Security Directory

D-BOX Technologies Inc. is a Canadian technology company specializing in haptic motion technology that enhances entertainment and simulation experiences. Their offerings span multiple sectors including movie theaters, home entertainment, sim racing, gaming, simulation and training, and theme parks. The company positions itself as an innovator in immersive technology with a global reach and a strong digital presence. The website is built on HubSpot CMS, leveraging modern marketing and analytics tools, and demonstrates good mobile optimization and user experience. Security posture is solid with HTTPS enforced and secure forms, though some security headers and policies could be improved. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to professional content and investor relations transparency.

T

Tobit.Labs

smartel.com

63

smartel.com presents a modern, digitally-driven hotel concept targeting tech-savvy and mobile customers who prefer self-service and automation in hospitality. The business leverages the chayns software platform to enable guests to manage bookings, check-in, room control, and payments independently, minimizing traditional hotelier roles. The website is well-structured, uses modern web technologies including React and chayns APIs, and is hosted under a long-established domain registered since 1999. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is limited, with no explicit cookie consent or comprehensive privacy policy detected. Contact information and incident response details are not publicly available, which may impact trust. Overall, the site is professional and functional but could improve in privacy and security transparency.

N

next

next-ahaus.de

57

The website next-ahaus.de represents a local nightclub business named 'next' located in Ahaus, Germany. It offers nightlife entertainment with multiple floors and bars, hosting various themed music events and parties. The site targets a mature audience interested in nightlife and music events. Technically, the site is built on modern web technologies including React and the Chayns platform, hosted on Gandi nameservers, and uses HTTPS with video backgrounds and structured event data for ticket sales. Security posture is moderate with HTTPS enabled but lacks visible security headers and explicit privacy or cookie policies. No direct contact emails or phone numbers are found, which may impact user trust and compliance. Overall, the site is functional and professional but could improve in privacy compliance and security best practices.

A

ahaus.bike

ahaus.bike

64

ahaus.bike is a small, technology-driven eBike rental service operating in Ahaus, Germany, leveraging the Tobit.Labs chayns platform to provide a fully digital bike sharing experience. The business focuses on environmentally friendly transportation solutions using modern VanMoof eBikes, targeting local residents and visitors who seek flexible, app-based bike rentals. The platform supports group bookings and offers maintenance services for VanMoof bikes, positioning itself as a local showcase for digital bike rental technology. Technically, the website is built on modern web technologies including React and the chayns framework, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced, but lacks some security headers and formal privacy or cookie policies, which impacts compliance. The WHOIS data is privacy-protected due to TLD restrictions, but the domain appears legitimate and consistent with the business profile. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

S

Sherlock's

sherlocks.app

56

Sherlock's is a small, themed steakhouse located in Ahaus, Germany, operating within the pub 'The Unbrexit'. The business leverages digital innovation by offering smartphone-based table reservations, ordering, and payment, creating a modern dining experience. The website reflects this digital maturity by using the Chayns platform and React framework, providing a responsive and well-structured user interface. The business hosts special event dinners, enhancing customer engagement and market differentiation. Technically, the website is hosted on reputable infrastructure with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies, which are areas for improvement. Overall, the security posture is solid with no visible vulnerabilities, but compliance gaps exist regarding privacy and cookie consent. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

The Unbrexit

unbrexit.pub

61

The Unbrexit is a small hospitality business operating a British-style pub located in Ahaus, Germany. It offers authentic British pub culture, including original beers, food, and various events such as Pub Quiz, live music, and themed dinners. The business also collaborates with nearby venues like Sherlock’s Steakhouse and smartel hotel, enhancing its service offerings. The website is built on the chayns platform, leveraging modern web technologies and providing a good user experience with mobile optimization and event management features. However, the absence of privacy and cookie policies indicates compliance gaps. Security posture is generally good with HTTPS enforced, but security headers are missing. WHOIS data is privacy protected, which slightly reduces transparency but does not strongly impact legitimacy given the business type. Overall, the website and business appear legitimate and professionally managed, serving a mature audience interested in nightlife and hospitality in the local region.

B

BamBoo!

bamboo-ahaus.de

66

BamBoo! is a hospitality business operating an urban beach and restaurant in Ahaus, Germany, offering a unique dining and event experience with a subtropical theme. The website showcases their offerings including organic food, cocktails, event hosting, and family-friendly amenities. The business leverages the chayns platform for digital reservations, ordering, and content management, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and domain protections, but lacks some security headers and formal privacy and cookie policies. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

O

offsite Ahaus

offsite-ahaus.de

70

offsite Ahaus is a modern sports bar and lounge located in Ahaus, Germany, offering a unique blend of hospitality services including live sports broadcasting on multiple OLED screens, digital ordering of drinks and food, and entertainment options such as gaming and cinema experiences. The business leverages digital technologies and is integrated within the Tobit software ecosystem, indicating a strong digital maturity. The website is professionally designed, mobile-optimized, and uses modern web technologies including React and the Chayns framework. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though there is room for improvement in security headers and privacy compliance. Overall, the site is trustworthy and well-positioned in its local hospitality market, targeting a mature audience interested in nightlife and sports entertainment.

