Security Directory

U

Umělá inteligence do škol

aidoskol.cz

38

The website 'Umělá inteligence do škol' is a Czech educational portal launched in 2023, dedicated to providing resources, training, workshops, and materials related to artificial intelligence for primary and secondary schools. It serves as a guide and aggregator for educators and students interested in AI education. The site is supported by several partner organizations, including prg.ai, digikoalice.cz, and aidetem.cz, indicating a collaborative ecosystem focused on AI literacy in education. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, hosted on a Czech hosting provider, and uses HTTPS with Google Analytics for tracking. Security posture is moderate with room for improvement in security headers and explicit policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional, content-rich, and trustworthy but should enhance compliance and security transparency.

Z

ZVEI e.V.

zvei.org

69

ZVEI e.V. is a prominent German industry association representing the electrical and digital industries. The organization positions itself as a leader in driving digitalization and technological progress within these sectors. Its website offers extensive content on industry topics, market data, and member services, targeting industry professionals and policymakers. The business model centers on advocacy, networking, and providing industry insights to its members. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and a consent-based analytics system (Matomo), reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, employs cookie consent mechanisms, and shows no evident vulnerabilities, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-structured, with a strong focus on compliance and user privacy. The lack of WHOIS data is mitigated by the site's evident legitimacy and privacy protection is justified for this type of organization.

U

Unternehmensverbände Handwerk Niedersachsen e.V.

handwerk-uhn.de

56

Unternehmensverbände Handwerk Niedersachsen e.V. is a regional peak association representing craft businesses and their member organizations in Lower Saxony, Germany. The website serves as an informational and organizational platform for members and stakeholders, providing contact details, organizational structure, and partnership information. The business operates as a non-profit entity focused on advocacy and support within the craft sector. Technically, the website is built on a German CMS platform (Verwaltungsportal) and utilizes common web technologies such as jQuery and Material Design Lite. The site is moderately performant, mobile-optimized, and accessible with clear navigation and professional design. Cookie consent mechanisms are implemented in compliance with GDPR requirements. From a security perspective, the site uses HTTPS (assumed from domain and no warnings), but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with a clear privacy policy and cookie consent banner. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements in security headers and incident response transparency would enhance the security posture further.

I

Influitive

influitive.com

72

Influitive is a well-established SaaS company founded in 2010, specializing in customer advocacy, engagement, and community platforms targeted at B2B companies. The company positions itself as a market leader with a comprehensive suite of services including customer advocacy, communities, experience, success, loyalty, and employee advocacy. Their website reflects a professional and consistent brand image with strong trust indicators such as industry awards and customer testimonials. Technically, the site is built on WordPress using the Divi theme, hosted on AWS infrastructure, and employs modern JavaScript libraries and marketing tools. The site is mobile-optimized and SEO-friendly, providing a good user experience.

I

Istituto Zooprofilattico Sperimentale della Lombardia e dell'Emilia Romagna – "Bruno Ubertini"

izsler.it

68

The Istituto Zooprofilattico Sperimentale della Lombardia e dell'Emilia Romagna (IZSLER) is a regional public health and veterinary research institute in Italy, specializing in animal health, food safety, and animal welfare. The website serves as an institutional portal providing news, scientific publications, training information, and territorial office locations. It targets veterinary professionals, researchers, and public health stakeholders. The business model is focused on public service and scientific research, with a strong regional presence and recognized expertise. Technically, the site is built on WordPress with modern frontend libraries such as Bootstrap Italia and Leaflet.js, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and formal privacy and terms documentation. Overall, the site is professional, trustworthy, and content-rich, though it could improve compliance and security transparency.

P

Polsko-Niemiecka Współpraca Młodzieży (PNWM)

szerpa-ezr.org

40

Szerpa is a specialized educational website focused on sustainable development education for youth, primarily targeting youth workers in Poland, Germany, and other countries. It is operated under the auspices of the Polsko-Niemiecka Współpraca Młodzieży (PNWM), a non-profit organization. The site offers educational content, methodologies, and project examples to support international youth meetings with a sustainability perspective. Technically, the website is built on WordPress with modern libraries and plugins, including multilingual support and privacy-conscious analytics via Matomo. The site is well-structured, mobile-optimized, and accessible, providing a good user experience. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and professionally maintained, with room for improvements in security and privacy transparency.

Elektro Fischer GmbH is a small regional company specializing in electrical engineering services including installations, switchgear construction, telephone systems, IT networks, and security technology in the Schwandorf area of Germany. The company emphasizes innovation and reliable craftsmanship, targeting both private and commercial customers locally. The website is built on TYPO3 CMS with a moderate technical stack including jQuery and Bootstrap, hosted by Alfahosting. The site is well-structured, mobile-optimized, and presents clear contact information and partner affiliations, indicating a stable business presence. Security posture is moderate with HTTPS usage but lacks advanced security headers and published policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in security and privacy transparency.

