Security Directory

X

XIMA MEDIA GmbH

formcycle.eu

62

formcycle, a product of XIMA MEDIA GmbH, is a professional and flexible web-based platform specializing in digital form and process management. The company offers a low-code solution enabling users to create, configure, and process digital forms and workflows efficiently, supporting both cloud and on-premises deployments. Their market position is that of a niche technology provider focused on ease of use and customization without complex programming. The website is well-structured, bilingual (English and German), and targets businesses seeking digital transformation of form and workflow processes. Technically, the website is built on the Contao Open Source CMS and leverages modern JavaScript libraries such as jQuery, Slick Carousel, and Typed.js. It integrates Matomo for analytics and Usercentrics for GDPR-compliant consent management, reflecting a mature digital infrastructure. The site is mobile-optimized with good SEO and accessibility features, although some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is privacy protected, which is common and justified for this business type, and the domain appears legitimate and consistent with the company's German base. Overall, formcycle presents a trustworthy and professional online presence with a solid technical foundation and good privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to further strengthen security posture.

S

Stiftung Creative Kirche

chormusicals.de

57

The website www.chormusicals.de represents the Stiftung Creative Kirche, a well-established non-profit organization focused on producing and promoting choir musicals across Germany. With over 30 years of experience, the organization offers cultural musical events, choir participation opportunities, and ticket sales. The site is professionally designed, content-rich, and targets choir enthusiasts and audiences interested in musical theater. Technically, the site is built on TYPO3 CMS and integrates modern JavaScript libraries and privacy-respecting analytics tools such as Matomo. The presence of a cookie consent mechanism via Klaro demonstrates a commitment to privacy compliance. Security posture is solid with HTTPS enforced, though some HTTP security headers are not visibly implemented. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

U

Universes in Universe - Worlds of Art

universes.art

57

Universes in Universe - Worlds of Art is a specialized media platform providing comprehensive information on art destinations, biennials, exhibitions, and art projects worldwide. Established online since 1997, it serves a niche audience of art enthusiasts, curators, and cultural travelers with rich content including guides, articles, and event previews. The website leverages TYPO3 CMS and integrates modern frontend technologies and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site demonstrates high content quality, good user experience, and trustworthy business credibility.

N

NaZemi

pracebudoucnosti.cz

42

The website 'Práce (bez) budoucnosti' is a Czech non-profit educational platform operated by the organization NaZemi. It focuses on the societal challenges and transformations related to the future of work, particularly in the context of automation, digitalization, and robotization. The site offers educational content, exhibitions, and workshops aimed at raising awareness about labor market changes and technological impacts. The target audience is the general public interested in these topics, with a clear focus on Czech society. Technically, the website is built on WordPress using the Divi theme and standard plugins such as Contact Form 7. It integrates Google Tag Manager and Matomo for analytics and tracking. The site is hosted under a Czech registrar and uses HTTPS with a good SSL configuration. Mobile optimization and SEO practices are good, though accessibility is basic. No advanced security headers were detected, and privacy and cookie policies are not present, which is a compliance gap. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks explicit security headers like CSP or HSTS. There is no visible vulnerability disclosure or incident response information. The domain registration data is consistent with the website's claims and organization, indicating legitimacy. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is professionally presented with good content quality and business credibility. However, it should improve privacy compliance by adding privacy and cookie policies and enhance security posture by implementing security headers and formal vulnerability disclosure mechanisms.

A

Arbeitsgemeinschaft Katholischer Büchereien Erzbistum Berlin

katholische-buechereien.de

45

The website www.katholische-buechereien.de represents the Arbeitsgemeinschaft Katholischer Büchereien Erzbistum Berlin, a small non-profit organization coordinating volunteer-run Catholic public libraries in the Berlin archdiocese. It provides free lending services of books and media, supported by approximately 80 volunteers across 12 libraries. The site is well-branded with consistent use of the Erzbistum Berlin identity and targets the general public interested in Catholic community services. Technically, the site is built on TYPO3 CMS with legacy jQuery libraries and uses Matomo for analytics, indicating moderate digital maturity. The site is mobile-optimized and includes a GDPR-compliant cookie consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are absent. Overall, the site is trustworthy, safe, and professionally maintained, serving a niche community audience effectively.

K

Kath. Schulzentrum Edith Stein - Fachschule für Sozialpädagogik und Berufsfachschule für Sozialassistenz

schulzentrum-edithstein.de

58

Katholisches Schulzentrum Edith Stein is a medium-sized educational institution based in Berlin, specializing in social pedagogy and social assistance training. It operates under the Catholic Archdiocese of Berlin and offers state-recognized programs for aspiring educators and social assistants. The website reflects a professional and consistent brand image, targeting students seeking vocational education in social fields. Technically, the site is built on Joomla CMS with modern JavaScript libraries and analytics tools, providing a responsive and user-friendly experience. Security posture is solid with HTTPS and GDPR-compliant cookie consent, though some security headers and policies could be improved. Overall, the domain and hosting align well with the institution's profile, indicating legitimacy and trustworthiness.

