Security Directory

S

Stadt Aschaffenburg

aschaffenburg.de

45

Stadt Aschaffenburg operates the official municipal website www.aschaffenburg.de, serving as a comprehensive citizen service portal offering information on city administration, culture, tourism, economy, sports, and leisure. The site targets residents and visitors, providing online services such as appointment scheduling and access to administrative forms. The website is well-branded and consistent with official city identity, supporting its role as a trusted government resource. Technically, the site employs modern JavaScript libraries including jQuery and Modernizr, integrates Matomo for analytics with opt-in consent, and offers accessibility features like ReadSpeaker and EyeAble. The site is mobile-optimized and structured for good SEO and usability. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. WHOIS data aligns with the city’s media service providers, confirming legitimacy. Overall, the site is professional, secure, and compliant with GDPR, making it a reliable digital presence for the city government.

B

Bad Soden am Taunus

wirtschaft-bad-soden.de

34

Bad Soden am Taunus is positioned as a prime economic location within the Rhein-Main region, offering excellent infrastructure, attractive business opportunities, and a high quality of life. The website serves as a platform for local economic development, supporting businesses through networking, consulting, and real estate facilitation. It highlights key local companies and promotes the city as a hub for consulting, IT, manufacturing, and real estate sectors. Technically, the site is built on WordPress with Elementor and uses modern SEO and analytics tools, ensuring good performance and user experience. Security posture is solid with HTTPS and privacy-respecting analytics, though it lacks explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

T

Teatro alla Scala

teatroallascala.org

65

Teatro alla Scala is a prestigious cultural institution based in Milan, Italy, renowned globally for its opera, ballet, and concert performances. The website serves as a comprehensive portal for ticket sales, event calendars, educational programs, and streaming content via LaScalaTV. The site targets a broad audience including opera enthusiasts, families, and young audiences, offering rich multimedia content and detailed event information. The business model revolves around live performances, cultural education, and digital media distribution, supported by prominent sponsors such as Intesa San Paolo and Rolex. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Bootstrap, and Swiper.js for interactive elements. It integrates analytics tools like Matomo and Google Tag Manager, ensuring data-driven insights while maintaining user privacy through a clear cookie consent mechanism. The site is mobile-optimized and accessible, with good SEO practices and a professional design that enhances user experience. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements cookie consent for compliance with GDPR. However, explicit security headers and published security policies are absent, representing areas for improvement. The WHOIS data is unavailable due to a malformed query, but the domain appears legitimate and active, consistent with the institution's reputation. Overall, Teatro alla Scala's website is a high-quality, trustworthy platform that effectively supports its cultural mission. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure information, and improving transparency around security practices to further strengthen trust and compliance.

I

IHK Nürnberg für Mittelfranken

ihk-nuernberg.de

74

IHK Nürnberg für Mittelfranken is a regional chamber of commerce serving the Mittelfranken region in Germany. The organization supports local businesses through advisory services, training, and representation of business interests. Their website reflects a mature digital presence with a structured content hierarchy covering topics such as international trade, sustainability, energy, innovation, and logistics. The target audience includes companies, international professionals, and stakeholders in various sectors. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates privacy-respecting Matomo analytics alongside a robust cookie consent mechanism. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. The site provides clear contact information including email, phone, and chat support, enhancing business credibility. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

J

Jugendamt der Erzdiözese

jugendplan.de

55

The website represents the Jugendamt der Erzdiözese, a church-affiliated youth office under the Erzbistum Bamberg. It provides detailed information on the Jugendplan, a strategic youth pastoral plan, targeting youth leaders and church youth organizations. The site is well-structured, with clear navigation and comprehensive content relevant to its audience. Technically, it uses the alkacon Mercury CMS platform, integrates Matomo analytics for privacy-conscious tracking, and includes accessibility features such as the eyeAble plugin. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Contact information is clearly presented with verified phone numbers and addresses, enhancing business credibility. Overall, the site is trustworthy, compliant with GDPR, and serves its non-profit, government-related mission effectively.

D

Deutscher Museumsbund e.V.

museumsbund.de

63

Deutscher Museumsbund e.V. is a prominent German national association representing museums and their employees. The organization focuses on advocacy, funding programs, publications, networking, and professional development to support sustainable and future-ready museums across Germany. Their website reflects a mature digital presence with comprehensive content tailored to museum professionals and cultural stakeholders. Technically, the site is built on WordPress with modern plugins and privacy-conscious analytics (Matomo), ensuring GDPR compliance and a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, professional, and well-aligned with its non-profit cultural mission.