Dinter Gruppe operates in the electrical installation sector, providing electromontage and related electrical services primarily in Germany. The website presents a basic but functional digital presence with a modern frontend stack including Bootstrap and slick carousel. The use of Usercentrics for cookie consent indicates some level of GDPR compliance awareness. However, the absence of a privacy policy, terms of service, and contact information limits the website's transparency and trustworthiness. Security posture is moderate with HTTPS implied but no visible security headers or incident response information. Overall, the site is suitable for its business purpose but requires improvements in privacy, security, and contact transparency to enhance credibility and compliance.

A

Artsdatabanken

artsobservasjoner.no

58

Artsobservasjoner.no is a Norwegian government-affiliated non-profit platform operated by Artsdatabanken, serving as the largest species observation reporting system in Norway. It enables users to register sightings of all species in Norway, contributing to biodiversity knowledge and environmental awareness. The platform targets nature enthusiasts, researchers, and the general public interested in Norwegian flora and fauna. The website is well-branded, consistent, and supported by reputable partners and government funding, reflecting a strong market position in the environmental and biodiversity sector. Technically, the website employs a modern but custom-built infrastructure using common JavaScript libraries such as jQuery, Slick Carousel, and Google Analytics for tracking. It supports mobile optimization with a dedicated mobile site and uses Google Fonts for typography. The platform appears to be built on ASP.NET MVC or a similar framework, with moderate performance and basic accessibility features. SEO is basic but functional, with proper meta tags and Open Graph images. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks explicit security headers like CSP or HSTS in the HTML content. No sensitive data is exposed, and input validation is present for date fields. However, there is room for improvement in security best practices and privacy policy clarity. No incident response or vulnerability disclosure information is found. Overall, Artsobservasjoner.no is a trustworthy, well-maintained platform with good content quality and business credibility. It is safe for general audiences and fulfills its mission as a biodiversity data collection tool. Strategic improvements in security headers, privacy policy detail, and contact transparency would enhance its security posture and user trust.

Z

Zukunft Hanau

zukunft-hanau.de

49

Zukunft Hanau is a government-supported urban development and citizen engagement platform focused on the city of Hanau, Germany. It provides information on various projects, events, and initiatives aimed at improving urban life, digital transformation, and sustainability. The website targets local residents, stakeholders, and planners, promoting active citizen participation. Technically, the site is built on WordPress with modern plugins and frameworks such as Bootstrap and Yoast SEO, ensuring good performance, mobile optimization, and SEO compliance. Security posture is strong with HTTPS, cookie consent mechanisms, and security hardening plugins, though some security headers could be improved. Privacy compliance is robust with clear GDPR-aligned policies and cookie management. Overall, the site is professional, trustworthy, and well-aligned with its public sector mission.

V

Vlaams Instituut voor de Zee

kustportaal.be

58

The Kustportaal website is a professionally maintained government/research portal operated by the Vlaams Instituut voor de Zee, providing comprehensive spatial data and information related to the Belgian North Sea and coastal zone. It serves a diverse audience including coastal users, researchers, policymakers, and citizens interested in marine and coastal environments. The portal offers interactive and static map products, metadata downloads, thematic information, and supports citizen science initiatives such as CoastSnap. Technically, the site is built on Drupal 10 with modern web technologies, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies could be improved. Privacy compliance is strong, with clear privacy and cookie policies linked to the parent institute's domain. Overall, the site is trustworthy, well-branded, and fulfills its informational mission effectively.

Kirchliche Jugendarbeit Diözese Würzburg is a non-profit organization affiliated with the Bistum Würzburg, focusing on youth work, education, and faith formation within the diocese. The website serves as a portal for information on events, services, and contact details aimed at young people and church communities. The organization holds a stable regional position with clear branding and a consistent message aligned with its religious and educational mission. Technically, the website is built on TYPO3 CMS with modern frontend technologies and includes privacy-conscious analytics and consent management tools. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving its audience effectively.

K

Kolping International

kolping.net

51

Kolping International is a well-established Catholic social non-profit organization with a global presence, serving 400,000 members across 60 countries. The organization focuses on social projects including education, microcredits, rural development, and water access initiatives. The website is professionally designed using WordPress with multilingual support and SEO optimization, reflecting a mature digital presence. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but does not detract from the overall legitimacy suggested by the website content. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and clarifying domain registration details.

V

Verband der Unternehmerinnen in Deutschland e.V. (VdU)

vdu.de

56

Verband der Unternehmerinnen in Deutschland e.V. (VdU) is a well-established non-profit association founded in 1954, dedicated to representing and supporting women entrepreneurs across Germany. The organization advocates for increased female entrepreneurship, leadership roles for women, and improved economic conditions for women in business. Their services include advocacy, networking, mentoring, events such as the she succeeds award, and publications. The website reflects a mature digital presence built on TYPO3 CMS, with modern cookie consent management and a clear structure optimized for user experience and accessibility. Security posture is solid with HTTPS and cookie consent, though some security headers could be improved. The domain registration is consistent with the organization's profile, enhancing trustworthiness. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

Zu gut für die Tonne is a German government initiative aimed at reducing food waste through public education, tips, and campaigns. The website is professionally designed, content-rich, and targets the general public with a focus on sustainability and food preservation. Technically, it uses TYPO3 CMS with modern JavaScript libraries and implements a privacy-respecting Matomo analytics solution. Security posture is strong with HTTPS and cookie consent mechanisms, though some advanced security headers and explicit incident response policies are absent. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

