and leverages modern web technologies including Alpine.js and Tailwind CSS. It integrates multiple analytics tools such as Google Analytics, Google Tag Manager, and Plausible Analytics. The site is mobile-optimized, fast-loading, and accessible with good SEO practices. Security-wise, the site uses HTTPS and Netlify Identity for authentication but lacks explicit security headers and published privacy or cookie policies. The security posture is generally good with no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies and the lack of WHOIS registration data raise concerns about compliance and domain legitimacy. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust. Overall, Lunadio presents a professional and trustworthy platform for its target audience but should address privacy compliance and domain registration transparency to strengthen its security and business credibility. Strategic recommendations include publishing privacy and cookie policies, adding security headers, implementing a vulnerability disclosure policy, and verifying domain registration details.

M

Mesto Stupava

stupava.sk

0

Mesto Stupava operates an official municipal website serving the residents and visitors of Stupava, Slovakia. The site provides comprehensive information about local government, public services, events, and official notices. It maintains a clear focus on community engagement and transparency, offering contact details, news updates, and administrative resources. The website positions itself as a trusted source for municipal information with a consistent brand and professional presentation. Technically, the website employs a traditional web stack including jQuery and Highslide JS, with cookie consent mechanisms and embedded Google Maps for location services. The site is built on a CMS platform likely provided by Galileo Corporation, as indicated in the footer. The site is mobile optimized and accessible, with good SEO practices and a moderate performance profile. From a security perspective, the website uses HTTPS and implements cookie consent with marketing and analytics controls. However, explicit security headers are not evident in the HTML content, and no dedicated security or incident response policies are published. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's municipal nature, confirming legitimacy and consistency. Overall, the website demonstrates a solid security posture and compliance with privacy regulations, including GDPR. It effectively serves its target audience with relevant content and functional features. Strategic improvements could include enhancing security headers, publishing explicit security policies, and maintaining up-to-date third-party libraries to further strengthen security and trust.

The website www.staremesto.sk serves as the official municipal portal for Bratislava-Staré Mesto, the central district of Slovakia's capital city. It provides comprehensive information and services related to local government administration, cultural heritage, public services, social assistance, urban planning, and community engagement. The site targets residents, visitors, and stakeholders interested in the district's governance and cultural activities. Technically, the website employs modern web technologies including Font Awesome icons, Facebook SDK for social integration, and responsive design principles ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and CSRF tokens in forms, though some security headers are missing and no explicit security policy or incident response contacts are published. Privacy compliance is well addressed with a cookie consent mechanism and a privacy policy page, indicating GDPR awareness. Overall, the site is professional, trustworthy, and well-aligned with its role as a government information portal.

ITAPA is a well-established Slovak technology conference platform operated by Information Technologies And Public Administration (APEL). It organizes major events focused on innovation, digitalization, and AI, serving technology professionals, government officials, and businesses. The website reflects a mature digital presence with professional design, clear navigation, and active content updates. Technically, it uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and CDN services to ensure performance and responsiveness. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. The domain registration aligns with the business claims, enhancing trustworthiness. Overall, ITAPA demonstrates a strong market position in Slovakia's technology event sector with good compliance and user engagement.

Z

Združenie informatikov samospráv Slovenska

ziss.sk

0

Združenie informatikov samospráv Slovenska (ZISS) is a Slovak non-profit association dedicated to uniting IT professionals working in local government and public administration. Established in 2007, the organization focuses on fostering communication, knowledge exchange, and professional development through conferences and projects such as ZlatyErb.sk. The website serves as an information hub for members and interested parties, providing news, event details, and resources relevant to the public sector IT community in Slovakia. Technically, the website is built on WordPress and leverages common web technologies including jQuery, Google Analytics, and FontAwesome. It is hosted on WebSupport infrastructure with DNSSEC enabled and uses HTTPS, indicating a baseline of security best practices. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are present, which are important for GDPR compliance. The site also does not publish a security policy or incident response contacts, limiting transparency in security governance. From a security perspective, the site benefits from HTTPS and DNSSEC, and the presence of Wordfence scripts suggests some level of active security monitoring. Nonetheless, the absence of HTTP security headers and vulnerability disclosure policies represents areas for improvement. User tracking via Google Analytics is implemented without visible consent, which may pose privacy compliance risks. Overall, the security posture is moderate but could be enhanced with additional controls and transparency. The website content is professional and relevant to its target audience, with clear navigation and consistent branding. The domain registration data aligns well with the organization's history and purpose, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and publishing incident response information to improve trust and compliance.

