Security Directory

D

Dennis Eagle Ltd

dennis-eagle.co.uk

73

Dennis Eagle Ltd is a prominent UK-based manufacturer specializing in refuse collection vehicles (RCVs) with a heritage spanning over 100 years. The company operates under the Royal Terberg Group umbrella and offers a comprehensive portfolio including chassis, bodies, bin lifts, and electric vehicle solutions. Their market position is strong within the transportation sector, serving both public and private waste management entities globally. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, the site leverages modern frameworks such as Bootstrap and Vue.js, integrates multiple analytics platforms including Matomo and Google Analytics, and employs a consent management platform for GDPR compliance. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though some security headers and explicit incident response information are absent. Overall, the domain appears legitimate despite incomplete WHOIS data due to .uk domain naming rules. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen trust and compliance.

D

D&T Internet GmbH

dt-internet.de

56

D&T Internet GmbH is a small, established full-service internet service provider based in Cologne, Germany, with over 20 years of experience. The company specializes in TYPO3 CMS web development, cloud telephony solutions (Swyx HostedPBX), and offers additional cloud products such as online storage and web hosting. Their target audience includes businesses and organizations seeking professional internet and communication services. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site is built on TYPO3 CMS, enhanced with modern JavaScript libraries and frameworks like jQuery and Foundation, and includes accessibility and mobile optimization features. Matomo analytics is used with an opt-in cookie consent mechanism, demonstrating good privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the site is trustworthy and well-maintained, supporting the company's market position as a reliable technology service provider.

BeSt Bernauer Stadtmarketing GmbH is a small-sized city marketing company founded in 2009, dedicated to promoting the city of Bernau bei Berlin. The company manages cultural events, visitor centers including the UNESCO World Heritage Bauhaus visitor center, and tourist information services. The website reflects a well-structured and content-rich platform targeting residents, tourists, and cultural enthusiasts. Technically, the site uses Contao CMS with modern frontend frameworks like Bootstrap and SwiperJS, and integrates analytics tools such as Google Analytics and Matomo. Security posture is moderate with HTTPS usage but lacks explicit security headers and incident response information. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

E

Evangelische Kirche der Pfalz

pfalz-evangelisch.de

57

The Evangelische Kirche der Pfalz is a large non-profit religious organization serving as one of the 20 regional churches within the Evangelical Church in Germany (EKD). Their website provides comprehensive information about church activities, events, community engagement, job opportunities, and press releases. The target audience includes church members and the general public interested in religious and community topics. The organization maintains a strong market position within the German religious sector, supported by consistent branding and a professional online presence. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript modules, Swiper.js for interactive elements, and Usercentrics for GDPR-compliant cookie management. The site is hosted on German VPS servers, optimized for mobile devices, and includes strong accessibility features such as an accessibility dashboard and keyboard navigation aids. SEO practices are well implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policies, incident response information, and a vulnerability disclosure mechanism. The WHOIS data aligns well with the website content, indicating legitimacy and consistency. Overall, the site demonstrates a mature security posture with room for improvement in formal security documentation. The overall risk is low, with strong compliance to privacy regulations and good technical implementation. Strategic recommendations include enhancing security headers, publishing security policies, and adding a security.txt file to improve transparency and incident handling readiness.

S

sensis+wiegon

digitalerwertstoffhof.de

51

sensis+wiegon is an innovative competence cluster specializing in digital and autonomous waste management solutions for municipalities and businesses in Germany. With over 30 years of experience, the company offers a comprehensive suite of services including cloud portals, mobile apps, hardware installations, and software integration to modernize waste collection and recycling processes. Their market position is strengthened by multiple awards and a strong focus on customer service and digital transformation. Technically, the website employs modern JavaScript libraries, analytics tools like Matomo and LinkedIn Insight Tag, and is likely built on Django, ensuring a robust and scalable infrastructure. The site is well-optimized for mobile and SEO, providing a professional user experience. Security posture is solid with HTTPS and CSRF protections, though additional security headers and a published security policy would enhance trust. Overall, sensis+wiegon presents a credible and professional digital presence aligned with its business goals.

M

Mönchengladbacher Abfall-, Grün- und Straßenbetriebe AöR

mags.de

26

Mönchengladbacher Abfall-, Grün- und Straßenbetriebe AöR (mags) is a municipal public service provider based in Mönchengladbach, Germany, specializing in waste management, green maintenance, and street services. The website serves as an informational portal for residents and businesses in the region, providing details about their service offerings. The site is built on TYPO3 CMS, a widely used open-source content management system favored by government entities, and is hosted on Mittwald servers. The presence of Usercentrics consent management and Matomo analytics indicates a moderate level of digital maturity with attention to privacy compliance. However, the absence of explicit privacy policies and terms of service pages suggests room for improvement in transparency and compliance documentation. Security posture is adequate with HTTPS enabled but lacks visible security headers and formal security policies. Overall, the website is professional, trustworthy, and serves its public sector function effectively.

