Security Directory

L

Landratsamt Aichach-Friedberg

lra-aic-fdb.de

51

Landratsamt Aichach-Friedberg is a German local government authority providing administrative and public services to residents of the Aichach-Friedberg district. The website serves as an informational and service portal, targeting local citizens and visitors. The organization positions itself as a modern service provider with a focus on customer-oriented digital presence. Technically, the site is built on WordPress using the Divi theme and several plugins including Modern Events Calendar Lite and Yoast SEO, hosted on AWS infrastructure. The site employs Matomo analytics with user opt-out and a GDPR-compliant cookie consent mechanism, reflecting a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent in place, though some security headers and explicit security policies are missing. Overall, the site is professional, trustworthy, and well-aligned with its government function, but could improve transparency by publishing privacy and security policies and enhancing accessibility. The domain registration and hosting details are consistent with the official nature of the site, supporting its legitimacy.

K

kowerk - Markenagentur

kowerk.de

48

kowerk is a German full-service brand agency specializing in digital branding, content creation, web design, film, and photo production. Founded in 2022, the company positions itself as a creative partner for businesses seeking to build distinctive and visible brands. The website reflects a professional and consistent brand image, targeting businesses looking for comprehensive branding solutions. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and analytics tools such as Google Analytics, Facebook Pixel, and Matomo. The hosting is managed via kasserver.com, and the site employs cookie consent mechanisms compliant with GDPR. Security posture is solid with HTTPS and consent management, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy and well-maintained, with room for improvement in privacy and security transparency.

Z

Zoll (German Customs)

zoll-karriere.de

61

The website www.zoll-karriere.de serves as the official career portal for the German Customs (Zoll) administration, providing comprehensive information about career paths, training, dual studies, and application procedures. It targets students and prospective applicants interested in government employment within the Zoll sector. The site is authoritative and well-positioned as a government resource, supported by the Federal Ministry of Finance. Technically, the site is built on the Government Site Builder CMS, uses modern web technologies including HTML5, CSS3, JavaScript, and integrates accessible video players and a self-hosted Matomo analytics platform, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response contacts are not evident. Overall, the site is professional, trustworthy, and privacy-conscious, with no signs of suspicious activity or vulnerabilities.

A

AYGOnet GmbH

aygonet.de

55

AYGOnet GmbH operates a specialized web-based software platform for online counseling, offering flexible digital consultation solutions including mail, chat, and video modules. The company serves over 1500 counselors across Germany, emphasizing secure, personalized, and accessible counseling independent of time and location. Their market position is solid within the niche of digital counseling software, with continuous development since 2000. Technically, the website is built on TYPO3 CMS, integrates Matomo for analytics, and is hosted on servers with German nameservers, indicating local hosting. The site is mobile-optimized and accessible, with good SEO practices. Security posture is strong, featuring end-to-end encryption, server location in Germany, two-factor authentication, and automated data deletion, though some security headers could be improved. Privacy compliance is robust, with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the website projects professionalism, trustworthiness, and a clear business focus on secure online counseling services.

S

Sparkasse Vest Recklinghausen

vesterleben.de

55

Vesterleben is a regional digital magazine and information portal serving the Vest region in Germany. It provides local news, event listings, and community engagement content, supported by reputable local institutions including Sparkasse Vest Recklinghausen, Diakonie Recklinghausen, Hertener Stadtwerke, and RDN-Verlag. The website targets residents and visitors interested in regional culture, social events, and local initiatives. The business model is based on regional media publication with digital content and downloadable print editions, positioning itself as a trusted local information source.

V

Vest Erleben

vest-erleben.de

55

Vest Erleben is a regional media platform serving the Vest Recklinghausen area in Germany, providing local news, event information, and community engagement. The website is supported by a consortium of local institutions including Sparkasse Vest Recklinghausen, Diakonie Recklinghausen, Hertener Stadtwerke, and RDN-Verlag, positioning it as a trusted source for regional content. The platform targets residents and visitors interested in cultural, social, and economic developments within the region. Technically, the website is built on WordPress with modern enhancements such as ElasticPress for search, Matomo for analytics, and responsive design elements ensuring good mobile usability. The site uses HTTPS and includes basic security practices like CSRF tokens, but lacks some advanced security headers and explicit cookie consent mechanisms. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site demonstrates a reasonable posture with encrypted connections and no visible vulnerabilities or exposed sensitive data. However, it could improve by implementing security headers, publishing incident response contacts, and adding a vulnerability disclosure policy. Privacy compliance is partially addressed with a privacy policy present, but cookie consent mechanisms are missing despite tracking usage. Overall, Vest Erleben is a credible and professionally maintained regional media website with solid business credibility and technical infrastructure. Strategic improvements in privacy compliance and security transparency would enhance trust and regulatory adherence.

The Zoll-Portal is an official German government website operated by the Generalzolldirektion, providing digital customs services to private individuals, businesses, and authorities. It offers secure login options including ELSTER, BundID, Online-Ausweis, and Zoll-Ident, facilitating online applications and registrations related to customs. The portal is well-positioned as the authoritative digital gateway for customs services in Germany, targeting a broad audience with a focus on accessibility and user-friendly design. Technically, the website employs a mature JavaServer Faces framework with PrimeFaces components and jQuery, hosted likely on government infrastructure. It integrates Matomo analytics with explicit user consent mechanisms, demonstrating a commitment to privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a modern and professional digital presence. From a security perspective, the portal enforces HTTPS with secure cookie attributes, session timeout warnings, and consent-based tracking. No vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not published, and a vulnerability disclosure mechanism is absent, representing areas for improvement. Overall, the Zoll-Portal is a trustworthy, secure, and compliant government service platform with strong business credibility and technical implementation. Strategic enhancements in transparency around security policies and incident handling would further strengthen its posture.