S

SLUB Dresden

arthistoricum.net

63

arthistoricum.net is a well-established digital platform dedicated to art history and art sciences, providing open access to scholarly publications, image collections, and research tools. It is affiliated with reputable German institutions such as SLUB Dresden and UB Heidelberg, and supported by the Deutsche Forschungsgemeinschaft, positioning it as a trusted academic resource in the education sector. The platform offers a variety of services including digital publishing, thematic portals, and podcasts aimed at researchers and the academic community. Technically, the website is built on TYPO3 CMS, employs Matomo for privacy-conscious analytics, and demonstrates good mobile optimization and accessibility. The site uses HTTPS with strong SSL configuration, but lacks visible security headers and a cookie consent mechanism, which are areas for improvement. The WHOIS data is unavailable or not publicly accessible, which slightly reduces transparency but does not detract from the site's legitimacy given its institutional backing. Security posture is generally good with secure form handling and no exposed sensitive data, but the absence of explicit security policies and incident response information suggests room for enhancement in governance and compliance documentation. Overall, the site is professional, content-rich, and trustworthy, serving a specialized academic audience effectively.

S

SLUB Dresden

netzwerk-graphische-sammlungen.com

64

arthistoricum.net is an academic platform dedicated to the documentation and networking of graphic art collections across Germany, Austria, and Switzerland. It is supported by reputable institutions such as SLUB Dresden and UB Heidelberg, providing a trusted resource for art historians and researchers. The website offers catalog search, publication platforms, and research tools focused on art on paper, including drawings and print graphics. Technically, the site is built on TYPO3 CMS and uses Matomo analytics, reflecting a modern and privacy-conscious infrastructure. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, though it lacks some security headers and explicit incident response policies. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given its institutional backing. Overall, arthistoricum.net is a credible, secure, and well-maintained academic resource with room for improvement in privacy compliance and security transparency.

T

Turnverein Bissingen e.V.

tv-bissingen.de

10

Turnverein Bissingen e.V. is a local German sports club offering a variety of sports activities and community events. The website serves as an information hub for members and interested parties, providing details about departments, events, and contact information. The site is built on Joomla! CMS with modern frontend technologies and integrates Matomo for analytics and Usercentrics for cookie consent management. The overall technical infrastructure is solid with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers and explicit security policies could enhance protection. No critical vulnerabilities or suspicious content were detected. Privacy compliance is good, with a clear privacy policy and consent mechanism. Business credibility is high given the clear presentation of contact information and consistent branding. The site is safe for general audiences and does not contain adult or questionable content.

Katholische Erwachsenenbildung MittenInFranken e. V. is a small regional non-profit organization dedicated to adult education and community engagement in the Ansbach-Neustadt/Aisch region of Germany. The website provides information about events, courses, seminars, and organizational details, targeting adults interested in Catholic adult education. The organization maintains a professional online presence with clear navigation, event listings, and downloadable program brochures. Contact information and privacy policies are clearly presented, supporting transparency and trust. Technically, the website uses a modern tech stack including Bootstrap, jQuery, Font Awesome, and JW Player, hosted on servers associated with internet1.de. It employs Matomo analytics with privacy-conscious configurations and Google reCAPTCHA for bot protection. The site is mobile-optimized and implements a detailed cookie consent mechanism, reflecting good digital maturity. From a security perspective, the website enforces HTTPS and uses cookie consent to comply with GDPR. However, it lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal and domain status is unusual, but the website content and contact details support legitimacy. Overall, the website is well-structured, secure, and compliant with privacy regulations, suitable for its non-profit educational mission. Strategic improvements could include adding explicit security policies and enhancing security headers to further strengthen its security posture.

V

Verband der W. K. St. V. Unitas e.V.

unitas.org

10

The website www.unitas.org represents the Verband der Wissenschaftlichen Katholischen Studentenvereine Unitas e.V., the oldest Catholic student and academic association in Germany, founded in 1855. It serves as a community platform for Catholic students and alumni across 29 university locations, offering social, educational, and religious activities. The organization uniquely includes both male and female student associations and emphasizes lifelong connections and social responsibility through various projects and events. The site content is primarily in German and targets Catholic students and academics in Germany.

C

Christliche Arbeiterjugend Deutschland

caj.de

52

Christliche Arbeiterjugend Deutschland (CAJ) is a well-established non-profit Christian youth organization in Germany, focusing on social justice, education, and community engagement. The website serves as an information hub for news, events, and organizational activities, targeting young people interested in Christian worker youth movements. The organization has a strong national presence with international connections, founded in 1947, and the international CAJ dates back to 1925. The website content is professionally presented in German, with consistent branding and active social media channels.

Z

Zusage

zusage.global

45

Zusage is a German-language platform dedicated to strengthening civil society, likely operating as a non-profit or advocacy organization. The website is built on WordPress and incorporates modern consent management and analytics tools such as Usercentrics and Matomo, indicating a moderate level of digital maturity. The site is accessible without any WAF or blocking mechanisms, and the content is safe for general audiences with no adult or questionable material detected. However, the absence of publicly available WHOIS data and privacy policy reduces transparency and trustworthiness to some extent. Security posture is moderate, with no detected security headers and unknown SSL configuration, suggesting room for improvement in technical security measures.