D

Deutsche Anwaltauskunft

anwaltauskunft.de

55

Deutsche Anwaltauskunft operates a German-language online legal information magazine and lawyer referral platform. It provides comprehensive legal content across multiple categories such as life, work, housing, mobility, society, economy, and finance. The platform targets the general public seeking legal advice and lawyer contacts in Germany. Technically, the website is built on the Contao CMS, uses modern JavaScript libraries including jQuery and Usercentrics for consent management, and integrates Matomo for analytics. The site is mobile-optimized with good navigation and SEO practices. Security-wise, HTTPS is enforced, and consent mechanisms are in place, but explicit security headers and formal security policies are absent. Overall, the site demonstrates a mature digital presence with moderate to good security posture and privacy compliance.

A

Axians Deutschland

axians.de

80

Axians Deutschland is a prominent ICT solutions provider and digital transformation partner operating as part of the global VINCI Energies network. The company focuses on delivering industry-specific digitalization services, primarily targeting business customers in Germany's energy and technology sectors. The website reflects a professional and consistent brand presence, emphasizing Axians' role as a pioneer in digital transformation. Technically, the site is built on WordPress with modern libraries and includes SEO and analytics tools such as Yoast SEO Premium and Matomo Analytics. Security measures include HTTPS usage and Google reCAPTCHA integration, alongside a cookie consent mechanism, although explicit security policies and headers are not evident. The WHOIS data is partially consistent with the website's claims but lacks detailed registrant information, slightly impacting trust. Overall, the site is well-structured, secure, and compliant with basic privacy standards, suitable for its business audience.

D

Daimler Truck AG

daimler-truck.com

72

Daimler Truck AG is a leading global manufacturer of commercial vehicles, operating over 40 production sites worldwide with a workforce exceeding 100,000 employees. The company offers a broad portfolio including trucks, buses, and tailored financial services, positioning itself as a major player in the transportation sector. The website reflects a mature digital presence with a professional design, comprehensive content, and clear navigation targeting industry stakeholders, investors, customers, and potential employees. Technically, the site is built on TYPO3 CMS and integrates modern tools such as Usercentrics for consent management and Matomo for analytics, indicating a commitment to privacy and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security policies and incident response contacts suggests room for improvement. The WHOIS data is notably missing, which is unusual for a corporate domain of this scale and warrants further verification. Overall, the site demonstrates high professionalism and trustworthiness with minor gaps in security transparency.

T

Tregler Brennstoffe

tregler-brennstoffe.at

51

Tregler Brennstoffe is a small, established business specializing in the buying, processing, and selling of quality firewood in the Czech Republic and Austria since 1991. The website reflects a regional energy sector focus with clear business descriptions and a professional presentation. Technically, the site uses modern JavaScript frameworks such as Vue.js and a Laravel Nova backend, indicating a mature digital infrastructure. The presence of multiple analytics and tracking tools shows an active approach to marketing and user behavior analysis. Security posture is moderate with HTTPS enabled and some best practices observed, but lacks explicit security headers and published privacy policies, which are areas for improvement. Overall, the site is functional, professional, and trustworthy but would benefit from enhanced compliance and security documentation.

D

Dormitio Abtei

dormitio.net

52

Dormitio Abtei is a German-speaking Benedictine Abbey located in Israel, serving religious, cultural, and academic communities. The website reflects a well-established non-profit religious institution with a focus on pilgrimage, worship services, cultural engagement, and theological studies. The domain has been active since 2005, supporting the institution's long-standing presence. Technically, the website uses modern web technologies including UIkit framework and Matomo analytics, ensuring good performance and mobile optimization. However, the site lacks visible privacy and cookie policies, which is a compliance gap under GDPR. Security posture is moderate with HTTPS enabled and domain registrar protections in place, but missing DNSSEC and security headers reduce the overall security score. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the website is professional, trustworthy, and safe for general audiences.

K

Katholische Akademie in Berlin e.V.

katholische-akademie-berlin.de

10

Katholische Akademie in Berlin e.V. is a well-established non-profit Catholic educational and cultural institution based in Berlin, Germany. It offers a wide range of events, lectures, podcasts, and cultural programs focusing on theology, politics, society, philosophy, and religion. The organization targets a general audience interested in religious and cultural discourse and maintains a strong regional presence with institutional support from recognized partners such as Bonifatiuswerk. The website reflects a professional and consistent brand image with clear navigation and relevant content.