B

Bundeszentrum Kita- und Schulverpflegung (NQZ)

gemeinsamgutessen.de

67

The website gemeinsamgutessen.de serves as the official platform for the Bundeszentrum Kita- und Schulverpflegung (NQZ), a government-affiliated initiative focused on improving the quality of nutrition in kindergartens and schools across Germany. It provides comprehensive information, resources, and networking opportunities for stakeholders involved in childcare and school meal provision. The site targets educators, parents, policymakers, and nutrition professionals, positioning itself as a trusted authority in this niche. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Slick Carousel for enhanced user experience. It employs Matomo analytics hosted on a controlled server, ensuring privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements a robust cookie consent mechanism aligned with GDPR requirements. While security headers are not explicitly detected, no vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contact suggests room for improvement in transparency and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively serves its public service mission with clear navigation, quality content, and user-centric features. Strategic recommendations include enhancing security headers, publishing a security policy, and establishing a vulnerability disclosure channel to further strengthen its security posture and stakeholder trust.

C

COMU Carl Orff Museum

co-mu.de

41

The COMU Carl Orff Museum website represents a well-structured, culturally focused institution dedicated to the life and work of composer Carl Orff. It serves a diverse audience including music enthusiasts, families, educators, and the international Orff community. The museum offers exhibitions, educational workshops, and community engagement programs, positioning itself as a unique cultural and educational hub in the Ammersee region of Germany. Technically, the site uses modern frameworks such as October CMS and Bootstrap, with integrated consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact information and active social media presence.

Beckerbillett GmbH is a well-established German company specializing in ticket printing, visitor management software, and related hardware solutions for cultural and leisure institutions. With over 75 years of history, it holds a strong market position in Germany, offering modular software, high-quality ticket printing, and comprehensive service including repair and 24-hour support. The company targets museums, theaters, zoos, cinemas, sports venues, and amusement parks, providing tailored solutions to simplify operations and enhance visitor experiences. Technically, the website uses modern frameworks like Bootstrap and jQuery, includes accessibility features, and implements cookie consent mechanisms, reflecting a mature digital presence. Security posture is good with HTTPS enforced and privacy compliance evident, though some security headers and explicit security policies are missing. Overall, the site is professional, trustworthy, and well-structured, with no signs of blocking or malicious content.

C

CVJM Deutschland

cvjm.de

49

CVJM Deutschland is a well-established non-profit Christian youth organization operating primarily in Germany with a global YMCA affiliation. The website serves as an information hub for youth aged 10 to 30, offering community, spiritual growth, volunteer opportunities, and sports activities. The organization maintains a strong social media presence and provides clear contact information and donation options. Technically, the site uses Ecics CMS with jQuery, Slick Carousel, and Matomo analytics, delivering a moderately performant and mobile-optimized experience. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks advanced security headers and published policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its mission.

D

Deutsch-Polnisches Jugendwerk / Polsko-Niemiecka Współpraca Młodzieży

sherpa-bne.org

42

The website sherpa-bne.org serves as an educational platform dedicated to Education for Sustainable Development (BNE), targeting youth and organizers involved in international youth encounters primarily between Germany and Poland. It is operated under the auspices of the Deutsch-Polnisches Jugendwerk and Polsko-Niemiecka Współpraca Młodzieży, reflecting a non-profit mission to promote sustainable and future-oriented youth exchanges. The platform offers thematic content, practical methods, and project examples to support sustainable development education in youth projects. Technically, the site is built on WordPress 6.8.3 with a modern tech stack including jQuery, Lightbox2, Slick Carousel, and WPML for multilingual support. It uses Matomo analytics, indicating a privacy-conscious approach to user tracking. The site is mobile-optimized and accessible, with good SEO practices and moderate performance. Hosting and domain registration are consistent and legitimate, with no signs of privacy protection or suspicious registrations. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and explicit security headers. There is no visible cookie consent mechanism or published security/incident response policies, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is moderate but could be enhanced with additional best practices. The overall risk assessment is low, with the site presenting a trustworthy, professional, and educational resource. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security policies to improve compliance and trust.

V

vkm Bayern

vkm-bayern.de

76

The vkm-Bayern website represents a regional non-profit union dedicated to church and diaconal employees in Bavaria, Germany. It focuses on advocating for fair wages, employee rights, and fostering a strong service community. The organization positions itself as a strong regional player within its niche, targeting employees in religious and social service sectors. The website content is professionally presented, with clear branding and consistent messaging aligned with its mission. Technically, the website is built on WordPress using Elementor and WooCommerce, indicating a mature digital infrastructure capable of supporting content management and e-commerce functionalities. Hosting is via AWS DNS services, ensuring reliable availability. The site implements GDPR-compliant cookie consent mechanisms and privacy policies, reflecting good digital maturity and regulatory adherence. Performance and mobile optimization are adequate, though accessibility features could be enhanced. From a security perspective, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data. However, it lacks publicly available security policies and incident response contacts, which are recommended for transparency and preparedness. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website is trustworthy and professionally managed, with room for improvement in security transparency and accessibility. Strategic recommendations include publishing a security policy, incident response contacts, and enhancing accessibility compliance to strengthen user trust and regulatory adherence.