V

Verband der Chemischen Industrie Landesverband Nord e. V.

vci-nord.de

54

VCI Nord is a regional industry association representing approximately 280 chemical industry companies in Northern Germany. The organization focuses on advocacy, sustainability, education, innovation, and reducing bureaucracy for its members. The website is professionally designed using TYPO3 CMS, featuring clear navigation, relevant content, and multiple partner affiliations. Technically, the site is modern and mobile-optimized, though some security best practices such as security headers and cookie consent mechanisms are missing. The security posture is solid with HTTPS enforced and no visible vulnerabilities, but incident response and vulnerability disclosure information are absent. Overall, the site is trustworthy and serves its target audience effectively.

T

TUI

tui.com

72

TUI.com is the official website of TUI, a leading European travel and tourism company offering a wide range of services including package holidays, hotel bookings, flights, cruises, car rentals, and additional travel-related services. The website is professionally designed, mobile-optimized, and provides a comprehensive user experience targeting a general audience interested in travel. Technically, the site employs modern web technologies such as Web Components, asynchronous JavaScript loading, and integrates third-party services like Tealium for tag management and Gigya for customer identity management. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies are not fully confirmed in the provided data. Privacy compliance is moderate due to the absence of clearly identified privacy and cookie policies in the analyzed content. WHOIS data is unavailable, which limits domain registration verification, but the website's professional presentation and branding strongly indicate legitimacy. Overall, TUI.com represents a mature, enterprise-level digital platform in the hospitality sector with good security and technical implementation but could improve transparency around privacy and security policies.

C

corporate benefits Benelux BV

corporate-benefits.be

62

Corporate Benefits Benelux BV operates as a European market leader in employee benefits solutions, providing tailored discount platforms and attractive offers from strong brands to over 40,000 companies and 15.6 million registered users. Their business model focuses on B2B and B2C services targeting employers, retailers, and employees across multiple European countries. The website is professionally designed, multilingual, and built on TYPO3 CMS, indicating a mature digital infrastructure with moderate performance and good mobile optimization. Security posture is adequate with cookie consent mechanisms and secure form validations, though lacking explicit security headers and vulnerability disclosures. WHOIS data is restricted, limiting domain ownership verification, but the overall trust indicators such as TÜV IT certification and consistent branding support legitimacy. The site integrates Google Tag Manager and analytics for marketing and tracking purposes with GDPR-compliant consent.

D

dm-drogerie markt GmbH + Co. KG

lust-an-zukunft.de

68

The website 'Lust an Zukunft' is a community engagement platform operated by dm-drogerie markt GmbH + Co. KG, a large retail company in Germany. The site focuses on supporting local initiatives for a livable and open society, aligning with the company's corporate social responsibility efforts. The platform is well-branded and consistent with dm's retail and community values, targeting a general audience interested in social initiatives and retail services. Technically, the site employs modern web technologies including JavaScript modules and CSS, with a self-hosted Matomo analytics solution integrated via Cookiebot for GDPR-compliant user tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms effectively, though it lacks explicit security headers and a published security policy. No critical vulnerabilities or suspicious content were detected, and the domain registration aligns with the brand identity. Overall, the website demonstrates a mature digital presence with strong privacy compliance and a trustworthy business profile.

B

buechler.pro gmbh

buechler.pro

46

buechler.pro gmbh is a specialized TYPO3 CMS agency based in Switzerland, offering professional web development, web application development, and agency services. The company positions itself as a partner for digital projects and transformation, targeting businesses and agencies seeking high-quality TYPO3 solutions. Their market position is supported by certifications such as TYPO3 Certified Developer and TYPO3 Bronze Membership, along with a portfolio of client references. Technically, the website is built on TYPO3 CMS with Bootstrap and modern web technologies, delivering a responsive and accessible user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are missing and no explicit incident response or security policies are published. Privacy compliance is partially addressed with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, though WHOIS data is unavailable, slightly reducing domain trustworthiness.

P

Partnerschaften für Demokratie der Landkreise Wunsiedel i. Fichtelgebirge, Tirschenreuth, Hof und Stadt Hof

demokratie-leben-in-der-mitte-europas.de

42

The website demokratie-leben-in-der-mitte-europas.de serves as an informational and funding portal for democracy promotion projects in the German regions of Wunsiedel i. Fichtelgebirge, Tirschenreuth, Hof, and the city of Hof. It operates under the federal program "Demokratie leben!" supported by the German Ministry for Family Affairs. The site provides resources for project funding, event announcements, and contact information for coordination offices. Technically, the site is built on WordPress 6.8.3, with a modern responsive design and good accessibility features. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response policies are absent. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, serving a small regional government/non-profit audience.