R

Royal Terberg Group B.V.

royalterberggroup.com

76

Royal Terberg Group B.V. is a well-established family-owned business based in the Netherlands, specializing in the development, production, and modification of special transport vehicles and environmental loading systems. The company also offers a broad range of services including maintenance, spare parts, repair, rental, and telematics, targeting businesses requiring specialized logistics and environmental equipment solutions. Their market position is strong, supported by a global presence and multiple subsidiary domains representing their divisions. Technically, the website employs a modern technology stack including Matomo Analytics, Google Tag Manager, Azure Application Insights, jQuery, Bootstrap, and Vue.js, hosted on a CMS platform identified as Episerver (Optimizely). The site is mobile-optimized with good SEO and accessibility basics, though some improvements could be made in accessibility and security headers. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms with granular controls. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though the absence of WHOIS data and security policy details slightly reduce trustworthiness. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure channels to improve security posture and transparency.

T

Terberg Environmental

terbergenvironmental.com

10

Terberg Environmental is a well-established company specializing in eco-technology solutions for the waste management and recycling industry. Their product portfolio includes bin lifting systems, rear loaders, side loaders, and electric products, serving a global market with a strong emphasis on sustainability and innovation. The company operates under the Royal Terberg Group umbrella, indicating a solid corporate backing and extensive industry experience. The website reflects a professional and comprehensive digital presence, targeting industry professionals and organizations seeking reliable waste collection technologies. Technically, the site employs modern web technologies including Vue.js, Bootstrap, and multiple analytics platforms, combined with a consent management platform to ensure GDPR compliance. Security posture is generally good with HTTPS enforced and privacy policies in place, though explicit security headers and incident response information are lacking. The absence of WHOIS registration data is a notable concern for domain legitimacy, though the website content and structure suggest a legitimate and professional business. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in security transparency and domain registration clarity.

B

buff.rocks GmbH

buff.media

54

buff.rocks GmbH is a small digital and advertising agency based in Magdeburg, Germany, specializing in creative and strategic services including TYPO3 CMS web projects, design, campaigns, content marketing, hosting, and digital transformation. The company is part of the +Pluswerk network, enhancing its market position and service capabilities. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages TYPO3 CMS, modern JavaScript libraries, and Matomo analytics for user tracking, with good performance and accessibility features. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. WHOIS data is unavailable or malformed, limiting domain registration trust verification, but the business legitimacy is supported by consistent branding, client testimonials, and industry memberships. Overall, the site scores well on content quality, technical implementation, security, privacy, and business credibility.

D

DT Study Club

dtstudyclub.com

54

DT Study Club is a large, globally recognized online dental education platform offering free continuing education webinars to dental professionals. The website is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Bootstrap, and Matomo analytics. Security posture is moderate with HTTPS and reCAPTCHA implemented, but lacks explicit privacy and security policies. The absence of WHOIS data is a concern for domain legitimacy, though the active presence and partnerships with reputable dental organizations support its credibility. Privacy compliance is partial with a cookie consent mechanism but no visible privacy policy. Overall, the platform serves a large audience with quality educational content but should improve transparency and security documentation.

D

Dental Tribune International

dental-tribune.com

57

Dental Tribune Germany is a professional online portal delivering daily news, webinars, market and product information focused on the dental industry in Germany. It is part of the global Dental Tribune International network, providing dental professionals, students, and industry stakeholders with up-to-date trends and innovations in dentistry. The website offers a variety of content including news articles, educational webinars, events, and a marketplace for dental products and services. Technically, the site is built on WordPress, leveraging modern web technologies such as jQuery, Bootstrap, and Matomo analytics, and is hosted on AWS Cloudfront CDN, ensuring reasonable performance and availability. Security posture is good with HTTPS enforced and no obvious vulnerabilities detected, though some security headers could be improved. Privacy compliance is moderate with a cookie consent mechanism present but no explicit privacy policy found in the provided content. The domain WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, but the website content and branding align with a reputable international dental media company. Overall, the site is professional, content-rich, and serves its target audience effectively.

J

Jugendliche stärken

jugendlichestaerken-niedersachsen.de

55

Jugendliche stärken Niedersachsen is a regional educational and support platform focused on strengthening youth mental health and social cohesion in schools. The platform targets students, teachers, and parents in Niedersachsen, Germany, providing educational content, guidance, and resources to foster understanding and support for psychological challenges. It is a publicly funded initiative, indicated by the presence of the Niedersachsen logo and the MSH project logo, emphasizing its non-profit and educational nature. The website is well-structured, with clear navigation and content tailored to its audience, including dedicated sections for different user groups and topics related to mental health and social influences. Technically, the website employs modern web technologies such as htmx and hyperscript for dynamic content loading and interaction, and is hosted on AWS infrastructure. It uses Matomo for privacy-conscious web analytics with explicit cookie consent and opt-out mechanisms, reflecting a strong commitment to user privacy and GDPR compliance. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and integrates cookie consent with Do Not Track settings in analytics. However, it lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data and DNS configuration align with the hosting provider and business claims, supporting the legitimacy of the domain and platform. Overall, Jugendliche stärken Niedersachsen presents a trustworthy, privacy-conscious, and professionally maintained platform serving an important educational and social function. Strategic improvements could include adding explicit security policies, enhancing security headers, and publishing incident response and vulnerability disclosure information to further strengthen trust and compliance.

