Security Directory

K

Kurz-URLs & QR-Codes - sicher & datenschutzfreundlich

kurzelinks.de

60

Kurzelinks.de is a German-based URL shortening and QR code generation service emphasizing privacy and security. The platform offers a variety of features including multilinks, email links, password protection, link expiration, and deactivation capabilities. It operates with a focus on data protection, malware and phishing scanning, and user control over shortened URLs. The website is primarily in German and targets a general audience seeking secure and privacy-friendly link management solutions. Technically, the site uses a traditional jQuery-based stack with custom JavaScript and CSS, delivering moderate performance and basic mobile optimization. Security posture is solid with HTTPS enforcement and privacy features like referrer removal, though it lacks some advanced security headers and explicit security policies. Contact is primarily via a contact form and an abuse email address, with no direct phone numbers or social media links evident. Overall, the site is trustworthy, professional, and well-aligned with GDPR requirements, though it could improve cookie consent and security header implementation.

T

Telia

telia.se

70

Telia is a leading telecommunications operator in Sweden, offering extensive 5G coverage, mobile telephony, broadband, TV, and streaming services. The company targets both consumers and businesses, positioning itself as a top-tier provider with a strong emphasis on sustainability and customer service. The website reflects a mature digital presence with modern technologies such as React and Next.js, ensuring fast performance and excellent mobile optimization. Security is robust, with HTTPS enforced and multiple security headers implemented, alongside comprehensive privacy and cookie policies that demonstrate GDPR compliance. Although WHOIS data for the www subdomain is missing, this is typical and does not detract from the site's legitimacy. Overall, Telia's website is professional, trustworthy, and well-aligned with industry best practices.

T

Telia

telia.com

70

Telia is a leading telecommunications operator in Sweden, offering a broad range of services including mobile telephony, broadband internet, TV, and streaming services. The company targets both consumers and businesses, emphasizing extensive 5G coverage and sustainability as key differentiators. The website reflects a mature digital presence with professional design and consistent branding. Technically, the site uses modern frameworks such as Next.js and React, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and modern security headers implemented, though explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent management platform in place. Overall, Telia's online presence is trustworthy and professional, supporting its enterprise market position.

3

3x7.de ✂ datenschutzfreundliche Kurz-URLs & QR-Codes

3x7.de

10

3x7.de is a German-based privacy-friendly URL shortening and QR code generation service. It offers users the ability to shorten long URLs, create multi-link lists, email links, and generate QR codes, with additional features such as password protection, malware and phishing checks, and optional link deactivation. The service is accessible 7 days a week and emphasizes data protection and user privacy, operating from Germany with a focus on GDPR compliance. The website is primarily in German and targets users seeking secure and privacy-conscious link shortening solutions. Technically, the website employs a modern JavaScript stack including jQuery and jQuery UI, with custom scripts for interaction and QR code generation. Hosting is inferred to be with netcup, a German hosting provider, based on DNS nameservers. The site uses HTTPS and includes CSRF tokens in forms, indicating attention to security. However, some security headers are missing, and cookie consent mechanisms are not present, which could be improved for full GDPR compliance. Mobile optimization and accessibility are basic but functional. From a security perspective, the site enforces HTTPS, offers malware and phishing protection on shortened URLs, and provides options to remove referrer information and password-protect links. There is an abuse reporting page, but no explicit security policy or vulnerability disclosure program is published. No critical vulnerabilities or exposed sensitive data were detected in the analysis. Overall, 3x7.de presents a trustworthy and privacy-conscious service with a solid technical foundation and good business credibility. Strategic improvements in security headers, cookie consent, and published security policies would enhance its compliance and security posture further.

0

Kurzlinks & QR-Codes erstellen

0cn.de

62

0cn.de is a German-based URL shortening and QR code generation service focused on privacy and security. It offers features such as malware and phishing link checks, password protection, link expiration, and deactivation links. The service targets general users seeking secure and privacy-friendly short URLs. The website is professionally designed with clear navigation and good content relevance. Technically, it uses a custom platform with jQuery and JavaScript libraries, delivering moderate performance and basic mobile optimization. Security posture is strong with HTTPS enforcement and link safety features, though some security headers and explicit policies are missing. Privacy compliance is good with a comprehensive privacy policy but lacks a cookie consent mechanism. Business credibility is supported by consistent WHOIS data and transparent service offerings.

O

Kurzlinks mit Phishing- & Malware-Schutz

ogy.de

62

ogy.de is a German-based URL shortening service focused on providing secure, privacy-friendly short links with integrated phishing and malware protection. The service offers a variety of features including multi-link lists, email links, QR code generation, and enterprise solutions. The website is well-structured, primarily in German, and targets general internet users and businesses seeking safe link shortening solutions. Technically, the site uses a modern JavaScript stack with jQuery and related libraries, but does not rely on a CMS. Security is well considered with HTTPS, CSRF tokens, and malware checks, though some security headers are missing. Privacy compliance is strong with a comprehensive privacy policy, but lacks a cookie consent mechanism. Contact is available via a contact form and an abuse reporting page. Overall, the site is professional, trustworthy, and well-positioned in its niche.

K

Kurzlinks.de

kurzlinks.de

10

Kurzlinks.de is a German-based URL shortening service focused on privacy and security. It offers users the ability to shorten long URLs with added features such as malware and phishing protection, optional password protection, and dereferrer functionality to enhance user privacy. The service also provides additional utilities including multi-link lists, email links, QR code generation, and enterprise solutions. The website is well-positioned in the niche market of privacy-conscious URL shorteners, targeting general internet users who value data protection and security. Technically, the site employs modern JavaScript libraries like jQuery and jQuery UI, with a custom or unknown CMS. The site is moderately optimized for performance and mobile use, with good SEO practices and basic accessibility features. Security-wise, the site enforces HTTPS, uses CSRF tokens in forms, and offers several security features for links, but lacks explicit security headers and a published security policy. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence, though no cookie consent mechanism is present. Contact is primarily via a contact form and an abuse reporting email. Overall, the site is trustworthy, secure, and professional, with room for improvement in security headers, cookie consent, and direct contact information visibility.

