Germany security reports

The website schoenearbeit.de represents a small-scale design service operated by Christine Massuthe, a diploma designer based in Berlin, Germany. The site provides basic contact information and a simple presentation of the business but lacks comprehensive business or security policies. The business appears to be a freelance or consultancy service targeting local clients seeking design expertise. Technically, the website is built with basic HTML, CSS, and a small JavaScript file for image swapping. There is no evidence of a CMS or modern frameworks, and the site shows minimal mobile optimization and SEO efforts. Hosting is likely provided by the nameserver operator Warenform.de. No analytics or tracking technologies are detected, indicating a low digital maturity level. From a security perspective, the site lacks HTTPS information and security headers, which are critical for protecting user data and ensuring trust. No privacy, cookie, or incident response policies are present, which raises compliance concerns especially under GDPR. The contact information is clearly displayed, but no formal security or data protection measures are evident. Overall, the website is functional but basic, with moderate trustworthiness due to clear contact details but limited security and compliance features. Strategic improvements in security posture, privacy compliance, and technical modernization are recommended to enhance business credibility and user trust.

o.open is a small German IT service provider specializing in network design, system integration, hosting, and administration of internet and office networks. The company focuses on supporting social and left-wing projects, providing technical expertise and infrastructure services. The website content is professional and targeted at a niche audience within Germany, with references to partner organizations and detailed contact information. The business appears to have been founded in the early 2000s, with a strong community and social orientation. Technically, the website uses standard modern web technologies such as HTML5, CSS3, and vanilla JavaScript with some security-conscious practices like nonce usage in scripts. However, there is no evidence of advanced frameworks or CMS platforms. The site is moderately optimized for performance and mobile use but lacks comprehensive accessibility and SEO features. Security posture is moderate, with no visible security headers or HTTPS confirmation in the provided data, and no cookie or privacy consent mechanisms detected. From a security perspective, the site does not show signs of blocking or WAF interference, and no vulnerabilities or exposed sensitive data were found in the content. The WHOIS data is limited due to DENIC privacy policies but shows consistent nameservers under the domain's control. The domain legitimacy is high, though some WHOIS details like creation and expiry dates are not disclosed. Privacy compliance is basic, with GDPR-related documents available but no cookie consent. Overall, the website is trustworthy and professional but could improve its security posture and privacy compliance. Strategic recommendations include implementing HTTPS verification, adding security headers, introducing cookie consent mechanisms, and enhancing mobile and accessibility features to improve user experience and compliance.

5

52°Nord | Paris-Berlin

52nord.eu

49

52°Nord | Paris-Berlin is a small German media production company specializing in film and media content including interviews, thematic films, image films, fiction, and portraits. Their website is built on WordPress and showcases their services and content with a focus on the German-speaking audience. The company provides clear contact information including a physical address in Berlin, phone number, and email, enhancing their business credibility. Technically, the website uses an older WordPress version (5.3.20) with plugins such as MetaSlider and Vipers Video Quicktags, and includes jQuery 1.12.4. The site is hosted via domainfactory GmbH, a reputable registrar and hosting provider. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility and SEO features. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the website uses HTTPS but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible cookie consent mechanism or privacy policy compliance banner, which is a GDPR compliance gap. No incident response or security policy information is provided. The site does not expose sensitive data or show signs of vulnerabilities but uses an outdated jQuery version which could pose risks. Overall, the website is safe with no adult or questionable content, and the domain registration is consistent with the business profile. Recommendations include implementing security headers, updating JavaScript libraries, adding cookie consent and privacy compliance mechanisms, and improving accessibility and SEO to enhance security posture and user trust.

123Comics is a small German-based creative media organization specializing in comics, graphic recording, animation, and educational workshops. Their website presents a professional and well-structured platform showcasing their projects and services, targeting educators, children, and institutions interested in political and social education through comics and animation. The technical infrastructure is based on a custom CMS (KONTEXT-CMS) with common web technologies like jQuery and Slick Carousel, and they use Matomo analytics to respect user privacy. Security posture is moderate with room for improvement, especially regarding security headers and updating legacy libraries. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and social media presence suggest a genuine operation. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, but no explicit terms of service or security policies are found. Overall, the site is safe, accessible, and professionally maintained but would benefit from enhanced security and clearer business legitimacy indicators.

T

TV1 GmbH

tv1.eu

71

TV1 GmbH is a well-established German live streaming and online event production company with over two decades of experience. They provide a comprehensive range of services including virtual events, AI-based subtitling, and operate their own streaming platform, Video.Taxi. Their client base includes prominent organizations such as the German Bundestag and European Commission, positioning them as a leading player in the German streaming market. The website reflects a professional and trustworthy business with clear contact information and strong branding. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for mobile and SEO. Security posture is solid, supported by ISO 27001 certification and HTTPS, though some security headers could be improved. Privacy compliance is robust with a comprehensive privacy policy and cookie consent mechanism. Overall, the site demonstrates high professionalism, good technical implementation, and strong business credibility.