A

arbeit für alle e.V.

josefstag.de

47

The website josefstag.de represents a German non-profit initiative focused on youth social work and youth employment assistance under Catholic auspices. It serves as an informational and networking platform for the annual Josefstag event, which raises awareness and promotes youth participation in social and democratic processes. The site is affiliated with reputable Catholic organizations such as the Bundes der Deutschen Katholischen Jugend (BDKJ) and related partners. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is hosted with INWX, a German registrar. The site demonstrates good design, accessibility, and SEO practices, with a clear cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. Contact information is limited on the site, with no direct emails or phone numbers found, which is typical for such non-profit informational sites. Overall, the site is trustworthy, professional, and well-maintained.

B

Bund der Deutschen Katholischen Jugend (BDKJ)

generation-jetzt.de

46

Generation Jetzt! is a German non-profit youth advocacy campaign operated under the umbrella of the Bund der Deutschen Katholischen Jugend (BDKJ). The initiative focuses on promoting democratic participation and generation justice for children, adolescents, and young adults. The website serves as a platform for information dissemination, event promotion, and engagement with the target audience. Technically, the site is built on TYPO3 CMS with Bootstrap for responsive design and uses Matomo analytics configured for privacy-conscious tracking. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting its mission effectively.

K

KKV Landesverband Bayern der Katholiken in Wirtschaft und Verwaltung e.V.

kkv-bayern.de

57

KKV Landesverband Bayern der Katholiken in Wirtschaft und Verwaltung e.V. is a regional non-profit association focused on Catholic professionals in Bavaria, providing educational events, publications, and community engagement centered on social and economic issues from a Catholic perspective. The website serves as an information hub with event listings, news, and resources for members and interested parties. Technically, the site is built on the Alkacon Mercury CMS platform, uses Matomo for analytics, and integrates accessibility tools to ensure inclusivity. The site is well-structured, mobile-optimized, and implements GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data aligns with the organization's identity, supporting legitimacy. Overall, the site presents a professional and trustworthy digital presence for a small non-profit organization.

Caritasverband Stadt- und Landkreis Hof e.V. is a medium-sized non-profit organization focused on providing social services and community support in the Hof region of Germany. Their offerings include social counseling, volunteer coordination, refugee and integration advice, family support, and care services. The organization maintains a strong regional presence and collaborates with partner entities within the Caritas network and local community institutions. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and Matomo analytics, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement, cookie consent mechanisms, and use of Google reCAPTCHA for form protection. However, explicit security policies and vulnerability disclosure mechanisms are not present. Overall, the website demonstrates a solid security posture with room for improvement in security headers and incident response transparency. The domain registration data aligns well with the organization's identity, reinforcing trustworthiness. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a security.txt file to improve transparency and compliance.

S

Stadt Hof

hof.de

63

Stadt Hof is the official municipal government website for the city of Hof in Bavaria, Germany. It serves residents and visitors by providing city information, public services, and tourism-related content. The website is built on TYPO3 CMS, a widely used open-source content management system favored by government entities. The site demonstrates a moderate level of digital maturity with a professional design, good mobile optimization, and clear navigation. It employs privacy-conscious analytics through a self-hosted Matomo instance and integrates Usercentrics for consent management, reflecting compliance with privacy regulations. However, explicit privacy policies and terms of service were not found in the provided content, indicating room for improvement in transparency and compliance documentation. Security posture is adequate with HTTPS enforced, but lacks visible security headers and published security policies or incident response information.

E

Europäische Metropolregion Nürnberg

innovationskunst.de

46

The website represents the initiative 'Innovationskunst' under the umbrella of the European Metropolitan Region Nuremberg, focusing on promoting innovation and technology in the region. It serves as a platform to showcase technological leadership, research collaborations, and career opportunities, targeting students, professionals, and companies. The site is well-positioned as a regional innovation hub with strong partnerships from industry leaders and research institutions. Technically, the site is built on TYPO3 CMS with modern frontend technologies including Bootstrap and Matomo analytics, ensuring good performance, mobile optimization, and accessibility. The use of structured data and comprehensive metadata supports SEO and content discoverability. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and uses encrypted email links to protect contact information. While explicit security headers are not fully evident, no critical vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with clear policies and consent management. Overall, the website demonstrates a mature digital presence with strong business credibility and compliance posture. Strategic improvements in security headers and incident response transparency could further enhance trust and resilience.