K

Kurzlink.ch - sichere Kurz-URLs und QR-Codes

kurzlink.ch

65

Kurzlink.ch is a Swiss-based URL shortening and QR code generation service emphasizing security and privacy. The platform offers free services including link shortening, multilink creation, email link generation, and QR code factory features, alongside enterprise SaaS solutions, browser extensions, and mobile apps. The service targets general internet users primarily in Switzerland and German-speaking regions, positioning itself as a secure and privacy-conscious alternative in the URL shortener market. The website content is professional, well-structured, and consistent with the brand's security focus.

J

j0b.de

j0b.de

10

j0b.de operates as a specialized URL shortening service primarily targeting job-related content such as job offers and company profiles. The service emphasizes privacy and security by incorporating malware and phishing checks, referrer removal, and optional password protection for shortened links. The platform offers additional features including multilink creation, email links, QR code generation, and API access, positioning itself as a niche player in the URL shortener market with a focus on secure and privacy-friendly link management. The website is hosted and operated from Germany, aligning with GDPR compliance and data protection standards. Technically, the website employs modern JavaScript libraries including jQuery and jQuery UI, with a clean HTML5 structure and CSS styling. While no CMS or major frameworks are detected, the site demonstrates moderate performance and basic mobile optimization. SEO practices are adequately implemented with proper meta tags and descriptive content. However, accessibility features are basic and could be improved. Security-wise, the site enforces HTTPS, uses CSRF tokens in forms, and offers security features like password protection and malware scanning. Nonetheless, it lacks explicit security headers and a formal security policy or vulnerability disclosure program. The security posture is solid but could be enhanced by implementing additional HTTP security headers and providing clearer incident response contacts. Privacy compliance is good with a comprehensive privacy policy and terms of service, but the absence of a cookie consent mechanism is a notable gap. No direct contact emails or phone numbers are visible on the main page, which may affect user trust and support accessibility. No advertising or tracking scripts are detected, indicating a privacy-conscious approach. Overall, j0b.de presents a trustworthy and professional service with a clear business focus and good technical foundation. Strategic improvements in security headers, privacy consent mechanisms, and contact transparency would further strengthen its security and compliance posture.

B

Babsi

bab.si

58

Babsi operates a privacy-focused URL shortening service based in Germany, offering secure short links with phishing and malware protection. The service includes features such as multi-link lists, email links, QR code generation, and enterprise solutions. The website is well-structured, primarily in German, targeting general users seeking safe and privacy-friendly URL shortening. Technically, the site uses a modern JavaScript stack with jQuery and related libraries, hosted by OVH, a reputable provider. Security practices include HTTPS enforcement, CSRF protection, and link safety checks, though some security headers and cookie consent mechanisms are missing. The domain registration is consistent and appropriate for the business age, enhancing trustworthiness. Overall, Babsi presents a reliable and professional service with room for improvement in privacy compliance and security transparency.

H

Sign in - Matomo

hostedpiwik.de

57

The website hostedpiwik.de serves as a login portal for the Matomo hosted analytics platform, a free/libre web analytics service. It primarily targets website owners and administrators who use Matomo for tracking and analyzing web traffic. The business model is SaaS-based, providing hosted analytics services leveraging the Matomo platform. The site is technically built using AngularJS and jQuery, hosted on German infrastructure, and employs HTTPS for secure communications. However, the site content is minimal, focusing solely on user authentication without public-facing business or legal information. From a security perspective, the site enforces HTTPS and includes basic anti-framing measures to prevent clickjacking. The login form uses POST method and includes nonce tokens, indicating some protection against CSRF. However, the absence of security headers and visible privacy or cookie policies indicates room for improvement in security posture and compliance. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent from the content. Overall, the site demonstrates a moderate level of technical maturity but lacks comprehensive privacy, security, and business transparency information. This limits trust and compliance confidence. Strategic improvements in security headers, privacy disclosures, and contact information would enhance the site's credibility and compliance stance.

T

TodaysWeb Ltda.

todaysweb.se

46

TodaysWeb Ltda. is a Swedish-based technology company specializing in SEO and web development services, primarily serving as a subcontractor to SEO firms and clients who require advanced digital marketing and system development solutions. The company has a strong market position in Sweden, consistently ranking in the top 3 for SEO-related keywords on Google. Founded in 1999 by Jim Westergren, TodaysWeb has established credibility through media mentions and a professional online presence. The company also operates a charity initiative in Bolivia, reflecting corporate social responsibility. Technically, the website is built with standard web technologies including HTML5, CSS, and JavaScript, and uses external resources such as Google Fonts and a third-party analytics service. The site is accessible, well-structured, and optimized for SEO, though mobile optimization and accessibility could be improved. Security posture is moderate with HTTPS usage but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data for the domain www.todaysweb.se is missing, which raises concerns about domain registration legitimacy and trustworthiness. Overall, the website is professional and trustworthy in content but would benefit from enhanced security and compliance transparency.

S

Spektrum Gesundheit

rauszeit-im-kopf.de

46

Spektrum Gesundheit is a German interdisciplinary health platform that integrates mental, physical, and ecological health topics. It targets health professionals, urban planners, environmental scientists, educators, and decision-makers, providing scientifically grounded and practical health knowledge. The platform evolved from a mental health focus to a broader holistic health approach, emphasizing the interconnectedness of human, animal, environmental, and societal health. Technically, the website is built on the Contao Open Source CMS, uses jQuery, and is hosted on kasserver.com. It features modern web standards, responsive design, and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR, with minimal user tracking via Matomo analytics.