D

Deutscher Bundestag

bundestag.de

63

The Deutscher Bundestag website serves as the official online presence of the German Parliament, providing comprehensive information about parliamentary activities, members, schedules, and live streams. The site targets the general public and stakeholders interested in German governmental affairs. It demonstrates a high level of content quality, professional design, and clear navigation, reflecting its role as a government information portal. Technically, the site uses standard web technologies including JavaScript and CSS, with moderate performance and good mobile optimization. However, there is a lack of visible security headers and explicit privacy or cookie policies, which are areas for improvement. The security posture is moderate due to missing explicit security best practices and incident response information. Overall, the domain and website are legitimate and consistent with official government use, with no suspicious indicators detected.

U

united-domains AG

europa.blog

52

Europa Blog is a niche German-language media platform focusing on European political, social, and cultural topics. It publishes essays and columns from various authors, including notable contributors like Jürgen Klute and Frederik D. Tunnat. The site targets readers interested in in-depth socio-political analysis and commentary within Europe. The business model centers on content publishing without evident commercial sales or e-commerce components. The domain is registered since 2016 with privacy protection, consistent with the site's profile as a small media outlet.

G

Grundstücksgesellschaft Franz-Mehring-Platz 1 mbH

muenzenbergforum.de

46

The Internationales Willi Münzenberg Forum is a German non-profit organization that serves as a loose network of scientific project groups, political-cultural education providers, and media enterprises. The website reflects a niche educational and cultural collaboration platform with a focus on political culture and media projects. It targets politically and culturally engaged audiences, providing resources such as events, journals, and a library. The organization appears small and specialized, with a founding date around 2015. Technically, the website is built on WordPress 6.8.3, utilizing modern plugins such as Yoast SEO, Contact Form 7, and GDPR compliance tools like ShapePress DSGVO. Hosting is provided by Hetzner in Germany, aligning with the website's language and business location. The site demonstrates good mobile optimization, SEO practices, and moderate performance. From a security perspective, the site enforces HTTPS and implements GDPR-compliant cookie consent mechanisms. However, no explicit security headers were detected, and there is no visible security or incident response policy. No vulnerabilities or exposed sensitive data were found in the HTML content. The absence of contact emails and phone numbers is mitigated by the presence of contact forms and social media channels. Overall, the website presents a professional and trustworthy front for a small non-profit organization. Recommendations include enhancing security headers, adding explicit security policies, and possibly publishing vulnerability disclosure information to improve transparency and security posture.

C

common verlagsgenossenschaft eG

oxiblog.de

48

OXI Blog is a German media publication focused on alternative economic perspectives, operated by common verlagsgenossenschaft eG. The website offers articles, digital and print subscriptions, and a newsletter targeting a general audience interested in economic and social topics. The business model relies on content publication supported by subscriptions and donations, positioning itself as a niche media outlet in Germany. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO, GDPR-compliant cookie consent via ShapePress DSGVO, and analytics through Matomo and WP Statistics. Hosting is provided by Hetzner, a reputable German provider, ensuring reliable infrastructure. Security posture is strong with HTTPS enforced, use of reCAPTCHA for forms, and cookie consent mechanisms, though some security headers and explicit incident response contacts are missing. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with no signs of content blocking or WAF interference.

The Rosa-Luxemburg-Stiftung is a well-established non-profit political education foundation affiliated with the German Left Party. The website serves as a comprehensive platform for political education, events, publications, and scholarship information targeting politically engaged individuals and activists. The organization maintains a strong presence with consistent branding and a broad range of services focused on social justice and left-wing political discourse. Technically, the website is built on TYPO3 CMS with Elasticsearch for search functionality and uses Matomo for analytics, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and well-structured, providing an excellent user experience. Security posture is solid with HTTPS and secure form handling, though improvements can be made by adding security headers and explicit incident response information. Privacy compliance is good with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a minor gap. Overall, the site is trustworthy, professional, and safe for general audiences.

N

nd - Journalismus von links

neues-deutschland.de

49

nd - Journalismus von links is a German left-wing news media outlet providing political, cultural, and social news and analysis. The website offers multiple subscription models, podcasts, newsletters, and voluntary donation options, reflecting a cooperative ownership business model. It targets a general audience interested in leftist perspectives on current affairs. The site is well-branded and professionally maintained with consistent content quality and clear navigation.