S

SCHWING Stetter

schwing.de

49

SCHWING Stetter is a well-established German manufacturer specializing in concrete machinery and equipment, including truck-mounted concrete pumps, mixers, stationary pumps, and mixing plants. The company serves the construction industry globally with a broad product portfolio and after-sales services. Their website reflects a professional and consistent brand presence, targeting construction professionals and equipment buyers. The site is built on TYPO3 CMS and employs modern web technologies with a focus on privacy, as evidenced by the use of Matomo analytics and a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and domain registration consistent with the business history. However, there is room for improvement in security headers and published security policies. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

O

Oranto GmbH

studienplattform.ch

53

Oranto GmbH operates the Studienplattform.ch, a specialized software platform designed to facilitate clinical and non-clinical studies with integrated CMS, CRM, and LMS capabilities. The company positions itself as a niche provider with a decade of experience, offering tailored study design and management solutions primarily targeting research institutions and clinical study leaders. The platform emphasizes data protection and GDPR compliance, catering to a German-speaking audience with professional and clear content presentation. Technically, the website is built on TYPO3 CMS and employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and incident response transparency. Overall, the website demonstrates a mature digital presence with good usability and trustworthiness, though cookie consent and formal security policies could be enhanced for full compliance.

O

Oranto GmbH

study-platform.eu

49

Oranto GmbH operates the Study-Platform.eu website, offering a comprehensive software solution for clinical and non-clinical study management. Their platform integrates survey systems, content management, participant management (CRM), learning management (LMS), and statistical monitoring tools, emphasizing GDPR compliance and data protection. The company targets researchers and organizations requiring flexible, customizable study design and execution tools. The website reflects a niche market position with a decade of experience in customized study software development. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and Matomo analytics configured to disable cookies, indicating a privacy-conscious approach. The site is mobile-optimized, accessible, and well-structured with good SEO practices. However, some improvements are needed in cookie consent mechanisms and publishing security policies. From a security perspective, the site uses HTTPS with good SSL configuration and avoids third-party API integrations, reducing attack surface. No critical vulnerabilities or exposed sensitive data were detected. The absence of explicit security headers and incident response information suggests room for enhancement in security posture. WHOIS data is unavailable due to EURid privacy policies, which is common but slightly reduces transparency. Overall, the website presents a professional, trustworthy front for a small technology company specializing in study software solutions. Strategic recommendations include implementing cookie consent, publishing terms and security policies, adding security headers, and providing vulnerability disclosure contacts to strengthen compliance and trust.

G

Greystyle.com

greystyle.com

44

Greystyle.com is a small German-based graphic and web design company established since 2002, specializing in clean programming solutions and elegant design. Their market position is niche-focused, serving clients primarily in the cultural and ecclesiastical sectors in Germany. The website showcases a comprehensive portfolio of projects, emphasizing CMS development, corporate design, and print media. Technically, the site uses XHTML, JavaScript libraries including jQuery and Highslide, and Matomo for analytics, but includes some outdated Flash content. Security posture is moderate with privacy policies in place and anonymized analytics, but lacks visible security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional presentation. Overall, the site is functional and trustworthy but would benefit from modern security and privacy enhancements.

D

Deutsche Atlantische Gesellschaft e.V.

ata-dag.de

38

The Deutsche Atlantische Gesellschaft e.V. is a German non-profit organization dedicated to informing and engaging the public on German and European security policy, NATO objectives, and transatlantic relations. The organization operates through events, seminars, lectures, podcasts, and publications, targeting individuals and entities interested in security and defense topics. Their market position is that of an established, reputable non-profit within the government and policy sector in Germany. Technically, the website is built on WordPress, utilizing common libraries such as jQuery, Bootstrap, and Font Awesome, with SEO optimization via Yoast. Hosting appears to be managed through kasserver.com. The site is moderately performant, mobile-optimized, and includes analytics via Matomo, reflecting a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and uses CAPTCHA on contact forms, alongside a cookie consent mechanism. However, it lacks explicit security headers, a published security policy, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy policy or terms of service pages found. Overall, the website presents a professional and trustworthy front for the organization, with good content quality and business credibility. Security and privacy practices could be enhanced to meet higher compliance standards and improve user trust.