Y

YellowMap AG

yellowmap.com

62

YellowMap AG is a German technology company specializing in GDPR-compliant mapping and geo-location solutions, offering products such as SmartMaps, FilialFinder, and Click & Collect. With over 25 years of experience, they position themselves as a trusted provider of cloud-based location services hosted in ISO 27001 certified German data centers. Their business model focuses on B2B SaaS and full-service offerings, targeting enterprises seeking privacy-conscious geo solutions. Technically, the website employs modern frameworks like Vue.js and integrates privacy-respecting analytics tools such as Matomo and Leadinfo. The site is well-designed, mobile-optimized, and provides comprehensive content and contact information. Security posture is strong with HTTPS and data privacy by design, though some improvements in security headers and incident response transparency are recommended. WHOIS data is missing, which raises some legitimacy concerns but is offset by the professional web presence and trust signals. Overall, YellowMap AG demonstrates a mature digital infrastructure and a strong commitment to privacy and security.

F

Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Coburg

bdkj-coburg.de

56

The website 'jugend-im-dekanat-coburg.de' serves as the official online presence for the Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Coburg, a regional non-profit youth pastoral organization affiliated with the Erzdiözese Bamberg in Germany. It provides comprehensive information on youth activities, events, organizational news, and support services for youth and volunteers in the Coburg and Lichtenfels regions. The site targets young people, youth workers, and volunteers involved in church-related youth work. The business model is non-commercial, focusing on community and pastoral support within the church framework. Technically, the website is built on the alkacon Mercury CMS platform, utilizing JavaScript, Matomo analytics for privacy-conscious tracking, and accessibility enhancements via the eyeAble plugin. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Hosting appears to be managed by the church's infrastructure, ensuring reliability. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The domain registration aligns well with the organizational identity, indicating legitimacy and trustworthiness. Overall, the website is professional, trustworthy, and well-suited for its target audience. Strategic improvements could include adding security headers, publishing a security policy, and introducing a vulnerability disclosure mechanism to enhance security posture and transparency.

The website kircheinbayern.de serves as an official informational platform for the Catholic Church in Bavaria, operated under the auspices of the Bistum Würzburg. It provides comprehensive information about dioceses, church programs, and community engagement, targeting the general public interested in religious content. The site is built on TYPO3 CMS with modern frontend technologies and integrates privacy-respecting analytics and consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site demonstrates a high level of professionalism and trustworthiness appropriate for a government/non-profit religious institution.

N

NOSTALGIE

nostalgie-radio.de

49

NOSTALGIE is a well-established German radio station specializing in nostalgic music from the 60s to the 90s, targeting German-speaking adults who enjoy classic hits. The website offers live streaming, podcasts, event promotions, and a dedicated mobile app, positioning itself as a prominent media brand in Germany's radio broadcasting sector. The business model revolves around digital and traditional radio broadcasting supplemented by advertising and promotional events. Technically, the site is built on Drupal 10, leveraging modern analytics and consent management tools, with good mobile optimization and moderate performance. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response policies are absent. Overall, the website is professional, trustworthy, and compliant with GDPR regulations, with clear contact channels and social media presence.

K

Kompetenznetz Einsamkeit

kompetenznetz-einsamkeit.de

57

Kompetenznetz Einsamkeit is a German non-profit organization focused on addressing the causes and consequences of loneliness, providing information and support offers to affected individuals. The website serves as an informational portal targeting a general audience interested in loneliness-related topics. Technically, the site is built on WordPress using the Brooklyn theme by United Themes, incorporating modern JavaScript libraries and Matomo analytics for user tracking with some privacy considerations. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though the absence of security headers and formal privacy and cookie policies indicates room for improvement. Overall, the website is functional, professionally designed, and trustworthy, but lacks some compliance and security best practices.

T

TK Hannover Luchse

tkh-luchse.de

50

TK Hannover Luchse is a German women's basketball team competing in the 1. Damen Basketball Bundesliga. Their website serves as a hub for fans and stakeholders, providing schedules, team rosters, ticket purchasing options, and live streaming links. The site is professionally designed using WordPress with modern plugins and SEO optimizations, reflecting a mature digital presence suitable for a sports organization of its size. Hosting is managed via Google Cloud DNS, ensuring reliable infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy and well-aligned with its business objectives.

S

SEH Engineering GmbH

seh-engineering.de

62

SEH Engineering GmbH is a medium-sized German engineering and manufacturing company specializing in steel construction, bridge building, and related services. The company operates multiple subsidiaries and offers a broad portfolio of products and services including steel bridge construction, steel building construction, reconstruction, system bridges, conveyor technology, and corrosion protection. The website is professionally designed using TYPO3 CMS and modern frontend libraries, providing a good user experience with clear navigation and mobile optimization. Privacy compliance is well managed with Cookiebot for cookie consent and Matomo for analytics, reflecting a strong commitment to GDPR compliance. Security posture is adequate with HTTPS and consent management but lacks explicit security policies and headers. Overall, the domain registration and website content are consistent and trustworthy, indicating a legitimate and established business.