G

G DATA Software, Inc.

gdata-software.com

75

G DATA Software, Inc. is a well-established cybersecurity company specializing in antivirus and internet security solutions for both private users and businesses. Founded in 1987, the company emphasizes German quality and advanced AI technologies to protect against cyber threats. Their market position is supported by multiple industry awards and certifications, including Microsoft Azure certification and Virus Bulletin recognition. The website reflects a professional and comprehensive digital presence with multilingual support and a clear business model based on software sales and subscription services. Technically, the site is built on TYPO3 CMS and integrates modern analytics and consent management tools, ensuring good performance, mobile optimization, and SEO. Security posture is strong with HTTPS enforcement and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with detailed policies and cookie consent mechanisms. The absence of WHOIS data is a notable gap but does not detract significantly from the overall trustworthiness given the professional presentation and consistent branding. Overall, the website and business demonstrate a mature and credible cybersecurity provider with a solid digital infrastructure and customer support.

G

G DATA CyberDefense AG

gdata.ch

81

G DATA CyberDefense AG is a well-established German cybersecurity company providing comprehensive IT security solutions including managed detection and response, endpoint security, and security awareness training. The company targets a broad audience ranging from small businesses to large enterprises and public sector organizations, emphasizing 'Made in Germany' quality and compliance. Their market position is strong, supported by multiple certifications and industry awards. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is robust with ISO 27001 certification and managed incident response services, though some improvements in security headers and vulnerability disclosure transparency are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations, offering a positive user experience and clear business credibility.

G

G DATA CyberDefense AG

gdata.at

78

G DATA CyberDefense AG is a well-established cybersecurity company providing comprehensive IT security solutions and managed services primarily targeting businesses and private customers in Austria and Germany. Their offerings include managed detection and response (MXDR), endpoint security software, security awareness training, OEM solutions, and incident response services. The company emphasizes 'Made in Germany' IT security, underscored by their ISO 27001:2022 certification and multiple industry awards, positioning them as a trusted leader in the cybersecurity market. The website is professionally designed, mobile-optimized, and rich in relevant content, supporting a strong digital presence. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and integrates consent management and analytics tools responsibly. Security posture is robust with HTTPS, security best practices, and clear incident response contact channels. However, WHOIS data is unavailable, which limits domain registration trust verification but is offset by strong business and security indicators. Overall, the site reflects a mature, secure, and trustworthy cybersecurity provider with a strong focus on compliance and customer support.

G

G DATA CyberDefense AG

gdata.be

75

G DATA CyberDefense AG is a well-established cybersecurity company with a history dating back to 1987, specializing in antivirus and comprehensive IT security solutions for both businesses and individual consumers. The company emphasizes its German cybersecurity heritage and offers a broad portfolio including antivirus software for multiple platforms, VPN services, and security awareness training. The website reflects a professional and consistent brand image with multiple industry awards and certifications, reinforcing its market credibility. Technically, the site is built on TYPO3 CMS and integrates modern analytics and consent management tools, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy compliance evident, though explicit security headers and incident response contacts could be improved. Overall, the domain WHOIS data is privacy-protected but consistent with the company's regional focus. The website is accessible without WAF blocking, providing a trustworthy and user-friendly experience.

G

G DATA CyberDefense AG

gdata.nl

72

G DATA CyberDefense AG is a well-established cybersecurity company with over 35 years of experience, specializing in antivirus and comprehensive IT security solutions for both consumers and businesses. The company emphasizes German quality and innovation, offering a broad portfolio including antivirus software for multiple platforms, VPN services, and security awareness training. Their market position is strong, supported by multiple independent awards and certifications. The website reflects a mature digital presence with multilingual support and active content channels such as blogs and newsrooms. Technically, the site is built on TYPO3 CMS and integrates modern consent management and analytics tools, ensuring GDPR compliance and user privacy. Security posture is robust with HTTPS enforcement and use of trusted third-party services, although explicit security headers could be better documented. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms domain legitimacy and consistency with business claims.

G

G DATA CyberDefense AG

gdata.it

72

G DATA CyberDefense AG is a well-established cybersecurity company founded in 1987, specializing in antivirus and internet security solutions for both consumers and businesses. The company leverages advanced AI technologies and offers a broad portfolio including antivirus software for Windows and Mac, mobile security, VPN services, and security awareness training. Their market position is strong, supported by multiple industry awards and certifications, and a global presence with localized websites. Technically, the website is built on TYPO3 CMS with modern JavaScript frameworks and integrates consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is robust with HTTPS, security headers, and consent mechanisms, although explicit security policy and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR, with a high AI score reflecting quality and security maturity.

G

G DATA CyberDefense AG

gdata.fr

74

G DATA CyberDefense AG is a well-established cybersecurity company with a history dating back to 1987, specializing in antivirus and internet security solutions for both individual consumers and enterprises. The company offers a broad portfolio including antivirus for Windows and Mac, internet security suites, mobile security for Android and iOS, VPN services, and security awareness training. The website is professionally designed, multilingual, and targets a European audience with a strong presence in France. Technically, the site runs on TYPO3 CMS and integrates modern consent management and analytics tools, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses consent mechanisms for privacy compliance, though explicit security headers and incident response contacts could be improved. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, but the website's trust signals and certifications support its legitimacy.