S

Sankt Hedwigs-Kathedrale / Metropolitankapitel bei Sankt Hedwig

hedwigs-kathedrale.de

10

Sankt Hedwigs-Kathedrale is a prominent religious and cultural institution in Berlin, serving as the central Catholic cathedral for the archdiocese. The website provides comprehensive information about the cathedral's history, services, music programs, events, and community engagement. It targets parishioners, visitors, and cultural tourists, offering schedules, guided tours, and donation opportunities. The institution holds a respected position within the religious community and maintains partnerships with the archdiocese and choir organizations. Technically, the website is built on the TYPO3 CMS platform, leveraging jQuery and privacy-focused Matomo analytics. The site is well-structured, mobile-optimized, and includes a GDPR-compliant cookie consent mechanism. Hosting is managed via reputable providers as indicated by the nameservers. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and uses cookie consent to manage user privacy. However, explicit security headers and incident response policies are not evident, representing areas for improvement. No vulnerabilities or suspicious content were detected. The WHOIS data aligns reasonably with the website's institutional identity, supporting legitimacy. Overall, the website demonstrates a solid balance of content quality, technical implementation, and privacy compliance, suitable for its non-profit religious mission. Strategic enhancements in security policies and transparency could further strengthen trust and resilience.

M

MINERALplus STORK GmbH

mineralplusstork.de

49

MINERALplus STORK GmbH operates a modern slag processing plant in Zossen, Germany, specializing in recycling slag and ash from waste to energy plants. The company is jointly managed by STORK Umweltdienste GmbH and MINERALplus GmbH, both part of the EP Power Minerals group. Their services include metal recovery and production of construction materials from slag, serving industrial and construction sectors regionally. The website is professionally designed using TYPO3 CMS, with good mobile optimization and clear navigation. It employs Matomo analytics with a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS and spam-protected emails, though additional security headers and policies could enhance protection. Overall, the site reflects a trustworthy and credible business presence with clear contact information and certification evidence.

F

Felix Höltken GmbH

felixhoeltken.de

47

Felix Höltken GmbH is a medium-sized German company specializing in Baustoffrecycling and Baustoffgroßhandel, operating since 1990 and part of the EPH-Konzern. The company provides high-quality recycled construction materials primarily for the construction and infrastructure sectors, positioning itself as a sustainable alternative to natural stone resources. The website reflects a professional and consistent brand image, targeting business clients in the construction industry. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and implements a cookie consent mechanism via Klaro, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Overall, the website is well-structured, accessible, and compliant with GDPR requirements, with clear contact information and no blocking mechanisms detected.

E

Euroment

euroment.com

44

Euroment is a well-established supplier of certified pulverized coal fly ash and limestone powders primarily serving the Benelux region. The company emphasizes sustainability and innovation, particularly in reducing CO2 emissions in cement-bound systems. Their website is professionally designed using TYPO3 CMS, featuring good mobile optimization, clear navigation, and comprehensive content about their products and services. The technical infrastructure includes modern technologies such as Matomo for analytics and Klaro for cookie consent management, reflecting a mature digital presence. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which slightly impacts overall trust. Contact information is primarily via a contact page without explicit emails or phone numbers visible on the site. Overall, Euroment presents a credible and professional business front with minor areas for improvement in transparency and security best practices.

E

EP Energo Mineral Sp. z o.o. and EP Energo Mineral Deutschland GmbH

epenergomineral.pl

52

EP Energo Mineral operates as a specialized supplier and service provider in the energy and construction sectors, focusing on the management and supply of power plant by-products such as fly ash, slag mixtures, and microspheres. The company is supported by experienced shareholders and offers laboratory testing and logistics services to ensure product quality and reliable delivery. The website is professionally designed, multilingual, and provides comprehensive business and product information targeting industrial clients in Poland and Germany. Technically, the site uses TYPO3 CMS with Matomo analytics and a consent management platform, reflecting a modern digital infrastructure. Security posture is generally good with HTTPS and cookie consent implemented, though the absence of security headers and WHOIS data transparency are notable gaps. Overall, the site presents a trustworthy business presence but would benefit from enhanced security disclosures and domain registration clarity.

M

MINERALplus GmbH

mineralplus.de

46

MINERALplus GmbH is a German company specializing in industrial waste disposal and the production of construction and mine packing materials from waste. Founded in 2000 through a merger, it operates as a subsidiary of EP Power Minerals GmbH under the EPH Group umbrella. The company serves industrial and construction sectors with certified waste treatment, recycling, and landfill services. The website is built on TYPO3 CMS, uses Matomo for analytics, and Klaro for cookie consent management, reflecting a modern and privacy-conscious technical infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the website is professional, well-structured, and trustworthy, with no signs of malicious content or blocking mechanisms.

E

EP Power Grit

eppowergrit.com

53

EP Power Grit is a specialized manufacturer and global supplier of high-quality abrasives and industrial minerals based on aluminum, iron, and calcium silicates, natural minerals, glass, and other raw materials. The company operates production facilities in Germany, Belgium, the Netherlands, and Finland, with local customer service in several European countries. Their product portfolio includes disposable abrasives, reusable abrasives, special abrasives, and industrial minerals, complemented by flexible packaging and logistics services. The website is professionally designed, multi-lingual, and provides detailed product and service information, targeting industrial and construction sectors worldwide. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics with a cookie consent mechanism, and employs modern web technologies ensuring good performance and mobile optimization. Security posture is solid with HTTPS and privacy compliance, though some security headers and explicit policies could be improved. The WHOIS data is unavailable, which raises some concerns about domain legitimacy, but the professional content and business presence suggest a legitimate operation. Overall, the website presents a trustworthy and mature digital presence for EP Power Grit.