M

MagicLine GmbH

magicline.com

74

MagicLine GmbH operates a comprehensive SaaS platform tailored for gym and fitness studio management, offering a wide range of features including lead management, training scheduling, payment processing, and integrations with industry partners. The company is positioned as a significant player in the fitness technology sector with over 8,000 customers worldwide and is a subsidiary of Sport Alliance GmbH. The website demonstrates a high level of professionalism, with excellent content quality, clear navigation, and strong branding consistency. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Tag Manager and StatusPal for status monitoring. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and a dedicated security problem reporting page, although some security headers could be improved. The absence of WHOIS data limits transparency but does not detract from the overall legitimacy of the business, which is supported by consistent business information, social media presence, and customer testimonials. Privacy compliance is well addressed with GDPR-aligned policies and cookie management. Overall, MagicLine GmbH presents a mature digital presence with a strong market position in gym management software, supported by a robust technical infrastructure and a proactive approach to security and privacy.

F

Fonds citoyen franco-allemand

fondscitoyen.eu

54

The Fonds citoyen franco-allemand is a non-profit organization dedicated to advising, networking, and financing projects that highlight Franco-German friendship and European cooperation. The website is professionally designed using Drupal CMS and modern front-end technologies, providing a good user experience and mobile optimization. The presence of Cookiebot for cookie consent and Google Tag Manager for analytics indicates a mature digital infrastructure. Security posture is solid with HTTPS and Cloudflare protection, although some security headers and policies could be improved. The lack of explicit privacy policy and contact information slightly reduces trust but overall the site appears legitimate and compliant with GDPR. Strategic recommendations include publishing clear privacy and security policies, adding contact details, and enhancing security headers.

E

EAF Berlin

eaf-berlin.de

51

EAF Berlin is an established independent non-profit organization based in Germany, specializing in promoting diversity, inclusion, and leadership development. With over 25 years of experience, it offers a range of services including trainings, consulting, research, mentoring, and workshops aimed at fostering equality and empowering individuals and organizations. The organization is well-positioned in its niche, leveraging a strong network across politics, business, and academia. The website reflects a professional and consistent brand image, targeting organizations and individuals interested in diversity and leadership.

E

The European Tracking Network | European Tracking Network

europeantrackingnetwork.org

58

The European Tracking Network is a specialized research network dedicated to tracking aquatic animals across Europe to support conservation and management efforts. The website serves as a platform for users, projects, and data sharing within this niche scientific community. It is positioned as a trusted and collaborative entity with a small but focused user base and extensive tracking deployments. Technically, the site is built on Drupal 10 with modern libraries and includes interactive maps and image sliders, indicating a moderate to good level of digital maturity. Security posture is generally good with HTTPS and cookie consent mechanisms, though there is room for improvement in DNS security and security headers. Privacy compliance is partial, with cookie consent but no visible privacy policy. Overall, the site is professional, trustworthy, and well-suited for its audience, with recommendations to enhance security and compliance documentation.

B

Bundesanstalt für Landwirtschaft und Ernährung

genres.de

61

The website www.genres.de is an official German government platform managed by the Bundesanstalt für Landwirtschaft und Ernährung (BLE), focusing on genetic resources and biodiversity. It serves as an information system providing access to databases, expert committees, international cooperation details, and news related to agrobiodiversity and forestry genetic resources. The site targets researchers, policymakers, and professionals in agriculture and forestry sectors, offering authoritative and structured content in German and English. Technically, the site is built on TYPO3 CMS with modern web technologies including jQuery and FontAwesome. It demonstrates good mobile optimization, accessibility, and SEO practices. The site is served over HTTPS with no detected blocking or WAF interference, indicating a secure and accessible infrastructure. However, some security headers are not explicitly detected, and no security.txt or vulnerability disclosure mechanisms are present. From a security and compliance perspective, the site enforces HTTPS and uses nonce attributes for scripts, but lacks a cookie consent mechanism and explicit contact information for incident response or data protection officers. The privacy policy is present and appears comprehensive, supporting GDPR compliance. No advertising or tracking scripts are detected, indicating minimal user tracking. Overall, the website is professional, trustworthy, and well-maintained, suitable for its governmental informational purpose. Strategic improvements include adding cookie consent, explicit contact details for security and data protection, and enhanced security headers to strengthen compliance and security posture.