E

eSlovensko

eslovensko.sk

0

eSlovensko is a Slovak non-profit organization focused on informatization of municipalities and public services, with a strong emphasis on eGovernment and social responsibility projects. The website showcases numerous awards and recognitions spanning two decades, highlighting its established presence and influence in the Slovak public sector. The organization targets government entities, municipalities, and citizens interested in digital public services and social initiatives. Technically, the website is basic, using legacy HTML and CSS without modern frameworks or responsive design, and it relies on Google Analytics for visitor tracking. Security posture is moderate with DNSSEC enabled and a valid domain registration, but lacks visible security headers and privacy compliance documentation. Overall, the site is trustworthy but would benefit from modernization and enhanced privacy and security practices.

H

HP

hp.sk

0

HP's Slovak website serves as a comprehensive portal for consumers and businesses seeking HP's computing and printing products. The site offers detailed product categories, support resources, and account management, reflecting HP's strong market position as a global technology leader. The digital infrastructure leverages Adobe Experience Manager and modern analytics tools, ensuring a responsive and user-friendly experience. Security measures such as HTTPS and security headers are well implemented, although explicit security policies and incident response information are not prominently published. The absence of WHOIS data is noted but likely due to registry or privacy policies rather than malicious intent. Overall, the site demonstrates high professionalism and trustworthiness, suitable for its enterprise scale and audience.

E

eGov Systems spol. s r.o.

egovsystems.sk

0

eGov Systems spol. s r.o. is a Slovak company specializing in electronic government solutions tailored for municipalities and public sector entities. Their offerings include automated preparation and publication of municipal meeting materials, SMS and email notification services, web portals for representatives, and compliant contract and procurement publication systems. The company positions itself as a regional leader in e-government technology solutions with a focus on improving public administration efficiency and citizen communication. Technically, the website employs a moderate technology stack including jQuery, Google Analytics, and a custom CMS (RSsmarty). The site is served over HTTPS and includes basic client-side form validation and responsive design elements, though mobile optimization and accessibility are basic. SEO and metadata are present but could be enhanced. Analytics usage is moderate with Google services integrated. From a security perspective, the site enforces HTTPS but lacks several important security headers such as Content-Security-Policy and X-Frame-Options. No privacy or cookie policies are present, indicating gaps in GDPR compliance. Contact information is clearly provided, supporting business credibility. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the security posture is adequate but could be improved with standard best practices. The overall risk assessment is low with no signs of malicious activity or suspicious domain registration patterns. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, enhancing mobile and accessibility features, and publishing incident response and security policies to strengthen trust and compliance.

Z

ZURB, Inc.

zurb.com

0

ZURB, Inc. is an established design consultancy founded in 1999, specializing in strategic marketing, branding, and user experience design. The company serves a diverse clientele ranging from startups to large enterprises, offering services such as growth design, design systems, experience design, product innovation, and mobile/web app development. Their market position is strong, supported by notable client logos and a consistent brand presence. Technically, the website is well-built using modern frameworks like Foundation, with Cloudflare DNS and CDN services enhancing performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with integrated analytics tools such as Google Analytics and Tag Manager. Security posture is solid with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partial, with a clear privacy policy but lacking cookie consent mechanisms. Overall, the website reflects a professional and trustworthy business with a high level of digital maturity.

A

Aktion Mensch e.V.

aktion-mensch.de

0

Aktion Mensch e.V. is Germany's largest private funding organization dedicated to supporting social projects for people with and without disabilities. The organization operates primarily through a lottery business model, funding inclusion campaigns and social initiatives. Their website is professionally designed, accessible, and provides comprehensive information and services to a broad audience interested in social inclusion and disability support. Technically, the site uses modern JavaScript libraries, a tag management system (Tealium), and appears to be built on a CMS platform likely Sitecore. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are not evident. Overall, the domain and website content are consistent and trustworthy, reflecting a mature non-profit organization with a strong market position in Germany.