B

BAUM Holding GmbH

baum-gruppe.com

53

The BAUM Unternehmensgruppe is a medium-sized real estate company based in Hannover, Germany, specializing in property acquisition, project development, property management, and rental services. They also operate in hospitality, gastronomy, and agriculture sectors. The company positions itself as a regional leader with a strong focus on northern Germany, particularly Hannover. Their website is professionally designed, content-rich, and well-structured, targeting investors, tenants, and real estate stakeholders. Technically, the site runs on WordPress with modern plugins and frameworks, including Bootstrap and accessibility tools, indicating a mature digital infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and policies are missing. The absence of WHOIS registration data is a notable concern but does not detract from the overall professional presentation. Strategic recommendations include enhancing security policies and verifying domain registration details to improve trust and compliance.

K

KSG Hannover GmbH

ksg-hannover.de

45

KSG Hannover GmbH operates as a regional real estate company in Germany, specializing in rental, sales, and new construction of residential properties. The company emphasizes community engagement through its neighborhood association win e.V. The website is built on TYPO3 CMS and integrates modern JavaScript libraries and a consent management platform to ensure GDPR compliance. Matomo analytics is used for privacy-conscious user tracking. Security posture is moderate with room for improvement in HTTP security headers and published security policies. Contact information and customer service are clearly presented, enhancing business credibility.

S

Stadt Frankfurt am Main - Der Magistrat | Kulturamt Frankfurt am Main

museumsuferfrankfurt.de

46

Museumsufer Frankfurt is a prominent cultural institution managed by the city government of Frankfurt am Main, Germany. It serves as a comprehensive portal for 39 museums, offering detailed information on exhibitions, events, ticketing options, and cultural programs. The website targets a broad audience including local residents, tourists, and cultural enthusiasts, positioning itself as a leading museum hub in the region. The business model focuses on cultural promotion and public engagement through digital means, supported by official city administration. Technically, the website employs a modern tech stack including Bootstrap for responsive design, jQuery, Slick Carousel for interactive elements, and Klaro for cookie consent management. It integrates Matomo analytics to monitor visitor behavior while respecting privacy. The site is well-optimized for mobile devices and accessibility, with clear navigation and multilingual support. Performance is moderate, with scope for further optimization. From a security perspective, the site uses HTTPS and implements a robust cookie consent mechanism. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the official city infrastructure, confirming legitimacy. Overall, Museumsufer Frankfurt presents a professional, trustworthy, and user-friendly digital presence for a government cultural institution. Strategic improvements in security headers and incident response transparency would further strengthen its security and compliance profile.

W

Weltkulturen Museum

weltkulturenmuseum.de

43

The Weltkulturen Museum website represents a well-established non-profit cultural institution in Germany focused on world cultures, exhibitions, research, and educational programs. The site provides clear navigation and relevant content aimed at a general audience interested in cultural heritage and museum events. The museum leverages modern web technologies including Matomo analytics configured for privacy, and a cookie consent mechanism to comply with GDPR requirements. Hosting is provided by a German provider (1blu), consistent with the museum's location and audience. From a security perspective, the website enforces HTTPS and uses privacy-respecting analytics, but lacks explicit security headers and published security policies or incident response contacts. No critical vulnerabilities or suspicious WHOIS patterns were detected, indicating a trustworthy domain and hosting environment. Privacy and cookie policies are present and implemented with user consent, supporting compliance with European data protection laws. Overall, the website demonstrates good technical maturity and business credibility for a cultural institution, with room for improvement in security header implementation and formal security documentation. The absence of direct contact emails or phone numbers on the homepage suggests contact details may be located deeper in the site or handled via forms. The site is safe for general audiences with no adult or questionable content detected.

Museum Angewandte Kunst is a reputable cultural institution based in Germany, specializing in applied arts, design, and cultural exhibitions. The website serves as a comprehensive portal for visitors, offering detailed information about current and upcoming exhibitions, educational programs, and digital collections. The museum targets a broad audience including art enthusiasts, students, and educators, positioning itself as a key player in the cultural sector of Frankfurt. Technically, the website is built on a CMS likely Redaxo, employs modern web technologies, and is hosted via DomainControl nameservers. It features a cookie consent mechanism and uses Matomo analytics, reflecting a commitment to privacy compliance. Security posture is good with HTTPS enforced, though some security headers are not explicitly detected. No critical vulnerabilities or blocking mechanisms are present, indicating a stable and accessible platform. Overall, the site demonstrates excellent content quality, user experience, and professionalism, supporting the museum's mission and public engagement effectively.

J

Jüdisches Museum Frankfurt

juedischesmuseum.de

34

The Jüdisches Museum Frankfurt is a cultural institution dedicated to showcasing 800 years of Jewish history and culture in Frankfurt, Germany. It operates two main locations: the Rothschild-Palais and the Museum Judengasse. The museum offers exhibitions, educational programs, and events targeting a broad audience interested in Jewish heritage and history. The website reflects a well-established museum with a consistent brand and professional presentation.

