Germany security reports

C

CMSimple

cmsimple.org

44

CMSimple.org is the official website for CMSimple, an open source PHP-based content management system that uniquely operates without requiring a database. Founded in 2004 and based in Germany, CMSimple targets users seeking a lightweight, provider-independent CMS solution. The website offers extensive documentation, plugins, templates, and community support, positioning itself as a niche player in the CMS market. The business model revolves around open source distribution supplemented by partner services and sponsorships. Technically, the site uses PHP, JavaScript, and CSS with a focus on simplicity and responsiveness. The site is well-structured, mobile-optimized, and SEO-friendly, though it lacks some advanced accessibility features.

The website www.oneclickreporting.com/1clickreporting/ serves as a login portal for one-click reporting services, likely provided by Bankhaus Metzler, a reputable German financial institution. The portal targets clients requiring secure access to financial reporting tools. The site is primarily in German with an English option, reflecting a professional and client-focused service. The business model centers on providing secure online access to financial data and reporting services, positioning itself as a specialized service platform within the finance sector. Technically, the site is built using JavaServer Faces (JSF) with PrimeFaces UI components, jQuery, and Font Awesome for styling and interactivity. The presence of Google Fonts indicates some attention to design aesthetics. The site shows moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. The cookie consent mechanism is implemented, indicating awareness of privacy compliance requirements. From a security perspective, the site uses HTTPS and implements a cookie consent banner, but lacks visible security headers such as Content-Security-Policy or HSTS in the provided HTML content. No contact information or incident response details are present on the login page, and WHOIS data for the domain is unavailable, which raises concerns about domain legitimacy. However, the strong association with Bankhaus Metzler and links to their official domain for legal and privacy information mitigate some of these concerns. Overall, the site presents a professional and secure interface for its intended users but would benefit from enhanced security headers, improved transparency in contact and incident response information, and resolution of WHOIS data inconsistencies to strengthen trust and compliance.

T

Tennisverband Pfalz e.V.

tvpfalz.de

56

The Tennisverband Pfalz e.V. is a regional tennis association based in Kaiserslautern, Germany, serving tennis players, clubs, and enthusiasts in the Pfalz region. The website provides news, tournament information, training opportunities, and organizational details, positioning itself as a key regional sports entity. The business model is non-profit and community-focused, emphasizing sports development and engagement. Technically, the site is built on TYPO3 CMS with Bootstrap for responsive design and includes accessibility enhancements via eyeAble scripts. The hosting is provided by kundenserver.de, indicating a professional hosting environment. Security posture is moderate; HTTPS is implied, and secure login forms are present, but security headers and explicit security policies are lacking. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and well-structured but could improve in security and privacy transparency. Strategic recommendations include implementing security headers, cookie consent, and publishing security policies to enhance trust and compliance.

T

Tennisverband Rheinland e.V.

tennisverband-rheinland.de

58

Tennisverband Rheinland e.V. is a regional tennis association serving the Rheinland-Pfalz region in Germany. The organization focuses on providing tennis-related news, organizing tournaments and league matches, offering trainer and referee education, and supporting sport development initiatives. The website serves as an information hub for tennis players, clubs, and enthusiasts in the region, featuring event calendars, training opportunities, and online booking for tennis halls. The association positions itself as a key regional governing body within the tennis community. Technically, the website is built on the TYPO3 CMS platform with Bootstrap for responsive design. It integrates Google Tag Manager for analytics and includes accessibility enhancements via eyeAble scripts. The site is hosted on servers managed by agenturserver, with multiple nameservers indicating a professional hosting environment. The website demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers and explicit cookie consent mechanisms are absent. From a security perspective, the site uses HTTPS and secure login forms but lacks visible security policies, incident response contacts, and security.txt files. No critical vulnerabilities or suspicious patterns were detected. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Contact information is clearly provided, enhancing trustworthiness. Overall, the website is professional, trustworthy, and well-suited for its audience. Strategic improvements in security headers, cookie consent, and published security policies would enhance compliance and security posture, supporting the association's credibility and user trust.

B

Bayerischer Turnverband e. V.

btv-turnen.de

47

Bayerischer Turnverband e. V. is a regional non-profit sports association focused on gymnastics, fitness, and health sports in Bavaria, Germany. The website serves as an information hub for educational programs, events, and youth activities, positioning itself as a key player in the regional sports education sector. The technical infrastructure includes modern JavaScript libraries such as Swiper.js and Fancybox, with privacy-conscious analytics via Matomo and a cookie consent mechanism from Consentmanager.net. The site is well-structured, mobile-optimized, and provides rich content relevant to its audience. Security posture is moderate with HTTPS implied but no explicit security headers detected. Privacy compliance is basic, lacking a visible privacy policy or terms of service. Overall, the domain appears legitimate and consistent with the organization's mission, though WHOIS data is minimal. Strategic improvements include publishing comprehensive privacy and security policies and enhancing security headers.