H

het-menu.nl

het-menu.nl

55

Het-menu.nl is a Dutch online restaurant guide offering users the ability to search menus and prices across over 150,000 restaurants in the Netherlands. The platform targets general consumers looking for dining options and provides location-based search functionality. The website is professionally designed with consistent branding and good content quality, supporting a positive user experience. Technically, the site employs modern web technologies including JavaScript, CSS, and integrates a Consent Management Platform to ensure GDPR compliance. Analytics are conducted via Hotjar, enabling user behavior insights. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the site is legitimate, trustworthy, and well-positioned in its hospitality niche.

M

MaM multimedia, s.r.o.

mojmilacik.sk

39

MôjMiláčik.SK is a Slovak e-commerce website specializing in pet supplies including food, accessories, and veterinary products for dogs, cats, and other animals. Operated by MaM multimedia, s.r.o., the site offers a broad product catalog with detailed descriptions and a loyalty program to encourage repeat purchases. The business targets pet owners primarily in Slovakia and operates as a small retail e-commerce platform with a regional focus. Technically, the website uses a custom CMS platform (MaM SHOP system) with legacy technologies such as Flash and a non-UTF-8 charset, indicating some modernization opportunities. Security posture is solid with HTTPS, DNSSEC, and Google reCAPTCHA integration, but lacks advanced security headers and modern charset standards. Privacy and cookie policies are present and GDPR compliant, supporting regulatory adherence. Overall, the site is functional and trustworthy but could benefit from technical updates and enhanced security measures.

V

VisionConnect GmbH

vision-connect.de

65

VisionConnect GmbH is a well-established digital agency based in Hannover, Germany, with over 25 years of experience since its founding in 1995. The company specializes in web development, design, SEO, and digital marketing services, leveraging platforms such as TYPO3 CMS and Wordpress. Their market position is strong, supported by long-term client relationships and a comprehensive service offering that includes strategy, design, technology, and communication solutions. The website reflects a professional and trustworthy digital presence with excellent content quality and user experience. Technically, the website is built on a modern stack with TYPO3 CMS, uses Matomo for privacy-conscious analytics, and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly, although some security headers could be improved. The SSL configuration is excellent, ensuring secure communications. However, there is no publicly available security policy or incident response information, which could be enhanced to improve transparency and trust. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and privacy-respecting analytics settings. No vulnerabilities or suspicious content were detected. The WHOIS data aligns with the business claims, showing a domain age consistent with the company's history and no privacy protection that would obscure legitimacy. Overall, the security posture is solid but could benefit from additional security headers and published policies. The overall risk assessment is low, with the website presenting a professional, secure, and compliant digital presence. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure mechanism to further strengthen trust and security culture.

T

Kurz URLs mit Malware Schutz & Dereferrer Funktion

t1p.de

62

t1p.de is a German-based URL shortening service that emphasizes security and privacy by integrating malware and phishing protection, password protection for links, and dereferrer functionality. The service offers multiple domain options for short URLs, a browser extension, mobile app, and API access, targeting users who require safe and privacy-conscious link management. The website is well-structured, professionally designed, and provides comprehensive information about its services, including terms and privacy policies. Technically, the site uses modern JavaScript libraries such as jQuery and jQuery UI, with HTTPS enabled and CSRF protection in forms, indicating a solid technical foundation. However, some security best practices like security headers and cookie consent mechanisms are missing or not visible. The WHOIS data aligns with the website's German origin and service claims, supporting legitimacy. Overall, the site presents a trustworthy and professional service with room for improvement in privacy compliance and security hardening.

The website www.e-deska.cz provides an electronic official notice board software solution primarily targeted at Czech municipalities or administrative bodies. The service offers intuitive document posting, automatic archiving, and scheduling capabilities for official documents, supporting multiple file formats. The business model appears to be software provision, with free offerings for clients whose websites are managed by the provider. The website content is basic and primarily informational, with limited interactive features beyond a login form for administrative access. From a technical perspective, the site uses basic HTML, CSS, and JavaScript without modern frameworks or CMS detected. The site lacks mobile optimization and accessibility features, and performance is moderate. There is no evidence of HTTPS enforcement or advanced security headers, which weakens the security posture. The login form is present but lacks visible security enhancements such as CSRF tokens. Security evaluation reveals significant gaps including absence of HTTPS, missing security headers, and no visible privacy or cookie policies, indicating poor compliance with GDPR and modern security standards. The WHOIS data is unavailable, which raises concerns about domain legitimacy and trustworthiness. However, the website content is safe, non-adult, and focused on government-related software services. Overall, the site scores low to moderate on AI scoring metrics due to technical and security deficiencies. Strategic recommendations include implementing HTTPS, adding security headers, improving privacy compliance, enhancing login security, and modernizing the technical stack to improve trust and user experience.

The website www.domainmarkt.de/stadt-lueneburg.de operates as a domain marketplace specializing in the sale of premium domains, exemplified by the offering of stadt-lueneburg.de at a promotional price. The business is positioned as a niche reseller targeting German businesses and entrepreneurs seeking to establish a solid online presence through premium domain acquisition. The site is owned by nomino GmbH, a small-sized company operating in the real estate domain sector. Technically, the website employs legacy JavaScript libraries such as jQuery 1.11.0 and easySlider 1.7, with a basic CSS styling approach. The site demonstrates moderate performance and basic mobile optimization but lacks advanced accessibility and SEO features. Security posture is moderate; no HTTPS status is confirmed, and no security headers are detected, which presents an area for improvement. Privacy compliance is minimal, with a basic privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Overall, the site is functional and professional but would benefit from enhanced security and privacy practices to improve trust and compliance.