I

Institut der deutschen Wirtschaft

iwd.de

45

The website www.iwd.de serves as the information service of the Institut der deutschen Wirtschaft, providing up-to-date economic analyses, research results, and background information on current economic topics primarily focused on Germany and Europe. It targets professionals, policymakers, academics, and the general public interested in economic affairs. The business model revolves around disseminating economic knowledge through articles, dossiers, newsletters, and interactive graphics, positioning itself as a reputable and authoritative source in the German economic research landscape. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript, CSS, and integrates analytics tools such as Matomo and Google Tag Manager. It employs Usercentrics for GDPR-compliant consent management. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine visibility. Hosting is managed via domaincontrol.com (GoDaddy), a common and reliable provider. From a security perspective, the website enforces HTTPS with a strong SSL configuration and uses consent management for cookies, reflecting good privacy practices. However, it lacks explicit security headers and published security policies or incident response contacts, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The site demonstrates a moderate to high security posture but could enhance transparency and technical security controls. Overall, www.iwd.de is a professional, trustworthy, and content-rich platform with strong compliance to privacy regulations and a solid technical foundation. Strategic recommendations include implementing security headers, publishing a security policy and incident response information, and adding a security.txt file to facilitate vulnerability disclosures. These steps would further strengthen the site's security posture and trustworthiness.

H

Hamburg Port Authority (HPA)

tideelbe.info

54

The website www.tideelbe.info serves as an informational blog managed by the Hamburg Port Authority (HPA), focusing on sediment management and the Tideelbe river to ensure navigable water depths for ships in Hamburg's harbor. It provides news, analyses, and downloadable reports targeted at the general public and stakeholders in maritime transport and environmental sectors. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on TYPO3 CMS, a reputable open-source content management system, and employs Matomo analytics configured to respect user privacy by disabling cookies and honoring DoNotTrack signals. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured content. However, no explicit cookie consent mechanism was detected, which may impact full GDPR compliance. From a security perspective, the site uses HTTPS and shows good security practices, but lacks visible security headers and published security policies or incident response contacts. The WHOIS data for the domain is unavailable or protected, limiting transparency and trust verification, though the official branding and content quality mitigate some concerns. Overall, the website presents a trustworthy and professional platform for disseminating port-related environmental information, with moderate technical and privacy compliance maturity. Strategic improvements in cookie consent, security policy publication, and WHOIS transparency would enhance its security posture and user trust.

M

MH PC Servis s.r.o.

mhweb.cz

57

MH PC Servis s.r.o. is a Czech Republic based small IT service company founded in 2012, specializing in computer repair, external PC network management, sales of computing equipment, and installation of security and camera systems. The company targets both businesses and individual customers seeking reliable IT solutions and remote support services. The website reflects a professional and consistent brand image with clear presentation of key services and contact information. Technically, the site is built on WordPress with WooCommerce, uses modern libraries such as jQuery and Font Awesome, and integrates analytics tools including Matomo and Google Analytics. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is good with HTTPS enabled and secure forms, but lacks published security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

Z

Zentralverband Deutscher Schornsteinfeger e.V.

zds-schornsteinfeger.de

54

Zentralverband Deutscher Schornsteinfeger e.V. (ZDS) is a well-established German trade union and professional association serving the chimney sweep industry since 1907. The organization provides member services including advocacy, education, publishing, and employment support. The website reflects a mature digital presence with clear navigation, professional content, and active social media engagement. Technically, the site is built on Liferay CMS with modern frontend technologies and uses Matomo for privacy-conscious analytics. Security posture is adequate with HTTPS and secure login forms, but lacks visible security headers and explicit security policies. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. Overall, the site is trustworthy and well-suited for its target audience of industry professionals and members.

HÜF-NRW is a regional educational organization providing professional development and training services primarily for technical and administrative staff across 36 cooperating universities in North Rhine-Westphalia, Germany. Their offerings include a broad event program and a comprehensive e-learning platform accessible via ILIAS. The website is built on TYPO3 CMS, leveraging modern web technologies and privacy-conscious analytics through Matomo. The site demonstrates good compliance with GDPR and cookie consent regulations, providing clear contact information and social media presence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the website reflects a professional and trustworthy educational service with a medium-sized organizational footprint.

A

Anschütz GmbH

anschuetz.com

69

Anschütz GmbH is a well-established German company specializing in maritime navigation systems, including gyro compasses, integrated bridge systems, autopilots, and radar systems. With over 100 years of expertise, it serves a global maritime audience including commercial shipping, naval forces, and specialized vessels. The company operates multiple subsidiaries internationally, reflecting a medium-sized enterprise with a strong market position in the transportation sector. The website is professionally designed, content-rich, and optimized for user experience and SEO, leveraging TYPO3 CMS and modern web technologies. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism and GDPR adherence. Security posture is good with HTTPS and privacy-respecting analytics, though some security headers and explicit policies could be improved. The absence of WHOIS registration data is a notable concern, suggesting a need for further verification of domain legitimacy. Overall, the site reflects a credible and professional business presence with minor gaps in transparency and security documentation.