MHedia.de is a small German technology business specializing in smart web solutions, operated by Marcel Hifinger. The website is minimalistic, providing basic contact information and a clear indication of the business focus on web solutions. The market position appears local and small scale, targeting a general audience in Germany. The business model is service-oriented, likely offering web development or consulting services. Technically, the website is a simple static HTML/CSS site hosted on kasserver.com with no detected CMS or advanced frameworks. The site lacks mobile optimization and accessibility features, and no analytics or tracking technologies are present. The absence of HTTPS and security headers suggests a basic technical infrastructure with room for improvement in security and performance. From a security perspective, the site does not display privacy, cookie, or terms of service policies, nor any incident response or vulnerability disclosure information. No security best practices such as HTTPS or security headers are evident, which lowers the security posture. However, no critical vulnerabilities or suspicious elements were detected. The domain WHOIS data aligns with the website content and hosting provider, supporting legitimacy. Overall, the website is functional but basic, with moderate trustworthiness. Strategic improvements in security, privacy compliance, and technical modernization are recommended to enhance business credibility and user trust.

Z

Zentrum Verkündigung der EKHN

zentrum-verkuendigung.de

59

Zentrum Verkündigung der EKHN is a non-profit religious organization affiliated with the Evangelische Kirche in Hessen und Nassau, providing a broad range of church-related services including publications, events, spiritual resources, and music programs. The website serves as an important regional hub for church members, volunteers, and stakeholders, offering comprehensive content and resources tailored to their needs. The organization maintains a clear and consistent brand presence with good content quality and user experience. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating Matomo for analytics. Hosting is provided by SchlundTech, a reputable provider. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive digital maturity level. From a security perspective, the site uses HTTPS with a solid SSL configuration and secure form handling. However, it lacks explicit security policies and incident response information publicly available, which could be improved. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms in place. No critical vulnerabilities or suspicious activities were detected. Overall, the website presents a trustworthy and professional digital presence for a religious non-profit entity, with recommendations to enhance security headers and publish security-related policies to further strengthen its posture.

R

Religionspädagogisches Zentrum der Evangelisch-Lutherischen Kirche in Bayern

rpz-heilsbronn.de

46

The Religionspädagogisches Zentrum Heilsbronn is a specialized non-profit educational institution affiliated with the Evangelisch-Lutherische Kirche in Bayern. It focuses on religious pedagogy, offering training, materials, and event hosting primarily for educators and church workers in Bavaria. The website reflects a well-structured, content-rich platform with clear navigation and a professional design, targeting religious educators and related audiences. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and integrates Piwik (Matomo) analytics for user tracking. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance mechanisms such as cookie consent. The domain WHOIS data is minimal but consistent with a legitimate small non-profit entity. Overall, the website presents a trustworthy and professional digital presence with room for enhanced privacy and security practices.

F

FiZ gGmbH

fiz-hof.de

57

FiZ gGmbH is a social enterprise based in Hof, Germany, providing ambulatory assistance services to families and adults. The organization positions itself as a local non-profit entity focused on social support. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies such as JavaScript and CSS. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, it lacks comprehensive privacy and cookie policies, terms of service, and incident response information, which are critical for compliance and trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal policies. Overall, the site is functional and professional but would benefit from enhanced privacy and security measures to strengthen user trust and regulatory compliance.

I

INES Berlin

ines-berlin.de

41

INES Berlin is an independent research institute based in Berlin-Mitte, specializing in empirical social and economic research with a focus on labor market policy, education, and personnel research in Germany and Europe. The website presents a professional and consistent brand image, targeting academic and policy audiences interested in social sciences. Key services include data analysis, survey design, and qualitative research. The market position is that of a specialized, small-sized research entity within the education sector. Technically, the website is built using AngularJS and FontAwesome, hosted likely on rzone.de servers. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. No CMS or advanced analytics tools are detected, indicating a straightforward technical infrastructure. From a security perspective, the site uses HTTPS (assumed from standard practice though not explicitly confirmed), but lacks visible security headers and cookie consent mechanisms. No forms or contact emails are present on the homepage, limiting data collection risks but also reducing direct contact options. The WHOIS data is minimal but consistent with the hosting provider, with no suspicious patterns detected. Overall, the security posture is moderate with room for improvement in policy transparency and technical safeguards. The overall risk is low given the nature of the business and content, but strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers to improve trust and compliance.

K

Kreative Kommunikation GbR

kreative-kommunikation.com

47

Kreative Kommunikation GbR is a small German marketing and advertising agency with over 30 years of experience, specializing in creative marketing and advertising solutions across classic and digital media. Their services include strategy and consulting, classic media marketing, online marketing, direct marketing, and promotional items. The website is primarily in German and targets business clients seeking tailored marketing concepts. Technically, the website uses Bootstrap for responsive design and standard web technologies but lacks advanced CMS or analytics integrations. Security posture is basic with no detected security headers or incident response policies, and DNSSEC is not enabled on the domain. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism. Overall, the website is functional but could benefit from improved security and privacy practices to enhance trust and compliance.