K

Knepper Gruppe

knepper-recycling.de

51

Knepper Gruppe is a well-established German family-run company with over 70 years of experience, specializing in demolition, earthworks, recycling, scrap metal processing, logistics, and food recycling. The company operates nationally and across Europe, emphasizing sustainable and innovative solutions. Their website reflects a professional and comprehensive digital presence, built on TYPO3 CMS, with modern technologies and good mobile optimization. Security practices include HTTPS enforcement, cookie consent management, and use of Google Tag Manager with consent mechanisms. No critical vulnerabilities or privacy issues were detected. However, the site lacks explicit incident response contacts and a security.txt file. Overall, Knepper Gruppe presents a trustworthy and credible business with a strong focus on sustainability and customer service.

Weidmüller is a well-established German company specializing in connection technology, automation, and digitalization solutions for industrial customers. The website reflects a mature digital presence with comprehensive product and solution offerings targeting B2B industrial sectors. The company maintains a strong market position with a focus on innovation and customer support. Technically, the website uses modern technologies including Google Tag Manager and OneTrust for consent management, hosted likely on infrastructure provided by Deutsche Telekom. Security posture is strong with HTTPS enforced and security headers present, although explicit security policies and incident response contacts are not published. Privacy compliance is robust with GDPR-aligned cookie consent mechanisms and a detailed privacy policy. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

V

Vauth-Sagel

vauth-sagel.de

64

Vauth-Sagel is a well-established manufacturing company specializing in furniture fittings and related industry solutions. The company operates a professional, multi-language website powered by TYPO3 CMS, targeting industry professionals and dealers globally. The website offers product overviews, service information, and dealer search capabilities, reflecting a mature B2B business model with a strong market presence. Technically, the site uses modern analytics tools including self-hosted Matomo and Hotjar, and implements cookie consent via Usercentrics, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced, but lacks some advanced security headers and DNSSEC, which are recommended for improvement. Privacy compliance is partial, as no explicit privacy policy or terms of service were found in the provided content. Overall, the website is professional, trustworthy, and safe for general audiences.

T

The Family Butchers Germany GmbH

the-family-butchers.com

66

The Family Butchers Germany GmbH is a large-scale manufacturer and retailer specializing in sausage, ham, and protein products, including plant-based alternatives. As Germany's second-largest producer in this sector and part of InFamily Foods Holding, the company emphasizes tradition, family values, and innovation. Their digital presence is built on TYPO3 CMS with modern web technologies, providing a well-structured, mobile-optimized, and content-rich website. The site integrates consent management and tracking tools responsibly, reflecting good privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website presents a professional and trustworthy image suitable for its target audience and market position.

S

STEINBILD

steinbild-collection.com

55

STEINBILD is a German-based e-commerce retailer specializing in unique handcrafted natural stone wall art. Founded in 2023, the company targets consumers and business customers seeking exclusive design objects made from natural stone. The website is professionally designed, mobile-optimized, and offers a clear navigation structure including product categories, B2B dealer access, and personal design consultation services. Technically, the site is built on the Shopware platform, leveraging modern web technologies and integrating analytics and review widgets. Security posture is good with HTTPS, CSRF protection, and domain status locks, though improvements like DNSSEC and additional security headers are recommended. Privacy compliance is well addressed with visible privacy and cookie policies and consent mechanisms. Overall, the business presents a credible and trustworthy online presence with a niche market focus.

S

Sievert

sievert.de

64

Sievert is a well-established company specializing in construction materials and logistics solutions, operating internationally with around 60 locations and over 1,600 employees. The website reflects a mature business with a strong focus on sustainability, customer support, and professional services. Technically, the site is built on the Neos CMS platform using the Flow PHP framework, indicating a modern and maintainable infrastructure. The website is well-optimized for SEO and mobile devices, with good content quality and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are missing. Overall, the site presents a trustworthy and professional digital presence aligned with the company's market position.

Schröter Technologie GmbH & Co. KG is an internationally recognized manufacturer specializing in thermal equipment for the food industry, including solutions for smoking, cooking, steaming, and drying. The company positions itself as a leader in precision, quality, and innovation within its sector. The website is built on TYPO3 CMS, indicating a mature digital infrastructure with modern technologies such as Google reCAPTCHA and Google Tag Manager integrated for security and analytics purposes. However, the absence of explicit privacy policies and contact information on the visible HTML content suggests areas for improvement in transparency and compliance. Security posture is moderate, with HTTPS usage and bot protection in place, but lacking visible security headers and formal incident response details. Overall, the website is professional and trustworthy, serving a general audience in the manufacturing sector without any adult or questionable content.