The Projektnetzwerk Ländliche Räume Niedersachsen website serves as an official regional government platform aimed at consolidating and promoting projects in rural areas of Lower Saxony, Germany. It provides categorized project listings, information on regional development programs, and facilitates project visibility for stakeholders such as municipalities and project managers. The platform is supported by various ministries and government entities, reinforcing its authoritative position in the regional development sector. Technically, the website is built on the connectiv! WebCMS 6 platform, employs standard web technologies including JavaScript and YouTube APIs, and uses etracker for analytics with respect for user privacy. While the site is accessible and well-structured, it lacks some modern security headers and explicit cookie consent mechanisms, which are areas for improvement. The security posture is generally good with HTTPS enforced and no visible vulnerabilities, but could benefit from enhanced security policies and incident response disclosures. Overall, the website is trustworthy, professionally maintained, and serves its target audience effectively with a moderate technical maturity level.

N

Startseite - NIEDERSACHSEN PACKT AN

niedersachsen-packt-an.de

44

The website 'niedersachsen-packt-an.de' appears to be a regional government or public initiative site focused on the Niedersachsen (Lower Saxony) region in Germany. The site uses WordPress CMS with performance optimization via WPRocket and includes custom fonts and scripts. The content is primarily in German and targets the general public in the region. The site design and navigation are good, with mobile optimization present. However, there is a lack of explicit privacy, cookie, and terms of service policies, as well as no visible contact information, which impacts compliance and trust. Security posture is minimal with no detected security headers or incident response contacts. The domain uses official Niedersachsen name servers, indicating legitimacy, but WHOIS data is limited. Overall, the site is functional and professional but could improve in privacy and security transparency.

N

Niedersächsische Staatskanzlei

verkuendung-niedersachsen.de

62

The website 'Verkündungsplattform Niedersachsen' is an official government platform operated by the Niedersächsische Staatskanzlei, providing free access to the official legal publications of the state of Niedersachsen, Germany. It serves as a digital replacement for printed legal gazettes, offering PDFs and archives of laws and ministerial bulletins. The platform targets citizens, legal professionals, and institutions requiring access to up-to-date legal documents. The business model is public service with no commercial intent, positioning it as a trusted government resource. Technically, the site is built using modern web technologies including React and Material-UI, ensuring a responsive and accessible user experience. The site demonstrates good mobile optimization and accessibility compliance, though SEO optimization is basic. No third-party analytics or advertising scripts were detected, indicating a privacy-conscious design. From a security perspective, the site uses HTTPS with excellent SSL configuration, but lacks explicit security headers and cookie consent mechanisms. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data confirms the domain is legitimately registered under official Niedersachsen name servers, reinforcing trust. Overall, the website presents a secure, professional, and trustworthy government service platform with minor improvements recommended in privacy compliance and security headers to enhance protection and user trust.

N

Niedersächsischer Integrationspreis

niedersaechsischer-integrationspreis.de

52

The Niedersächsischer Integrationspreis website serves as an official platform for a regional government-supported integration award in Lower Saxony, Germany. It targets organizations and the general public interested in integration initiatives, providing information about the award, past winners, news, and related events. The site is built on TYPO3 CMS and features a professional design with consistent branding and clear navigation, supporting a good user experience. The content is primarily in German and focuses on non-profit and governmental activities related to integration.

W

WInTO GmbH

winto-gmbh.de

46

WInTO GmbH is a regional economic development company operating under the Landkreis Oberhavel in Germany. The company focuses on improving the economic structure of the region by providing comprehensive services including project development, business support, and networking. Their website reflects a professional and consistent brand image targeting businesses, investors, and regional partners. Technically, the site uses modern frontend technologies and privacy-conscious analytics with Matomo and Cookiebot. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. Overall, the site is trustworthy and well-positioned as a government-related economic development entity.

M

Main-Echo

main-echo.de

60

Main-Echo is a regional news media company serving Aschaffenburg and surrounding areas in Germany. The website provides news, event information, and local announcements targeting a general audience interested in regional developments. The business model is focused on regional news publishing with digital services including newsletters and push notifications. Technically, the site uses a modern CMS (fidion fCMS), integrates Google Tag Manager, Facebook SDK, and other analytics and advertising technologies, and is optimized for mobile devices with good SEO practices. Security posture is adequate with HTTPS enforced and consent management implemented, but lacks explicit security headers and published security policies. Privacy compliance is basic, with no explicit privacy or cookie policy pages found in the provided content. Overall, the site is professional, trustworthy, and aligned with its business purpose, but could improve transparency and security documentation.