G

Frankfurter Goethe-Haus

goethehaus-frankfurt.de

37

The Frankfurter Goethe-Haus website represents a cultural institution focused on the Goethe House in Frankfurt, Germany. The site primarily serves as an informational and cultural resource, targeting visitors interested in literature, history, and cultural heritage. The website employs modern digital tools such as Matomo for analytics and Cookiebot for GDPR-compliant cookie consent management, indicating a moderate level of digital maturity. However, the site lacks explicit privacy and terms of service policies, as well as direct contact information, which limits transparency and user trust. Security posture is adequate with HTTPS enforced, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is functional and professionally designed but could enhance compliance and trust through better policy disclosures and contact availability.

D

Deutsches Romantik-Museum – Frankfurt am Main

deutsches-romantik-museum.de

57

The Deutsches Romantik-Museum website serves as an online presence for a cultural museum located in Frankfurt am Main, Germany, dedicated to Romanticism art and culture. The site targets general visitors interested in art and cultural heritage, providing information about exhibitions and events. The business model is that of a cultural institution with a focus on education and public engagement. Technically, the website employs modern web standards with HTML5 and CSS3, uses Matomo for analytics with privacy-conscious cookie management via Cookiebot, and is hosted on a multimedia service provider's infrastructure. The site is mobile-optimized and provides a good user experience with consistent branding and clear navigation. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks published security policies and incident response contacts. Overall, the site is trustworthy and compliant with GDPR cookie consent requirements but could improve transparency by publishing privacy and security policies.

F

Frankfurter Bibelgesellschaft e.V.

bibelhaus-frankfurt.de

52

Bibelhaus Frankfurt is a small non-profit cultural and educational institution based in Germany, focused on providing museum exhibitions and educational programs related to the Bible and its history. The website serves as an information portal for visitors, offering details on exhibitions, guided tours, and digital offerings including a virtual tour. The institution targets a general audience including museum visitors and educational groups. Technically, the website employs modern web technologies such as Matomo for analytics and CCM19 for cookie consent management, ensuring privacy-conscious user tracking. The site is well-structured, mobile-optimized, and uses HTTPS with no detected blocking or WAF challenges. Security posture is good, though explicit security headers and incident response policies are not published. The WHOIS data aligns with the website content, showing a legitimate registration without privacy protection, appropriate for a non-profit entity. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

G

GFBio - Gesellschaft für Biologische Daten e.V.

gfbio.org

54

GFBio is a German non-profit federation focused on providing a national data infrastructure for biological and environmental research data management. Established in 2013 and funded by the DFG, it offers services including data submission, search, visualization, and training to researchers in biodiversity and ecology. The website reflects a mature organization with a clear mission and strong partnerships, notably with the NFDI4Biodiversity consortium and other research projects. Technically, the website employs modern web technologies such as Bootstrap 5, Matomo and Google Analytics for tracking, and uses secure HTTPS connections. The infrastructure appears stable and moderately performant with good mobile optimization. However, some security enhancements like DNSSEC and security headers are missing, and there is no visible cookie consent mechanism, which may impact GDPR compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and domain transfer protection. The WHOIS data is transparent and consistent with the organization's profile, enhancing trustworthiness. No critical vulnerabilities or suspicious content were detected. Nonetheless, improvements in security headers, privacy compliance, and incident response disclosures are recommended. Overall, GFBio presents a trustworthy and professional online presence suitable for its research audience, with moderate risk and room for security and privacy enhancements.

E

Erzbistum München und Freising

erzbistum-muenchen.de

51

Erzbistum München und Freising is a large, established religious non-profit organization serving the Catholic community in the Munich and Freising region of Germany. The website provides comprehensive information about religious services, spiritual guidance, educational programs, and social support initiatives. It targets a general audience including families, youth, and adults interested in Catholic life and community activities. The organization maintains a consistent and professional online presence with clear branding and well-structured content.

F

Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth / BDKJ-Regionalverband Bayreuth

bdkj-bayreuth.de

60

The website 'jugend-im-dekanat-bayreuth.de' serves as the official online presence for the Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth and the BDKJ-Regionalverband Bayreuth, a non-profit organization affiliated with the Catholic Church in Germany. It provides comprehensive information on youth pastoral activities, events, funding opportunities, and support services targeted at youth and volunteers within the church community. The site is well-structured, accessible, and compliant with GDPR regulations, featuring a cookie consent mechanism and privacy policy. Technically, it is built on the Alkacon Mercury CMS platform, uses Matomo for analytics, and integrates accessibility tools to enhance user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response contacts could be improved. Overall, the site reflects a professional, trustworthy, and community-focused organization with a clear mission to support youth work in the region.