G

G DATA CyberDefense AG

gdatasoftware.co.uk

75

G DATA CyberDefense AG is a well-established cybersecurity company founded in 1987, specializing in antivirus and comprehensive IT security solutions for both private users and businesses. The company emphasizes German quality and innovation, offering products such as antivirus software for Windows and Mac, internet security suites, VPN services, and mobile security applications. Their market position is supported by multiple industry awards and certifications, including Microsoft Azure certification and Virus Bulletin accolades. The website reflects a professional and consistent brand image targeting a broad audience with a focus on security and privacy.

G

G DATA CyberDefense AG

gdatasoftware.com

77

G DATA CyberDefense AG is a well-established cybersecurity company founded in 1987, specializing in antivirus and comprehensive IT security solutions for both private users and businesses. The company emphasizes German quality and has a strong market presence supported by multiple awards and independent test recognitions. Their product portfolio includes antivirus software for Windows and Mac, internet security suites, mobile security for Android and iOS, VPN services, and security awareness training. The website is professionally designed, multilingual, and targets a broad audience including private consumers and enterprises. Technically, the website is built on TYPO3 CMS and integrates modern technologies such as ConsentManager for cookie compliance, Matomo and Google Analytics for tracking, and Google Tag Manager for marketing. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security headers are not detected. No direct contact emails or phone numbers are published, with contact primarily via web forms. The WHOIS data for the domain www.gdatasoftware.com is unavailable, which raises some transparency concerns. However, the website content, branding, and external references strongly support the legitimacy of the business. No signs of WAF blocking or content restrictions were detected. Privacy and cookie policies are comprehensive and GDPR compliant. No adult or questionable content is present, making the site safe for general audiences. Overall, G DATA CyberDefense AG demonstrates a mature digital presence with strong business credibility and security awareness. The main risks relate to the lack of WHOIS transparency and absence of explicit security headers and incident response contacts. Addressing these gaps would further enhance trust and security posture.

A

Home | abfallberatung.de

abfallberatung.de

46

The website abfallberatung.de serves as an informational platform focused on public waste disposal authorities across Germany. It provides a comprehensive directory of municipalities and their respective waste management resources, targeting German citizens and local government entities interested in waste disposal and recycling. The business model is primarily informational and non-commercial, positioning itself as a niche resource within the government and non-profit sectors. The site uses Joomla CMS with modern frameworks like Bootstrap and includes Matomo analytics configured to disable cookies, reflecting a moderate level of digital maturity. Technically, the website employs a standard Joomla-based infrastructure with SP Page Builder and Helix Ultimate template, ensuring responsive design and moderate performance. The site is mobile-optimized and has basic SEO and accessibility features. Security posture is adequate with HTTPS enabled and no visible exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is minimal, with no explicit privacy or cookie policies found, which is a notable gap. Overall, the security posture is moderate with room for improvement in security headers, privacy policies, and vulnerability disclosure mechanisms. The domain registration data aligns well with the website's purpose and content, indicating legitimacy. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, enhancing security headers, adding a security.txt file, and improving accessibility and SEO practices to strengthen trust and compliance.

L

Land Brandenburg / Lausitz

lausitz-brandenburg.de

42

The website lausitz-brandenburg.de serves as the official governmental portal for the Lausitz region within the state of Brandenburg, Germany. It provides comprehensive information about regional development initiatives, funding programs, and strategic plans such as the Lausitzprogramm 2038. The site is managed under the auspices of the Brandenburg state government with clear leadership and coordination roles defined. The target audience includes residents, partners, and stakeholders interested in the structural transformation of the Lausitz region. Technically, the site is built on WordPress 6.8.1 using the Fusion Builder framework and integrates Matomo analytics for privacy-conscious user tracking. Hosting appears to be managed by a German hosting provider consistent with the domain's nameservers. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, explicit security headers are not detected, and no formal security or incident response policies are published. Privacy compliance is strong, with a clear privacy policy and cookie consent mechanism linked to official Brandenburg government resources. Overall, the website presents a low-risk profile with high trustworthiness due to its official government status, consistent WHOIS data, and transparent contact information. Strategic recommendations include enhancing security headers, publishing incident response policies, and maintaining up-to-date software to sustain security posture.

B

Berufsverband der Datenschutzbeauftragten Deutschlands (BvD) e.V.

bvdnet.de

57

The Berufsverband der Datenschutzbeauftragten Deutschlands (BvD) e.V. is a well-established German non-profit professional association founded in 1989, representing approximately 2,000 data protection professionals from companies and public authorities. The organization provides networking, education, consulting, and advocacy services focused on data protection and compliance with digital transformation challenges. Their market position is strong as a leading association in the German data protection community, offering events, publications, and member benefits. Technically, the website is built on WordPress with modern JavaScript libraries and uses Matomo analytics configured for privacy. The site is well-structured, mobile-optimized, and professionally designed, supporting a positive user experience. Security posture is good with HTTPS and privacy-conscious analytics, though it lacks explicit cookie consent and published security policies. Overall, the site is trustworthy and credible, with clear contact information and transparent business operations.