O

OWL Verkehr GmbH

teutoowl.de

57

OWL Verkehr GmbH operates as a regional public transportation service provider and information portal for the TeutoOWL network in Germany. The company offers a range of services including schedule information, ticket sales (such as Deutschlandticket, JobTickets, and SchülerTickets), subscription management, and mobility services like call-collect taxis and night buses. The website targets public transport users in the OWL region, providing comprehensive and accessible information to facilitate mobility. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as jQuery, Bootstrap, and FontAwesome. It employs Matomo analytics with a cookie consent mechanism, indicating a privacy-conscious approach. The site is hosted on infrastructure associated with DomainControl, uses HTTPS with strong SSL configuration, and demonstrates good mobile optimization and accessibility. From a security perspective, the website enforces HTTPS and uses privacy-friendly analytics. However, it lacks explicit security policy documentation and incident response contact details. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but consistent with a legitimate regional transportation entity. Overall, the site maintains a good security posture with room for improvement in transparency and security headers. The overall risk assessment is low, with the website presenting a professional, trustworthy, and compliant digital presence. Strategic recommendations include publishing a security policy, adding incident response contacts, enhancing security headers, and maintaining regular security audits to sustain and improve the security posture.

O

OstWestfalenLippe GmbH

ostwestfalenlippe.de

58

OstWestfalenLippe GmbH is a regional development agency focused on promoting the OstWestfalenLippe region in North Rhine-Westphalia, Germany. The company supports sustainable transformation, workforce development, regional marketing, and innovation through various projects and events. The website is professionally designed, content-rich, and targets stakeholders including businesses, academia, government, and citizens of the region. Technically, the site uses TYPO3 CMS and Matomo analytics, indicating a modern and privacy-aware infrastructure. Security posture is good with HTTPS and spam-protected emails, though additional security headers and explicit policies could improve it. Overall, the website is trustworthy, well-maintained, and compliant with GDPR, though it lacks a cookie consent mechanism. Strategic recommendations include enhancing security headers, publishing security policies, and implementing cookie consent to improve compliance and trust.

N

nobilia Küchen

nobilia.de

59

nobilia Küchen is a leading German kitchen manufacturer with a strong market position in the manufacturing sector. The company offers a wide range of kitchen, bathroom, and living space products, supported by planning tools and customer services. The website reflects a mature digital presence with a professional design, clear navigation, and strong accessibility features, including integration of a comprehensive accessibility tool by digi·access GmbH. The technical infrastructure is based on TYPO3 CMS and includes modern marketing and analytics tools such as Google Tag Manager, HubSpot, and eTracker. Security posture is moderate with HTTPS enforced and consent management implemented, but lacks explicit security headers and published security policies. WHOIS data is minimal and uses generic name servers, which slightly reduces transparency but does not indicate malicious intent. Overall, the website is trustworthy, professional, and well-optimized for its target audience.

Musterring International, operated by Josef Höner GmbH & Co. KG, is a well-established German furniture brand with a history dating back to 1938. The company focuses on high-quality, sustainable furniture products with a strong emphasis on design, functionality, and customer service. Their digital presence reflects a mature retail business with comprehensive product offerings, dealer support, and configurator tools to enhance customer experience. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and third-party tools for analytics, consent management, and accessibility. Security posture is strong with HTTPS enforcement and security headers, though there is room for improvement in publishing explicit security policies and incident response contacts. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional website content and business information. Strategic recommendations include enhancing transparency on security and privacy policies and ensuring WHOIS data availability for trust enhancement.

E

eurobahn GmbH & Co. KG

eurobahn.de

51

eurobahn GmbH & Co. KG operates as a regional passenger rail transport provider serving parts of Lower Saxony, North Rhine-Westphalia, and the Netherlands. The company offers extensive rail connections, timetable information, ticketing services, and customer support, positioning itself as an important regional mobility player. The website reflects a professional and user-friendly digital presence with clear navigation, multilingual support, and comprehensive service information. Technically, the site is built on TYPO3 CMS, integrates Matomo analytics, and employs modern UI components ensuring good performance and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be enhanced. Overall, the site demonstrates strong business credibility, compliance with GDPR, and effective communication channels, supporting a trustworthy and professional brand image.