K

Kindertagesstätte St. Anna Bad Staffelstein

kita-stanna-badstaffelstein.de

59

Kindertagesstätte St. Anna Bad Staffelstein is a small, local childcare and early education provider affiliated with the Catholic Church (Erzbistum Bamberg) serving families in Bad Staffelstein, Germany. The website provides comprehensive information about childcare services including nursery (Krippe), kindergarten, parental fees, daily routines, and contact details. The business model is non-profit and community-focused, targeting parents seeking trusted childcare solutions. The site is well-branded and consistent with the parent organization’s identity. Technically, the website is built on the Alkacon Mercury CMS platform, utilizing modern web technologies such as JavaScript, SVG icons, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and includes strong accessibility features via the eyeAble plugin. Performance is moderate with good SEO and metadata implementation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly observed and no incident response or vulnerability disclosure information is provided, which could be improved. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively serves its target audience with clear contact information and relevant content. Strategic improvements in security policy transparency and technical security headers would enhance its posture further.

The website represents the Catholic parish of Schwürbitz, Germany, serving local community members with information about religious services, parish staff, events, and contact details. It is positioned as a small, non-profit religious entity under the Erzbistum Bamberg. The site uses a modern technical stack including Bootstrap, jQuery, and Matomo analytics, hosted on servers consistent with the domain's WHOIS data. Security posture is adequate with HTTPS, cookie consent, and reCAPTCHA integration, though security headers and explicit policies could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy, professionally designed, and well-suited for its target audience.

B

Büro Coburg / BDKJ-Regionalverband Coburg

bdkj-lichtenfels.de

55

The website represents a regional non-profit youth pastoral organization affiliated with the Erzdiözese Bamberg, serving the Coburg and Lichtenfels areas in Germany. It provides youth support, event organization, volunteer coordination, and educational programs targeting young people and youth workers. The site is well-structured, with clear navigation and relevant content tailored to its audience. Technically, it uses the alkacon Mercury CMS platform, integrates Matomo analytics for privacy-conscious tracking, and includes accessibility features via the eyeAble plugin. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. Contact information is clearly presented with physical addresses, phone numbers, and obfuscated emails. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

D

Deutsche Pfadfinderschaft Sankt Georg

dpsg.de

51

The Deutsche Pfadfinderschaft Sankt Georg (DPSG) operates a professional and content-rich website focused on youth scouting activities in Germany. The organization is a large non-profit entity providing scouting programs for children and adolescents, emphasizing inclusion, gender equality, and international cooperation. The website is built on Drupal 9 Thunder, uses Matomo for analytics with privacy-conscious settings, and includes a cookie consent mechanism. While the site is well-designed, mobile-optimized, and accessible, it lacks explicit privacy policy and terms of service pages, and does not publish a security policy or incident response contacts. Contact information is primarily via social media and forms, with no direct emails or phone numbers found. The WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. Overall, the site demonstrates good technical maturity and business credibility but could improve privacy compliance and security transparency.

G

GMK – Medien. Marken. Kommunikation.

magazin-gesund-leben.de

50

The website 'GESUND LEBEN – das Gesundheitsmagazin für Bayreuth' is a regional health magazine published quarterly, targeting health-interested audiences in the Bayreuth region of Germany. It is operated by GMK – Medien. Marken. Kommunikation. in partnership with several reputable local healthcare institutions. The business model focuses on disseminating health information through print and digital media, leveraging strong local partnerships to reach its audience effectively. Technically, the website is built on WordPress 6.8.2 with common plugins such as Yoast SEO for search optimization, Contact Form 7 for user communication, and SiteOrigin Panels for layout management. It employs Usercentrics for GDPR-compliant cookie consent and Matomo for privacy-respecting analytics. The site is moderately performant, mobile-optimized, and has good SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with an excellent SSL configuration and integrates consent management for privacy compliance. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The overall security posture is good but could be improved with additional headers and policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It provides clear contact via email and forms but lacks phone or physical address details on the homepage. The content is safe for general audiences, focused on health topics without any adult or questionable material. The domain WHOIS data is minimal but consistent with a small regional media business. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

The Katholischer Seelsorgebereich Gottesgarten website serves as an informational portal for the Catholic pastoral care area Gottesgarten in Germany, providing comprehensive details about sacraments, pastoral services, events, and contact information for the local community. The site is well-positioned as a regional non-profit religious community resource, targeting parishioners and residents in the Gottesgarten region. It offers clear navigation, relevant content, and consistent branding aligned with its mission. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, and integrates Matomo analytics for user tracking with privacy considerations. The site is hosted on kirche-bamberg.de infrastructure, uses HTTPS, and includes a cookie consent mechanism compliant with GDPR. Mobile optimization and accessibility are adequately addressed, though some improvements could be made in security headers and accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, use of reCAPTCHA, and anonymized analytics tracking. However, explicit security headers are not evident, and no incident response or security policy pages are published. No vulnerabilities or suspicious content were detected. The domain WHOIS data aligns well with the website content, indicating legitimacy and trustworthiness. Overall, the website presents a low-risk profile with a solid privacy and security posture for a non-profit religious organization. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date third-party libraries to further strengthen the security posture.