L

lindenpartners PartmbB

lindenpartners.eu

54

lindenpartners PartmbB is a German law firm specializing in sustainability and ESG-related legal services, including corporate law, finance, banking, capital markets, and dispute resolution. The firm targets corporate clients, financial institutions, and public sector entities with a focus on integrating ESG compliance into legal frameworks. The website reflects a professional and consistent brand image with detailed service offerings and recognized market positioning through inclusion in legal rankings such as JUVE and Legal 500. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, supported by Matomo analytics for privacy-conscious tracking. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and formal policies are missing. Overall, the site is trustworthy and well-structured but lacks explicit privacy and cookie policies, which are critical for GDPR compliance.

S

Stiftung Naturschutzfonds Brandenburg

life-bachmuschel.de

51

Stiftung Naturschutzfonds Brandenburg operates as a non-profit environmental conservation organization focused on protecting the Bachmuschel (freshwater mussel) and associated river ecosystems through the LIFE Bachmuschel project. This project is funded by the EU LIFE program and supported by reputable research partners, positioning the foundation as a key player in regional biodiversity and water habitat preservation. The website effectively communicates project goals, partner involvement, and provides comprehensive contact information, reflecting a professional and trustworthy presence. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries such as jQuery and Leaflet.js for interactive maps. It employs Matomo analytics for privacy-conscious visitor tracking and implements a cookie consent mechanism compliant with GDPR. The site demonstrates good mobile optimization, accessibility features, and SEO practices, though some security headers could be enhanced. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy documentation and incident response contacts, which are recommended for improved transparency and readiness. The domain WHOIS data aligns well with the organization's identity, supporting legitimacy and trust. Overall, the website presents a secure, privacy-aware, and professionally managed digital platform that supports the foundation's mission and stakeholder engagement effectively.

The website www.life-trockenrasen.de represents the LIFE Trockenrasen project, a non-profit environmental conservation initiative led by Stiftung NaturSchutzFonds Brandenburg in partnership with the University of Potsdam and NABU-Stiftung Nationales Naturerbe. The project focuses on protecting and restoring dry grassland habitats in Brandenburg, Germany, supported by EU LIFE funding. The site provides educational content, project updates, and event information targeting conservationists, researchers, and the general public interested in regional biodiversity. Technically, the website is built on TYPO3 CMS with a moderate technology stack including jQuery and Leaflet.js for interactive maps. It employs Matomo for analytics with a clear cookie consent mechanism, reflecting good privacy compliance. The site is accessible, mobile-optimized, and well-structured, though some technical improvements such as updated libraries and enhanced security headers could be made. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not published, which could be improved to enhance trust and readiness. Overall, the website is professional, trustworthy, and compliant with GDPR, serving its niche audience effectively.

S

Stiftung Naturschutzfonds Brandenburg

naturwacht.de

52

Stiftung Naturschutzfonds Brandenburg is a regional non-profit foundation dedicated to practical nature conservation in Brandenburg, Germany. The organization focuses on funding and implementing projects that protect biotopes and species, securing natural areas for future generations. Their website reflects a professional and well-structured digital presence, emphasizing transparency, accessibility, and user engagement through clear navigation and comprehensive content. The foundation targets a broad audience including local communities, environmental groups, and private individuals interested in conservation efforts. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries and privacy-conscious analytics via Matomo. The site demonstrates good performance, mobile optimization, and accessibility features, ensuring a positive user experience. The cookie consent mechanism is robust and GDPR-compliant, reflecting a strong commitment to privacy. From a security perspective, the site enforces HTTPS and employs privacy-respecting analytics, but lacks explicit security policy documentation and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional headers and published policies. The website is trustworthy, with consistent WHOIS data and legitimate domain registration. It maintains high standards of content quality and privacy compliance, making it a reliable source of information and engagement for its audience.

O

Opferschutzportal Nordrhein-Westfalen

opferschutzportal.nrw

63

The Opferschutzportal Nordrhein-Westfalen is a government-supported online portal dedicated to providing victims of violence and crime in North Rhine-Westphalia with access to relevant support and counseling services. The portal offers comprehensive information on various forms of violence, emergency contact numbers, and a search function to locate nearby counseling centers. It also provides a privacy-focused mobile app with stealth features to protect users. The website is professionally designed, accessible, and multilingual, targeting victims, their families, and professionals in the field. Technically, the website is built on Drupal 10.4.4, utilizing modern JavaScript libraries and privacy-conscious analytics (Matomo with disabled cookies). It demonstrates good mobile optimization, accessibility, and SEO practices. The site enforces HTTPS and uses cookie consent mechanisms, though some security headers are not explicitly detected. From a security perspective, the portal shows a strong posture with encrypted connections and minimal tracking, but could improve by implementing additional security headers and publishing incident response contacts. The WHOIS data is privacy protected or unavailable, which is justified given the sensitive nature of the portal's purpose. Overall, the site is trustworthy, secure, and professionally maintained. Strategically, the portal serves an essential public service role, with a clear focus on victim support and protection. It maintains strong trust signals through official branding and links to government and recognized organizations. The portal's privacy and security features align well with its mission to protect vulnerable users.

C

CAS Software AG

cas.de

59

CAS Software AG is a German market leader specializing in CRM and CPQ software solutions tailored for small to medium-sized enterprises and larger organizations. Their offerings include adaptive CRM systems integrated with AI assistants (AIA®) to enhance customer centricity and streamline business processes. The company emphasizes innovation, digital sovereignty, and customer-focused solutions, serving over 550,000 users across more than 35,000 organizations. The website reflects a mature digital presence with multilingual support and comprehensive service information. Technically, the website is built on WordPress with modern JavaScript frameworks such as Vue.js and Video.js, supported by Matomo analytics and Leadinfo tracking. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS enforced and no exposed sensitive data, but could benefit from enhanced security headers and explicit cookie consent mechanisms. Overall, CAS Software AG demonstrates a high level of professionalism and trustworthiness, with clear contact channels and customer testimonials. However, the absence of a dedicated security policy page, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement in security transparency and compliance. Strategically, the company should focus on enhancing privacy compliance by implementing cookie consent banners, publishing security policies, and establishing incident response contacts to strengthen trust and regulatory adherence.