S

Sparkasse Uelzen Lüchow-Dannenberg

sparkasse-uelzen-luechow-dannenberg.de

65

Sparkasse Uelzen Lüchow-Dannenberg is a regional German savings bank offering a broad range of financial services including online and mobile banking, accounts, loans, investments, insurance, and real estate services. The website targets both private and business customers with a clear focus on accessibility and user support. The bank holds recognized certifications such as the BITV accessibility test and IHK quality seal, reinforcing its trustworthiness and market position. Technically, the website is built on Adobe Experience Manager CMS, utilizing modern web technologies like JavaScript and CSS, with good mobile optimization and accessibility features. The site employs HTTPS with a secure SSL configuration and includes cookie consent mechanisms compliant with GDPR. However, explicit security headers are not detected, indicating room for security enhancements. From a security perspective, the site demonstrates good practices such as session timeout warnings and secure forms but lacks publicly available security policies or incident response contacts. No vulnerabilities or suspicious domains were found. Analytics usage includes Google Universal Analytics with moderate user tracking and privacy compliance. Overall, the website is professional, trustworthy, and well-structured, suitable for its financial services audience. Strategic improvements in security headers and incident response transparency could further strengthen its security posture.

SAFETEC IT-SYSTEME Vertriebsgesellschaft mbH is a German-based company specializing in the sales, maintenance, and support of high-performance scanners and related hardware and software solutions. Established in 1999, the company emphasizes a strong customer service culture with nationwide support technicians and flexible maintenance contracts. Their business model focuses on B2B sales and after-sales services including repairs, training, and test device loans. The website reflects a professional and consistent brand presence targeting business customers in Germany. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern JavaScript libraries such as jQuery and MediaElement.js for enhanced user experience. The site is mobile-optimized with good SEO practices and basic accessibility features. Performance is moderate, with no major technical issues detected. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. From a security perspective, the site enforces HTTPS and uses secure forms with CSRF tokens. However, explicit HTTP security headers are not detected, and no public security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the content. The domain WHOIS data is minimal but consistent with the business claims, though lacking detailed registrant information. Overall, SAFETEC presents a trustworthy and professional online presence with solid privacy and security foundations. Strategic improvements could include publishing explicit security policies, adding security headers, and implementing a vulnerability disclosure process to further enhance trust and compliance.

L

Landkreis Harburg

landkreis-harburg.de

53

Landkreis Harburg operates as a regional government authority in Germany, providing a wide range of public services including administration, social services, education, environmental management, and tourism information. The website serves residents, businesses, and visitors with comprehensive information and digital services such as online appointment booking and service portals. The site is well-structured, professionally designed, and consistent with the branding of a government entity. Technically, the site uses a custom CMS (NOLIS), modern web technologies, and includes accessibility and SEO optimizations, though some accessibility features could be improved. Security posture is strong with HTTPS, security headers, and spam protection on forms, but lacks a visible cookie consent mechanism and vulnerability disclosure policy. Overall, the website is trustworthy and fulfills its role as a government information portal effectively.

D

Danish Business Authority

danishbusinessauthority.dk

59

The Danish Business Authority is a Danish government agency dedicated to facilitating and regulating business activities within Denmark. The website serves as an authoritative source for entrepreneurs, business owners, and international trade participants, offering services such as business registration guidance, export control information, and access to relevant business registers. The agency positions itself as a key enabler for business growth and compliance in Denmark, supported by a well-structured and content-rich website. Technically, the website is built on the Drupal CMS platform, employing modern web technologies including JavaScript and SVG icons. It demonstrates good mobile optimization, accessibility, and SEO practices. The site uses HTTPS with a good SSL configuration and includes a cookie consent mechanism compliant with GDPR standards. Analytics are conducted via Piwik Pro, with explicit user consent for cookies. From a security perspective, the website enforces HTTPS and employs cookie consent for tracking. However, it lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options, which are recommended to enhance security posture. No security policy or incident response contacts are published, which could be improved to increase transparency and readiness. Overall, the website is trustworthy, professional, and well-maintained, reflecting the official nature of the Danish Business Authority. The domain registration data supports its legitimacy with a consistent history and no privacy protection masking ownership. Strategic recommendations include enabling DNSSEC, publishing security policies, and implementing additional security headers to further strengthen the security posture.

E-Werk Kulturzentrum GmbH operates a prominent cultural center in Erlangen, Germany, with over 35 years of history. The organization hosts a wide range of cultural events, concerts, and community programs, positioning itself as one of the largest cultural venues in Germany. The website reflects this focus with detailed event programming and cultural content aimed at regional and national audiences interested in arts and culture. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and third-party services such as Cookiebot for consent management and Google/Facebook for analytics and marketing. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong, with comprehensive cookie categorization and GDPR-aligned consent. Overall, the site is trustworthy and professionally maintained, with no critical security or compliance issues detected.

The website represents a small non-profit cultural association named 'kleinkunst und Kulturverein Werne a.d. Lippe e. V.', focused on promoting local arts and cultural events in Werne, Germany. The site offers information about events, concerts, cinema, and community activities, targeting local culture enthusiasts. The business model is community-oriented, relying on event hosting and cultural promotion without commercial sales. Technically, the website is built using older technology (iWeb 3.0.4) with basic HTML, CSS, and JavaScript, lacking modern responsive design and accessibility features. The site does not demonstrate advanced SEO or performance optimization and appears to have moderate loading performance. Security posture is weak, with no evidence of HTTPS enforcement or security headers, and no visible incident response or security policies. Privacy compliance is minimal, with a basic privacy and terms page but no cookie consent mechanism. Overall, the site is functional for its purpose but requires modernization and security improvements.