B

Bundesanstalt für Landwirtschaft und Ernährung

bundesprogramm.de

62

The website www.bundesprogramm.de is an official German federal government platform managed by the Bundesanstalt für Landwirtschaft und Ernährung under the Bundesministerium für Ernährung und Landwirtschaft. It promotes the expansion of ecological agriculture and organic food production in Germany through funding, information dissemination, and research support. The site targets agricultural businesses, bio enterprises, researchers, and consumers interested in organic farming. The business model is a government-funded program providing grants and resources to support organic value chains. The site is well-branded, consistent, and trustworthy with official logos and links to related government portals. Technically, the website is built on TYPO3 CMS and uses modern web technologies including jQuery, FontAwesome, and Slick Carousel. It is hosted likely by ITZBund, a German federal IT service provider, and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly. Cookie consent is implemented via a modal, and privacy policies are comprehensive and GDPR compliant. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, it lacks explicit security headers and does not provide a public security policy or incident response contact. No vulnerabilities or suspicious elements were detected. The domain WHOIS data is consistent with the website's government affiliation, though detailed registrant info is limited. Overall, the site demonstrates a strong security posture appropriate for a government information portal. The overall risk is low, with no critical issues detected. Strategic recommendations include adding security headers, publishing a security policy, and providing vulnerability disclosure information to enhance transparency and trust.

The website www.leteckezazitky.sk offers aviation experience services across Slovakia, including hot air balloon flights, acrobatic flights, and pilot training experiences. It targets a general audience interested in unique aviation activities and gifts. The site uses modern web technologies such as Vue.js and Bootstrap, with Google Tag Manager integrated for analytics and marketing purposes. Hosting assets are served via DigitalOcean Spaces CDN, indicating a cloud-based infrastructure. Security posture is moderate but lacks critical elements such as security headers and explicit privacy and cookie policies. No contact information or incident response details are provided, which may impact user trust and compliance. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices.

S

Stadtverwaltung Maxhütte-Haidhof

maxhuette-haidhof.de

63

The website www.maxhuette-haidhof.de serves as the official digital presence of the city administration of Maxhütte-Haidhof, Germany. It provides comprehensive municipal information, including city council details, local events, urban planning, and citizen services. The site targets residents and visitors, offering online portals for administrative tasks such as registrations and permits. The business model is that of a local government entity focused on public service delivery. Technically, the site is built on the IKISS CMS platform, utilizing legacy but functional JavaScript libraries like jQuery and Slick Carousel. Hosting is provided by Hetzner, a reputable German hosting provider. Accessibility is enhanced through Eye-Able assistive technology scripts, and cookie consent mechanisms comply with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. No advanced analytics or advertising scripts are present, reflecting a privacy-conscious approach. Overall, the site is professional, trustworthy, and well-aligned with its government function.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

elternchancen.de

53

ElternChanceN is a German government-funded program under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend, focused on strengthening families through qualified parental guidance and educational support. The website serves as an information and resource hub for pedagogical professionals and families, offering program details, events, networking maps, and online offerings. It leverages modern web technologies including TYPO3 CMS and standard JavaScript libraries to deliver a responsive and accessible user experience. The site integrates Matomo analytics with anonymized tracking and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy standards.

D

Deutsch-Französischer Bürgerfonds

buergerfonds.eu

55

The Deutsch-Französischer Bürgerfonds website serves as an informational and funding platform dedicated to promoting Franco-German friendship and European cooperation through cultural and social projects. The organization operates as a non-profit entity, targeting German and French citizens and organizations interested in bilateral relations and European integration. The website content is professionally presented in German, with a French partner site linked, reflecting its bi-national focus. The business model centers on advising, networking, and financing relevant projects, positioning the organization as a niche player in the governmental and non-profit sector. Technically, the website is built on the Drupal CMS platform, utilizing modern front-end technologies such as Bootstrap, jQuery, and Google Tag Manager. Cookie consent is managed via Cookiebot, demonstrating compliance with EU privacy regulations. The site is mobile-optimized and exhibits good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected by EURid, which is typical for EU domains and justified for this type of organization. Overall, the domain and website appear legitimate and trustworthy. The overall risk assessment is low, with recommendations to improve security headers, publish privacy and terms documents, and provide clear contact information for security incidents. These steps would enhance compliance and trustworthiness further.

J

JCMM, z. s. p. o.

sockari.cz

49

The website sockari.cz serves as a regional educational support platform dedicated to high school students in the South Moravian Region of the Czech Republic who are engaged in the SOČ competition, a national expert work contest. Operated by JCMM, a non-profit organization, the site provides financial grants, mentoring, and informational resources to students, supervisors, and coordinators. The platform is well integrated with partner sites and offers a range of educational projects and career development tools. Technically, the site employs modern frontend technologies including Google Fonts, jQuery, and Slick Carousel, hosted on Forpsi servers with HTTPS enabled and Google Analytics for user tracking. Security posture is adequate but could be improved with additional security headers and explicit incident response policies. Privacy compliance is supported by a GDPR cookie consent banner and linked privacy policy. Overall, the site is professional, trustworthy, and well-targeted to its audience.

F

Figurentheater-Kolleg

ft-k.de

42

Figurentheater-Kolleg is a specialized educational institution based in Germany offering comprehensive training, courses, and workshops in the field of figurentheater, puppetry, and related performing arts. The website presents a professional and well-structured digital presence that effectively targets professionals and learners interested in these niche arts. Their offerings include foundational training, advanced courses, and various projects and events, positioning them as a niche leader in their sector. Technically, the website is built on a modern stack including Foundation 6, jQuery, GSAP animations, and the RapidWeaver CMS platform. It is hosted on German-based servers, ensuring regional consistency and likely good performance for its target audience. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. From a security perspective, the site uses HTTPS with good SSL configuration and includes privacy policy compliance with GDPR. However, it lacks some security headers and a cookie consent mechanism, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected, and the contact form includes anti-spam measures. Overall, the website is trustworthy, professional, and safe for general audiences. The domain registration data aligns with the website's geographic and business profile, supporting legitimacy. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing explicit security and incident response policies to further strengthen trust and compliance.