H

Heinrich Wegener & Sohn Bunkergesellschaft m.b.H.

wegener-bunker.de

43

Heinrich Wegener & Sohn Bunkergesellschaft m.b.H. is a specialized German company providing marine fuels and lubricants worldwide, with a strong reputation built over more than 50 years. The company emphasizes quality, sustainability, and certified standards such as ISO 9001 and IMPA membership. Their target audience includes maritime shipping companies and related stakeholders. The website is built on TYPO3 CMS with Bootstrap and jQuery, featuring a professional design and good mobile responsiveness. Matomo analytics is used with privacy-conscious settings disabling cookies. Security posture is solid with HTTPS and some privacy measures, but lacks advanced security headers and formal incident response disclosures. Contact information is comprehensive with multiple phone numbers but no public emails or contact forms. Overall, the site is trustworthy and business-focused with room for improvement in privacy and security transparency.

T

Transportbeton-Fahrerschulung

btb-fahrerschulung.de

53

The website www.btb-fahrerschulung.de serves as a multilingual educational platform dedicated to driver training for transport concrete vehicles, operated under the auspices of the Bundesverband Transportbeton. It offers structured learning materials including videos, checklists, and quizzes aimed at improving driver knowledge and safety. The site targets transport concrete vehicle drivers primarily in Germany and surrounding regions, providing content in multiple languages to accommodate diverse users. Technically, the site is built on WordPress with WPML for multilingual support, hosted on Hetzner servers, and employs Matomo analytics for privacy-conscious user tracking. The design is professional and mobile-optimized, with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, though security headers are not evident and no explicit security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, though improvements in security and privacy transparency are recommended.

O

Oranto GmbH

studienplattform.eu

50

Oranto GmbH operates the Studienplattform.eu website, offering a comprehensive, customizable study platform solution tailored for clinical and non-clinical studies. The platform integrates CMS, CRM, and LMS functionalities with a strong emphasis on GDPR compliance and data protection. The company targets research institutions and organizations requiring flexible, privacy-conscious study management tools. The website reflects a professional, well-structured digital presence with clear business focus and contact transparency. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including HTML5 video and Matomo analytics configured for privacy (cookies disabled). The site is mobile-optimized with good SEO and accessibility basics, though some security headers are missing. HTTPS is enforced, ensuring secure data transmission. Security posture is solid with no visible vulnerabilities or exposed sensitive data, but the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. Privacy compliance is strong with a comprehensive privacy policy, though cookie consent mechanisms could be enhanced. Overall, the website and business present a trustworthy, professional image with moderate technical maturity and good privacy awareness. Strategic enhancements in security transparency and consent management would further strengthen trust and compliance.

O

Oranto GmbH

oranto.ch

56

Oranto GmbH is a small technology service provider specializing in professional web and app development, primarily leveraging the TYPO3 CMS platform. The company targets businesses and organizations seeking enterprise-grade web solutions with a strong focus on customer-oriented consulting and practical implementations. Their market position is that of a niche expert in TYPO3-based enterprise websites, offering a range of services including hosting, SEO, workshops, and training. Technically, the website is built on TYPO3 CMS with modern JavaScript usage and integrates Matomo analytics for user tracking. The site is mobile-optimized with good SEO practices and moderate performance. Hosting details are not explicitly disclosed. The technical infrastructure reflects a mature digital presence suitable for their business model. From a security perspective, the website enforces HTTPS and uses best practices such as asynchronous script loading and no visible sensitive data exposure. However, it lacks visible security headers, a cookie consent mechanism, and formal security or incident response policies. The privacy policy is present but basic, with no explicit GDPR compliance indicators or cookie consent banners. Matomo analytics suggests some privacy-conscious tracking but without explicit user consent mechanisms. Overall, the website presents a moderate risk profile with no critical vulnerabilities detected but room for improvement in privacy compliance and security transparency. Strategic recommendations include implementing cookie consent, publishing security policies, and enhancing security headers to improve trust and compliance.

O

oikos-Institut

oikos-institut.de

43

The oikos-Institut is a small non-profit organization dedicated to supporting mission and ecumenical work within the Westphalian church region in Germany. The website provides information about their services, events, and educational materials aimed at church communities and related stakeholders. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities and uses Matomo for analytics, reflecting a moderate level of digital maturity. The site is well-designed, mobile-optimized, and offers a good user experience with clear navigation. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and published privacy or security policies. Overall, the domain registration is consistent with the organization's regional and non-profit nature, indicating legitimacy. Strategic improvements include publishing comprehensive privacy and security policies and enhancing security headers to strengthen compliance and trust.

E

Evangelische Landeskirche in Württemberg

kirchensteuer-wirkt.de

57

The website kirchensteuer-wirkt.de is an official platform representing multiple regional evangelical churches in Germany, primarily focused on educating and informing about the Kirchensteuer (church tax) and its impact. It provides detailed information on church financing, usage of funds, and offers tools such as a Kirchensteuer calculator. The site targets church members and interested individuals, emphasizing transparency and community engagement. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics, and incorporates accessibility features, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and consent management, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

D

Deutscher Evangelischer Kirchentag

kirchentag.de

51

The Deutscher Evangelischer Kirchentag website represents a well-established non-profit organization dedicated to organizing large-scale biennial religious and cultural events in Germany. The site provides comprehensive information about upcoming events, community engagement, and volunteer opportunities, targeting a broad audience interested in faith, culture, and social dialogue. The organization maintains a strong market position as a leading event organizer within the German evangelical community. Technically, the website is built on TYPO3 CMS, employs modern web standards, and integrates Matomo analytics for privacy-conscious visitor tracking. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and provides cookie consent mechanisms, though it lacks visible advanced security headers and published security policies. No critical vulnerabilities or suspicious content were detected. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements, making it a reliable digital presence for the organization.