T

treibsAND Lübeck

treibsand.net

44

treibsAND Lübeck is a well-established cultural and music collective based in Lübeck, Germany, operating since 2000. The organization focuses on hosting non-commercial music events, concerts, and parties with an emphasis on affordability and community engagement. Their website provides detailed event listings and promotes a diverse range of musical genres and cultural activities, targeting local music enthusiasts and alternative culture supporters. The business model is community-oriented and non-commercial, positioning treibsAND as a key local venue in the hospitality and media sectors.

R

Rockfield-Festival

rockfield-festival.de

54

Rockfield-Festival is a small regional event organizer hosting the Rockfield Festival 2024, a Woodstock-themed music festival in Ahaus, Germany. The website provides detailed event information, lineup, schedule, and contact phone number, targeting music fans and local attendees. The business model focuses on event promotion and ticket sales, leveraging social media channels for outreach. Technically, the site uses modern web technologies including React and the Chayns platform, hosted on Tobit infrastructure, delivering a moderate performance and good mobile experience. Security posture is adequate with HTTPS enforced but lacks visible security headers and formal privacy or cookie policies, indicating room for compliance improvements. Overall, the site is safe, family-friendly, and trustworthy for its purpose, though it would benefit from enhanced privacy and security disclosures.

S

Soulfood Cafe Simonz

cafe-simonz.de

9

Soulfood Cafe Simonz is a small hospitality business located in Wuppertal-Arrenberg, Germany, offering food, drinks, and cultural events including live music and private event hosting. The website provides clear contact information and event announcements, targeting local community members and visitors interested in dining and cultural experiences. Technically, the site is built on the IONOS MyWebsite platform, utilizing standard web technologies such as HTML5, CSS, JavaScript, and Facebook SDK for social integration. The site is served over HTTPS, ensuring secure connections, but lacks advanced security headers and formal privacy or cookie policies. Security posture is moderate with room for improvement in compliance and best practices. Overall, the website is functional, moderately optimized, and trustworthy for its business purpose.

K

Kulturelle Landpartie

kulturelle-landpartie.de

51

Kulturelle Landpartie operates as a non-profit cultural festival organizer in Northern Germany, focusing on self-organized cultural events in the Wendland region. The website serves as an information portal for visitors, providing event details, travel guidance, and accommodation options. The organization holds a strong regional presence as the largest cultural festival of its kind in Northern Germany. Technically, the website is built on a custom CMS (Wendnet KLP-CMS) and uses standard web technologies including HTML5, CSS, and jQuery 3.6.0. Hosting is provided by Schlund Technologies, a professional hosting provider. The site demonstrates moderate performance and basic mobile optimization, with good SEO practices and clear navigation. From a security perspective, the website lacks advanced security headers and explicit HTTPS confirmation in the provided data, though no critical vulnerabilities or exposed sensitive data were found. Privacy and cookie policies are present but basic, with no explicit consent mechanism. No incident response or security policy information is available, indicating room for improvement in security maturity. Overall, the website is functional, trustworthy, and serves its cultural community well, but could benefit from enhanced security measures, improved privacy compliance mechanisms, and more transparent contact information to strengthen user trust and regulatory adherence.

G

GoDaddy Operating Company, LLC

owned.xyz

71

The website forsale.godaddy.com/forsale/owned.xyz is a professional domain sales landing page operated by GoDaddy Operating Company, LLC, a leading domain registrar and aftermarket platform. It offers the premium domain owned.xyz for sale with a clear call to action, secure transaction assurances, and customer support. The site targets individuals and businesses seeking premium domain names to establish or enhance their online presence. The business model is focused on domain aftermarket sales and brokerage, leveraging GoDaddy's extensive market position and infrastructure. Technically, the site is built using modern web technologies including React with Next.js framework, served via GoDaddy's hosting infrastructure. It employs HTTPS with excellent SSL configuration, uses Google reCAPTCHA for form security, and integrates third-party trust signals such as Trustpilot. The site is optimized for performance, mobile responsiveness, and accessibility, providing a good user experience. From a security perspective, the site demonstrates strong practices such as HTTPS enforcement and secure form handling. However, explicit security headers are not detected in the provided data, and no dedicated security or incident response policies are linked on the landing page. No vulnerabilities or exposed sensitive data were found. Privacy compliance is supported by GoDaddy's comprehensive privacy and cookie policies, with GDPR compliance indicated. Overall, the domain is a subdomain of godaddy.com, explaining the absence of WHOIS data for the subdomain itself. The site is legitimate, professionally maintained, and trustworthy. Strategic recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and improving visibility of incident response contacts to further strengthen security posture and customer trust.

C

Conventus Congressmanagement & Marketing GmbH

dgina-kongress.de

10

The website dgina-kongress.de serves as the official portal for the 21st Annual Meeting of the Deutsche Gesellschaft für Notfallmedizin e.V. (DGINA) and the ICEM 2026 conference in Hamburg. It provides detailed event information, contact forms, and links to partner sites, targeting medical professionals and emergency medicine specialists. The site is professionally designed using TYPO3 CMS, with a clear structure and mobile optimization, supporting a positive user experience. Technically, it employs modern web technologies and integrates Matomo analytics for visitor tracking while maintaining GDPR compliance through a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and CAPTCHA protection on forms, though it lacks explicit security policies or incident response contacts. Overall, the domain registration aligns with the website content, indicating legitimacy and trustworthiness.