G

Gebrüder Lödige Maschinenbau GmbH

loedige.de

42

Gebrüder Lödige Maschinenbau GmbH is a well-established German manufacturer specializing in industrial mixing and processing machinery, with a history dating back to 1938. The company positions itself as an international market leader offering tailored system solutions, engineering services, and customer support primarily targeting industrial clients across sectors such as pharmaceuticals, chemicals, food, and environmental technology. Their website reflects a professional and consistent brand image, leveraging TYPO3 CMS and modern web technologies to provide a user-friendly experience. The presence of a cookie consent mechanism and Google Tag Manager indicates a moderate level of digital maturity and compliance awareness. Security posture is solid with HTTPS enabled and no blocking mechanisms detected, though explicit security headers and incident response information are lacking. Overall, the site demonstrates good business credibility and technical implementation, though privacy policy and terms of service documentation could be improved to enhance compliance and user trust.

E

Energieversum GmbH & Co. KG

energieversum.de

70

Energieversum GmbH & Co. KG is a German company specializing in photovoltaic and solar energy solutions, offering comprehensive all-inclusive packages for residential and commercial customers. The company is positioned as a reliable provider with a strong market presence, supported by its affiliation with the EnBW Group, one of Germany's largest energy companies. Their services include photovoltaic systems, energy storage, electric vehicle charging stations, heat pumps, and financing options, targeting customers seeking sustainable and cost-effective energy independence. Technically, the website is built on WordPress with modern technologies such as Bootstrap, jQuery, and integrates marketing and consent management tools like Google Tag Manager, Visual Website Optimizer, and Usercentrics CMP. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Hosting appears to be managed via 1&1 IONOS, inferred from nameservers. From a security perspective, the site enforces HTTPS and uses a consent management platform, but lacks visible advanced security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partially addressed through cookie consent but lacks explicit privacy and terms of service documentation. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in security headers, privacy documentation, and incident response transparency would enhance the security posture and compliance maturity.

D

DFT – Dürkopp Fördertechnik

duerkopp.com

70

DFT – Dürkopp Fördertechnik is a German-based company specializing in intralogistics and conveyor technology solutions, targeting industries such as fashion, pharmaceutical wholesale, parcel logistics, and eCommerce fulfillment. The company offers a range of products including material handling systems, sorter systems, and software solutions for warehouse control and analytics. Their market position is that of an established medium-sized B2B provider with a global footprint and a focus on innovative, durable logistics solutions. The website content is professionally presented, with comprehensive product information and active news updates, reflecting a mature digital presence. Technically, the website is built on WordPress with modern SEO tools like Rank Math and uses Google Tag Manager for analytics and tracking, configured with privacy-conscious defaults. The site is mobile-optimized, accessible, and performs moderately well. Security best practices such as HTTPS and cookie consent mechanisms are implemented, though some security headers and explicit security policies are missing. From a security perspective, the site shows good baseline protections but lacks published incident response or vulnerability disclosure information. The absence of WHOIS registration data is a notable anomaly that reduces trustworthiness, although the website content and branding are consistent with a legitimate business. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy front for a specialized industrial technology provider, but the domain registration opacity warrants further verification. Strategic improvements in security transparency and WHOIS data clarity would enhance trust and compliance posture.

S

Stadt Bielefeld

bielefeld.de

57

The website www.bielefeld.de is the official digital presence of the city of Bielefeld, Germany, serving as a comprehensive portal for municipal services, community information, city development, culture, and events. It targets residents, visitors, and businesses, providing a wide range of services including appointment scheduling, public announcements, and career opportunities. The site is well-positioned as the authoritative source for city-related information and services. Technically, the site is built on Drupal 10 with Bootstrap framework, hosted likely by Deutsche Telekom, and integrates privacy-conscious analytics via Matomo with cookies disabled and DoNotTrack respected. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and follows privacy best practices. However, it lacks explicit security policies or incident response information and could improve by adding additional security headers and a vulnerability disclosure policy. Overall, the security posture is solid but could be enhanced. The risk assessment is low given the official nature, absence of suspicious content, and good privacy compliance. Strategic recommendations include strengthening security headers, publishing security policies, and enhancing transparency around incident response and vulnerability disclosures.

C

Converge Technology Solutions

convergetp.de

65

Converge Technology Solutions is a German IT system house specializing in comprehensive digital solutions, covering strategy, implementation, and operational support. The company targets business clients seeking tailored IT services. The website is built on WordPress using the Divi theme and integrates several plugins for events and marketing. The technical infrastructure includes Cloudflare DNS and multiple marketing analytics tools such as HubSpot and LinkedIn Insight. Security posture is adequate with HTTPS enabled but lacks visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website presents a professional image but would benefit from enhanced privacy and security disclosures to improve trust and compliance.