C

CAS Software AG

customer-centricity-forum.de

0

The Customer Centricity Forum 2025 website is a professionally designed event platform hosted by CAS Software AG, focusing on customer centricity, CRM, AI, and CPQ trends. The site targets professionals and businesses interested in digital transformation and customer relationship management. It provides event information, galleries, and contact details primarily via email. Technically, the site uses modern JavaScript frameworks such as Vue.js and jQuery, along with Photoswipe for image galleries and Matomo for analytics, indicating a mature digital infrastructure. The site is built on WordPress and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers are not evident. Privacy compliance is strong with clear privacy and cookie policies. No critical vulnerabilities or suspicious elements were detected. Overall, the site is trustworthy and professionally maintained, supporting CAS Software AG's market position in the technology sector.

C

CAS Software AG

cas-mitgestalter.de

0

CAS Software AG operates a professional job portal focused on attracting talent for its CRM and software development business based in Karlsruhe, Germany. The company positions itself as a market leader in CRM solutions for the mid-market segment, emphasizing employee empowerment and a collaborative culture. The website reflects a mature digital presence with modern technologies such as Vue.js and Video.js, and integrates Matomo for analytics, indicating a commitment to data privacy. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is trustworthy, well-branded, and serves its business purpose effectively.

S

Stadt Baden-Baden

wir-im-rathaus.de

0

The website wir-im-rathaus.de serves as the official recruitment and employer branding portal for the city administration of Baden-Baden, Germany. It targets prospective employees interested in municipal jobs, offering information on open positions, career starts, and the benefits of working for the city. The site is well-branded with official logos and consistent messaging emphasizing meaningful, fairly paid, flexible, and family-friendly employment opportunities. Technically, the site is built on WordPress with the Avada theme and uses modern plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. Analytics are handled via Matomo with consent mechanisms in place. Security posture is good with HTTPS enforced and no visible vulnerabilities, though there is room for improvement by publishing dedicated security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Baden-Baden

baden-baden.com

0

Baden-Baden.com is the official tourism portal for the city of Baden-Baden, Germany, providing comprehensive information on local attractions, events, accommodations, dining, and wellness offerings. The website targets tourists and visitors seeking detailed travel and leisure information about the region. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, with modern web technologies including JavaScript and CSS. It features a cookie consent mechanism compliant with GDPR, uses hCaptcha for bot protection, and integrates analytics tools such as Google Analytics and Facebook Pixel. Security posture is generally good with HTTPS enforced, though some security headers are not evident in the provided data. The absence of WHOIS registration data is a notable anomaly, reducing domain trustworthiness despite the professional presentation and official branding. Overall, the site is well-structured, accessible, and provides a positive user experience for its target audience.

S

Salz & Pfeffer

internetagentur-stuttgart.de

0

Salz & Pfeffer is a specialized online marketing agency based in Stuttgart, Germany, focusing on Google Ads, SEO, social media marketing, and web design. As a Google Partner, they provide tailored digital marketing solutions to businesses aiming to improve their online presence and growth. Their website reflects a professional and modern digital agency with a clear service portfolio and strong local market focus. The technical infrastructure is built on WordPress with common industry plugins and frameworks, ensuring a good user experience and mobile optimization. Security measures include HTTPS, reCAPTCHA on forms, and GDPR-compliant cookie consent, although some security headers could be enhanced. Overall, the site demonstrates a solid security posture with no critical vulnerabilities detected. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

W

WEISSER RING e. V.

weisser-ring.de

0

WEISSER RING e. V. is Germany's largest non-profit organization dedicated to supporting victims of crime and violence. The organization provides comprehensive services including local victim support, a free victim hotline, online counseling, prevention work, and volunteer engagement. With nearly 40,000 members and 400 local offices, it holds a strong market position in the victim support sector. The website is professionally designed using Drupal 10, optimized for mobile, and offers clear navigation and rich content relevant to its audience. Social media presence and external partnerships enhance its outreach. Security posture is solid with HTTPS and no evident vulnerabilities, though some improvements in security headers and privacy consent mechanisms are recommended. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate entity.

H

Hilfetelefon Gewalt an Männern

maennerhilfetelefon.de

0

Hilfetelefon Gewalt an Männern is a German government-supported non-profit organization providing confidential counseling and support services to men who have experienced various forms of violence. The website offers multiple contact channels including telephone, chat, and email, with clear accessibility and privacy features. It is well-branded and professionally designed, targeting men in need of help across Germany. The site is multilingual and includes government funding acknowledgments from several German federal states. Technically, the website is built on Drupal CMS, uses Matomo for privacy-conscious analytics, and incorporates modern web technologies including responsive design and accessibility enhancements. The site is served over HTTPS with no detected blocking or WAF interference, ensuring secure and reliable access. From a security perspective, the site enforces HTTPS and cookie consent mechanisms but lacks publicly visible security policies or incident response contacts. No vulnerabilities or suspicious external links were detected. Privacy compliance is strong with GDPR-aligned cookie management and anonymous counseling options. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity suitable for a government-backed support service. Strategic improvements could include publishing a dedicated security policy, incident response information, and vulnerability disclosure details to further enhance trust and security posture.

