Security Directory

P

PLUTEX GmbH

plutex.de

54

PLUTEX GmbH is a German Managed Service Provider specializing in server management, hosting, colocation, and network services with its own TÜV-certified data centers powered by 100% green energy. The company targets business customers requiring reliable, secure, and scalable IT infrastructure solutions. Their offerings include managed servers, root servers, backup storage, VPN, and consulting services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to their audience. Technically, the site runs on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is strong with HTTPS, certifications (ISO 27001, ISO 9001), and cookie consent mechanisms, though some security headers could be improved. Overall, the domain and business appear legitimate and well-established, with no signs of suspicious activity or content blocking.

E

ekz Bibliotheksservice GmbH

ekz.de

54

ekz Bibliotheksservice GmbH is a German company specializing in providing services, technology, and products tailored for libraries. The company positions itself as a modern and reliable partner in the education sector, offering media supply and library equipment solutions. Their website reflects a professional and consistent brand image, targeting library professionals and institutions in Germany. The company holds recognized certifications such as ISO 9001 and ISO 14001, reinforcing its commitment to quality and environmental standards. Technically, the website is built using the PIM.RED content management system and employs modern web technologies including Font Awesome and Matomo analytics for user tracking. Hosting is managed via Telekom domains, indicating a stable and reputable infrastructure. The site is mobile-optimized with a cookie consent mechanism in place, although some SEO and accessibility features could be enhanced. From a security perspective, the website uses HTTPS and implements cookie consent, but lacks advanced security headers and publicly available security policies or incident response contacts. No vulnerabilities or suspicious patterns were detected in the provided content. Overall, the security posture is adequate but could benefit from additional hardening and transparency. The overall risk assessment is low, with the website demonstrating good business credibility and technical implementation. Strategic recommendations include improving security headers, publishing privacy and security policies, and enhancing accessibility and SEO to further strengthen trust and compliance.

F

Friedrich-Loeffler-Institut

fli.de

47

The Friedrich-Loeffler-Institut is a German federal government research institute specializing in animal health, infectious diseases, and zoonoses. It serves as a national authority and scientific leader in veterinary medicine, providing reference laboratory services, research, and public information. The website reflects a mature digital presence with a consistent brand and comprehensive content targeting researchers, veterinarians, and government stakeholders. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics with user consent, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, cookie consent, and session management, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

I

Intersolute GmbH

intersolute.de

55

Intersolute GmbH is a German technology partner specializing in IT infrastructure, digital transformation, cloud solutions, AI integration, software development, and design services. The company targets businesses seeking professional and solution-oriented IT and digital services, positioning itself as a regional expert with strong partnerships and certifications. The website reflects a mature digital presence with comprehensive content and clear navigation. Technically, the site uses a custom CMS, modern web standards, and integrates analytics tools like Matomo and Google Tag Manager. Security posture is good with HTTPS and cookie consent mechanisms, though additional security headers and a published security policy would enhance trust. WHOIS data is limited due to DENIC privacy policies but shows consistent domain control. Overall, the site is professional, trustworthy, and well-optimized for its audience.

P

PANGAEA

pangaea.de

57

PANGAEA is a specialized data publisher focused on archiving, publishing, and distributing georeferenced datasets related to earth system and environmental sciences. It serves a scientific audience, primarily researchers and institutions engaged in earth system research. The platform is recognized as a member of the World Data System and is hosted by reputable German research institutions, lending it strong credibility and trustworthiness. The website offers extensive scientific content, including featured datasets and news updates, with a professional and consistent branding approach. Technically, the website employs modern web technologies such as Bootstrap for responsive design, jQuery for interactivity, Leaflet for mapping, and Matomo for analytics, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Hosting appears to be managed by academic institutions, which supports reliability and stability. From a security perspective, the site enforces HTTPS and uses Matomo analytics configured with domain-specific cookies, reflecting good privacy practices. However, explicit security headers are not detected, and no public security or incident response policies are published. There are no visible vulnerabilities or exposed sensitive data. Certifications from the World Data System, World Meteorological Organization, and CoreTrustSeal further enhance the security and trust posture. Overall, PANGAEA presents a low-risk profile with strong business credibility and technical maturity. The absence of direct contact emails or phone numbers is mitigated by a contact form and comprehensive policy pages. Strategic improvements could include publishing explicit security policies, incident response contacts, and implementing cookie consent mechanisms to enhance compliance and user trust.

D

Dr. Gerhard Schilling

dr-schilling-monsheim.de

51

Dr. Gerhard Schilling operates a personal blog focused on agriculture and local politics in Germany. The website serves as a platform for commentary and insights into these sectors, targeting a German-speaking audience interested in these topics. The business model is content publishing via a WordPress-based blog, with a niche market position and a small-scale operation. The site is hosted on Hetzner, a reputable German hosting provider, and uses modern web technologies including WordPress, OceanWP theme, and privacy-focused analytics via Matomo. The site implements GDPR-compliant cookie consent mechanisms and maintains a privacy policy, reflecting a good level of privacy compliance. Security posture is adequate with HTTPS enforced and cookie consent in place, though additional security headers and vulnerability disclosure mechanisms could enhance security maturity. Overall, the website is professional, trustworthy, and well-structured, with good content quality and user experience.