S

SCHWING America Inc.

schwing.com

46

SCHWING America Inc. is a well-established manufacturer specializing in truck-mounted concrete pumps, trailer pumps, and line pumps, serving primarily the construction industry in the United States. The company maintains a strong market position as a leading manufacturer with a comprehensive product portfolio and related services including spare parts and training seminars. The website reflects a mature digital presence built on TYPO3 CMS with modern front-end technologies and integrates multiple analytics and marketing tools. Security posture is adequate with HTTPS and domain transfer protections in place, but lacks advanced security headers and visible incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and content-rich, supporting the company's credibility and business operations.

B

Brinkmann (a brand within the Putzmeister Group)

estrichboy.de

65

EstrichBoy, a brand within the Putzmeister Group, is a well-established manufacturer and global leader in construction and mining machinery, specializing in concrete and mortar pumping equipment and screed conveyors. The company has a strong European presence and a comprehensive dealer network, supported by professional training and service offerings. The website reflects a mature digital presence with multi-language support and integrated dealer search functionality. Technically, the site is built on the Liferay CMS platform with modern JavaScript frameworks and analytics tools, ensuring a robust and scalable infrastructure. Security posture is strong with HTTPS enforcement, CSP nonce usage, and OAuth2 authentication endpoints, although some security headers could be explicitly verified and enhanced. Privacy compliance is well addressed with clear cookie and data privacy policies and consent mechanisms. Overall, the website is professional, trustworthy, and aligned with the company's business objectives.

S

SANY Europe

sanyeurope.com

65

SANY Europe operates as a major manufacturer and distributor of construction and port machinery, cranes, and electric trucks targeting the European market. The company maintains a professional digital presence with a multilingual WordPress-based website, dealer portals, and a merchandise shop, indicating a mature business model focused on industrial clients and dealers. The technical infrastructure leverages modern web technologies and analytics tools such as Matomo, providing a solid foundation for digital operations. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks advanced security headers and explicit security policies, which could be improved to enhance trust and compliance. The absence of publicly available WHOIS data raises concerns about domain registration transparency, which slightly impacts overall trustworthiness. Overall, the website is professional, content-rich, and safe for general audiences, but could benefit from enhanced privacy and security disclosures.

Mitteldeutsche Hartstein-Industrie AG is a well-established German company specializing in the production and supply of raw and construction materials, infrastructure construction, recycling, and related services. With a history spanning over 119 years and a network of 42 locations, the company serves primarily business clients in the construction and infrastructure sectors. Their business model focuses on B2B supply and service provision, emphasizing sustainability and quality. The website reflects a professional and consistent brand image, supported by certifications such as Fair Company 2025 and active social media engagement. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap, jQuery, and Font Awesome. It integrates analytics tools like Matomo and Google Analytics and uses Google Maps API for location services. The site is mobile-optimized and offers good SEO and accessibility features, although some accessibility improvements could be made. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and employs a comprehensive cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were found. The domain registration data is consistent with the company's identity and history, supporting a high trust level. Overall, the website is professional, secure, and compliant with privacy regulations, serving as a credible digital presence for the company. Strategic improvements in security policy transparency and accessibility could further enhance trust and compliance.

V

Verein Deutscher Zementwerke e.V.

vdz.info

69

The Verein Deutscher Zementwerke e.V. (VDZ) operates as a leading research and competence center for the cement, concrete, and environmental protection sectors in Germany. Established in 1877, it serves as a non-profit association providing technical, scientific, and economic-political services including research, certification, consulting, and training to the cement industry and related stakeholders. The website reflects a mature and professional organization with comprehensive service offerings and a strong market position in the energy and manufacturing sectors. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including SVG graphics and asynchronous JavaScript modules for enhanced user experience. It integrates Matomo analytics for privacy-conscious user tracking and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly, indicating a well-maintained digital infrastructure. From a security perspective, the site enforces HTTPS and employs secure form handling practices. However, it lacks explicit security policy documentation and incident response contact details, which are recommended for enhanced transparency and trust. No vulnerabilities or suspicious content were detected, and the WHOIS data aligns consistently with the website's claims, supporting legitimacy. Overall, the VDZ website demonstrates a high level of professionalism, security, and compliance suitable for its industry and audience. Strategic improvements in security policy transparency and incident response readiness would further strengthen its security posture and stakeholder confidence.