A

AYGOnet GmbH

aygonet.org

57

AYGOnet GmbH operates a specialized web-based software platform for online counseling, offering flexible and secure digital consultation services including mail, chat, and video modules. The company is well-established in Germany with a strong market presence serving over 1500 counselors nationwide. Their platform emphasizes data security, privacy, and user-friendly design, leveraging modern technologies such as TYPO3 CMS and Matomo analytics. Hosting is managed via Schlundtech with servers located in Germany, ensuring compliance with local data protection laws. Security measures include end-to-end encryption, role-based access control, and two-factor authentication, reflecting a mature security posture. The website is professionally designed, mobile-optimized, and provides comprehensive contact and privacy information, although it lacks a publicly visible terms of service and vulnerability disclosure policy.

Neue Bühne Senftenberg is a regional cultural institution based in Germany, specializing in theatrical performances, seasonal events, and youth theater programs. The website serves as a platform for event promotion, ticket sales, and community engagement, targeting a broad audience including families, educators, and theater enthusiasts. The organization maintains an active social media presence and provides clear contact information, reinforcing its community-oriented business model. Technically, the website is hosted on Amazon AWS infrastructure and utilizes Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized with a clean design and structured navigation, though accessibility features are basic. Security is well-handled with HTTPS enforced and no visible vulnerabilities, but the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and defense-in-depth. From a security perspective, the site demonstrates good practices such as encrypted connections and no exposed sensitive data. However, it lacks formal security policies, incident response information, and vulnerability disclosure mechanisms, which are important for transparency and trust. The privacy policy is present and GDPR compliant, but cookie consent is missing, which could pose compliance risks. Overall, the website is professional, trustworthy, and serves its business purpose effectively. Strategic enhancements in privacy compliance, security headers, and incident response transparency would further strengthen its security posture and regulatory adherence.

W

Wirtschaftsförderung Land Brandenburg GmbH

wdb-brandenburg.de

62

Wirtschaftsförderung Land Brandenburg GmbH operates a professional website focused on workforce development, training, and integration services in the Brandenburg region of Germany. The site offers comprehensive information and personalized consulting services to businesses and individuals seeking to enhance skills and qualifications. The organization positions itself as a regional government-related economic development agency with a strong emphasis on supporting local labor markets and educational initiatives. Technically, the website is built on Drupal 10 CMS with modern JavaScript libraries including jQuery UI and Blazy for image lazy loading. It employs Matomo analytics for privacy-conscious user tracking and features a responsive design with good accessibility and SEO practices. The site uses HTTPS with excellent SSL configuration, though security headers are not explicitly detected, indicating room for improvement. From a security perspective, the website demonstrates good privacy compliance with a clear privacy policy, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, it lacks a published security policy or incident response contact details. The WHOIS data shows standard domain registration with GoDaddy name servers, consistent with the business purpose, though registrant details are minimal. Overall, the website is trustworthy, professional, and well-maintained, serving its target audience effectively. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular vulnerability assessments to further strengthen the security posture.

A

abfallberatung.de

ressourcenretter.de

43

The website www.ressourcenretter.de operates as an online platform promoting environmental sustainability through a community-driven 'Internet-Verschenkmarkt' (Internet gift market) concept. It targets municipalities and waste management organizations in Germany, offering a SaaS model that enables citizens to exchange or give away usable goods, thereby reducing waste. The platform is well-established with over 120 municipalities using the service and is directly linked to the original manufacturer abfallberatung.de. Technically, the site is built on Joomla CMS with modern frameworks such as Bootstrap and Helix Ultimate, and it employs Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content.

U

Unabhängige Bundesbeauftragte gegen sexuellen Missbrauch von Kindern und Jugendlichen

hilfeportal-missbrauch.de

67

The Hilfe-Portal Missbrauch is an official German federal government portal operated by the Unabhängige Bundesbeauftragte gegen sexuellen Missbrauch von Kindern und Jugendlichen. It provides comprehensive support, information, and counseling services for victims of sexual abuse, including telephone and online counseling, a searchable database of help offers, and educational content. The portal is well-positioned as a trusted, authoritative resource in the government and non-profit sector, targeting affected individuals, families, and professionals. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as Mapbox for geolocation services and Matomo for privacy-focused analytics. The site demonstrates good digital maturity with responsive design, accessibility features, and GDPR-compliant data collection practices. Hosting appears to be managed by a reputable German technical service provider, ensuring data sovereignty and compliance. From a security perspective, the site enforces HTTPS, anonymizes IP addresses in analytics, and uses a consent-based cookie mechanism. However, it lacks publicly visible security policies, incident response contacts, and advanced security headers, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious activities were detected. Overall, the portal scores highly on content quality, privacy compliance, and business credibility, making it a reliable and professional resource. Strategic improvements in security transparency and incident response readiness are recommended to further strengthen its posture.