M

Ministerium fuer Inneres und Kommunales NRW

polizei.nrw

0

The website polizei.nrw is the official online presence of the Police of North Rhine-Westphalia, operated by the Ministry of the Interior and Municipal Affairs of NRW, Germany. It provides comprehensive information including press releases, crime prevention tips, traffic safety, and career opportunities. The site targets citizens, media, and stakeholders interested in police work and public safety in NRW. It holds a strong market position as a trusted government source with consistent branding and high content quality. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Splide for carousels and Shariff for social sharing. It uses Matomo analytics with DoNotTrack enabled, reflecting a privacy-conscious approach. The site is mobile-optimized and accessible, with features for easy language and sign language support. Performance is moderate, with room for improvement in security headers and DNSSEC. Security posture is good with HTTPS enforced and no visible vulnerabilities. However, security headers like CSP and X-Frame-Options are not detected and could be added. Privacy compliance is strong with a clear privacy policy and GDPR adherence, though a cookie consent mechanism is missing. Contact information is present but no direct emails or incident response contacts are found. Overall, the site is professional, trustworthy, and well-maintained, suitable for its government function. Recommendations include enhancing security headers, enabling DNSSEC, and implementing cookie consent to further improve compliance and security.

S

Stiftung Naturschutzfonds Brandenburg

naturschutzfonds.de

0

The Stiftung Naturschutzfonds Brandenburg operates as a regional non-profit foundation dedicated to practical nature conservation across Brandenburg, Germany. The website clearly communicates its mission to fund and implement conservation projects, secure protected lands, and engage the public through educational and volunteer initiatives. The foundation targets local governments, associations, agricultural entities, and private individuals interested in environmental protection. The site demonstrates a strong market position as a key player in Brandenburg's conservation efforts. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Leaflet for interactive maps, and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and well-structured with clear navigation and professional design. Cookie consent mechanisms are implemented in compliance with GDPR, enhancing user privacy. From a security perspective, the site enforces HTTPS and employs cookie consent best practices. However, it lacks explicit security policy documentation, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for improved transparency and readiness. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, professional, and compliant with privacy regulations, serving its audience effectively. Strategic improvements in security documentation and headers would further strengthen its posture.

M

Mein Erbe tut Gutes. Das Prinzip Apfelbaum

mein-erbe-tut-gutes.de

0

Mein Erbe tut Gutes. Das Prinzip Apfelbaum is a German non-profit initiative focused on educating and supporting individuals who wish to include charitable causes in their testament and inheritance planning. The website offers a variety of free services including informational brochures, online lectures, video tutorials, and an inheritance calculator. It is supported by a network of reputable partner organizations and foundations, enhancing its credibility and reach. The initiative targets individuals interested in philanthropy through legacy giving, providing practical and accessible resources to facilitate this process. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. It employs responsive design and accessibility best practices, ensuring a good user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR and privacy standards.

W

Westfälisches Literaturbüro in Unna e.V.

liton.nrw

0

The website liton.nrw is a cultural non-profit platform operated by Westfälisches Literaturbüro in Unna e.V., providing a comprehensive online literature database focused on contemporary literary actors, institutions, and projects in North Rhine-Westphalia, Germany. It serves literary professionals, institutions, and the general public interested in the NRW literary scene. The platform is supported by the Ministry of Culture NRW and affiliated literary networks, positioning it as a key resource in the regional cultural landscape. Technically, the site is built on TYPO3 CMS with modern frontend technologies including jQuery, Bootstrap, and Owl Carousel. It features multiple search and filter forms enabling users to explore authors, institutions, and projects. The site demonstrates good mobile optimization, SEO practices, and a consistent branding approach. Hosting details are not explicitly identified, but the site uses HTTPS with a good SSL configuration. From a security perspective, the site enforces HTTPS and uses secure form submissions. However, it lacks several recommended security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by a clear privacy policy and cookie consent mechanism, though explicit security and incident response policies are not publicly available. Overall, the website presents a trustworthy, professional, and well-maintained platform with a strong cultural mission. Strategic improvements could include enhancing security headers, publishing detailed security policies, and expanding transparency around data protection and incident response.