TreeTop GbR is a small German company specializing in IT and media production services, including software development for Apple Macintosh and Linux/UNIX platforms, technical documentation, and media production such as graphic, audio, and video content. The company targets businesses and professionals requiring tailored IT and media solutions. The website presents detailed service offerings but lacks modern web features and comprehensive contact or policy information. Technically, the site is basic with no detected CMS or advanced frameworks, and mobile optimization is poor. Security posture is weak due to lack of HTTPS and security headers, and no privacy or cookie policies are present, indicating limited GDPR compliance. Overall, the site is functional but would benefit from modernization and improved security and privacy practices.

H

HanseBelt e.V.

hansebelt.de

53

HanseBelt e.V. is a regional association focused on promoting the northern German region between Hamburg and Copenhagen, emphasizing economic development, cultural activities, and community engagement. The website serves as an information hub for residents, businesses, and potential members, offering news, events, and membership details. The organization positions itself as a key regional player facilitating networking and regional growth. Technically, the website is built on the GCMS platform, utilizing standard web technologies such as JavaScript, CSS, and jQuery. It is hosted on agency servers with a moderate performance profile and good mobile optimization. SEO and accessibility are adequately addressed, though some improvements could be made in accessibility features. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, explicit security headers and incident response policies are not publicly documented, representing an area for enhancement. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its target audience. Strategic improvements in security policies and technical headers would further strengthen its posture.

E

Elektrotechnische Werke Fritz Driescher & Söhne GmbH

driescher.de

47

Elektrotechnische Werke Fritz Driescher & Söhne GmbH is a well-established German company specializing in the development, production, and distribution of low and medium voltage switchgear and railway technology solutions. With over 100 years of history and ownership of 300 patents, the company holds a strong market position as a global leader in its sector. Their product portfolio is broad and modular, catering to diverse industrial and energy sector clients worldwide. The company operates primarily from Germany with additional facilities in the Czech Republic, emphasizing 'Made in Germany' quality standards. Technically, the website employs a modern but straightforward technology stack including jQuery, Owl Carousel, and PhotoSwipe for multimedia and UI enhancements. The site is mobile-optimized with good SEO practices and a cookie consent mechanism that aligns with GDPR requirements. However, no advanced CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site uses HTTPS and implements cookie consent with granular options, but lacks published security policies, incident response contacts, or vulnerability disclosure mechanisms. Security headers and advanced protections are not evident, suggesting room for improvement in security posture. The WHOIS data is consistent and supports the legitimacy of the domain and company identity. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving as a credible digital presence for a medium-sized industrial manufacturer. Strategic improvements in security transparency and technical enhancements could further strengthen their digital maturity and risk management.

K

Samlet guide til kultur, musik, teater og udstillinger - Find det hele på KultuNaut

kultunaut.dk

46

KultuNaut.dk is a Danish cultural event platform providing a comprehensive calendar for music, theater, exhibitions, and other cultural activities primarily in Denmark. The website offers multilingual support and allows users to search events by geography, genre, and date. It also supports event submissions and user ratings, positioning itself as a regional cultural aggregator. Technically, the site uses modern JavaScript libraries such as Leaflet for mapping and Pickaday for date selection, with a moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism but lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS data limits domain trust assessment, though the site content and structure suggest legitimacy. Overall, KultuNaut.dk serves its target audience effectively but would benefit from enhanced transparency and security practices.

B

Building Lab

building-lab.de

8

Building Lab is a small German company focused on construction and building technology services. The website is built on the Webflow platform and hosted via GoDaddy name servers, indicating a modern but small-scale digital infrastructure. The site features minimal textual content and primarily graphical elements, targeting construction professionals and technology adopters in the building sector. The market position appears niche and innovative within its industry. The technical infrastructure is moderate in performance and mobile optimization but lacks advanced security configurations and privacy compliance features. Security posture is basic with no detected security headers or incident response contacts, and no privacy or cookie policies are present. Overall, the website is accessible and safe but requires improvements in security and compliance to enhance trust and professionalism.

LAURYN v.o.s. is a Czech company specializing in the development and implementation of information systems tailored for spa, rehabilitation, and healthcare facilities. Their key offerings include the IS L-BIS and IS R-PLAN software suites, designed to support operational and clinical workflows in these specialized sectors. The company positions itself as a niche provider with a focus on the Czech healthcare market, emphasizing quality and service support. The website content is primarily in Czech and targets healthcare institutions such as spas, sanatoria, and rehabilitation centers. From a technical perspective, the website employs basic web technologies including HTML, CSS, and JavaScript, with Google Analytics integrated for visitor tracking. The hosting appears to be managed through Czech providers, consistent with the company's location. However, the site shows limited mobile optimization and accessibility features, and lacks modern frameworks or CMS platforms. Performance is moderate, with no critical errors detected. Security posture is currently weak due to the absence of HTTPS enforcement and missing security headers. While email obfuscation is implemented via JavaScript, there is no visible privacy or cookie policy, which raises compliance concerns especially under GDPR. No incident response or vulnerability disclosure information is provided. The domain registration data aligns well with the business profile, showing a consistent and legitimate presence since 2011. Overall, the website is functional and provides clear business information but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and protect user data effectively.

B

badenova AG & Co. KG

badenova.de

72

badenova AG & Co. KG is a well-established regional energy provider in Germany specializing in ecological energy solutions such as green electricity and biogas. The company targets both private and business customers, offering a range of services including tariff calculation, customer portals, and energy solutions for homes like photovoltaics and electric mobility. Their market position is supported by certified green energy tariffs and a strong emphasis on customer service and transparency. Technically, the website employs modern web technologies including JavaScript, CSS, and Google Tag Manager for analytics, alongside OneTrust for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS and uses secure forms with validation. Cookie consent mechanisms are in place, and no critical vulnerabilities or exposed sensitive data were detected. However, explicit security headers and incident response policies are not publicly disclosed, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. The domain registration data aligns with the business claims, indicating legitimacy. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and improving transparency around data protection officer contacts.