N

NaZemi

nazemi.cz

45

NaZemi is a well-established Czech non-profit organization founded in 2005, focusing on sustainability, transformative education, and community engagement. Their website reflects a mature digital presence with clear navigation, multilingual support, and a professional design. They offer educational programs, facilitation services, community spaces, and an e-commerce platform for publications. Technically, the site is built on WordPress with WooCommerce and uses modern frameworks like Bootstrap, supported by privacy-conscious analytics such as Matomo and Google Tag Manager with consent management. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Contact information and privacy policies are clearly presented, supporting trust and compliance. Overall, the site is credible, secure, and user-friendly, serving a niche audience interested in sustainability and education.

N

NaZemi

generacesymbiocen.cz

47

Generace Symbiocén is a Czech non-profit educational program targeting young people aged 17-23, focusing on societal and environmental transformation, particularly addressing the climate crisis. The program is operated by NaZemi, a well-established organization in global education and social change. The website is built on WordPress using Elementor and integrates various plugins including Everest Forms and Instagram Feed. It uses Matomo for analytics and embeds YouTube videos for content delivery. The site is professionally designed with good navigation and mobile optimization, providing relevant and engaging content for its target audience. However, it lacks explicit privacy and cookie policies, consent mechanisms, and security headers, which are important for compliance and security posture. WHOIS data confirms the domain is recently registered in 2022, consistent with the program's founding, and is hosted on Czech servers. Overall, the site is trustworthy and credible but could improve in privacy compliance and security best practices.

O

on-collect solutions AG

on-collect.de

39

on-collect solutions AG operates a legaltech cloud platform specializing in debt collection and receivables management, primarily serving companies in the energy sector in Germany. The company combines software as a service with consulting and legal expertise to optimize the entire customer lifecycle in receivables management. Their platform integrates seamlessly with ERP systems and offers automated processing, digital file management, and comprehensive reporting. The website positions on-collect as a pioneer in legaltech with over 200 customers using their SaaS solution. Technically, the website is built on WordPress with Elementor and Bootstrap, leveraging modern JavaScript libraries and Matomo for privacy-conscious analytics. The site is mobile-optimized and demonstrates good SEO practices, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, but lacks some security headers and formal security policies. Overall, the security posture is good but could be improved by adding explicit privacy and cookie policies, incident response information, and security headers. The domain WHOIS data is consistent with the business claims, supporting legitimacy. No blocking or WAF challenges were detected, allowing full content analysis. Strategic recommendations include enhancing privacy compliance, publishing security and incident response policies, and implementing security headers to strengthen trust and compliance with GDPR and related regulations.

D

Datadruck GmbH

datadruck.com

53

Datadruck GmbH operates as a regional printing service provider based in the Ulm / Neu-Ulm area in Germany. The company offers a variety of printing products and services targeting both business and individual customers. The website is professionally designed using WordPress with Elementor and Astra theme, indicating a moderate level of digital maturity. The presence of structured data and SEO optimizations further supports their online presence. From a security perspective, the website uses HTTPS and employs Matomo analytics with cookies disabled, reflecting some privacy awareness. However, the absence of explicit privacy, cookie, and security policies, as well as missing WHOIS domain registration data, presents concerns that should be addressed to improve trust and compliance. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

E

e-rechtsanwälte.eu

e-rechtsanwaelte.de

42

e-rechtsanwälte.eu is a specialized legal consultancy firm focusing on energy law, IT law, internet law, and data protection, primarily serving energy suppliers and medium-sized industries in Germany. The website presents a professional image with clear navigation and a modern design, leveraging WordPress with Elementor and Bootstrap frameworks. The firm offers a range of legal services including contract law, insolvency law, and organizational liability. Technically, the site uses HTTPS, Matomo analytics with cookies disabled, and a cookie consent mechanism, indicating a moderate level of digital maturity. However, the absence of a published privacy policy and terms of service pages suggests room for improvement in compliance transparency. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the lack of security headers is a minor concern. Overall, the website is trustworthy and professional, though enhancing privacy and security disclosures would strengthen its compliance and user trust.

The website is the official online booking platform for Seminole Hard Rock Hollywood, a major hospitality brand in Florida. It provides users with the ability to reserve hotel rooms, access loyalty programs, and view promotional offers. The site is well-branded and professionally designed, targeting travelers seeking accommodations at this property. The technical infrastructure leverages modern web technologies including ASP.NET, JavaScript libraries, and integrates multiple analytics and marketing tools such as Google Analytics, TikTok Pixel, and Facebook Pixel. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with GDPR and other privacy regulations. Security posture is strong with HTTPS enforcement and appropriate security headers, though no explicit incident response or vulnerability disclosure information is provided. Overall, the site presents a trustworthy and professional digital presence aligned with the parent Hard Rock brand.