The website fr.igraal.com is currently inaccessible due to a Cloudflare Turnstile security challenge page that blocks direct content access. This prevents extraction of meaningful business, contact, or policy information. The domain WHOIS data for this subdomain is unavailable, consistent with it being a subdomain rather than an independently registered domain. The page contains minimal HTML content focused solely on verifying the visitor is human before granting access. No privacy, cookie, or terms of service policies are visible, nor are there any contact details or business descriptions. The technical infrastructure relies on Cloudflare for security and DDoS protection, but the lack of accessible content limits further analysis. Security posture cannot be fully assessed due to the blocking mechanism, though the use of Cloudflare indicates some baseline protection. Overall, the site’s risk profile is elevated due to lack of transparency and accessibility, and a full security and compliance evaluation requires bypassing the WAF challenge.

C

Coupons.com

coupons.com

0

Coupons.com is a large, well-established online platform specializing in providing consumers with verified promo codes, printable coupons, and discounts for a wide range of retail brands. The website targets consumers seeking savings on everyday purchases and operates as a coupon aggregator and distributor. The site demonstrates a high level of digital maturity, utilizing modern web frameworks such as Next.js, and integrates multiple analytics and user experience tools including Google Analytics, Hotjar, and Datadog RUM. Privacy compliance is evident through a comprehensive privacy policy and an active cookie consent mechanism, reflecting adherence to GDPR standards. Security posture is generally strong with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and WHOIS data transparency are areas for improvement. Overall, the website is professional, user-friendly, and trustworthy, serving a broad consumer audience with safe and relevant content.

P

Pepper Deals Ltd.

hotukdeals.com

0

hotukdeals.com is a leading UK-based e-commerce community platform operated by Pepper Deals Ltd., a subsidiary of Atolls GmbH. The site offers a vibrant community-driven environment where users share deals, discounts, and voucher codes, positioning itself as Europe's largest shopping rewards company. The platform targets savvy shoppers seeking to maximize savings through crowdsourced deals and affiliate partnerships. Technically, the website employs modern JavaScript frameworks such as Vue.js, uses service workers for performance, and leverages Amazon Cloudfront CDN for hosting, ensuring fast and responsive user experience across devices. Security posture is strong with HTTPS enforced and multiple security headers implemented, though explicit privacy and cookie policies are not readily found, indicating room for compliance improvement. The absence of WHOIS data limits domain registration trust verification, but the professional branding, verified social media presence, and active community engagement strongly support the site's legitimacy. Overall, hotukdeals.com presents a mature, well-maintained e-commerce community platform with solid technical and security foundations but would benefit from enhanced privacy transparency and incident response documentation.

D

Die Lausitz. Krasse Gegend.

krasse-lausitz.de

0

Die Lausitz. Krasse Gegend. is a regional promotional initiative focused on the Lusatia region in eastern Germany, emphasizing quality of life, structural transformation from coal mining to sustainable industries, and regional development. The website serves as an image campaign supported by government and regional partners, targeting investors, residents, and tourists. Technically, the site is built on Joomla CMS, uses modern JavaScript libraries, and integrates Matomo analytics with a strong cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent, though lacks explicit security policy and incident response details. Overall, the site is professional, trustworthy, and compliant with GDPR, with no critical vulnerabilities detected.

The website www.bsasoftware.com appears to be an active online presence with marketing and analytics integrations such as Google Analytics, HubSpot, and CallRail. However, the absence of WHOIS registration data raises significant concerns about the legitimacy and ownership of the domain. The website lacks critical business information including contact details, privacy policies, and terms of service, which diminishes trustworthiness. Technically, the site is built on WordPress and uses common web technologies but shows only basic implementation with limited content and minimal SEO or accessibility features. Security posture is weak with no evident security headers or advanced protections. Overall, the site presents a low trust profile and requires significant improvements in transparency, security, and compliance to be considered credible.

A

AllPaid

allpaid.com

0

AllPaid is a payment processing company established in 1999, providing merchant services and financial transaction solutions. The website presents a modern design using Bootstrap and Angular frameworks, hosted on AWS infrastructure. However, the site lacks critical compliance documents such as privacy and cookie policies, and does not provide visible contact information or social media links. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. The domain registration is consistent and trustworthy, indicating a legitimate business with a long operational history.