K

Klinikum Saarbrücken gGmbH

klinikum-saarbruecken.de

49

Klinikum Saarbrücken gGmbH operates a large, modern hospital facility located in Saarbrücken, Germany, providing comprehensive medical services across 17 specialized departments and 18 interdisciplinary centers. The institution positions itself as a regional maximal care provider with a strong emphasis on quality, patient safety, and community engagement. The website serves multiple audiences including patients, visitors, healthcare professionals, and prospective employees, offering detailed information about medical services, educational programs, and career opportunities. The presence of certifications and compliance information underscores its commitment to healthcare standards and regulatory adherence. Technically, the website is built on the TYPO3 CMS platform, leveraging a modern technology stack including jQuery, Bootstrap, and Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization, accessibility features, and SEO practices. The cookie consent mechanism and privacy policy are well implemented, reflecting GDPR compliance. The site integrates multiple social media channels and provides a newsletter signup, enhancing user engagement. From a security perspective, the site enforces HTTPS and employs cookie consent management. No critical vulnerabilities or exposed sensitive data were detected in the content. However, there is room for improvement in publishing explicit incident response policies, security headers, and vulnerability disclosure mechanisms. The WHOIS data aligns with the website's claims, indicating a legitimate and professionally managed domain. Overall, Klinikum Saarbrücken's website reflects a mature digital presence with strong business credibility and privacy compliance. Strategic enhancements in security transparency and incident response readiness would further strengthen its posture.

S

Saarländisches Staatstheater

staatstheater.saarland

58

The Saarländisches Staatstheater is a prominent cultural institution in Saarland, Germany, offering high-quality performances in music theater, drama, ballet, and concerts. It serves a broad audience interested in the arts and culture, with a business model centered on ticket sales, subscriptions, and cultural events. The website reflects a well-established organization with a strong regional presence and professional digital representation. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies such as Bootstrap and FontAwesome. It employs Matomo analytics configured for privacy-conscious tracking without cookies. The site is mobile-optimized, well-structured, and SEO-friendly, indicating a mature digital infrastructure. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable digital presence for the institution.

S

Stadtwerke Saarbrücken Bäder GmbH

saarbruecker-baeder.de

49

Saarbrücker Bäder is a municipal swimming pool and fitness service provider operated by Stadtwerke Saarbrücken Bäder GmbH, serving the local community in Saarbrücken, Germany. The website offers information on swimming pools, aqua courses, fitness and relaxation programs, family activities, and an online ticketing platform. It positions itself as a local public service provider focused on wellness and recreational activities. Technically, the site uses a modern JavaScript stack including jQuery, Owl Carousel, and the Foundation framework, with TYPO3 CMS likely powering the backend. The site is mobile-optimized and provides basic accessibility features. Security-wise, HTTPS is used, and cookie consent mechanisms are in place, but explicit security headers and incident response policies are not publicly documented. The domain registration data aligns well with the website's municipal nature, indicating legitimacy and trustworthiness.

I

Immobiliengruppe Saarbrücken

sib-saarbruecken.de

48

Immobiliengruppe Saarbrücken is a regional real estate service provider focused on housing rentals, commercial spaces, property management, parking, and insurance services primarily serving the Saarbrücken area. The website reflects a municipal or public service affiliation, offering information on housing, job opportunities, and community projects. Technically, the site uses modern JavaScript libraries and the Foundation framework, likely powered by TYPO3 CMS, delivering a responsive and accessible user experience. Security posture is moderate with HTTPS usage and no exposed sensitive data, but lacks explicit security headers and cookie consent mechanisms. Tracking is performed via etracker with respect for Do Not Track settings. Overall, the site is professional, trustworthy, and safe for general audiences, though improvements in privacy compliance and security policies are recommended.

S

Stadtwerke Saarbrücken

saarbruecker-stadtwerke.de

42

Stadtwerke Saarbrücken is a large municipal utility company serving the Saarbrücken region in Germany, providing energy, water, and public transport services. The website reflects a professional and regionally focused business with a strong market position as a key regional employer and service provider. The technical infrastructure uses modern JavaScript libraries and a TYPO3 CMS backend, indicating moderate digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy and cookie policies. Tracking is done via eTracker without visible consent mechanisms, indicating room for privacy compliance improvement. Overall, the website is trustworthy and well-maintained but could enhance security and privacy transparency.

Z

Zentraler Kommunaler Entsorgungsbetrieb

zke-sb.de

53

The Zentraler Kommunaler Entsorgungsbetrieb (ZKE) website serves as the official municipal platform for waste disposal, sewage management, and city cleaning services in Saarbrücken, Germany. The site targets local residents and businesses, providing environmental and municipal service information. The business operates as a government entity with a medium-sized operational scope. The website promotes the official Saarbrücken city app and uses modern web technologies such as jQuery, Foundation framework, and accessibility tools like ReadSpeaker. However, the site lacks visible privacy and cookie policies, which are critical for GDPR compliance, and does not provide explicit contact information or incident response channels. Security posture is moderate with HTTPS enabled and no obvious vulnerabilities, but security headers and advanced protections are missing. Overall, the website is functional and trustworthy as a municipal service portal but requires improvements in privacy compliance and user contact transparency.