R

ROTTLER

rottler.de

69

ROTTLER is a German retail and service company specializing in optical and hearing products including eyeglasses, sunglasses, hearing aids, and contact lenses. The company operates both physical stores and an online shop, targeting end customers in Germany seeking vision and hearing solutions. The website is professionally designed, content-rich, and well-structured, providing comprehensive product information, offers, and appointment booking services. Technically, the site is built on the HubSpot CMS platform, leveraging modern JavaScript frameworks and marketing tools such as Google Tag Manager and Usercentrics for consent management. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

B

bonprix

bonprix.de

68

bonprix is a large European online retailer specializing in fashion, shoes, and home goods, targeting approximately 10 million customers in 2024. The company offers a broad product range including women's, men's, and children's clothing, accessories, and home textiles. The website is professionally designed with consistent branding and supports multiple European markets via hreflang tags. Technically, the site uses modern JavaScript, CSS, and integrates social media marketing tools such as Flowbox. Hosting is provided by Akamai, indicating a robust infrastructure. Security posture is moderate with HTTPS implied and CSRF tokens present, but lacks visible security headers and published security policies. Privacy compliance is limited as no explicit privacy or cookie policies were detected in the provided content. Overall, the site is accessible without WAF blocking and shows strong business credibility and technical maturity.

A

Aug. Winkhaus SE

winkhaus.com

71

Winkhaus is a well-established German manufacturer specializing in innovative window technology, door locking systems, and intelligent access control solutions. With a history spanning over 170 years, the company serves a global audience including architects, building owners, manufacturers, and security professionals. Their website reflects a mature digital presence with comprehensive product information, multilingual support, and active engagement through news and press releases. Technically, the site leverages modern web technologies including Google Tag Manager and Usercentrics for consent management, built on the SAP Commerce (Hybris) CMS platform. Security posture is strong with HTTPS enforcement and consent mechanisms, though explicit security headers should be verified. The WHOIS data is incomplete or unavailable, which slightly reduces trust but the overall business credibility remains high due to consistent branding, certifications, and transparent contact information.

A

alpha logs GmbH

alphalogs.de

62

alpha logs GmbH operates the website alphalogs.de, providing expert consulting and management services for logistical change processes targeting companies in industry, trade, and services sectors. The company positions itself as pragmatic, experienced, and future-oriented, focusing on supply chain and intralogistics solutions primarily for medium-sized enterprises and corporations in Germany. The website is professionally designed, multilingual (German and English), and optimized for user experience and SEO. Technically, it is built on WordPress with modern plugins such as Rank Math SEO and Cookiebot for privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site reflects a mature digital presence with good privacy compliance and business credibility.

T

TMC Live GmbH

tmc-live.de

40

TMC Live GmbH is a German full-service event agency specializing in the conception, planning, and execution of B2B events including hybrid and digital formats. The company positions itself as a creative and reliable partner focused on sustainable and emotionally engaging event experiences. Their market presence is supported by a professional website showcasing extensive services, client testimonials, and references, indicating a solid reputation in the event management sector. Technically, the website uses modern frameworks such as Alpine.js and Swiper.js, is built on October CMS, and is hosted on agenturserver infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not found. Overall, the website reflects a mature digital presence with strong business credibility and compliance with privacy regulations.

T

TMC Amplio GmbH

tmc-brandwork.de

43

TMC Brandwork, operated by TMC Amplio GmbH, is a German branding agency specializing in brand strategy, communication, and creative production for both B2B and B2C clients. The company positions itself as a provider of tailored solutions to strengthen brands with a professional portfolio and notable client references. The website reflects a strong market presence with consistent branding and clear contact points, including a named CEO and company email. Technically, the site uses modern web technologies such as Alpine.js and Tailwind CSS, hosted on a provider indicated by the nameservers. The site is mobile-optimized, fast-loading, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though no explicit security policy or incident response information is published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

T

TMC Amlio GmbH

tmc-amplio.de

40

TMC Amlio GmbH operates the website tmc-amplio.de as a digital consulting and agency partner focused on driving digital growth for businesses. Their service offerings include digital strategy, user experience design, online marketing with CRM integration, and web development including API services. The company positions itself as a technology-driven yet human-centric partner for digital transformation, targeting businesses seeking to amplify their brand digitally. The website is professionally designed using the Astro framework, with good mobile optimization and clear navigation, reflecting a moderate level of digital maturity. The technical infrastructure includes modern JavaScript modules and a cookie consent mechanism via CookieFirst, hosted on servers indicated by agenturserver nameservers.