H

HAJ Reisen

haj.de

51

HAJ Reisen operates as a regional travel agency closely affiliated with Hannover Airport, offering a broad range of travel services including flight tickets, package tours, cruises, and city trips. The website targets travelers primarily from the Hannover region, providing curated travel offers with partner agencies and reputable travel brands. The business model leverages the airport's infrastructure and regional presence to serve customers seeking convenient travel options. Technically, the website is built on TYPO3 CMS, hosted on Hetzner servers, and demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is moderate with HTTPS usage but lacks visible security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Contact information is comprehensive with numerous partner agency addresses and phone numbers. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

J

Jugendmigrationsdienste (JMD)

jmd-respekt-coaches.de

55

The website www.lass-uns-reden.de represents the Bundesprogramm JMD Respekt Coaches, a German government-supported initiative focused on promoting democratic values, respect, and tolerance among youth in schools. The program is implemented by Jugendmigrationsdienste (JMD) and targets young people in general and vocational schools, aiming to prevent extremism, racism, and prejudice through educational group offerings and social-pedagogical support. The site is well-branded, professionally designed, and provides comprehensive content about the program's goals, activities, and partners. Technically, the site runs on TYPO3 CMS with modern web technologies and includes accessibility and mobile optimization features. However, it lacks explicit privacy and terms of service pages, and no direct contact information is provided, which are notable compliance gaps. Security posture is moderate with HTTPS implied but no advanced security headers detected. Overall, the domain and content appear legitimate and consistent with a government/non-profit educational program in Germany.

E

EuroKurz.cz

eurokurz.cz

44

EuroKurz.cz is a Czech-language website providing daily updated currency exchange rates sourced from the European Central Bank, along with historical data and currency conversion tools. The site targets general users interested in currency rates, including travelers and financial professionals. It operates a niche business model focused on information dissemination supported by advertising revenue. The website is technically modern, using Google Fonts, Google Tag Manager, Google Adsense, and Facebook SDK for analytics and advertising. Hosting is provided by websupport.sk, a known hosting provider. The site is mobile optimized and offers good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enabled and a consent management platform for GDPR compliance, though explicit security headers and detailed privacy policies are lacking. No contact emails or phone numbers are visible, which limits direct user engagement. WHOIS data confirms domain legitimacy with consistent registration since 2012. Overall, the site is professional and trustworthy but could improve transparency and security practices.

A

Agouti

agouti.eu

60

Agouti.eu is a non-profit initiative developed by Wageningen University and the Research Institute for Nature and Forest (INBO) to provide AI-powered solutions for processing wildlife camera trap data. The platform offers tools for uploading, annotating, and exporting standardized camera trap data, targeting academic, non-profit, and commercial users with a focus on wildlife conservation and research. The website is well-structured, informative, and includes instructional videos to facilitate user onboarding. Technically, the site is built using Ember.js and Video.js, hosted on university data centers, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and no visible vulnerabilities, though it lacks explicit security policies and incident response contacts. Privacy compliance is supported by a clear privacy policy and terms of service, but no cookie consent mechanism is present. Overall, the site is trustworthy, professional, and safe for general audiences.

E

European Ocean Biodiversity Information System (EurOBIS)

eurobis.org

52

EurOBIS operates as the European node of the Ocean Biodiversity Information System, providing a valuable open-access platform for marine species distribution data within European waters. The website serves primarily researchers, data providers, and policy makers interested in marine biodiversity. It offers dataset downloads, quality control information, and links to related marine data initiatives. The platform is managed by VLIZ, a reputable marine research institute in Belgium, reinforcing its credibility and scientific focus. Technically, the website employs standard web technologies such as HTML, CSS, JavaScript with jQuery, and Font Awesome for icons. The site is moderately optimized for performance and mobile use, with clear navigation and structured content. However, there is room for improvement in accessibility and SEO optimization. Hosting appears to be managed by a research institution, ensuring stable infrastructure but lacking advanced modern CMS or frameworks. From a security perspective, the site lacks visible security headers and DNSSEC is not enabled, which are areas for enhancement. No forms or analytics scripts reduce attack surface and privacy risks, but the absence of privacy and cookie policies indicates incomplete compliance with GDPR best practices. The domain registration is consistent and long-standing, supporting the site's legitimacy. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, EurOBIS is a credible, scientifically focused data portal with good business credibility and content quality. Strategic improvements in security headers, privacy compliance, and technical modernization would enhance its security posture and user trust.

B

Bundeszentrum für Ernährung (BZfE)

bzfe.de

68

The Bundeszentrum für Ernährung (BZfE) is a German government-affiliated competence and communication center focused on nutrition education and information. The website serves a broad audience including consumers, educators, childcare personnel, and nutrition professionals, providing scientifically grounded, neutral content on food, health, and sustainability. The site is built on TYPO3 CMS and features a modern, accessible design with clear navigation and comprehensive content. It employs GDPR-compliant cookie consent mechanisms and uses etracker analytics with user consent. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence appropriate for a government educational entity.