S

Saarbahn GmbH

saarbahn.de

42

Saarbahn GmbH is a regional public transportation provider serving the Saarbrücken area in Germany. The company operates local transit services including trams and buses, offering timetable information, ticket sales, and subscription services to its customers. It is a subsidiary of Stadtwerke Saarbrücken GmbH, a major regional utility and service provider. The website provides comprehensive service information, customer support, and news updates relevant to its target audience of local commuters and travelers. Technically, the website employs a modern technology stack including jQuery, Owl Carousel, Foundation framework, and accessibility tools like ReadSpeaker. The site is mobile-optimized and structured for good user experience and SEO. The CMS appears to be TYPO3, indicating a professional content management approach. Performance is moderate with good mobile and accessibility features. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Tracking is done via etracker, with moderate user tracking levels. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable security posture. Overall, Saarbahn GmbH's website is a trustworthy and professional platform for regional public transport services, though it would benefit from enhanced privacy compliance and security header implementation to align with best practices and regulatory requirements.

I

internett GmbH

internett.de

46

internett GmbH is a German IT services company specializing in designing, building, and operating reliable IT systems, hosting, virtual office solutions, and data center services. With over 25 years of experience, they focus on free and open hardware and software, serving businesses that require distributed IT infrastructure and modern IT management platforms. The company maintains a professional and consistent online presence with a well-structured website built on WordPress and Elementor, indicating a mature digital infrastructure. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and vulnerability disclosure policies are recommended. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the website reflects a trustworthy and credible business with moderate to good technical and security maturity.

J

JK.works mediatec

jk-works.de

55

JK.works mediatec is a small, established German IT service provider specializing in system administration, cloud and backup solutions, server maintenance, and web design/development. With over 20 years of experience and a Microsoft Silver Partner certification, the company targets businesses primarily in the Bremen, Wildeshausen, and Oldenburg regions. Their website reflects a professional and consistent brand image, offering clear service descriptions and accessible contact information. Technically, the site is built on OctoberCMS with a modern tech stack including Bootstrap and jQuery, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. Overall, the website is trustworthy, compliant with GDPR, and free from suspicious or adult content.

E

Euro Akademie

euroakademie.de

52

Euro Akademie is a well-established educational institution in Germany offering a wide range of vocational training, further education, and degree programs. The website is professionally designed using TYPO3 CMS and provides detailed information about courses and locations, targeting students and professionals seeking education and training. The institution is part of the ESO Education Group, enhancing its market position and trustworthiness. Technically, the website employs modern technologies including Google Tag Manager and Usercentrics for GDPR-compliant consent management. Security posture is good with HTTPS enforced and privacy-conscious tracking defaults, though some security headers and explicit policies are missing. Overall, the site is safe, accessible, and trustworthy with no adult or questionable content detected.

H

Hallesche Wohnungsgenossenschaft FREIHEIT eG

wgfreiheit.de

50

Hallesche Wohnungsgenossenschaft FREIHEIT eG is a well-established housing cooperative based in Halle (Saale), Germany, with a history spanning over 70 years. The organization provides affordable, modern housing solutions with a strong emphasis on community engagement, social responsibility, and cultural sponsorship. Their target audience includes families, seniors, students, and local residents. The website reflects a mature digital presence with comprehensive content, clear navigation, and active social media integration. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Google Analytics with privacy-conscious settings. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business profile.

S

Stadtwerke Halle GmbH

swh.de

62

Stadtwerke Halle GmbH is a large municipal utility company serving the city of Halle (Saale) and surrounding region in Germany. The company provides a broad range of essential services including electricity, natural gas, district heating, water supply, waste management, public transportation, and leisure facilities. It operates through multiple subsidiaries and partner organizations, reflecting a diversified municipal service portfolio. The website presents these services clearly and professionally, targeting local residents and businesses. Technically, the website uses a modern technology stack including jQuery, Slick Carousel, FontAwesome, and a consent management platform (Usercentrics) alongside Matomo analytics for privacy-conscious user tracking. The site is mobile optimized and structured for good SEO and accessibility, though some accessibility features could be enhanced. Hosting and CMS appear stable and appropriate for the business scale. From a security perspective, the site enforces HTTPS and uses consent management for cookies, indicating good privacy practices. However, no explicit security policy, incident response contacts, or vulnerability disclosure mechanisms are publicly available, which could be improved. No vulnerabilities or suspicious content were detected in the analysis. Overall, the website is trustworthy, professionally maintained, and aligned with the business's public utility role. Strategic improvements in transparency around security policies and GDPR compliance documentation would enhance trust and compliance posture.