T

TMC GmbH

tmc-gmbh.de

38

TMC GmbH is a medium-sized marketing agency based in Germany, specializing in creating emotional brand experiences across digital and analog environments. The company operates multiple specialized agencies under its group, including Amplio®, TMC Brandwork, and TMC Live, offering services such as marketing consulting, brand development, event management, and video production. The website reflects a strong market position as the largest marketing agency in the Ostwestfalen-Lippe region, targeting businesses seeking comprehensive marketing solutions. Technically, the website is built on a modern stack including OctoberCMS, JavaScript libraries like jQuery and Vime.js for video playback, and integrates Google Tag Manager and CookieFirst for analytics and consent management. The site is mobile-optimized with good SEO practices and a professional design, providing a positive user experience. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security headers and documented security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is consistent with a legitimate business domain, with no privacy protection or suspicious patterns. Overall, the website demonstrates a high level of professionalism, good security posture, and compliance with privacy regulations, making it a trustworthy digital presence for the company.

D

Direct-Volley : Nummer 1 Website für Online-Volleyball

direct-volley.de

60

Direct-Volley.de is a German e-commerce website specializing in volleyball equipment, including shoes, balls, clothing, protective gear, and club supplies. The site positions itself as the leading online volleyball shop in Germany, targeting volleyball players and enthusiasts. The business model is retail-focused, offering a wide range of branded products with a clear and structured navigation system. The website demonstrates a good level of digital maturity with a Magento-based platform and integration of modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and AWIN affiliate tracking. The site is mobile-optimized and provides a generally good user experience with clear product categorization and search functionality. Security posture is adequate with HTTPS enforced and consent management implemented, but lacks some security headers and explicit security policies. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service found in the provided content. Overall, the website is professional and trustworthy but could improve transparency and security practices to enhance user trust and compliance.

G

Gesellschaft für Energie- und Gebäudemanagement Bonn mbH (EGM)

egm-bonn.de

61

Gesellschaft für Energie- und Gebäudemanagement Bonn mbH (EGM) is a regional energy service provider and subsidiary of Stadtwerke Bonn, specializing in sustainable energy solutions and contracting services for buildings in the Bonn/Rhein-Sieg area. Their offerings include planning, financing, construction, and operation of energy systems for residential, commercial, and public sector clients such as hospitals and schools. The website is built on TYPO3 CMS, featuring modern web technologies and good SEO and accessibility practices. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response contacts are not published. Overall, the site reflects a professional and trustworthy business with clear contact channels and integration within a larger energy group.

B

Bonn-Netz GmbH

bonn-netz.de

64

Bonn-Netz GmbH operates as a regional energy network operator responsible for electricity and natural gas distribution within the Bonn city area. The company provides essential infrastructure services including network connections, metering, energy feed-in management, and supports electromobility infrastructure. Their website targets private households, businesses, installers, and market partners, offering comprehensive information and online portals to facilitate customer interactions. Technically, the website is built on TYPO3 CMS with Yoast SEO integration, hosted on a local provider indicated by the nameservers. The site is mobile-optimized, accessible, and employs modern web technologies. Cookie consent is implemented with user choice, and Google Analytics is used for moderate user tracking. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, supporting legitimacy. Overall, the website presents a professional and trustworthy digital presence for a medium-sized utility company. Strategic improvements in security headers, incident response transparency, and legal completeness (terms of service) would enhance their security posture and compliance.

S

SWB Regional

swb-regional.de

63

SWB Regional is a regional public utility company specializing in modern and environmentally friendly drinking water supply services within the Eifel-Ahr region of Germany. It operates as part of the Stadtwerke Bonn group, serving approximately 30,000 customers and supporting local municipalities. The website provides comprehensive online customer services including contract management and information dissemination, targeting residential and commercial customers in the region. The company maintains a solid market position as a trusted regional utility provider with strong group affiliation.

S

Stadtwerke Bonn

swb-karriere.de

65

Stadtwerke Bonn operates as a regional public utility company in Germany, providing energy and transportation services. Their website, swb-karriere.de, serves as a comprehensive career portal targeting students, apprentices, professionals, and job seekers interested in joining the company. The portal offers detailed information on job openings, training programs, and employee testimonials, positioning the company as an attractive employer in the regional market. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and a cookie consent framework to ensure GDPR compliance. The site is mobile-optimized, accessible, and professionally designed, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and employs cookie consent mechanisms, though it lacks explicit security headers and a public security policy or incident response contact. Overall, the website demonstrates a strong security posture with room for improvement in transparency and security best practices. The domain registration data aligns well with the company's business claims, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing a security policy, and providing clear incident response contacts to further strengthen trust and compliance.