The website is an online booking platform for Hard Rock Hotel & Casino Sacramento at Fire Mountain, a hospitality and casino property located in Wheatland, California. It serves as a reservation interface for hotel rooms and related services, targeting adult customers interested in gaming and lodging. The site is branded consistently with the Hard Rock brand and integrates multiple third-party marketing and analytics tools to optimize user engagement and conversion. Technically, the site uses a modern JavaScript stack with integrations for Google Tag Manager, OneTrust for cookie consent, and various advertising pixels. The site is mobile responsive and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers could be improved. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy, though direct contact information and security policies are limited. WHOIS data for the subdomain is not available, which is typical for subdomains managed under a parent domain. Overall, the site is legitimate, professionally maintained, and suitable for its business purpose.

The website is an online booking platform for Hard Rock Atlantic City, a hospitality property located in Atlantic City, New Jersey. It provides hotel room reservations and package bookings integrated with loyalty programs. The site is part of the Hard Rock Hotels chain, a well-known brand in the hospitality industry. The technical infrastructure includes modern JavaScript libraries, Google Maps API, and multiple analytics and advertising tools, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers are not explicitly detected. The absence of visible privacy policy and terms of service pages is a compliance gap. WHOIS data is unavailable for the subdomain, which is expected, and the domain is consistent with the parent Hard Rock brand. Overall, the site is professional, trustworthy, and safe for general audiences.

V

Verein Deutscher Zementwerke e.V.

vdz-online.de

68

The Verein Deutscher Zementwerke e.V. (VDZ) is a well-established German non-profit association serving as a leading research and competence center for the cement, concrete, and environmental protection sectors. Founded in 1877, it provides a broad range of services including research, certification, consulting, and professional training to the cement industry. The website reflects a professional and comprehensive digital presence with multilingual support and clear navigation tailored to industry professionals and stakeholders. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including SVG graphics and asynchronous JavaScript loading. The use of Matomo analytics indicates a privacy-conscious approach to user tracking. The website is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks some recommended security headers such as Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the organization's identity and domain usage, supporting legitimacy. Overall, the VDZ website presents a trustworthy, professional, and secure platform that effectively supports its business objectives and stakeholder engagement.

The Bundesverband der Deutschen Transportbetonindustrie e.V. (BTB) is a professional industry association representing transport concrete manufacturers and related businesses in Germany. The organization focuses on key industry challenges such as decarbonization, resource conservation, technical standards, research, education, and workplace safety. It operates the Concrete Sustainability Council (CSC) certification system in Germany, underscoring its commitment to sustainable construction practices. The website serves as a comprehensive resource for members and the broader industry, offering news, training, research updates, and member-exclusive content. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including jQuery and Matomo analytics. It features good SEO optimization, accessibility, and mobile responsiveness. Security practices include HTTPS enforcement and secure login forms with CSRF protection. Cookie consent mechanisms and GDPR-compliant privacy policies are implemented, reflecting a mature approach to privacy and compliance. While the website content and technical infrastructure are robust and professional, the WHOIS data for the domain is unavailable due to a malformed WHOIS response, limiting the ability to fully verify domain registration legitimacy. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Overall, the site demonstrates a strong security posture with minor recommendations for enhanced security headers and explicit incident response information. Strategically, BTB is well-positioned as a leading industry association in Germany's transport concrete sector, with a clear focus on sustainability and member services. The digital presence supports its mission effectively, though verifying domain registration details through alternative means is advisable to strengthen trust.

I

Industrieverband Steine und Erden Baden-Württemberg e.V.

iste.de

51

The Industrieverband Steine und Erden Baden-Württemberg e.V. operates as a regional industry association representing the stones and earths sector in Baden-Württemberg, Germany. The website serves as an information hub providing news, events, educational initiatives, and service offerings to its members and the broader public interested in the industry. It maintains a professional and consistent brand presence with clear communication channels and social media engagement. Technically, the site is built on the 'cumodis simple cms' platform, uses modern web standards, and integrates Matomo analytics with privacy-conscious configurations. Security posture is adequate with HTTPS enforced and secure login forms, though the absence of explicit security headers suggests room for improvement. Privacy compliance is strong, evidenced by a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

E

EP Power Minerals

eppowerminerals.com

50

EP Power Minerals is a well-established European company specializing in the supply of cementitious materials such as fly ash and granulated blast furnace slag, serving the concrete and cement industries globally. With over 40 years of experience and a network of subsidiaries and partners, the company positions itself as a leader in its sector. The website reflects a professional and modern digital presence built on TYPO3 CMS, featuring comprehensive content, clear navigation, and mobile optimization. Privacy and cookie compliance are well implemented with a consent manager and detailed policies. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit policies could be improved. The absence of WHOIS registration data introduces some uncertainty about domain legitimacy, but the overall business credibility remains high based on website content and external domain relationships.