Grupo Parques Reunidos operates as a major global leisure park operator managing a diverse portfolio of amusement parks, aquariums, zoos, and water parks across multiple countries. The company employs various business models including ownership, management, and consultancy, positioning itself as a leader in the hospitality and entertainment sector. The website reflects a professional digital presence with clear navigation, multilingual support, and active social media engagement. Technically, the site is built on Adobe Experience Manager with integration of Google Tag Manager and OneTrust for cookie consent, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks visible security headers and explicit privacy policies, which are areas for improvement. The absence of WHOIS registration data is a notable anomaly that reduces trust slightly, though the overall business credibility remains high based on website professionalism and content quality. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, and clarifying domain registration details to improve trust and compliance.

R

RADIO NRW

radionrw.de

0

RADIO NRW operates as Germany's largest local radio network, connecting 45 local radio stations across North Rhine-Westphalia. The company offers a comprehensive media and advertising platform, combining local proximity with broad reach, targeting advertisers and radio listeners in the region. The website is professionally designed, content-rich, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with UIkit and jQuery, hosted likely by Deutsche Telekom, and uses Matomo analytics and Usercentrics for cookie consent. Security posture is adequate with HTTPS and consent mechanisms but lacks visible security headers and formal security policies. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the site is trustworthy and well-positioned in the media sector with room for improvement in security and compliance documentation.

Life Radio GmbH & Co.KG operates a professional media website focused on radio broadcasting, podcasts, news, and events primarily serving the Austrian market. The website offers multiple streaming channels, podcast episodes, and promotional campaigns targeting a general audience interested in music and regional news. The company maintains a consistent brand presence across social media and digital platforms, supporting its market position as a regional media broadcaster. Technically, the website employs modern JavaScript frameworks and integrates third-party services such as Usercentrics for consent management and AdsWizz for advertising. The site is mobile-optimized with good SEO practices and a moderate performance profile. However, some technical improvements are recommended, including the implementation of security headers and enhanced accessibility features. From a security perspective, the site enforces HTTPS and uses a consent management platform, indicating GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies, incident response contacts, and WHOIS domain registration data introduces some trust concerns. The website does not appear to be blocked or protected by a WAF, allowing full content access. Overall, the website presents a professional and trustworthy media platform with room for improvement in security transparency and domain registration verification. Strategic recommendations include enhancing security headers, publishing incident response information, and verifying domain registration details to strengthen trust and compliance.

S

S-Communication Services GmbH

s-communication.de

0

S-Communication Services GmbH (S-Com) is a well-established creative agency affiliated with the Sparkassen-Finanzgruppe and parent company DSV-Gruppe. The company specializes in brand communication, digitalization, and enhancing customer experiences for Sparkassen financial institutions. With over 25 years of market experience and a large team of experts, S-Com positions itself as a key player in the financial services marketing and digital transformation sector. The website reflects a professional and consistent brand image, targeting Sparkassen and related stakeholders. Technically, the site is built on Adobe Experience Manager, uses modern JavaScript modules, and integrates various marketing and analytics tools, including Google Tag Manager and TrustCommander for cookie consent. Security is well addressed with HTTPS and a Content-Security-Policy header, although additional security headers could enhance protection. Privacy compliance is strong, with clear policies and consent mechanisms in place. However, explicit contact information and security incident response details are not publicly available on the homepage. Overall, the site is trustworthy, well-designed, and compliant with GDPR requirements.

C

Citizen Journal

citizenjournal.net

0

Citizen Journal is a small media and blog website launched in early 2024, providing well-researched long-form content across diverse topics such as health, business, tech, travel, and lifestyle. The site operates on WordPress with performance optimizations via WP Rocket and uses affiliate marketing through the Amazon Associates program. The technical infrastructure is modern but basic, with Cloudflare DNS and no detected WAF challenges. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. Privacy compliance is basic with presence of privacy and cookie policies but no explicit GDPR statements. Overall, the site is professional and trustworthy for general audiences.

R

Region Fulda

region-fulda.de

0

Region Fulda operates as a regional government portal providing information and services related to the Fulda region in Germany. The website emphasizes tradition and innovation, targeting residents and visitors interested in regional development and community events. The business model centers on public service and regional promotion, positioning itself as a key information hub within the government sector. Technically, the site is built on WordPress using the Divi theme, enhanced with multilingual support via Weglot and cookie consent management through Cookiebot. The infrastructure is modern and includes SEO optimizations and analytics tracking via Etracker. Security posture is strong with HTTPS and Content Security Policy headers implemented, though there is room for improvement in privacy compliance documentation and contact transparency. Overall, the site is professional, trustworthy, and well-structured, serving its public sector audience effectively.