C

Creative SHOPPING GmbH

creative-shopping.com

54

Creative SHOPPING GmbH is a German-based technology company specializing in premium advantage and cashback solutions, operating over 120 shopping portals including the well-known GETMORE cashback portal. The company targets businesses seeking to enhance customer and employee loyalty through white-label and custom SaaS platforms. Their market position is strong, supported by awards and a minority investment by ProSiebenSat.1 Media SE. Technically, the website employs modern web technologies, including Google Analytics with privacy features and reCAPTCHA for form security, reflecting a mature digital infrastructure. Security posture is good with HTTPS and form protections, though some security headers and explicit policies are missing. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and privacy policies. No critical vulnerabilities or suspicious content were detected.

L

Leuchtenmarkt

leuchtenmarkt.de

49

Leuchtenmarkt is a well-established German e-commerce retailer specializing in LED lighting products including LED Einbaustrahler, sets, and accessories. With over 30 years of experience, it holds a strong market position as a trusted provider in the residential lighting sector. The website offers a professional shopping experience with detailed product information, customer reviews, and a modern digital infrastructure. Technically, the site is built on the Shopware platform, leveraging Google Analytics, Google Tag Manager, Matomo, and reCAPTCHA for analytics and security. The site is mobile-optimized and provides a good user experience with clear navigation and consistent branding. Security posture is solid with HTTPS and bot protection, though explicit security headers could be enhanced. Privacy compliance is robust with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy and professionally managed, with no signs of blocking or suspicious activity.

K

KM-Werbemittel GmbH

laprinta.de

66

laprinta.de is a well-established German e-commerce website specializing in promotional products and advertising gifts, operated by KM-Werbemittel GmbH since 1988. The site offers a broad product range including office supplies, USB and tech gadgets, bags, food and beverages, sustainable items, sports and leisure products, seasonal goods, and more. It targets businesses and organizations seeking customized promotional merchandise, positioning itself as a trusted specialist with over 30 years of market presence. The website features professional design, clear navigation, and consistent branding, supporting a positive user experience.

TransPak AG is a well-established German packaging supplier with over 50 years of experience, serving business customers across Germany, Austria, and Switzerland. The company offers a broad range of over 40,000 packaging products and related services including logistics, eProcurement, and packaging machine support. Their market position is strong, supported by multiple physical locations and certifications such as ISO 9001 and 14001. Technically, the website is built on modern frameworks like Next.js and React, with good performance, mobile optimization, and SEO practices. Security posture is robust with HTTPS, security headers, and secure forms, though incident response details are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations.

F

Famulus Verpackungen Horst GmbH

famulus.de

55

Famulus Verpackungen Horst GmbH is a well-established German company specializing in the production and sale of gift packaging and related products. With a history dating back to 1874 and over 150 years of family business experience, the company holds a leading market position in presentation cartons and packaging solutions, primarily serving B2B customers such as wine and sparkling wine producers and retailers. Their business model combines e-commerce with wholesale distribution, supported by a comprehensive product catalog and custom printing services. Technically, the website is built on the Shopware e-commerce platform, utilizing modern web technologies including jQuery and various Shopware plugins. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Hosting is provided by Timme Hosting, with secure HTTPS connections and no detected blocking mechanisms. From a security perspective, the site enforces HTTPS and uses CAPTCHA on forms, but lacks explicit security headers and published security or incident response policies. Privacy compliance is limited, with no visible privacy or cookie policies or consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and functional, but could improve privacy compliance and security transparency to enhance user trust and regulatory adherence.

K

KabelScheune

kabelscheune.de

63

KabelScheune operates a professional e-commerce platform specializing in network technology, electrical materials, multimedia, and cable management products primarily targeting both private and business customers in Germany. The website demonstrates a solid market position as a specialized retailer with a comprehensive product catalog and clear navigation structure. Technically, the site is built on the OXID eShop CMS platform, employs modern web technologies including responsive design and SVG icons, and integrates analytics and consent management tools to comply with GDPR requirements. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. Overall, the site is trustworthy and professionally maintained, with no signs of malicious activity or adult content.

S

SEFE Energy GmbH

sefe-energy.eu

59

SEFE Energy GmbH is a prominent European energy supplier specializing in delivering natural gas, hydrogen, and digital infrastructure solutions to industrial and municipal clients across Germany, Belgium, and the Netherlands. As part of the SEFE Group, owned by the German federal government, the company serves over 50,000 customers and emphasizes sustainability and energy transition through investments in clean energy and hydrogen ecosystems. The website reflects a mature digital presence with comprehensive product information, customer portals, and multilingual support. Technically, the site leverages modern web technologies including Umbraco CMS, Vue.js, and integrates analytics and marketing tools such as Google Tag Manager and Trustpilot widgets. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some enhancements in security headers and explicit incident response policies could improve resilience. Overall, SEFE Energy presents a trustworthy and professional online presence aligned with its market position as a leading energy provider in Europe.