S

SCHWING Stetter

schwing-stetter.com

49

SCHWING Stetter is a well-established German manufacturer specializing in concrete technology products such as truck-mounted concrete pumps, truck mixers, batching plants, and industrial pumping systems. The company maintains a strong global presence with multiple regional partner sites and subsidiaries, targeting construction industry professionals and industrial clients. Their website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on TYPO3 CMS, uses modern JavaScript frameworks, and integrates privacy-conscious analytics via Matomo. Cookie consent is managed effectively through Cookiebot, ensuring GDPR compliance. Security posture is solid with HTTPS enabled and basic security headers, though there is room for improvement in DNSSEC and advanced security headers. No critical vulnerabilities or suspicious patterns were detected. Overall, the website and domain registration data indicate a legitimate and credible business with a mature digital infrastructure.

P

Putzmeister

putzmeister.com

61

Putzmeister is a globally recognized leader in manufacturing and servicing construction and mining machinery, specializing in concrete pumps, mixers, and related equipment. Founded in 1958 and headquartered in Germany, the company operates under the parent company SANY Group and maintains a strong market position with multiple subsidiary brands. The website reflects a professional and comprehensive digital presence targeting industry professionals and customers worldwide. Technically, the site is built on the Liferay CMS platform with modern web technologies including React and Matomo analytics, providing a good user experience with moderate performance and mobile optimization. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC and explicit cookie consent mechanisms are recommended. Overall, the domain registration and website content align well, supporting high legitimacy and trustworthiness.

Profi Beton GmbH is a medium-sized manufacturing company specializing in the production and distribution of transport concrete and splitt concrete, primarily serving the Rhein-Main region and the vorderen Odenwald in Germany. As a 100% subsidiary of Mitteldeutsche Hartstein-Industrie Aktiengesellschaft, it holds a leading market position with over 30 years of experience and a DIN ISO 9001 certification, indicating a commitment to quality. The company targets private, commercial, and public customers with tailored concrete products for various construction needs. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including jQuery, FontAwesome, and Google Maps API for location services. The site demonstrates good mobile optimization, clear navigation, and moderate performance. Privacy and compliance are well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policies. Matomo analytics is used for user tracking, reflecting a privacy-conscious approach. From a security perspective, the site enforces HTTPS and uses session cookies appropriately. However, some standard security headers are not explicitly detected, and there is no visible security policy or incident response contact, which could be improved. No vulnerabilities or suspicious content were found, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, Profi Beton GmbH presents a professional, trustworthy online presence with solid compliance and security foundations. Strategic improvements in security headers and incident response transparency would further enhance their security posture and trustworthiness.

H

Hauptverband der Deutschen Bauindustrie e.V.

leisegehtsnicht.de

49

The website 'Leise geht's nicht.' represents the Hauptverband der Deutschen Bauindustrie e.V., a key industry association for the German construction sector. It serves as an informational platform highlighting the industry's role in infrastructure, digitalization, climate protection, and housing development. The site targets stakeholders including government, industry professionals, and the general public, emphasizing the societal importance and challenges of construction projects. Technically, the site is built on TYPO3 CMS with Matomo analytics, demonstrating a modern and professional digital infrastructure. The site is mobile-optimized and well-structured, though some accessibility and security header improvements are possible. Security posture is strong with HTTPS and no visible vulnerabilities, but lacks published security policies or vulnerability disclosure mechanisms. Overall, the site is trustworthy, professional, and compliant with GDPR through linked policies on the bauindustrie.de domain.

O

Oranto GmbH

oranto.de

54

Oranto GmbH is a small technology company based in Berlin, Germany, specializing in agile software development with a focus on Enterprise Content Management Systems, database applications, and scientific study platforms. Their key offerings include Oranto AI, a secure AI management solution emphasizing data privacy, and a flexible, GDPR-compliant Studienplattform for managing clinical and non-clinical studies. The company positions itself as a trusted partner for digital transformation, providing services such as web hosting, SEO, TYPO3 expertise, and IT consulting. Technically, the website is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is hosted via domainoffensive.de. The site is well-structured, mobile-optimized, and demonstrates good SEO practices.

E

Evangelisch-Lutherisches Landeskirchenamt Sachsens

evlks.de

50

The website www.evlks.de serves as the official online portal for the Evangelisch-Lutherisches Landeskirchenamt Sachsens, a regional religious authority in Germany. It provides comprehensive information about church activities, events, educational resources, and community support services. The site targets both the general public and church members, including volunteers and staff. It holds a strong market position as a trusted source for religious and cultural information within Saxony. The business model is non-profit, focusing on community engagement and information dissemination.

E

Evangelische Kirche der Pfalz

evpfalz.de

57

The Evangelische Kirche der Pfalz website serves as the official digital presence of one of the 20 regional Protestant churches in Germany under the EKD umbrella. It provides comprehensive information about church activities, events, community engagement, job opportunities, and press releases. The site targets a broad audience including church members, volunteers, and the general public interested in religious and community topics. The organization positions itself as a large, established non-profit religious entity with a strong regional presence in Germany. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript frameworks such as Swiper.js for interactive elements and Usercentrics for GDPR-compliant cookie management. The site is well-optimized for mobile devices, accessibility, and SEO, demonstrating a mature digital infrastructure. Hosting appears to be managed via German-based servers, consistent with the organization's regional focus. From a security perspective, the site enforces HTTPS and integrates privacy proxy servers to enhance data protection. While no explicit security headers were detected in the provided data, the overall posture is strong with no visible vulnerabilities or exposed sensitive information. The presence of a cookie consent mechanism and clear privacy policies indicates good compliance with GDPR requirements. However, the site could improve by publishing a dedicated security policy and incident response contacts. Overall, the website is professional, trustworthy, and well-maintained, reflecting the organization's credibility and commitment to transparency. It effectively balances user experience, content quality, and privacy considerations, making it a reliable resource for its audience.