E

ekom21 – KGRZ Hessen

ekom21.de

67

ekom21 – KGRZ Hessen is a prominent IT service provider specializing in digital solutions for public administration in the German state of Hessen. The company offers a broad range of services including software solutions, consulting, IT infrastructure, and training seminars tailored to the needs of municipal governments and public sector entities. Their market position is strong within the regional public sector IT landscape, supported by certifications such as ISO 27001 and ISO 9001:2015, which underscore their commitment to quality and information security. Technically, the website is built on the ionas4 CMS platform and leverages modern web technologies including jQuery, Vue.js, SystemJS, and Matomo analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, providing a professional and user-friendly experience. The presence of a cookie consent mechanism and comprehensive privacy policies indicates a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS, uses invisible reCAPTCHA for forms, and prominently displays certifications related to information security. While some advanced security headers could be improved, no critical vulnerabilities or exposed sensitive data were detected. The domain WHOIS data is limited but consistent with the business claims, and no WAF or blocking mechanisms interfere with content access. Overall, ekom21 presents a trustworthy, professional, and secure digital presence aligned with its role as a public sector IT service provider. Strategic recommendations include enhancing security headers, publishing a security.txt file, and improving incident response contact visibility to further strengthen their security posture.

F

Frauenhauskoordinierung e.V.

frauenhauskoordinierung.de

52

Frauenhauskoordinierung e.V. is a German non-profit organization dedicated to preventing violence against women and improving support systems for abused women and their children. The organization acts as a national coordinator and networker for women's shelters and counseling centers, providing information, advocacy, and training. Their website is built on TYPO3 CMS, uses modern frontend libraries like jQuery and Slick Carousel, and employs Matomo analytics with cookies disabled to respect user privacy. The site is well-structured, mobile-optimized, and regularly updated with news and resources. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Contact information is limited but includes a press email and active social media channels. No privacy policy or terms of service were found in the provided content, which is a potential area for improvement. Overall, the website is trustworthy, professional, and focused on its mission to support women affected by violence.

G

Gewalt gegen Frauen beenden e.V.

autonome-frauenhaeuser-zif.de

41

The ZIF – Zentrale Informationsstelle autonomer Frauenhäuser is a German non-profit organization serving as the central information hub for autonomous women's shelters. It provides comprehensive resources, contact information, and support services aimed at ending violence against women and children. The organization is well-established with historical roots dating back to 1975 and maintains a clear presence through its website and social media channels. The website facilitates donations and offers multilingual content to reach a broad audience. Technically, the site is built on WordPress using a modern theme and plugins, with privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

D

Dachverband der autonomen Frauenberatungsstellen NRW e.V.

frauenberatungsstellen-nrw.de

52

The website www.frauenberatungsstellen-nrw.de represents the Dachverband der autonomen Frauenberatungsstellen NRW e.V., a well-established non-profit umbrella organization supporting autonomous women's counseling centers in North Rhine-Westphalia, Germany. The organization provides comprehensive support, advocacy, and educational services aimed at empowering women and girls, promoting gender equality, and combating violence. The site reflects a strong regional presence with a clear mission and professional presentation. Technically, the website is built on Drupal 10, leveraging modern web technologies including jQuery, Matomo Analytics for privacy-conscious tracking, and lazy loading for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. Hosting details are limited but DNS points to vegasystems.de nameservers. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, security headers could be enhanced to improve protection. Privacy policies and cookie documentation are comprehensive and clearly accessible, demonstrating a commitment to data protection and user privacy. Overall, the website scores highly on content quality, technical implementation, security posture, privacy compliance, and business credibility. It serves its target audience effectively with trustworthy and relevant content. There are no indications of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers and considering a vulnerability disclosure policy to further strengthen security posture.

D

Duisburger Versorgungs- und Verkehrsgesellschaft mbH

duit.de

63

The Duisburger Versorgungs- und Verkehrsgesellschaft mbH (DVV) is a large municipal multi-service company based in Duisburg, Germany, providing essential services such as energy supply (electricity, gas, water, heat) and public transportation. It operates through multiple subsidiaries and is a major regional employer. The website reflects a mature digital presence built on TYPO3 CMS with modern web technologies and includes a comprehensive privacy and cookie consent framework, indicating good compliance with GDPR. Security posture is solid with HTTPS and cookie management, though some security headers and explicit security policies are absent. Overall, the site is professional, trustworthy, and well-structured, serving both citizens and potential employees effectively.

I

IGA Metropole Ruhr 2027 gGmbH

iga2027.ruhr

58

IGA Metropole Ruhr 2027 gGmbH is a non-profit organization orchestrating the International Garden Exhibition 2027 in the Ruhrgebiet region of Germany. The website serves as an informative platform showcasing the event's concept, partners, news, and community engagement initiatives. It targets residents and visitors interested in sustainability, culture, and regional development. The organization is affiliated with the Regionalverband Ruhr, reinforcing its governmental and regional legitimacy. Technically, the website is built on TYPO3 CMS, uses Matomo for analytics, and implements a comprehensive cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR, making it a reliable source for event information and regional engagement.

2

2050 Media Projekt gGmbH

klimafakten.de

68

Klimafakten.de is a German-language non-profit platform operated by 2050 Media Projekt gGmbH, focused on providing reliable information about climate change and facilitating effective communication about climate solutions. The website offers comprehensive resources including scientific facts, communication handbooks, training academies, and community networking events. It targets policymakers, media, organizations, and individuals interested in climate topics. Technically, the site is built on Drupal 10 with modern front-end libraries and is hosted behind Cloudflare, ensuring good performance and security. Privacy compliance is well addressed with clear cookie consent and privacy policies. Security posture is strong with HTTPS and no visible vulnerabilities, though explicit security headers and incident response policies could be improved. Overall, the site is professional, trustworthy, and well-positioned as a leading climate information resource in the German-speaking market.