B

Burst Statistics B.V.

burst-statistics.com

76

Burst Statistics B.V. is a small technology company based in the Netherlands specializing in privacy-friendly analytics solutions for WordPress websites. Their flagship products, Burst Statistics and Burst Pro, provide website owners with real-time, GDPR-compliant insights without relying on third-party tracking or cookies. Positioned as a privacy-first alternative to Google Analytics, Burst targets bloggers, businesses, and agencies seeking transparent and local data ownership. The company is part of the reputable Team Updraft Family, enhancing its market credibility. Technically, the website is built on WordPress using modern plugins such as Gravity Forms and Easy Digital Downloads, with SEO optimized by Yoast SEO Premium. Hosting is managed via TransIP, and the site employs HTTPS with good SSL configuration. The site demonstrates good mobile optimization, accessibility, and performance, though DNSSEC is not enabled. The technical infrastructure reflects a mature digital presence suitable for a SaaS business model. From a security perspective, the site enforces HTTPS and avoids third-party tracking, aligning with its privacy claims. However, it lacks some security headers and does not publicly disclose a security policy or incident response plan. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong in practice but lacks explicit policy documentation and cookie consent mechanisms. Overall, Burst Statistics presents a trustworthy and professional online presence with a strong focus on privacy and user data protection. Strategic improvements in policy transparency and security headers would further enhance trust and compliance.

Fernwärme-Forschungsinstitut is a specialized German research institute focused on district heating technologies and related scientific research. The organization provides services including research projects, testing, certification, damage assessment, and consulting primarily targeting energy companies, municipal utilities, and industry professionals. The website is primarily in German with an English option, reflecting a regional and international audience in the energy sector. The business operates as a small entity with a niche market position in energy research. Technically, the website is built with basic HTML and CSS without advanced frameworks or CMS detected. The site is moderately performant but lacks modern optimizations such as mobile responsiveness and accessibility features. There are no visible analytics or tracking technologies, indicating minimal user tracking. The website lacks HTTPS information in the provided data, and no security headers or advanced security mechanisms are detected, which indicates room for improvement in security posture. From a security perspective, the site does not show evidence of security policies, incident response contacts, or vulnerability disclosure mechanisms. No cookie consent or privacy compliance features are present beyond a basic privacy policy page. The WHOIS data is consistent with the website content and domain legitimacy, showing professional DNS hosting and no privacy protection. Overall, the site is safe with no adult or questionable content but requires enhancements in security and privacy compliance to meet modern standards. The overall risk is moderate with no critical vulnerabilities detected but with notable gaps in security best practices and privacy compliance. Strategic recommendations include implementing HTTPS, adding security headers, deploying cookie consent mechanisms, and publishing incident response and vulnerability disclosure information to improve trust and compliance.

B

BASF SE

basf.eu

79

BASF SE is a leading global chemical company headquartered in Germany, with a long history dating back to 1865. The company focuses on profitable growth and creating value for society by providing innovative chemical solutions that support sustainability. Their website reflects a mature digital presence with comprehensive content aimed at industrial clients, partners, and stakeholders worldwide. The site is well-structured, professionally designed, and optimized for mobile devices, demonstrating a high level of digital maturity. Technically, the website uses modern frameworks such as Angular and a CMS platform (Magnolia), with good performance and accessibility standards. Security-wise, BASF employs HTTPS, robust security headers, and follows recognized standards like ISO 27001, indicating a strong security posture. Privacy and cookie policies are clearly presented with consent mechanisms, supporting GDPR compliance. Despite the absence of WHOIS registration details, the overall trustworthiness and legitimacy of the website are high, supported by consistent branding, certifications, and contact information. Strategic recommendations include maintaining regular security assessments, enhancing incident response automation, and continuing to improve privacy transparency to sustain trust and compliance.

R

RAV Armaturen GmbH

rav-valve.com

45

RAV Armaturen GmbH is a German manufacturer specializing in industrial valves, particularly safety-relevant ball valves used in sectors such as petrochemicals, gas industry, and pipeline construction. The company has a long-standing market presence since 1997 and targets industrial clients requiring high-precision valve solutions. Their website reflects a professional and consistent brand image with clear contact information and multilingual support (German and English). Technically, the website is built on standard HTML5, CSS, and JavaScript with jQuery 1.11.3. While the site is functional and moderately optimized for mobile, it lacks modern security features such as DNSSEC and security headers. No CMS or advanced frameworks are detected, indicating a relatively simple but stable infrastructure. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site uses HTTPS (assumed from domain but not explicitly confirmed in data), but lacks DNSSEC and security headers, which are recommended for enhanced protection. No cookie consent mechanism is present, which may impact GDPR compliance. The WHOIS data shows a consistent and legitimate domain registration with no privacy protection, appropriate for the business type. No incident response or vulnerability disclosure information is found. Overall, the website is trustworthy and professional but could improve its security posture and privacy compliance. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and updating JavaScript libraries to mitigate vulnerabilities.