R

Religionspädagogisches Institut Loccum

rpi-loccum.de

61

The Religionspädagogisches Institut Loccum (RPI Loccum) is a well-established non-profit educational institution affiliated with the Evangelisch-Lutherische Landeskirche Hannovers in Germany. It specializes in religious pedagogy and theological education, offering a broad range of professional development courses, events, and educational materials primarily targeting religious educators, schools, and church communities. The website reflects a mature organization with a 75-year history, providing comprehensive content and services in German. The business model focuses on education, training, and community engagement within the religious sector.

V

Verband der Metall- und Elektro-Industrie Nordrhein-Westfalen e.V.

metall.nrw

54

METALL NRW is a prominent employer association representing 26 regional employer associations in the metal and electrical industry sectors within North Rhine-Westphalia, Germany. The organization provides key services including labor relations, tariff negotiations, industry campaigns, and support for its approximately 2,100 member companies. The website reflects a professional and well-established entity with a clear market position as a leading regional industry association. Technically, the site is built on TYPO3 CMS, incorporates modern web technologies, and includes accessibility features such as the Eye-Able plugin. It employs Matomo analytics for privacy-conscious user tracking and enforces HTTPS for secure communications. Security posture is solid but could be improved by adding explicit HTTP security headers and incident response information. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place. Overall, the domain WHOIS data is privacy protected, which is justified for this type of organization, and the website content and structure strongly support its legitimacy and trustworthiness.

L

Landschaftspflegeverband Miltenberg e. V.

lpv-miltenberg.de

53

Landschaftspflegeverband Miltenberg e. V. is a regional non-profit organization dedicated to the preservation and care of the natural and cultural landscape in the Miltenberg district of Germany. The organization focuses on landscape maintenance, species protection, and community engagement through educational seminars and volunteer activities. Their market position is that of a trusted local environmental steward with a clear mission and active social media presence. Technically, the website employs a moderate technology stack including jQuery, Slick Slider, and Matomo for analytics, hosted on a professional hosting provider indicated by the nameservers. The site is well-structured, mobile-optimized, and includes accessibility features such as the eyeAble tool, reflecting a good level of digital maturity. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected, but security headers are not explicitly present, suggesting room for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its target audience effectively. The risk profile is low with recommendations to enhance security headers and publish security policies to further strengthen trust and compliance.

L

Lokale AktionsGruppe Main4Eck Miltenberg e.V.

main4eck.de

53

Lokale AktionsGruppe Main4Eck Miltenberg e.V. is a recognized local action group supported by the European Union and the Bavarian state, focusing on rural development in the region around Miltenberg and parts of Aschaffenburg in Germany. The organization acts as a key regional stakeholder facilitating projects, monitoring, and networking to promote sustainable development and education, including the educational platform fabuly. The website reflects a professional and consistent brand presence with clear contact information and active news updates. Technically, the site uses a modern but straightforward stack including jQuery, Slick Slider, and Matomo analytics, hosted likely on kasserver.com. Accessibility features and cookie consent mechanisms are implemented, supporting GDPR compliance. Security posture is good with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

M

MainBogen e.V.

mainbogen.de

48

MainBogen e.V. is a regional non-profit association dedicated to supporting local businesses and community engagement in the Bavarian Untermain region. Their initiatives include a loyalty card program (MainBogen-Card), vouchers redeemable at local shops, and an annual Christmas campaign with prizes, fostering local economic vitality and community spirit. The website is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Matomo analytics for privacy-conscious user tracking. The site is well-designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Security posture is adequate with HTTPS enforced, but lacks some security headers and cookie consent mechanisms, which are recommended for GDPR compliance. WHOIS data is minimal but consistent with the hosting provider and regional focus, supporting legitimacy. Overall, the website presents a trustworthy and professional digital presence for a small regional non-profit.

O

OEMUS MEDIA AG

zwpstudyclub.de

54

ZWP Study Club is a professional online portal dedicated to dental continuing education, offering free access to live and on-demand webinars, as well as recorded lectures from international congresses. The platform targets dental professionals globally and is supported by OEMUS MEDIA AG and various partners. Technically, the website is built on WordPress with modern libraries such as jQuery, Bootstrap, and Owl Carousel, and uses Cloudfront CDN for hosting. Privacy and cookie policies are well implemented with user consent mechanisms, and Matomo analytics is configured with privacy in mind. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections, though explicit security and incident response policies are not published. Overall, the site is professional, trustworthy, and well-positioned in the dental education market.

F

Feistmantl Cleaning Systems

feistmantl.com

53

Feistmantl Cleaning Systems is a well-established Austrian manufacturer specializing in cleaning systems for waste and recycling containers, with over 35 years of experience and more than 1300 installations across Europe. The company targets B2B clients in waste management, pharmaceutical, food, chemical industries, and municipal sectors. Their website is professionally designed, multilingual, and optimized for user experience and SEO. Technically, the site runs on WordPress with modern plugins for multilingual support and GDPR compliance, and uses Matomo for privacy-conscious analytics. Security posture is solid with HTTPS, domain locking, and cookie consent, though some advanced security headers and explicit security policies are absent. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and mature online presence.