T

TechHub Region Fulda e.V.

techhub-fulda.de

0

TechHub Region Fulda e.V. is a regional non-profit organization focused on fostering innovation and collaboration among technology companies in the Fulda region of Germany. The website serves as a platform to promote their key services including project groups (TechWorks), company visits and expert talks (TechInsights), thematic expert events (TechForum), and networking events (TechTalks). The organization targets technology professionals and companies seeking to share knowledge and resources to drive regional technological advancement. The website is professionally designed, content-rich, and provides clear navigation and contact information, supporting its role as a trusted regional network hub. Technically, the website is built on the com4site CMS platform and uses modern JavaScript libraries such as jQuery, Splide.js, and Swiper.js for interactive elements. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured content. Performance is moderate with no critical technical issues detected. Security posture is solid with HTTPS enforced and secure form handling, though the absence of security headers and cookie consent mechanisms suggests room for improvement. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. However, it lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms, which are recommended for enhancing trust and compliance. Privacy compliance is good with a clear privacy policy and GDPR-compliant newsletter consent, but no cookie policy or consent banner is present. Overall, the website represents a credible and professional regional technology network with a solid digital presence. Strategic improvements in security headers, cookie consent, and incident response transparency would further strengthen its security posture and compliance standing.

R

RegioEntsorgung AöR

regioentsorgung.de

0

RegioEntsorgung AöR operates as a regional public authority focused on waste disposal and recycling services in Germany. The website provides comprehensive information about waste separation, collection services, service locations, customer support, and career opportunities. It targets residents and businesses within its service region, positioning itself as a trusted local waste management provider. The business model is centered on public service delivery with direct citizen engagement. Technically, the website is built on TYPO3 CMS, a robust and mature content management system. It employs responsive design, SVG icons, and modern JavaScript for interactive elements. The site includes a cookie consent mechanism compliant with GDPR, uses Google Analytics for tracking, and is optimized for mobile and accessibility standards. Performance is moderate, with good SEO and navigation clarity. From a security perspective, the site enforces HTTPS and implements cookie consent controls. However, it lacks explicit security policy documentation, incident response contacts, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the business identity. Overall, the website demonstrates a solid digital presence with good privacy compliance and business credibility. Strategic improvements in security transparency and incident response readiness would enhance trust and resilience.

R

RIEGEL STREHL

riegel-strehl.de

0

RIEGEL STREHL is a specialized law firm based in Düsseldorf, Germany, focusing on construction law, real estate law, procurement law, and economic criminal law. The firm emphasizes reliable, dynamic, and result-oriented legal consulting with a personal and trustworthy client approach. Their market position is strengthened by extensive experience from international law firms and public administration, targeting clients needing expert legal services in selected fields. Technically, the website is built on the Jimdo Creator CMS platform, utilizing jQuery and bxSlider for interactive elements. The site is hosted on rzone.de servers and demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks advanced security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or suspicious content were detected, indicating a solid security posture for a small law firm. Overall, the website presents a professional and trustworthy digital presence with good privacy compliance and business credibility. Strategic improvements in security headers, incident response transparency, and terms of service documentation would enhance the site's security and compliance maturity.

Kulturgemeinde Alsdorf e.V. is a small non-profit cultural organization based in Germany, focused on organizing theater performances, literary breakfasts, and other cultural events for the local community. The website serves as a platform for event promotion, ticket sales, and membership information, positioning itself as a key cultural player in Alsdorf. The business model revolves around community engagement and event-driven revenue streams, supported by partnerships with local venues and ticketing services. Technically, the website is built on a modern stack including Bootstrap, jQuery, and FontAwesome, hosted by Pixelfarm with assets stored on S3. The site is mobile responsive and offers a good user experience with clear navigation and event information. Cookie consent mechanisms are implemented in compliance with GDPR, though no advanced analytics or tracking services are detected. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content and hosting, indicating a legitimate and trustworthy domain registration. Overall, the website is professional, secure, and compliant with privacy regulations, serving its target audience effectively. Strategic improvements in security policy transparency and incident response readiness could further enhance trust and resilience.