The website serves as the official service portal for the Outsourcing Data Center (OSRZ) managed by AKDB, a government IT service provider in Bavaria, Germany. It offers a range of services including user and contact management, password self-service, technical downloads, FAQs, token activation, and user registration. The portal targets authorized personnel and customers requiring access to OSRZ services. The business model focuses on providing specialized IT outsourcing and data center services primarily to governmental entities, positioning AKDB as a trusted regional government IT partner. Technically, the site is built on Microsoft ASP.NET Web Forms technology, hosted on Colt Technology Services infrastructure. The site demonstrates moderate performance and basic mobile optimization. Navigation and content structure are clear and consistent with government service portals. However, the site lacks modern CMS features and advanced SEO or accessibility enhancements. From a security perspective, the site uses HTTPS and standard ASP.NET security features but lacks explicit security headers such as CSP, HSTS, and X-Frame-Options. There is no visible privacy or cookie policy, nor vulnerability disclosure or incident response information, which are important for compliance and trust. No exposed sensitive data or vulnerable libraries were detected in the provided content. Overall, the website is professional and trustworthy for its intended audience but would benefit from enhanced privacy compliance, improved security headers, and clearer contact and incident response information to strengthen its security posture and user trust.

stadtplan.net is a German-language website providing precise city maps, cartography, route planning, and local business directory services. Operated by Verwaltungs-Verlag GmbH & Co. Betriebs OHG, it targets local residents and visitors seeking up-to-date regional information. The website offers user-friendly features such as autocomplete search and a cookie consent mechanism, reflecting a moderate level of digital maturity. Technically, it relies on older but stable JavaScript libraries like jQuery and jQuery UI, with no detected CMS or advanced frameworks. Security posture is adequate with HTTPS enforced and cookie consent implemented, though the absence of explicit security headers and incident response policies suggests room for improvement. The lack of WHOIS data for the domain introduces some trust concerns despite the professional presentation and comprehensive legal pages. Overall, the site is functional, trustworthy, and compliant with GDPR, but would benefit from enhanced transparency and security practices.

R

Rüsthaus GmbH & Co. KG

ruesthaus.de

49

Rüsthaus GmbH & Co. KG operates a specialized e-commerce platform focused on scouting and outdoor equipment, serving primarily the German market. The website offers a broad range of products including scouting uniforms, tents, outdoor gear, and related accessories, targeting scouting groups and outdoor enthusiasts. The company maintains a medium-sized retail operation with a clear brand presence and consistent messaging. Technically, the website is built on the Shopware CMS platform, leveraging modern web technologies and providing a responsive user experience optimized for mobile devices. Security is well-managed with HTTPS enforced and CSRF protections in place, although some standard security headers are missing. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. The site uses Piwik (Matomo) for analytics, reflecting a moderate level of user tracking. Overall, the website is professional, trustworthy, and well-positioned within its niche market.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

perspektiven-schaffen.de

65

The website perspektiven-schaffen.de is an official German government platform managed by the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend. It focuses on promoting equality in the labor market, providing comprehensive information, tools, and resources for employees, employers, and other stakeholders. The site features various programs such as the GAPS action program, online courses, calculators, and curated content like podcasts and publications. The platform is well-positioned as a trusted government resource with a clear mission to support labor market equality and integration.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

lokale-buendnisse-fuer-familie.de

63

The website lokale-buendnisse-fuer-familie.de represents a German federal government initiative under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend. It serves as a platform to promote and support local family alliances across Germany, aiming to improve family-friendly working and living conditions through networking, project development, and information dissemination. The initiative is well-established since 2004 and targets political actors, civil society, businesses, and families. Technically, the website employs standard web technologies including JavaScript and CSS, with Matomo analytics integrated in a privacy-conscious manner requiring user consent. The site is well-structured, accessible, and optimized for mobile devices, reflecting a mature digital presence. However, no explicit CMS or hosting provider details are evident, and security headers are not explicitly detected. From a security perspective, the site uses HTTPS (implied by the URL), enforces cookie consent, and avoids exposing sensitive data. There is no public security policy or incident response information, and no vulnerability disclosure mechanism is found. The WHOIS data is minimal but consistent with a government entity, supporting legitimacy. Overall, the site is professional, trustworthy, and compliant with GDPR, with good privacy practices. Recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to improve transparency and security posture.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

starkimberuf.de

67

The website represents the official German Federal Ministry for Family Affairs, Senior Citizens, Women and Youth, focusing on programs to support families with migration backgrounds, particularly mothers seeking employment. It provides comprehensive information on integration initiatives, labor market participation, and related studies, positioning itself as a key government resource in this domain. The site is well-structured, professionally designed, and targets families, policymakers, and labor market stakeholders. Technically, the site employs modern web technologies including JavaScript and CSS frameworks, with Matomo analytics integrated for user behavior tracking under strict privacy controls. The site is mobile-optimized and accessible, with good SEO practices. Hosting and CMS details are not explicitly disclosed but the site performs moderately well. Security posture is strong with HTTPS enforced and privacy-compliant cookie consent mechanisms. However, explicit security headers and incident response contacts are not evident, suggesting room for improvement in transparency and security policy communication. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR, serving as a reliable government information portal with low risk exposure.