H

Hallotta – deine Assistentin für Mikroabenteuer in Halle an der Saale!

hallotta.app

57

Hallotta.app is a German-language digital assistant platform focused on promoting and facilitating micro-adventures in the city of Halle an der Saale. The website presents a clean, modern Angular-based single-page application with localized content aimed at residents and visitors interested in local outdoor activities and small adventures. The business model appears to be service-oriented, providing guidance and assistance for local experiences. However, the website lacks critical compliance and trust elements such as privacy policies, cookie consent mechanisms, terms of service, and contact information, which limits its credibility and user trust. Technically, the site uses modern web technologies but does not demonstrate advanced SEO or accessibility features. Security posture is minimal with no visible security headers or incident response information.

A

AV-Studio Kommunikationsmedien GmbH Halle

av-studio.de

60

AV-Studio GmbH is a well-established full-service digital agency based in Germany, specializing in strategy, design, system development, online marketing, and content creation with over 25 years of experience. The company targets businesses and organizations seeking comprehensive digital solutions, positioning itself as a trusted regional player with a strong portfolio of audiovisual and multimedia projects. Technically, the website is built on Drupal CMS, employs Matomo for analytics with privacy-conscious configurations, and uses modern frontend technologies ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in implementing security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR, providing clear contact information and privacy documentation.

C

Carlsen Verlag

carlsen.de

51

Carlsen Verlag is a well-established German publishing company specializing in children's books, young adult literature, manga, and comics. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its target audience of children, young adults, educators, and fans of comics and manga. The company operates under the Bonnier Group umbrella and maintains subsidiaries such as Lappan Verlag and Carlsen K. Technically, the site is built on Drupal CMS, uses modern JavaScript libraries like Swiper.js, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized and accessible, with good SEO practices.

T

Typolexikon.de | Das Lexikon der Typografie

typolexikon.de

63

Typolexikon.de is a specialized online lexicon and encyclopedia dedicated to typography, fonts, and visual design, curated and edited by Wolfgang Beinert since 2001. It serves a niche audience of typography enthusiasts, graphic designers, and students by providing comprehensive, well-structured educational content and a searchable glossary. The website demonstrates a mature digital presence with professional design, good SEO, and accessibility features, built on WordPress with modern technologies. Security posture is solid with HTTPS and secure form practices, though it lacks published privacy and cookie policies, which are compliance gaps. Contact is available via an external contact form, and no analytics or advertising scripts are detected, indicating a privacy-conscious approach. Overall, the site is trustworthy and authoritative within its domain but should improve privacy compliance documentation.

Ä

Ärzte ohne Grenzen

aerzte-ohne-grenzen.de

74

Ärzte ohne Grenzen is a well-established international humanitarian medical aid organization operating in Germany with a large-scale presence. The website effectively communicates its mission to provide independent, impartial, and neutral medical emergency assistance. The organization targets a broad audience including donors, volunteers, and medical professionals. The business model is donation-funded non-profit humanitarian aid. The website is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site uses Drupal 11 CMS, integrates Matomo analytics with consent management via OneTrust, and is hosted with Cloudflare DNS services, ensuring good performance and security. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not published. Privacy compliance is robust with comprehensive cookie consent and GDPR-aligned policies. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the site is trustworthy, secure, and professionally maintained.

S

Stadt Frankfurt am Main

kufti.de

48

KUFTI is a cultural and leisure ticket initiative operated by the Stadt Frankfurt am Main, targeting children and youth under 18 years old. The website provides information about free or low-cost access to museums, the zoo, and cultural highlights in Frankfurt. It offers multilingual support and a newsletter subscription to keep the audience informed. The business model is a public service promoting cultural engagement among young residents and students in Frankfurt. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, WPML for multilingual support, and Borlabs Cookie for privacy compliance. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, serving as a reliable government cultural resource.

N

Netzwerk der Literaturhäuser

literaturhaus.net

52

Netzwerk der Literaturhäuser is a German-speaking cultural network focused on promoting literature houses through events, awards, and member coordination. The website serves as an information hub for literature enthusiasts, cultural institutions, and authors. It is built on WordPress using modern plugins and themes, providing a good user experience with multimedia content and mobile optimization. Security posture is adequate with HTTPS and some security plugins, but lacks advanced security headers and cookie consent mechanisms. The absence of WHOIS data for the domain is a notable anomaly that impacts trustworthiness. Overall, the site is professional and functional but could improve in privacy compliance and security transparency.