N

Niedersächsischer Landtag

landtag-niedersachsen.de

57

The Niedersächsischer Landtag website serves as the official online presence of the Lower Saxony state parliament in Germany. It provides comprehensive information about parliamentary functions, committees, events, and public participation opportunities. The site targets citizens, youth, and visitors interested in democratic processes and government transparency. The business model is that of a government institution focused on public service and information dissemination. Technically, the website is built on TYPO3 CMS, employs Matomo analytics configured with privacy considerations, and uses modern frontend libraries like Slick Carousel. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses privacy-respecting analytics. However, it lacks visible security headers, a cookie consent mechanism, and published security or incident response policies. No vulnerabilities or suspicious content were detected, indicating a solid security posture but with opportunities for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security best practices. Strategic recommendations include implementing cookie consent, adding security headers, and publishing security policies to enhance user trust and regulatory compliance.

V

VertiGIS

topographics.de

61

VertiGIS is a German-based technology company specializing in geospatial software solutions for sectors including utilities, infrastructure, telecommunications, and construction. The company recently integrated TOPO graphics into its portfolio, enhancing its product offerings such as the VertiGIS Data Converter and VertiGIS Studio. The website demonstrates a professional presence with clear branding and targeted content for business clients in relevant industries. Technically, the site is built on WordPress with modern plugins for SEO, cookie management, and user experience, delivering good performance and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and explicit policies could be improved. WHOIS data is unavailable, likely due to privacy protection, but the website's professionalism and compliance with GDPR indicate legitimacy. Overall, VertiGIS presents a credible and well-maintained digital presence aligned with its business objectives.

F

Fillauer

fillauer.com

65

Fillauer is a medium-sized healthcare company specializing in prosthetic and orthotic devices, serving both healthcare professionals and patients. The company has an established market presence since 1998 and operates an e-commerce platform built on WordPress and WooCommerce. The website employs modern technologies including jQuery, Font Awesome, and Google Tag Manager, indicating a moderate level of digital maturity. While the site is functional and professionally designed with good navigation and mobile optimization, it lacks visible privacy and cookie policies, which are critical for compliance and user trust. Security posture is adequate with HTTPS enabled and domain registration protections in place, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is safe and trustworthy but would benefit from enhanced privacy compliance and security best practices.

G

GenoHotel

genohotels.com

61

GenoHotel operates a group of business and conference hotels located in Germany, specifically near Cologne, Kassel, and Karlsruhe. The company emphasizes cooperative values such as community, openness, honesty, and trust, integrating these into their hospitality services. Their offerings include modern conference technology, hybrid event capabilities, wellness amenities, and dining options, targeting business travelers and corporate clients. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the website uses modern web technologies including Google Tag Manager for analytics, ConsentManager.net for cookie consent, and Slick Carousel for image sliders. The site is built on a CMS platform inferred as SiteHub and includes Google Maps integration. Performance and mobile optimization are good, though accessibility features are basic. The site enforces HTTPS and includes CAPTCHA on its contact form, enhancing security. Security posture is solid with encrypted connections and privacy compliance, including GDPR-aligned privacy and cookie policies. However, the absence of explicit security headers and published security policies or incident response plans indicates room for improvement. The WHOIS data is unavailable, which slightly reduces trust but the active, professional website and certifications like GreenSign support legitimacy. Overall, GenoHotel's digital presence is well-structured and trustworthy for its hospitality business, with recommendations to enhance security headers, publish security policies, and monitor domain registration status to strengthen trust and compliance.

A

Aktion West-Ost e.V.

aktion-west-ost.de

43

Aktion West-Ost e.V. is a small non-profit umbrella organization representing four Catholic youth associations within the BDKJ framework. The organization focuses on international youth work and political education aimed at fostering encounters and exchanges between Central and Eastern Europe. Their mission centers on overcoming East-West boundaries through personal contacts and shared experiences. The website reflects this mission with content in German and English, highlighting projects, publications, and social media engagement. Technically, the website is built on the ProcessWire CMS and leverages a modern JavaScript and CSS stack including jQuery, SlickNav, Slippry, and others to provide a responsive and user-friendly experience. Hosting is managed via kasserver.com, a known hosting provider. The site demonstrates moderate performance and basic SEO and accessibility features. From a security perspective, the site uses HTTPS (assumed), but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and security hardening. No incident response or vulnerability disclosure information is published. No sensitive data exposure or vulnerable libraries were detected in the provided content. Overall, the website is professional, trustworthy, and well-aligned with its non-profit mission. However, improvements in privacy compliance, security headers, and contact transparency would enhance its security posture and user trust.