Telefonseelsorge Erlangen is a small, non-profit organization providing free, confidential telephone counseling services to individuals facing acute distress, interpersonal difficulties, and emotional crises. The service operates 24/7 with trained volunteers offering anonymous support. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive privacy and cookie policies, reflecting a strong commitment to user privacy and compliance with GDPR. Technically, the site leverages modern web technologies including jQuery, Bootstrap, and Matomo analytics, hosted on infrastructure associated with kirche-bamberg.de, indicating a stable and reputable hosting environment. Security posture is good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy, well-maintained, and aligned with its mission to provide emotional support services in Erlangen, Germany.

P

Pfarrei Mariä Geburt Altenkunstadt

pfarrei-altenkunstadt.de

61

Pfarrei Mariä Geburt Altenkunstadt is a local Catholic parish in Germany providing religious and community services. The website serves as an information portal for parishioners and visitors, offering details on church services, staff, committees, sacraments, and contact information. It targets the local community and those interested in parish activities. The business model is non-profit and community-focused, with a clear emphasis on accessibility and user engagement. Technically, the website is built on the alkacon Mercury CMS platform, leveraging JavaScript, Matomo analytics for privacy-conscious tracking, and OpenStreetMap for location services. The site is hosted likely by Telekom Deutschland, indicated by the nameservers. The website demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism with opt-in for external content. However, explicit security headers and incident response policies are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows consistent domain usage with no suspicious patterns, although registrant details are minimal. Overall, the website is trustworthy, safe, and professionally maintained, with room for improvement in security policy transparency and technical hardening. It effectively serves its community role with good content quality and accessibility.

K

Kath. Seelsorgebereich Obermain-Jura

ssb-obermain-jura.de

59

The Katholischer Seelsorgebereich Obermain-Jura website serves as the digital presence for a small regional non-profit religious organization in Germany. It provides parishioners and community members with information about religious services, events, and parish contacts. The site is well-structured, accessible, and includes privacy and cookie consent mechanisms, reflecting a commitment to user privacy and compliance with GDPR. The technical infrastructure is based on the alkacon Mercury CMS platform, with integrations such as Matomo analytics and OpenStreetMap for location services. Hosting is stable and consistent with the domain's purpose. From a security perspective, the website uses HTTPS and implements cookie consent but lacks explicit security policies or incident response contacts. No critical vulnerabilities or suspicious content were detected. The site demonstrates good accessibility and SEO practices, enhancing user experience and trustworthiness. External links are primarily to related parish websites and church infrastructure, reinforcing the site's community focus. Overall, the website presents a professional and trustworthy digital front for the religious community it serves. Strategic improvements could include adding explicit security policies, incident response contacts, and enhanced security headers to further strengthen its security posture.

L

LifeWatch Belgium

lifewatch.be

59

LifeWatch Belgium is a well-established national research infrastructure supporting biodiversity and ecosystem research. It provides a broad range of scientific data services and collaborates within the European LifeWatch ERIC consortium. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility. Privacy and cookie compliance are well implemented, reflecting GDPR adherence. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. The domain registration is consistent and legitimate, registered with BELNET since 2009. Overall, the website presents a trustworthy and authoritative presence in its sector.

B

British Oceanographic Data Centre

bodc.ac.uk

72

The British Oceanographic Data Centre (BODC) operates as the UK's national facility for preserving and distributing oceanographic and marine data. Affiliated with the National Oceanography Centre and the Natural Environment Research Council (NERC), BODC serves a specialized audience of marine scientists, researchers, and governmental agencies. The website offers extensive resources including data inventories, submission guidelines, and hosted data systems, positioning BODC as a key player in marine data management within the UK and internationally. Technically, the website employs a modern yet straightforward technology stack including jQuery, Modernizr, Google Analytics, and Matomo for analytics, alongside social sharing tools like AddThis. The site is mobile-optimized with good accessibility and SEO practices, though some legacy scripts like Google+ API remain. Performance is moderate, with room for optimization. Security is robust with HTTPS enforced, but lacks explicit security headers and incident response information. From a security and compliance perspective, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are present and GDPR compliance is indicated, though no active cookie consent mechanism is detected. WHOIS data is unavailable, likely due to privacy protection, but the site's affiliation and certifications such as CoreTrustSeal support its legitimacy. Overall, the site is professional, trustworthy, and well-suited for its scientific and governmental audience.