K

KÄHLER Industrie-Armaturen GmbH

kaehler-armaturen.de

49

KÄHLER Industrie-Armaturen GmbH is a specialized supplier and service provider of high-quality industrial valves and fittings, primarily serving the energy, petrochemical, and industrial sectors in Germany. The company partners with reputable manufacturers such as Vexve to offer a broad portfolio of products including fully welded ball valves and hot tapping systems. Their business model focuses on B2B sales and comprehensive service offerings including installation training and maintenance support. The website reflects a professional and consistent brand image targeting industrial clients with clear contact channels and product information. Technically, the website is built on a modern stack likely using Shopware CMS, with integration of Google Tag Manager and cookie consent management via Cloud CCM19. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Performance is moderate with standard web technologies and lazy loading of images. From a security perspective, the site enforces HTTPS and uses consent management for analytics, but lacks explicit security headers and detailed security or incident response policies. No vulnerability disclosure or security.txt file is present, which could be improved to enhance trust and compliance. Privacy and cookie policies are not explicitly found, indicating a gap in GDPR compliance documentation. Overall, the website is trustworthy and professional with a solid business presence, but could benefit from enhanced privacy and security disclosures to improve compliance and user trust. Strategic improvements in security headers and policy transparency are recommended to strengthen the security posture.

B

Bayern Fernwärme

gorisek.net

58

Bayern Fernwärme is a small German company specializing in the insulation and re-insulation of district heating pipelines, operating primarily in Donaueschingen. The website presents a professional image with clear business descriptions and contact information, targeting property owners and businesses interested in cost-effective heating solutions. The company positions itself as a reliable local service provider with a focus on customer consultation and quality service. Technically, the website is built on the IONOS MyWebsite platform, utilizing standard web technologies such as HTML, CSS, and JavaScript. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. No advanced frameworks or analytics tools are detected, indicating a basic digital maturity level. From a security perspective, the site uses HTTPS but lacks important security headers and policies such as privacy and cookie notices, which are critical for GDPR compliance. The absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. No forms or data collection mechanisms are present, reducing immediate data protection risks but also limiting user engagement. Overall, the website is functional and professional but requires improvements in compliance, security best practices, and domain registration transparency to enhance trust and reduce risk.

I

ISOPLUS Group

isoplus.de

61

ISOPLUS Group is a large European manufacturer specializing in pre-insulated pipe systems for district heating, cooling, industry, solar thermal, bioenergy, agriculture, and CCS sectors. The company operates in over 30 countries with a workforce of approximately 1,600 professionals and is part of the Viessmann Generations Group. Their website is professionally designed, multilingual, and provides comprehensive information about their products, services, and corporate profile. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and integrates Google Analytics and Tag Manager for user tracking. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism, but lacks explicit security policies and incident response contacts. WHOIS data is privacy protected, which is justified for a business of this scale. Overall, the website demonstrates a mature digital presence with good privacy compliance and a strong business credibility profile.

B

Bayerischer Bauindustrieverband

bauindustrie-bayern.de

55

The Bayerischer Bauindustrieverband website serves as the official online presence of the Bavarian construction industry association. It provides comprehensive information about the association's activities, including member services, educational programs, events, and industry news. The site targets industry professionals, member companies, and prospective trainees, positioning itself as a key regional player in the construction sector. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and integrating external services for analytics and content delivery. Security posture is adequate with HTTPS and Content-Security-Policy headers, though additional security headers and privacy compliance mechanisms are recommended. Overall, the website is professional, well-structured, and trustworthy, with moderate technical performance and good user experience.

E

Energie-Wende-Garching GmbH

ewg-garching.de

61

Energie-Wende-Garching GmbH is a local energy provider based in Garching, Germany, specializing in sustainable district heating using geothermal energy. The company positions itself as a green energy supplier focused on reducing CO2 emissions and providing environmentally friendly heating solutions to residents and businesses in the Garching area. Their website reflects a professional and well-structured digital presence with clear navigation, comprehensive customer support portals, and detailed business information. Technically, the site employs modern web standards including Bootstrap for responsive design, JSON-LD structured data for SEO, and optimized media formats such as WebP images. Security posture is strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data, although formal security policies and vulnerability disclosures are absent. Overall, the website demonstrates a mature digital infrastructure aligned with the company's sustainable energy mission, fostering trust and credibility among its audience.

T

Tønder Kommune

toender.dk

69

Tønder Kommune operates as the official municipal government website for the Tønder region in Denmark, providing residents and stakeholders with access to municipal services, public information, and citizen support. The website is positioned as a local government authority, serving a medium-sized audience within the government sector. The digital presence is built on modern web technologies including Nuxt.js, with a focus on accessibility, mobile optimization, and SEO best practices. The site implements a comprehensive cookie consent mechanism aligned with GDPR requirements, reflecting a mature approach to privacy compliance. However, the absence of WHOIS data limits the ability to fully verify domain registration legitimacy. Security posture is moderate, with HTTPS implied but lacking explicit security headers and published security policies. Overall, the website presents a professional and trustworthy interface suitable for its governmental role.

Dineout.hr is an online platform focused on restaurant discovery and reservation services in Croatia. It offers users the ability to find excellent restaurants, book tables, and purchase tickets for culinary events and tasting menus. The platform targets a general audience interested in dining experiences and culinary events, positioning itself as a regional player in the hospitality sector. The website is built using modern web technologies such as React and Next.js and is hosted on DigitalOcean, indicating a contemporary and scalable technical infrastructure. The site includes standard marketing and analytics tools like Facebook Pixel and Google Tag Manager, supporting data-driven business decisions. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks visible security headers and explicit privacy or terms of service pages, which are recommended for compliance and trust. Overall, the website is professional and functional with moderate security posture and privacy compliance, suitable for a small-sized hospitality business.

F

Ferienwetter24

ferienwetter24.de

8

Ferienwetter24.de is a German-language website providing weather forecasts and related weather information, primarily targeting holiday and vacation weather in Germany. The site offers services such as weather prognoses and radar imagery, catering to a general audience interested in planning their holidays with accurate weather data. The business model appears to be advertising-supported, leveraging Google Adsense and Google Analytics for monetization and user tracking. The website is hosted on German infrastructure, consistent with its target market and language.