B

Bundesstiftung Mutter und Kind

bundesstiftung-mutter-und-kind.de

64

The Bundesstiftung Mutter und Kind is a German government-affiliated foundation dedicated to supporting pregnant women in distress through financial aid and counseling services. It operates under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ) and has a longstanding history of over 40 years. The website provides comprehensive information on available aids, application procedures, and educational materials targeting pregnant women, families, and counseling centers. The foundation maintains a strong market position as a trusted social support entity within Germany.

W

wirtschaftswissen Financial Publishing Group

wirtschaftswissen.de

62

wirtschaftswissen.de is a German-language business knowledge and compliance information platform operated by wirtschaftswissen Financial Publishing Group. The website provides legally sound answers to business questions, current court rulings, expert guides, newsletters, webinars, and a shop for business-related products. It targets business professionals, HR managers, employers, and entrepreneurs seeking practical and legal business advice. The platform is positioned as a reputable source of business knowledge in the German market with a medium-sized operation. Technically, the website is hosted on Amazon AWS infrastructure, uses WordPress CMS, and employs modern web technologies including JavaScript, CSS, and FriendlyCaptcha for bot protection on forms. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate with no major issues detected. From a security perspective, the site enforces HTTPS and uses CAPTCHA to protect form submissions. However, it lacks visible security headers and does not publish privacy, cookie, or incident response policies in the analyzed content. No contact information for data protection officers or incident response teams is found. There are no detected vulnerabilities or exposed sensitive data, but privacy compliance is weak due to missing policies. Overall, wirtschaftswissen.de presents a professional and trustworthy business information platform with good content quality and technical implementation. The main risks relate to privacy compliance and security policy transparency. Strategic improvements in these areas would enhance trust and regulatory adherence.

pixeldiversity GmbH operates a technology-focused website offering cloud hosting, Plesk administration, R & RStudio environments, newsletter distribution, and mail discussion services. The website serves primarily as a portal linking to various internal and related service domains. The business appears to target technology professionals and organizations requiring specialized hosting and software environments. However, the website content is minimal and lacks comprehensive business or contact information, which limits its professional presentation. From a technical perspective, the site uses basic HTML and CSS without detectable modern frameworks or CMS platforms. There is no evidence of HTTPS enforcement or security headers, which indicates a low maturity level in security implementation. The absence of privacy, cookie, and terms of service policies further highlights compliance gaps. The site is accessible without WAF or security challenges but lacks SEO optimization and mobile responsiveness. Security posture is weak due to missing HTTPS, lack of security headers, and no visible incident response or vulnerability disclosure mechanisms. The WHOIS data is missing or inaccessible, which raises concerns about domain legitimacy and transparency. No contact emails, phone numbers, or social media links are provided, reducing trust and business credibility. Overall, the website presents a low-risk content profile but suffers from significant security, compliance, and transparency deficiencies. Strategic improvements in security infrastructure, privacy compliance, and business information disclosure are recommended to enhance trustworthiness and operational resilience.

N

Niedersächsischer Landtag

landtag-niedersachsen.de

57

The Niedersächsischer Landtag website serves as the official online presence of the Lower Saxony state parliament in Germany. It provides comprehensive information about parliamentary functions, committees, events, and public participation opportunities. The site targets citizens, youth, and visitors interested in democratic processes and government transparency. The business model is that of a government institution focused on public service and information dissemination. Technically, the website is built on TYPO3 CMS, employs Matomo analytics configured with privacy considerations, and uses modern frontend libraries like Slick Carousel. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses privacy-respecting analytics. However, it lacks visible security headers, a cookie consent mechanism, and published security or incident response policies. No vulnerabilities or suspicious content were detected, indicating a solid security posture but with opportunities for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security best practices. Strategic recommendations include implementing cookie consent, adding security headers, and publishing security policies to enhance user trust and regulatory compliance.

M

Museen der Stadt Aschaffenburg

stiftsschatz.de

38

The website represents the Stiftsschatz exhibition of the Museen der Stadt Aschaffenburg, a cultural institution showcasing medieval treasures. It serves a local/regional audience interested in historical and religious artifacts. The site provides basic information and navigation in multiple languages but lacks comprehensive contact and policy information. Technically, the site uses standard web technologies including HTML, CSS, JavaScript, and jQuery, with Google Analytics for visitor tracking. The security posture is moderate with IP anonymization in analytics but lacks visible security headers and privacy compliance documentation. Overall, the site is functional but would benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

I

Ingelheim am Rhein

ingelheim.de

66

The website www.ingelheim.de serves as the official digital presence for the city of Ingelheim am Rhein, Germany. It provides comprehensive information about city administration, politics, living environment, leisure activities, and municipal services. The site targets residents, visitors, and local businesses, offering a broad range of public services and community resources. The business model is that of a government municipal portal, focusing on transparency and citizen engagement. Technically, the website is built on the ionas4 CMS platform, utilizing modern web technologies such as JavaScript, SystemJS, and Web Components. It demonstrates good mobile optimization, accessibility, and SEO practices. Hosting is managed via agenturserver nameservers, indicating a professional hosting environment. Performance is moderate with a well-structured navigation system. From a security perspective, the site enforces HTTPS, uses security best practices like crossorigin and integrity attributes on resources, and integrates Google's invisible reCAPTCHA for bot protection. However, explicit privacy policies, terms of service, incident response contacts, and vulnerability disclosure mechanisms are not found, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional, suitable for its government function. Strategic recommendations include publishing clear privacy and security policies, adding a security.txt file, and enhancing HTTP security headers to further strengthen the security posture.