E

Evangelische Kirche in Mitteldeutschland (EKM)

ekmd.de

48

The Evangelische Kirche in Mitteldeutschland (EKM) is a large, established religious organization serving multiple German federal states including Sachsen-Anhalt, Thüringen, parts of Sachsen and Brandenburg. The website serves as an information hub for religious services, community engagement, social justice initiatives, press releases, and career opportunities. It targets a broad audience interested in religious and social activities within central Germany. The organization maintains a strong regional presence with official contact points and active social media channels. Technically, the website uses modern frameworks such as Symfony, Bootstrap, and Matomo analytics, hosted via INWX, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS and some security best practices, though explicit security and privacy policies are not prominently linked. Overall, the site is professional, trustworthy, and content-rich, supporting the organization's mission and community engagement.

M

Medienhaus der Evangelischen Kirche in Hessen und Nassau GmbH

ev-medienhaus.de

69

The Medienhaus der Evangelischen Kirche in Hessen und Nassau GmbH is a non-profit organization serving as the central media and publishing hub for the Evangelische Kirche in Hessen und Nassau. It offers a broad range of services including media production, publishing, seminars, and agency services tailored to church and diaconal staff and institutions. The website reflects a professional and consistent brand presence with clear navigation and relevant content for its target audience. Technically, the website is built on TYPO3 CMS, employs Matomo for privacy-conscious analytics, and uses standard web technologies such as JavaScript and CSS. The site is moderately optimized for performance and mobile devices, with a cookie consent mechanism ensuring GDPR compliance. Hosting is via DomainControl, a reputable registrar service. From a security perspective, the site enforces HTTPS and uses session cookies appropriately. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website demonstrates a solid security posture and good privacy compliance, supporting its role as a trusted media provider for a religious non-profit entity. Strategic improvements in security headers and incident response transparency would further enhance its security maturity.

Sozialpolitik aktuell is an academic and informational website operated by the Institut für Arbeit und Qualifikation (IAQ) at Universität Duisburg-Essen. It provides extensive, up-to-date information on social policy topics in Germany, including analyses, infographics, legislative updates, and reports. The site targets researchers, policymakers, students, and the interested public, positioning itself as a trusted source in the social policy domain. Technically, the website is built on the Contao CMS platform, uses common JavaScript libraries, and employs Matomo analytics with IP anonymization to respect user privacy. The site is well-structured, mobile-optimized, and includes a comprehensive cookie consent mechanism. Security posture is good with HTTPS enforced, though security headers are not explicitly detected. No direct contact emails or phone numbers are present, but a contact form is available. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

K

Katholische Akademie der Erzdiözese Freiburg

katholische-akademie-freiburg.de

38

The Katholische Akademie der Erzdiözese Freiburg is a regional non-profit educational and cultural institution affiliated with the Catholic Archdiocese of Freiburg, Germany. It organizes interdisciplinary events and discussions on theology, philosophy, ethics, church matters, and social topics, targeting interested individuals and the broader community. The website reflects a professional and consistent brand presence with a focus on event promotion and educational content. Technically, the website is built on the Edith CMS platform, utilizing jQuery, Bootstrap, and Matomo analytics for tracking. Hosting is provided by w-commerce.de, with multiple authoritative nameservers ensuring domain stability. The site is mobile-optimized with good navigation and SEO practices, although performance is moderate. From a security perspective, the site enforces HTTPS and uses Matomo with cookie disable options, indicating some privacy awareness. However, it lacks explicit privacy and cookie policies, security headers, and incident response information, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is safe, trustworthy, and professionally maintained but would benefit from enhanced privacy compliance and security best practices to strengthen user trust and regulatory adherence.

H

Hauptverband der Deutschen Bauindustrie e.V.

leise-gehts-nicht.de

49

The website represents the Hauptverband der Deutschen Bauindustrie e.V., a key German industry association advocating for the construction sector. It focuses on infrastructure, digitalization, climate protection, and housing development, positioning itself as a vital stakeholder in societal and economic development. The site is built on TYPO3 CMS and uses Matomo for privacy-conscious analytics, reflecting a modern and responsible technical infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit policies could be improved. Contact information and social media presence are comprehensive, enhancing trust and accessibility. Overall, the site is professional, content-rich, and aligned with its business mission.