S

Schauspiel Frankfurt

schauspielfrankfurt.de

56

Schauspiel Frankfurt is a cultural institution specializing in theatrical performances and related services such as guided tours, ticket sales, and subscriptions. The website presents a professional and consistent brand image targeting theater enthusiasts and the general public in Frankfurt, Germany. It maintains a digital magazine and active social media presence to engage its audience. The business model is focused on live cultural events and audience engagement through subscriptions and ticketing. Technically, the website is built on the spiritec WebCMS platform tailored for theaters and opera houses. It uses modern web technologies including JavaScript and CSS, with video integration for promotional content. The site is mobile-optimized and provides a good user experience with clear navigation and structured content. Hosting is provided by spiritec-server.de, indicating a specialized hosting environment. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers and policies are not evident, and no incident response or vulnerability disclosure information is provided. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is well addressed with a clear privacy policy and cookie banner. Overall, the website is trustworthy and professional with a solid digital presence. Strategic improvements in security headers, incident response transparency, and accessibility could enhance its security posture and compliance maturity.

Indiebookday.de is a German initiative by the mairisch Verlag aimed at promoting independent book publishing through an annual event encouraging readers to purchase books from indie publishers and share their support on social media. The website serves as an informational platform providing event details, downloadable promotional logos, and multilingual access. The business operates as a small cultural initiative with a niche market position and a focus on community engagement rather than commercial sales. Technically, the website is built on the Jimdo Creator CMS platform, hosted via domaincontrol.com nameservers, and uses standard web technologies including jQuery and Jimdo's proprietary scripts. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Privacy and cookie policies are implemented with a consent mechanism, reflecting compliance with GDPR requirements. From a security perspective, the site enforces HTTPS and includes cookie consent but lacks explicit security headers and documented incident response policies. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and legitimate, supporting the trustworthiness of the site. Overall, the website presents a professional and trustworthy front for its cultural mission, with room for improvement in security hardening and enhanced business contact transparency.

B

büro indiebook

indiebook.de

44

büro indiebook is a small, specialized business founded in 2010 that provides representation services exclusively for independent book publishers across Germany. The company operates through three representatives covering different federal states, focusing on serving the book trade rather than private customers. The website is professionally designed using WordPress and the Avada theme, with clear navigation and relevant content tailored to its niche audience. Hosting is provided by rzone.de, and the site uses HTTPS with a moderate performance profile. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is limited, with no cookie consent mechanism detected, though a privacy policy is linked in the Impressum. Contact is primarily via email, with no phone or physical address listed on the main page. Overall, the website is trustworthy and serves its business purpose well but could improve in privacy and security transparency.

B

BookGazette!

bookgazette.xyz

55

Book Gazette is a small independent media platform based in Germany focused on literary reviews, podcasts, and profiles of independent book publishers. The website offers curated content in German targeting readers interested in discovering books from independent publishers. Technically, the site uses modern web standards including HTTPS, JSON-LD structured data, and CDN-hosted assets, delivering a good user experience with responsive design and clear navigation. Security posture is adequate with HTTPS enforced but lacks advanced security headers and published security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally presented but could improve in security and privacy transparency.

O

on art

on-art.news

62

The website on-art.news operates as an online German-language art magazine named 'on art'. It provides art news, features, reviews, announcements, and press reviews targeting art enthusiasts primarily in Germany. The business model is content-driven media with subscription options. The site is professionally designed with consistent branding and a clear focus on art and culture. Social media presence on Facebook and Instagram supports audience engagement. Technically, the site is built on WordPress using the Gutenberg block editor, Yoast SEO plugin, and Jetpack for analytics, hosted on WordPress.com's Atomic platform. Performance and mobile optimization are good, though accessibility is basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks some security headers and cookie consent mechanisms. WHOIS data is privacy protected, which is typical for media sites, and no suspicious patterns were found. Overall, the site is trustworthy and professionally maintained.

K

Korbinian Verlag

korbinian-verlag.de

61

Korbinian Verlag is an independent book publisher based in Berlin, Germany, operating an e-commerce platform primarily through Shopify. The website showcases a curated selection of books and merchandise, targeting literature enthusiasts and general consumers interested in cultural and literary works. The business model focuses on direct online sales and brand building through social media and testimonials. Technically, the site leverages Shopify's robust e-commerce infrastructure, ensuring a modern, mobile-optimized, and accessible user experience with moderate performance. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and formal security policies. Privacy compliance is basic with GDPR-related policies present. Overall, the site is professional, trustworthy, and safe for general audiences.

S

Schöne Bücher c/o Verlag Jens Korch

schoenebuecher.net

53

Schöne Bücher is a German media platform dedicated to promoting independent book publishers through curated reading tips, news, and event coverage. The website targets readers interested in independent literature and operates as a niche media network. Technically, the site is built on WordPress with a modern plugin ecosystem, including analytics and consent management tools, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and consent management but lacks some advanced security headers. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and social media presence suggest a genuine small media business. Overall, the site is professional and trustworthy but should address domain registration transparency.