T

Terberg HS GmbH

terberg-hs.de

69

Terberg HS GmbH is a well-established German company specializing in the manufacture and service of advanced waste disposal vehicles, with over 150 years of industry experience. The company operates globally, targeting municipalities and private waste management firms, and is part of the Royal Terberg Group. Their product portfolio includes side loaders, rear loaders, and front loaders, supported by service and rental offerings. The website reflects a mature business with a professional digital presence, leveraging modern web technologies and multiple analytics tools with GDPR-compliant consent management. Security posture is solid with HTTPS and anonymized tracking, though some improvements in security headers and incident response transparency are recommended. Overall, the domain and business information align well, supporting a high legitimacy score.

A

ASUP Online-Shop

asup.info

61

ASUP Online-Shop is a German B2B e-commerce platform specializing in professional work safety equipment and disposal products, including Big Bags and technical equipment. The company claims over 20 years of experience and targets business customers exclusively, offering a broad product range and services such as free shipping over a threshold and a 30-day money-back guarantee. The website is well-branded and professionally designed, with clear navigation and mobile optimization. Technically, it uses the Shopware CMS platform, integrates multiple analytics and marketing tools including Matomo, Google Tag Manager, and Pardot, and supports live chat via Tawk.to. Security posture is good with HTTPS enforced and secure forms, though some security headers are missing and privacy policies are not explicitly found in the provided content. WHOIS data is privacy protected by Identity Digital, which is typical for commercial domains, and no suspicious patterns were detected. Overall, the site is trustworthy and professionally maintained.

B

BRANDI Rechtsanwälte Partnerschaft mbB

brandi.net

48

BRANDI Rechtsanwälte Partnerschaft mbB is a well-established German law firm with a history dating back to 1895, offering specialized legal and notarial services across multiple German cities and an international partner office in Paris. The firm targets medium to large enterprises and private clients requiring expert legal counsel, particularly in economic law and related fields. Their market position is strong regionally with international cooperation, supported by over 100 lawyers and 27 notaries. Technically, the website is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and privacy-respecting analytics, though improvements are recommended in security headers and cookie consent mechanisms. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or a query issue, which slightly impacts trustworthiness. Overall, the site is professional, trustworthy, and well-maintained, with room for enhanced transparency and security disclosures.

S

Stadt Obernburg a.Main

obernburg.de

55

Stadt Obernburg a.Main operates a comprehensive municipal website providing residents and visitors with information about city administration, public services, events, tourism, and cultural offerings. The site is well-structured, primarily in German, and targets local citizens and tourists. It maintains a consistent brand presence and offers clear contact channels including phone, email, and a contact form. The website leverages modern web technologies such as JavaScript, jQuery, and accessibility tools to enhance user experience. Hosting is managed via UI-DNS, a common provider for German municipal sites. From a security perspective, the website enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. It uses Matomo analytics configured to disable cookies by default, reflecting a privacy-conscious approach. However, no explicit security policy or incident response information is published, and security headers are not explicitly detected. The WHOIS data is limited but consistent with a legitimate municipal domain. No blocking or WAF mechanisms interfere with content access. Overall, the website demonstrates a solid technical and privacy foundation suitable for a government entity, with room for improvement in formal security disclosures and header implementations. The site is safe, free from adult or questionable content, and maintains a trustworthy online presence.

E

Evangelisches Medienhaus GmbH

gemeindebaukasten.de

59

The website www.gemeindebaukasten.de is a professionally designed platform offering a modular website builder service tailored for churches, diaconal organizations, youth groups, and related non-profit entities primarily in Germany. Operated by Evangelisches Medienhaus GmbH, it provides personalized support, privacy-compliant tools, and hosting within Germany, positioning itself as a niche provider in the religious and community sector. The site leverages TYPO3 CMS and integrates Matomo analytics with a strong focus on GDPR compliance and accessibility. Security posture is solid with HTTPS and consent management, though explicit security policies and headers could be enhanced. Overall, the site is trustworthy, well-structured, and serves its target audience effectively.

E

Evangelisches Medienhaus GmbH

komm2print.de

56

The website komm2print.de is an online print portal specializing in customized print products for church communities and districts in Germany. Operated by Evangelisches Medienhaus GmbH, it offers a streamlined Web2Print service with standardized and individual print solutions including business cards, invitations, signage, and fundraising flyers. The portal targets religious organizations seeking high-quality communication materials. Technically, the site is built on TYPO3 CMS, employs Matomo for analytics, and demonstrates good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers and incident response policies could be improved. Overall, the domain registration aligns well with the business, indicating legitimacy and trustworthiness.

E

Evangelisches Medienhaus GmbH

medienkompass.de

57

Medienkompass is a German non-profit educational platform operated by Evangelisches Medienhaus GmbH, focused on providing accessible knowledge about digital media to empower responsible and creative use. The website offers articles, seminars, newsletters, and media tips primarily targeting church communities and educators. Technically, it is built on TYPO3 CMS with a modern, accessible design and uses privacy-conscious analytics (Matomo). Security posture is good with HTTPS and consent management, though security headers and incident response policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a niche educational market effectively.