H

Hauptverband der Deutschen Bauindustrie e.V.

bauindustrie.de

53

The Hauptverband der Deutschen Bauindustrie e.V. is the leading industry association representing the German construction sector. It advocates for the interests of construction companies at all levels of government and society, providing data, best practices, and policy dialogue to strengthen the industry's competitiveness. The website is professionally designed, content-rich, and targets construction professionals, policymakers, and stakeholders. Technically, the site is built on TYPO3 CMS with Bootstrap and uses Matomo for privacy-conscious analytics. It is mobile-optimized and well-structured for SEO and accessibility. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and safe for general audiences.

R

REIKEM IT Systemhaus

reikem.de

59

REIKEM IT Systemhaus GmbH is a German-based IT service provider specializing in IT security, telephony solutions, and web development. The company positions itself as a reliable partner offering comprehensive IT infrastructure management, consulting, and maintenance services tailored to business clients. Their website reflects a professional and modern digital presence with clear navigation, detailed service descriptions, and strong trust signals such as customer testimonials and partner affiliations. Technically, the site is built on Joomla CMS with modern frontend frameworks and includes analytics and marketing tools like Matomo and Google Tag Manager. Security measures include HTTPS enforcement and reCAPTCHA integration, although explicit security policies and incident response contacts are not publicly detailed. Overall, the website demonstrates a mature digital infrastructure and a solid security posture appropriate for a small IT service company.

R

Rechnungsprüfungsamt der evangelisch-lutherischen Landeskirche Hannovers

rpa-kirche.de

57

The Rechnungsprüfungsamt der evangelisch-lutherischen Landeskirche Hannovers is a specialized public institution responsible for financial auditing and control within the Evangelical Lutheran Church of Hanover. The website serves as an informational portal for church districts, congregations, and affiliated institutions, providing insights into their auditing activities, news, and career opportunities. The organization holds a stable market position within the government and non-profit sectors, focusing on transparency and accountability in church finances. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and Matomo analytics, hosted on a CDN for performance. Security posture is solid with HTTPS and CSRF protections, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is professional, trustworthy, and well-structured, supporting the organization's mission effectively.

E

Evangelische Agentur der Evangelisch-lutherischen Landeskirche Hannovers

kirchliche-dienste.de

59

The Evangelische Agentur der Evangelisch-lutherischen Landeskirche Hannovers is a regional non-profit service agency supporting church communities and organizations in Niedersachsen, Germany. The website provides comprehensive information about their services including community support, fundraising, spiritual guidance, and public responsibility initiatives. The agency operates under the umbrella of the Evangelisch-lutherische Landeskirche Hannovers, indicating a strong institutional backing and trustworthiness. Technically, the website employs modern web technologies such as Font Awesome 7, Turbo (Hotwire), and Matomo analytics, reflecting a moderate level of digital maturity. The site is mobile-optimized and uses HTTPS with CSRF protection, but lacks some advanced security headers and cookie consent mechanisms, which are recommended for enhanced security and GDPR compliance. From a security perspective, the site shows good practices with encrypted connections and privacy-conscious analytics but could improve by publishing explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and serves its target audience effectively. Strategic improvements in privacy compliance and security transparency would further strengthen its posture.

E

Evangelisch-lutherische Landeskirche Hannovers

zukunftsprozess.de

59

The website Zukunftsprozess.de represents the Evangelisch-lutherische Landeskirche Hannovers' initiative to communicate and manage future-oriented processes within the church. It targets church members, employees, and interested parties with information about structural reforms, planning, and thematic focuses such as faith beginnings and social engagement. The site is well-branded, consistent, and professionally maintained, reflecting a medium-sized non-profit religious organization in Germany. Technically, the site employs modern web technologies including Font Awesome 7 for icons, Matomo for analytics, and Turbo for enhanced navigation. The presence of CSRF tokens and HTTPS indicates a secure baseline, though explicit security policies and cookie consent mechanisms are lacking. The site is mobile-optimized and SEO-friendly, with good navigation clarity. Security posture is solid with HTTPS and security headers, but could be improved by publishing incident response and vulnerability disclosure policies. Privacy compliance is partial, with a privacy policy present but no cookie consent banner despite tracking usage. Contact information is limited to a contact form, with no direct emails or phone numbers visible. Overall, the site is trustworthy and safe, with no adult or questionable content. The WHOIS data is minimal but does not raise concerns. Strategic improvements in privacy and security transparency would enhance trust and compliance.

L

Landeskirche Hannovers

kimusearch.de

59

KiMuSearch is a specialized online platform operated under the Evangelische Landeskirche Hannovers, designed to connect church musicians with congregations seeking musical services for worship and events. The platform facilitates registrations for both musicians and congregations, enabling posting and responding to service requests within a regional context. The website is professionally designed with a clear focus on its niche audience, providing essential features such as secure login and event listings. Technically, the site is built on Ruby on Rails with Bootstrap and Font Awesome for UI, and uses Matomo for analytics, indicating a moderate level of digital maturity. Security measures include HTTPS enforcement and CSRF protection, though some security headers and cookie consent mechanisms are missing. Overall, the site demonstrates a solid security posture appropriate for its scope, with room for improvement in privacy compliance and incident response transparency.