B

Bitkom e. V.

bitkom.org

59

Bitkom e. V. is the leading German industry association representing the information and telecommunications sector. The organization acts as a think tank and advocacy group, providing market data, events, and policy consultation to its members and stakeholders. The website reflects a mature digital presence with comprehensive content, including podcasts, events, and research reports, targeting industry professionals, policymakers, and the public interested in digital transformation in Germany. Technically, the site is built on Drupal 10 with modern libraries and includes a consent management platform for privacy compliance. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and explicit incident response information are lacking. The WHOIS data is unavailable, which slightly reduces domain trust, but the overall professionalism and transparency of the site support its legitimacy.

V

Vestische Pioniere

vestische-pioniere.de

46

Vestische Pioniere is a regional initiative based in Germany that honors companies in the Kreis Recklinghausen area for their commitment to ecological and social sustainability. Supported by local government and financial institutions, it operates as a non-profit award platform promoting responsible business practices. The website is well-designed, mobile-optimized, and provides clear information about the award, jury, criteria, and participation process. Technically, the site uses modern frontend frameworks like Vue.js combined with a WordPress backend, and employs Matomo analytics for privacy-conscious visitor tracking. Security measures include HTTPS enforcement and CSRF protection cookies, alongside a comprehensive cookie consent mechanism. However, explicit security policies and incident response contacts are not published, which could be improved to enhance trust and compliance. Overall, the site presents a professional and trustworthy digital presence for a small regional non-profit initiative.

E

Europäischer Parkverbund Lausitz

parkverbund.eu

46

The Europäischer Parkverbund Lausitz is a cultural and tourism network connecting nine significant parks and castles in the Lausitz region of Germany. The website serves as an informational and promotional platform targeting tourists and culture enthusiasts interested in historical gardens and heritage sites. It offers event calendars, guided tours, audiotours, and digital maps to enhance visitor experience. Technically, the site employs a custom CMS with a modern JavaScript stack including jQuery, Swiper, and Matomo analytics, hosted by Vautron Rechenzentrum AG. The website is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and cookie consent mechanisms, but lacks some advanced security headers and explicit incident response information. Overall, the site is trustworthy, compliant with GDPR, and free of suspicious content.

The bff Women against violence website represents a well-established non-profit organization in Germany dedicated to supporting women and girls affected by violence. It operates the largest network of counselling and rape crisis centres in the country, providing direct assistance, advocacy, and educational resources. The organization targets victims, supporters, and the general public with a comprehensive range of services including emergency aid, specialist counselling, campaigns, and information dissemination. The website reflects a strong commitment to privacy and user consent, integrating GDPR-compliant policies and cookie consent mechanisms. Sponsorship by a German federal ministry further enhances its credibility. Technically, the website is built on the Contao Open Source CMS platform, utilizing jQuery and Bootstrap for frontend functionality and styling. It employs Matomo analytics with cookies disabled to respect user privacy. Hosting appears to be managed by kasserver.com, and the site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO is basic but functional, with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses consent mechanisms for embedded third-party content such as YouTube videos. However, explicit security headers are not detected, and there is no publicly available security or incident response policy. No vulnerabilities or exposed sensitive data were found. The overall security posture is solid but could be improved with additional headers and formal policies. Overall, the website is professional, trustworthy, and well-aligned with its mission. It provides valuable resources and support for its audience while maintaining good privacy standards. Strategic improvements in security policies and accessibility could further enhance its robustness and user trust.

Z

ZIF - Zentrale Informationsstelle Autonomer Frauenhäuser

frauenhaus-suche.de

51

The website www.frauenhaus-suche.de serves as a centralized information portal for autonomous women's shelters across Germany, providing a nationwide search for women’s shelters and protection apartments. It targets women seeking shelter and support from domestic violence, offering multilingual content and a map-based search interface. The site is operated by the ZIF (Zentrale Informationsstelle Autonomer Frauenhäuser), a non-profit entity dedicated to supporting women in need. The business model focuses on providing free, accessible information rather than commercial services. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design, enhanced by jQuery and Google Maps API for interactive map features. It employs Matomo analytics for privacy-conscious user tracking and is hosted on German servers associated with kasserver.com. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms with opt-in for statistics, reflecting a commitment to privacy compliance. However, it lacks explicit privacy policies, terms of service, and security headers, which are recommended for enhanced security posture. No direct contact information or incident response channels are provided, limiting transparency in security management. Overall, the website is trustworthy and professional, with a clear mission and consistent branding. The absence of critical security issues and adult content supports a safe user experience. Strategic improvements include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact channels for security incidents to strengthen compliance and user trust.

S

Stadtbetriebe Unna

stadtbetriebe-unna.de

49

Stadtbetriebe Unna is a municipal service provider for the city of Unna, Germany, offering a broad range of public utility services including waste management, wastewater treatment, green space maintenance, street cleaning, cemetery management, and fee administration. The website clearly targets local residents and businesses, providing relevant information and service details. The organization appears to be a medium-sized government entity with a stable market position as a local utility provider. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and integrates Matomo for analytics and Usercentrics for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, hosted on servers associated with rzone.de. Performance is moderate, with modern technologies and structured navigation. From a security perspective, the site uses HTTPS and employs a consent management platform, indicating awareness of privacy regulations. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The overall security posture is good but could be improved by adding formal security documentation and headers. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It serves its public service function effectively with clear contact information and social media presence. Strategic recommendations include enhancing security transparency and incident response readiness to further strengthen trust and compliance.