G

GenoAkademie

genoakademie.de

70

GenoAkademie is a specialized partner for banks and cooperatives in Germany, focusing on personnel development through job trainings, seminars, e-learning, and webinars. The website is built on TYPO3 CMS and employs modern web technologies including Cookiebot for GDPR-compliant cookie consent and Matomo for analytics. The site demonstrates a good level of digital maturity with responsive design and structured data for SEO. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers are absent. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-suited for its target B2B audience.

H

Heidelberg University

uni-heidelberg.de

57

Heidelberg University is a well-established academic institution in Germany, providing higher education and research services. The website serves as an informational portal targeting students, researchers, and academic staff. The technical infrastructure employs modern web technologies including JavaScript modules and MathJax for rendering mathematical content. The site uses Fathom Analytics for visitor tracking but lacks visible cookie consent mechanisms and comprehensive privacy policies, indicating room for improvement in privacy compliance. Security posture is moderate with no evident security headers or explicit incident response information. Overall, the website is functional but could benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

S

SLUB Dresden

arthistoricum.net

63

arthistoricum.net is a well-established digital platform dedicated to art history and art sciences, providing open access to scholarly publications, image collections, and research tools. It is affiliated with reputable German institutions such as SLUB Dresden and UB Heidelberg, and supported by the Deutsche Forschungsgemeinschaft, positioning it as a trusted academic resource in the education sector. The platform offers a variety of services including digital publishing, thematic portals, and podcasts aimed at researchers and the academic community. Technically, the website is built on TYPO3 CMS, employs Matomo for privacy-conscious analytics, and demonstrates good mobile optimization and accessibility. The site uses HTTPS with strong SSL configuration, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. The WHOIS data is unavailable or not publicly accessible, which slightly reduces transparency but does not detract from the site's legitimacy given its institutional backing. Security posture is generally good with secure form handling and no exposed sensitive data, but the absence of explicit security policies and incident response information suggests room for enhancement in governance and compliance documentation. Overall, the site is professional, content-rich, and trustworthy, serving a specialized academic audience effectively.

S

SLUB Dresden

netzwerk-graphische-sammlungen.com

64

arthistoricum.net is an academic platform dedicated to the documentation and networking of graphic art collections across Germany, Austria, and Switzerland. It is supported by reputable institutions such as SLUB Dresden and UB Heidelberg, providing a trusted resource for art historians and researchers. The website offers catalog search, publication platforms, and research tools focused on art on paper, including drawings and print graphics. Technically, the site is built on TYPO3 CMS and uses Matomo analytics, reflecting a modern and privacy-conscious infrastructure. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, though it lacks some security headers and explicit incident response policies. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given its institutional backing. Overall, arthistoricum.net is a credible, secure, and well-maintained academic resource with room for improvement in privacy compliance and security transparency.

R

REVILAK® Kartografien Bender Verlagsgesellschaft mbH

map-one.eu

43

map|ONE is a digital interactive city map platform primarily serving German municipalities, citizens, tourists, and local businesses. The service offers detailed digital city maps with routing, measuring, and information tools, positioning itself as a niche GIS and mapping solution provider. The website is professionally designed with good mobile optimization and clear navigation, targeting a general audience interested in city information and navigation. The business is represented by REVILAK® Kartografien Bender Verlagsgesellschaft mbH, a small-sized company based in Germany, with partnerships including TOPO graphics Geoinformationssysteme GmbH.

G

Greatnet.de GmbH

greatnet.de

54

Greatnet.de GmbH is a small German webhosting provider specializing in affordable domain registration and webspace services with servers located in Germany. Their offerings target small to medium businesses and individuals seeking professional web presence solutions. The website presents clear pricing and service descriptions, emphasizing .de domains and webhosting packages with included email and FTP services. Technically, the site uses basic HTML, CSS, and JavaScript without advanced frameworks or CMS detected. Performance and mobile optimization are moderate to basic. Security posture is average with cookie consent implemented but lacking advanced security headers and explicit HTTPS confirmation in the provided data. WHOIS data is limited due to DENIC privacy policies but shows consistent domain status and nameservers aligned with the business domain. Overall, the site is professional, trustworthy, and safe with no adult or questionable content detected.