The website kircheinbayern.de serves as an official informational platform for the Catholic Church in Bavaria, operated under the auspices of the Bistum Würzburg. It provides comprehensive information about dioceses, church programs, and community engagement, targeting the general public interested in religious content. The site is built on TYPO3 CMS with modern frontend technologies and integrates privacy-respecting analytics and consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site demonstrates a high level of professionalism and trustworthiness appropriate for a government/non-profit religious institution.

B

Bayerisches Staatsministerium für Ernährung, Landwirtschaft, Forsten und Tourismus

genussorte.bayern

71

Genussorte Bayern is a government-supported platform dedicated to promoting the culinary heritage and regional specialties of Bavaria. It serves as an informational and promotional resource for residents and tourists interested in exploring Bavarian food culture, events, and local producers. The website is professionally designed using WordPress and Elementor, featuring interactive maps, event calendars, video galleries, and recipe collections. It is backed by the Bavarian State Ministry for Food, Agriculture, Forestry and Tourism, lending it strong credibility and trustworthiness. Technically, the site employs a modern WordPress ecosystem with various plugins for event management, accessibility, and cookie consent. The site is well-optimized for mobile devices and accessibility, with good SEO practices and performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though HTTP security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie management system that aligns with GDPR requirements. The WHOIS data is privacy protected, which is typical for government-affiliated sites, and does not detract from the site's legitimacy. Overall, Genussorte Bayern presents a low-risk profile with a strong business and security posture, making it a reliable source for Bavarian culinary tourism information.

F

Frankenwald Tourismus

frankenwald-tourismus.de

46

Frankenwald Tourismus operates a regional tourism website focused on promoting the Frankenwald area in northern Bavaria, Germany. The site provides information on outdoor activities, accommodations, events, and regional highlights, targeting tourists interested in nature and active vacations. The business model centers on destination marketing and visitor engagement, with booking and event promotion services integrated. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Fancybox, and is hosted via Schlund Technologies. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is adequate with HTTPS enabled, but lacks visible security headers and explicit privacy or cookie policies. Contact information is available primarily via phone numbers linked in news articles and implied contact pages. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

D

Diakonie Katastrophenhilfe

diakonie-katastrophenhilfe.de

65

Diakonie Katastrophenhilfe is a well-established German non-profit humanitarian aid organization with over 70 years of experience supporting people affected by natural disasters, war, and displacement worldwide. The organization operates numerous projects globally, focusing on disaster relief, reconstruction, and preventive measures. Their website reflects a strong commitment to transparency, featuring recognized certifications such as the DZI-Spendensiegel and partnerships with reputable networks like Brot für die Welt and Act Alliance. The target audience includes donors, churches, NGOs, and the general public interested in humanitarian aid. Technically, the website is built on TYPO3 CMS and employs modern web technologies including Google Tag Manager for analytics, Sentry for error monitoring, and Usercentrics for consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Performance is moderate, with good mobile responsiveness and clear navigation. From a security perspective, the site enforces HTTPS and uses consent management to comply with GDPR. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the organization's identity, showing no privacy protection and reputable name servers, supporting the domain's legitimacy. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable platform for donors and stakeholders. Strategic improvements could include publishing detailed security policies and incident response information to enhance security posture and stakeholder confidence.

D

digitalfabriX GmbH

digitalfabrix.de

69

digitalfabriX GmbH is a German-based company specializing in digital solutions for public administrations, municipalities, and government entities. The company offers a range of services including digital transformation consulting, custom software development, process automation, and digital future strategies. With over 20 years of experience and more than 1000 public sector customers, digitalfabriX holds a strong market position in the government technology sector. Their website reflects a professional and consistent brand image targeting public sector clients. Technically, the website is built on the Umbraco CMS platform and leverages modern web technologies such as jQuery, Bootstrap, and Matomo analytics. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Cookie consent and privacy compliance mechanisms are well implemented, reflecting GDPR adherence. The site uses HTTPS with excellent SSL configuration, though security headers could be improved. From a security perspective, the website shows good practices including HTTPS enforcement, anti-CSRF tokens in forms, and no visible vulnerabilities or exposed sensitive data. However, there is no explicit security policy or incident response information published, and no vulnerability disclosure or security.txt file is found. The domain WHOIS data aligns well with the website content, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, serving a specialized niche in public sector digitalization. Strategic improvements in security headers and transparency around security policies could further enhance trust and security posture.

S

SEH Engineering GmbH

seh-engineering.de

62

SEH Engineering GmbH is a medium-sized German engineering and manufacturing company specializing in steel construction, bridge building, and related services. The company operates multiple subsidiaries and offers a broad portfolio of products and services including steel bridge construction, steel building construction, reconstruction, system bridges, conveyor technology, and corrosion protection. The website is professionally designed using TYPO3 CMS and modern frontend libraries, providing a good user experience with clear navigation and mobile optimization. Privacy compliance is well managed with Cookiebot for cookie consent and Matomo for analytics, reflecting a strong commitment to GDPR compliance. Security posture is adequate with HTTPS and consent management but lacks explicit security policies and headers. Overall, the domain registration and website content are consistent and trustworthy, indicating a legitimate and established business.