M

Moluna GmbH

moluna.de

49

Moluna GmbH operates www.moluna.de, a German e-commerce platform specializing in books, music, games, toys, and lifestyle products. The website offers a broad catalog with detailed categorization and targets general consumers interested in German-language media and related products. The business model combines direct online retail with affiliate marketing partnerships, leveraging trusted payment providers like Klarna. Technically, the site uses a custom e-commerce platform with modern JavaScript libraries such as jQuery and Flickity, and integrates multiple marketing and analytics tools including Google Analytics and Facebook Pixel. The website is mobile-optimized with good navigation and content quality. Security posture is solid with HTTPS enforced and use of security tokens, though security headers could be enhanced. Privacy compliance is good, featuring a cookie consent mechanism and comprehensive privacy policy. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

R

re-book

re-book.de

55

re-book.de is a German-language cultural and art information website focused on presenting art exhibitions, retrospectives, and book releases. The site targets art enthusiasts and cultural professionals with curated content about contemporary art projects and publications. Technically, the site is built on WordPress using modern block editor technologies and hosted on WordPress.com infrastructure, ensuring reliable performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response contacts. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

D

Die Werkstatt Verlagsauslieferung GmbH

werkstatt-auslieferung.de

60

Die Werkstatt Verlagsauslieferung GmbH is a German logistics service provider specializing in distribution and warehousing for book publishers and nonbook companies across Europe. The company operates a large warehouse facility and offers comprehensive services including order processing, packaging, shipping, and marketing support. Their website reflects a medium-sized enterprise with a professional online presence and clear contact information. Technically, the site is built on the Contao CMS platform using modern JavaScript libraries such as jQuery and Swiper.js, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS and secure login forms, but lacks explicit security headers and incident response information. Privacy compliance is well addressed with a cookie consent mechanism and a GDPR-compliant privacy policy. Overall, the website is trustworthy and suitable for its B2B audience.

P

PROLIT Verlagsauslieferung GmbH

prolit.de

61

PROLIT Verlagsauslieferung GmbH is a medium-sized German service provider specializing in book distribution and publishing logistics. The company serves over 170 publishers and offers a broad catalog of approximately 41,000 titles. The website reflects a professional and content-rich platform targeting publishers and the book trade, with regular news updates and a partner program involving over 2,000 bookstores. Technically, the site is built using the Hugo static site generator, ensuring fast performance and good mobile optimization. Security posture is solid with HTTPS enabled, though some security headers and cookie consent mechanisms are missing. Contact information is clearly provided, enhancing trust and credibility.

B

Book2look International GmbH

book2look.de

46

Book2look International GmbH operates a specialized social media marketing platform focused on the book publishing industry. Their core offering is the creation of interactive book widgets called Biblets, which enable publishers, booksellers, and bloggers to showcase books with look inside features, multimedia content, and direct purchase links. The company has established a strong market presence with over 1,000 publishers worldwide, including major names, positioning itself as a key player in digital book marketing. Technically, the website is built on ASP.NET WebForms with modern JavaScript libraries and supports progressive web app features, hosted on Rackspace with HTTPS and monitoring via New Relic. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and headers could be improved. Overall, the site is professional, accessible, and trustworthy, serving a niche but global audience effectively.

B

büro indiebook

buero-indiebook.de

46

büro indiebook is a small, specialized agency representing independent book publishers across Germany. Founded in 2010, it operates through three regional representatives covering all federal states. The website serves as an informational portal for publishers and book trade professionals, providing contact details and publisher lists. Technically, the site is built on WordPress with the Avada theme and uses common plugins for media management and analytics. The site is hosted likely by a German provider (rzone.de) and uses HTTPS with valid SSL, ensuring secure connections. However, the site lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. No forms or phone contacts are present; communication is primarily via email. Overall, the site is professional and functional but could improve privacy compliance and security posture.

K

Kurt Wolff Stiftung

kurt-wolff-stiftung.de

55

The Kurt Wolff Stiftung is a German non-profit foundation dedicated to promoting a diverse publishing and literary landscape, primarily representing independent publishers. Established in 2000, it operates with a clear mission to support bibliodiversity as a vital component of an open society. The foundation offers services such as publishing catalogs, organizing literary events, and providing information about its activities. Its market position is well-established within the cultural and literary sector in Germany, with international exchange connections. Technically, the website is built on WordPress 6.8.3, leveraging modern plugins for analytics, accessibility, and GDPR compliance. Hosting is provided by Manitu, and the site demonstrates good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are not explicitly detected. Privacy compliance is strong, with comprehensive privacy and cookie policies. No terms of service or explicit incident response policies are found. Overall, the site is professional, trustworthy, and safe for general audiences.