C

contrast. nicolefleischer

contrastagentur.de

38

Contrastagentur.de is a small creative advertising agency based in Pegnitz, Germany, led by Nicole Fleischer. The company offers services including advertising, flyers, posters, logos, and web design, targeting businesses and individuals seeking creative marketing solutions. The website content is minimal but clearly communicates the core services and contact information. The market position appears to be local and small-scale with a focus on creative advertising. Technically, the website is built with basic HTML and CSS without modern frameworks or CMS detected. Hosting is provided by greatnet.de as indicated by the nameservers. The site lacks mobile optimization and accessibility features, and no analytics or tracking technologies are present. Performance is likely moderate given the simple structure. From a security perspective, the site does not show evidence of HTTPS usage or security headers, which is a significant concern. No privacy or cookie policies are present, indicating non-compliance with GDPR requirements. No incident response or security policies are disclosed. The WHOIS data is consistent with the website domain and business type, supporting legitimacy. Overall, the security posture is weak, and privacy compliance is lacking. The overall risk is moderate due to the lack of security best practices and privacy compliance, but no critical vulnerabilities or malicious content were detected. Strategic improvements in security, privacy policies, and technical modernization are recommended to enhance trust and compliance.

N

Niedersächsischer Basketballverband e.V.

nbv-basketball.de

59

The Niedersächsischer Basketballverband e.V. is a regional sports association dedicated to basketball activities in Niedersachsen, Germany. The website serves as an official portal providing news, event schedules, educational and registration portals for basketball players, clubs, and fans within the region. It positions itself as a key information hub for basketball in Niedersachsen, operating as a non-profit entity. The site is primarily targeted at the local basketball community and stakeholders involved in the sport's development and organization. Technically, the website is built on the AmphiCMS platform, featuring responsive design and accessibility features. It integrates a consent management platform to comply with cookie regulations and includes social media links to official channels, enhancing community engagement. Security-wise, the site uses HTTPS and implements basic consent mechanisms but lacks explicit security headers and detailed privacy or security policies. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and well-structured but would benefit from enhanced privacy and security documentation to meet higher compliance standards.

F

Flughafen Hannover-Langenhagen GmbH

hannover-airport.de

54

Flughafen Hannover-Langenhagen GmbH operates Hannover Airport, providing a wide range of passenger and visitor services including flight information, check-in, baggage handling, parking, and airport experiences. The airport serves as a regional transportation hub with a strong market position in northern Germany. The website is professionally designed, multilingual, and offers comprehensive information tailored to travelers and business clients. Technically, the site is built on TYPO3 CMS, hosted on Hetzner infrastructure, and employs modern web technologies with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

M

MTB GmbH

mtb-bau.de

61

MTB GmbH is a modern, medium-sized construction company specializing in complex infrastructure projects in Germany, particularly in railway construction and civil engineering. They serve as a general contractor for Deutsche Bahn AG and offer services including platform construction, cable civil engineering, track superstructure, and structural engineering. The company emphasizes digital planning, precision, and fair communication, positioning itself as an innovative and reliable partner in the transportation and construction sectors. Their website reflects a professional and consistent brand image with good content quality and SEO optimization. Technically, the website is built on WordPress using popular plugins such as Yoast SEO and WPBakery Page Builder, indicating a mature digital infrastructure. The site is mobile-optimized and includes GDPR-compliant privacy and cookie policies with a consent mechanism. Performance is moderate, with room for improvement in accessibility and security headers. Security posture is solid with HTTPS enforced and no exposed sensitive data detected. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests areas for enhancement. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, MTB GmbH presents a credible and professional online presence with a strong business focus on transportation infrastructure. Strategic improvements in security practices and transparency could further enhance trust and compliance.

W

Weltkulturen Museum

weltkulturenmuseum.de

43

The Weltkulturen Museum website represents a well-established non-profit cultural institution in Germany focused on world cultures, exhibitions, research, and educational programs. The site provides clear navigation and relevant content aimed at a general audience interested in cultural heritage and museum events. The museum leverages modern web technologies including Matomo analytics configured for privacy, and a cookie consent mechanism to comply with GDPR requirements. Hosting is provided by a German provider (1blu), consistent with the museum's location and audience. From a security perspective, the website enforces HTTPS and uses privacy-respecting analytics, but lacks explicit security headers and published security policies or incident response contacts. No critical vulnerabilities or suspicious WHOIS patterns were detected, indicating a trustworthy domain and hosting environment. Privacy and cookie policies are present and implemented with user consent, supporting compliance with European data protection laws. Overall, the website demonstrates good technical maturity and business credibility for a cultural institution, with room for improvement in security header implementation and formal security documentation. The absence of direct contact emails or phone numbers on the homepage suggests contact details may be located deeper in the site or handled via forms. The site is safe for general audiences with no adult or questionable content detected.

F

Frankfurter Sparkasse

frankfurter-sparkasse.de

69

Frankfurter Sparkasse is a major regional financial institution in Germany offering a comprehensive range of banking and financial services to private and business customers. Their website serves as a digital branch providing secure online banking, product information, and customer support. The site is well-structured, professionally designed, and targets a broad audience including retail clients and firms. The business model focuses on retail banking, loans, investments, insurance, and real estate services, positioning the bank as a trusted local financial partner. Technically, the website uses modern web technologies, likely built on Adobe Experience Manager, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, session management, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.