K

Kreisstadt Unna

unna.de

51

Kreisstadt Unna operates an official municipal website providing comprehensive information and digital services to its citizens and visitors. The site offers access to news, cultural events, administrative services, and contact information, positioning itself as a central hub for local government communication. The website leverages modern technologies including Drupal 10 CMS, Matomo Analytics with privacy-respecting configurations, and Bootstrap for responsive design. It demonstrates a mature digital infrastructure with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR requirements.

V

Verschenkmarkt

verschenkmarkt.info

50

The website 'Verschenkmarkt' is a German-language regional non-profit reuse marketplace platform that facilitates gifting, swapping, sharing, lending, repairing, and second-hand transactions. It targets a general audience interested in sustainability and waste reduction. The platform is actively moderated and provides user notifications for listing approvals or rejections. Technically, it is built on the Osclass CMS with common web technologies such as jQuery, Bootstrap, and FineUploader, and includes a chatbot for user assistance. The site is mobile responsive with good navigation and content quality. Security-wise, HTTPS is enforced and Matomo analytics is used with cookies disabled, but the site lacks security headers and a cookie consent mechanism. WHOIS data is not publicly available, indicating privacy protection, which is reasonable for this non-commercial entity. Overall, the site is trustworthy and functional but could improve security and privacy compliance aspects.

L

Landesvermessung und Geobasisinformation Brandenburg

geobasis-bb.de

58

The Landesvermessung und Geobasisinformation Brandenburg (LGB) operates as the official geospatial data and mapping authority for the Brandenburg region in Germany. The website serves as a comprehensive portal offering a wide range of geodata products, including 3D models, aerial imagery, cadastral data, and thematic maps. It targets government agencies, geospatial professionals, and the general public interested in regional geoinformation. The business model is that of a public sector service provider, delivering authoritative geospatial data and digital services to support regional planning and administration. Technically, the website is built on a modern stack utilizing HTML5, CSS3 with the Foundation 5 framework, JavaScript, and jQuery UI. It is powered by the SixCMS content management system and hosted likely by Deutsche Telekom, ensuring reliable infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Privacy is well-managed through a GDPR-compliant cookie consent mechanism and the use of Matomo analytics activated only upon user consent. From a security perspective, the site enforces HTTPS and employs a clear cookie consent opt-in mechanism. While explicit security headers are not visible in the provided data, the overall posture is good with no exposed sensitive data or vulnerabilities detected. However, the site could improve by publishing explicit security policies and incident response information and implementing additional security headers. Overall, the website presents a professional, trustworthy, and privacy-conscious digital presence for a government entity. It effectively balances user experience, compliance, and security, making it a reliable source for geospatial information in Brandenburg.

The Marketinginitiative der Wohnungsbaugenossenschaften Deutschland e.V. is a well-established cooperative marketing initiative representing over 400 housing cooperatives across Germany. The website serves as an informational and promotional platform to strengthen the brand of cooperative housing and provide resources such as guest apartment listings, career opportunities, and regional cooperative information. The organization operates in the real estate and non-profit sectors, targeting cooperative members, potential members, and the general public interested in cooperative living. Technically, the website is built on the concrete5 CMS platform, utilizing modern web technologies including jQuery, Bootstrap, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized with a professional design and clear navigation, though accessibility features could be improved. Hosting appears stable with German-based nameservers. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent banner. However, security headers are not visibly configured, and no public security or incident response policies are found. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is minimal but consistent with the business purpose, supporting legitimacy. Overall, the website presents a trustworthy and professional image with good privacy compliance and moderate security posture. Strategic improvements in security headers, incident response transparency, and accessibility would enhance the site's security and compliance standing.

W

Wirtschaftsbetriebe Duisburg - AöR

ob-karl-lehr-bruecke.de

43

The website represents Wirtschaftsbetriebe Duisburg - AöR, a public entity managing the OB-Karl-Lehr-Brückenzug infrastructure project in Duisburg, Germany. The site provides detailed information about the project's importance to local traffic and logistics, targeting residents, commuters, and stakeholders in transportation and urban infrastructure. The business is positioned as a key municipal infrastructure provider with a focus on transportation and logistics facilitation. Technically, the website is built on TYPO3 CMS, uses modern web technologies, and integrates Matomo for analytics. The site is hosted on DomainControl nameservers and uses HTTPS with good SSL configuration. The design is professional, mobile-optimized, and provides clear navigation and relevant content. From a security perspective, the site has HTTPS enabled and uses secure cookies for analytics, but lacks several security headers and a formal security policy or incident response contact. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professionally maintained, with moderate technical and security maturity. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance the security posture and compliance level.

Wirtschaftsbetriebe Duisburg operates a dedicated project office for the Internationale Gartenausstellung (IGA) 2027, a major garden exhibition event in the Ruhr metropolitan region. The website serves as an information portal for the event, providing news, project updates, and contact details. The organization is a municipal utility company engaged in urban infrastructure and event management, targeting local residents and stakeholders. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries like Slick Slider, and integrates Matomo analytics with privacy-conscious settings. Security posture is solid with HTTPS and secure cookies, though it lacks some security headers and explicit incident response policies. Privacy compliance is good with a comprehensive privacy policy, but no cookie consent mechanism is present. Overall, the site is professional, trustworthy, and well-branded, supporting the public event effectively.