S

Stadt Frankfurt am Main - Der Magistrat | Kulturamt Frankfurt am Main

museumsuferfrankfurt.de

46

Museumsufer Frankfurt is a prominent cultural institution managed by the city government of Frankfurt am Main, Germany. It serves as a comprehensive portal for 39 museums, offering detailed information on exhibitions, events, ticketing options, and cultural programs. The website targets a broad audience including local residents, tourists, and cultural enthusiasts, positioning itself as a leading museum hub in the region. The business model focuses on cultural promotion and public engagement through digital means, supported by official city administration. Technically, the website employs a modern tech stack including Bootstrap for responsive design, jQuery, Slick Carousel for interactive elements, and Klaro for cookie consent management. It integrates Matomo analytics to monitor visitor behavior while respecting privacy. The site is well-optimized for mobile devices and accessibility, with clear navigation and multilingual support. Performance is moderate, with scope for further optimization. From a security perspective, the site uses HTTPS and implements a robust cookie consent mechanism. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the official city infrastructure, confirming legitimacy. Overall, Museumsufer Frankfurt presents a professional, trustworthy, and user-friendly digital presence for a government cultural institution. Strategic improvements in security headers and incident response transparency would further strengthen its security and compliance profile.

W

Weltkulturen Museum

weltkulturenmuseum.de

43

The Weltkulturen Museum website represents a well-established non-profit cultural institution in Germany focused on world cultures, exhibitions, research, and educational programs. The site provides clear navigation and relevant content aimed at a general audience interested in cultural heritage and museum events. The museum leverages modern web technologies including Matomo analytics configured for privacy, and a cookie consent mechanism to comply with GDPR requirements. Hosting is provided by a German provider (1blu), consistent with the museum's location and audience. From a security perspective, the website enforces HTTPS and uses privacy-respecting analytics, but lacks explicit security headers and published security policies or incident response contacts. No critical vulnerabilities or suspicious WHOIS patterns were detected, indicating a trustworthy domain and hosting environment. Privacy and cookie policies are present and implemented with user consent, supporting compliance with European data protection laws. Overall, the website demonstrates good technical maturity and business credibility for a cultural institution, with room for improvement in security header implementation and formal security documentation. The absence of direct contact emails or phone numbers on the homepage suggests contact details may be located deeper in the site or handled via forms. The site is safe for general audiences with no adult or questionable content detected.

E

Erzbistum München und Freising

erzbistum-muenchen.de

51

Erzbistum München und Freising is a large, established religious non-profit organization serving the Catholic community in the Munich and Freising region of Germany. The website provides comprehensive information about religious services, spiritual guidance, educational programs, and social support initiatives. It targets a general audience including families, youth, and adults interested in Catholic life and community activities. The organization maintains a consistent and professional online presence with clear branding and well-structured content.

B

Bundesanstalt für Landwirtschaft und Ernährung (BLE)

ble.de

59

The Bundesanstalt für Landwirtschaft und Ernährung (BLE) is a German federal government agency focused on agriculture, nutrition, market organization, rural development, fisheries, climate, and sustainable consumption. It serves a broad audience including agricultural practitioners, consumers, authorities, and project funders. The website provides comprehensive information, project funding details, and various services, positioning BLE as a key governmental player in the agricultural sector in Germany. Technically, the site is built on the Government Site Builder CMS, featuring responsive design, good accessibility, and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. The site uses Matomo analytics with user consent, ensuring privacy compliance. Overall, the website is professional, trustworthy, and well-aligned with its governmental mission.

J

Joseph-Stiftung

joseph-stiftung.de

55

Joseph-Stiftung is a well-established, church-affiliated real estate organization operating primarily in Bavaria and Saxony, Germany. With over 75 years of experience, it focuses on providing affordable and socially responsible housing solutions, including rental apartments, student housing, and property management services. The organization emphasizes sustainability and integrates economic, ecological, and social dimensions into its operations. Technically, the website is built on WordPress with modern frameworks and libraries, offering good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a broad audience including families, students, and property owners.

E

Evangelisches Bildungswerk Oberfranken-Mitte e.V.

ebw-oberfranken-mitte.de

41

Evangelisches Bildungswerk Oberfranken-Mitte e.V. is a regional non-profit organization focused on adult education within the evangelical community in the Oberfranken-Mitte region of Germany. The website serves as a platform to present their educational programs, projects, and events, targeting adults and church communities. The organization holds a recognized position in the regional education sector with a clear evangelic profile and offers a variety of services including seminars, exhibitions, and newsletters. Technically, the website is built on WordPress with modern front-end technologies such as Tailwind CSS and jQuery-based libraries like Slick Carousel and GLightbox. Accessibility is enhanced through the integration of Eye-Able tools, and the site is mobile-optimized with good SEO practices. Performance is moderate, and the site uses HTTPS with a valid SSL configuration, ensuring secure communication. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in the HTML. However, it lacks several security headers and does not provide a security policy or incident response contact information. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present. No vulnerabilities or malicious content were detected. Overall, the website is trustworthy and professional, with a strong business credibility score. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, publishing a security policy, and enhancing incident response readiness to improve compliance and security posture.