C

Cimbergy

cimbergy.com

55

Cimbergy is a specialized service provider focused on wind and solar energy projects primarily in Schleswig-Holstein, Germany. The company offers tailored solutions including planning, implementation, and management of renewable energy parks. Their market position is regional with a clear focus on sustainable energy and citizen participation. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates privacy-compliant analytics and marketing tools such as Matomo and Facebook Pixel. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data raises some concerns about domain registration transparency, but the website itself appears legitimate and trustworthy. Overall, the site demonstrates a mature digital presence suitable for its business domain.

M

MITSUBISHI MOTORS

mitsubishi-motors.de

64

MITSUBISHI MOTORS Germany operates a professional website showcasing their automotive models, services, and offers with a focus on modern mobility including electric and plug-in hybrid vehicles. The site targets German automotive consumers and provides detailed navigation for models and services. The technical infrastructure is based on TYPO3 CMS with modern frontend technologies and includes comprehensive cookie consent and analytics integration. Security posture is good with HTTPS and cookie consent but lacks explicit security policies or vulnerability disclosures. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

E

e-mobil BW GmbH

emobil-sw.de

61

e-mobil BW GmbH operates the Cluster Elektromobilität Süd-West, a regional network focused on advancing electromobility and digitalization in the energy and transportation sectors. The cluster facilitates collaboration among companies, research institutions, and stakeholders to accelerate innovation and market development in Baden-Württemberg and surrounding regions. Their services include project coordination, working groups, internationalization support, and educational initiatives, positioning them as a key player in the regional electromobility ecosystem. Technically, the website is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and Swiper.js, ensuring good mobile responsiveness and accessibility. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. The site is well-structured, SEO-optimized, and provides a professional user experience with clear navigation and comprehensive content. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security policy documentation and incident response contact details, which are recommended for enhanced transparency and trust. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business identity, supporting legitimacy. Overall, the website demonstrates a strong business credibility and technical maturity with minor areas for improvement in security transparency and contact information. The risk profile is low, and the site effectively supports the cluster's mission and stakeholder engagement.

A

Ambu

ambu.de

49

Ambu is a well-established company specializing in the development and manufacturing of innovative single-use medical devices for clinical and preclinical applications. Their product portfolio includes disposable endoscopes, ventilation bags, laryngeal masks, and electrodes for cardiology and neurology, targeting healthcare professionals and institutions. The website reflects a professional and consistent brand presence, with clear focus on healthcare industry needs. Technically, the site uses a modern CMS (Dynamicweb 9), integrates with multiple reputable third-party services for analytics and marketing, and employs a comprehensive cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS enforced and session management via secure cookies, although explicit security headers and incident response information are lacking. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations, supporting Ambu's market position as a key player in disposable medical products.

B

Bodensee Energie

bodensee-energie.de

60

Bodensee Energie is a regional energy provider in Germany offering electricity and gas services with a focus on certified eco-friendly energy. The website targets residential and commercial customers in the Bodensee region, emphasizing competitive pricing and customer service excellence. The digital infrastructure includes modern web technologies such as jQuery, Google Tag Manager, and an advanced accessibility tool by digi·access GmbH, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The site demonstrates good privacy compliance with a comprehensive cookie policy and GDPR adherence. Overall, the website is professional, accessible, and trustworthy, supporting the company's market position as a reliable regional energy supplier.

U

United Kiosk AG

united-kiosk.de

56

United Kiosk AG operates a well-established German e-commerce platform specializing in digital and print magazine and newspaper subscriptions. With over 25 years in the market, it offers a vast catalog of more than 5,000 titles, serving a broad audience interested in diverse topics. The company emphasizes sustainability, fair practices, and trusted certifications, positioning itself as a reliable and culturally significant media provider in Germany. The website's design is professional, consistent, and optimized for mobile devices, providing an excellent user experience with clear navigation and relevant content.

M

MEDIMAX

medimax.de

71

MEDIMAX operates as a large-scale retail and e-commerce platform specializing in consumer electronics, household appliances, and entertainment electronics primarily targeting the German market. The website demonstrates a professional and comprehensive digital presence with extensive product categories and a user-friendly interface. The business is well-positioned in the retail sector with a strong focus on online shopping convenience and local store integration. Technically, the site employs modern JavaScript frameworks, Google Tag Manager, and various third-party marketing and analytics tools, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforcement, CSRF protection, and a detailed cookie consent mechanism, although explicit security headers could be enhanced. Privacy compliance is strong, with GDPR-aligned policies and consent management. Overall, the site is trustworthy, professionally maintained, and suitable for general consumers.