A

Aktion Agrar

aktion-agrar.de

54

Aktion Agrar is a German non-profit organization dedicated to advocating for sustainable, ecological, and socially responsible agriculture. The website serves as a platform to disseminate information, campaign materials, and newsletters to supporters and the general public interested in agricultural reform. The organization targets a general audience including farmers, activists, and environmentally conscious individuals. Technically, the website is built on WordPress, leveraging popular plugins such as Yoast SEO Premium for search engine optimization and Matomo for privacy-focused analytics. The site demonstrates good mobile optimization and a professional design, contributing to a positive user experience. Security-wise, the site uses HTTPS and asynchronous script loading but lacks explicit security headers and detailed security or privacy policies, which are areas for improvement. The WHOIS data is minimal and lacks detailed registrant information, which slightly impacts the trustworthiness assessment but does not negate the legitimacy of the organization based on website content and technical setup.

The Deutsche Vernetzungsstelle Ländliche Räume (DVS) is an official German government information portal focused on rural development and the EU's Common Agricultural Policy. It provides comprehensive resources including funding information, news, events, and job listings targeted at stakeholders in agriculture, environment, and regional planning. The platform is affiliated with the Bundesanstalt für Landwirtschaft und Ernährung (BLE), ensuring authoritative content and trustworthiness. Technically, the website is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and implements strong privacy and cookie consent mechanisms. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital presence. Security posture is solid with HTTPS and basic security headers, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

KiTa St. Augustin Coburg

kindergarten-coburg.de

58

KiTa St. Augustin Coburg is a local childcare provider in Coburg, Germany, offering services including Kinderkrippe, Kindergarten, and Vorschule with a focus on pedagogical care and education in a family-centered environment. The website is professionally designed, targeting families seeking trusted childcare services. Technically, the site uses OpenCms with Apollo theme, integrates Matomo analytics for privacy-conscious tracking, and is hosted on servers indicated by the domain's nameservers. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS and cookie consent implemented, but lacks some security headers and incident response information. Overall, the site is trustworthy and compliant with GDPR, with clear contact details and no suspicious content.

P

Pfarrei St. Martin weismain

stmartin-weismain.de

10

The website represents the Catholic parish St. Martin in Weismain, Germany, serving as an informational portal for parishioners and visitors. It provides details about church services, staff, committees, sacraments, and upcoming events, positioning itself as a local community and religious resource. The site targets local residents and church members, operating as a non-profit religious organization with a small organizational size. Technically, the website is built on the alkacon Mercury CMS platform, utilizing JavaScript, OpenStreetMap for location services, and Matomo for analytics. The hosting is managed via rzone.de nameservers. The site demonstrates good mobile optimization, accessibility features, and SEO practices, with moderate performance. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive privacy policy and cookie banner. Overall, the website is trustworthy, professionally maintained, and safe for general audiences. Strategic improvements could focus on enhancing security headers and publishing security policies to further strengthen the security posture.

P

Pfarrei St. Heinrich und Kunigunde Burgkunstadt

pfarrei-burgkunstadt.de

59

Pfarrei St. Heinrich und Kunigunde Burgkunstadt is a local parish church serving the community in Burgkunstadt, Germany. The website provides comprehensive information about religious services, sacraments, community news, and events, targeting local parishioners and visitors. It is part of the Erzbistum Bamberg diocese network and collaborates with nearby parishes. The site is well-structured, accessible, and includes GDPR-compliant privacy and cookie policies. Contact information is clearly presented, supporting community engagement. Technically, the website is built on the Alkacon Mercury CMS platform, using modern web technologies including JavaScript, Bootstrap, and Matomo analytics for privacy-conscious tracking. The site is mobile-optimized and includes accessibility features such as the eyeAble plugin. Hosting is provided by internet1.de, with DNS configured accordingly. Performance is moderate, with good SEO and accessibility practices. From a security perspective, the site uses HTTPS (assumed from canonical URLs and external scripts), employs cookie consent mechanisms, and avoids exposing sensitive data. However, explicit security headers are not visible in the provided data, and no incident response or security policy pages are found. The site does not show signs of vulnerabilities or malicious content. The WHOIS data indicates a consistent and legitimate domain registration appropriate for a local parish. Overall, the website demonstrates a solid digital presence for a small non-profit religious organization, balancing user experience, privacy, and accessibility. Strategic improvements could include enhancing security headers, publishing a security policy, and formalizing incident response contacts to strengthen trust and compliance.

P

Pfarrei St. Michael Mainroth

pfarrei-mainroth.de

10

Pfarrei St. Michael Mainroth is a small, non-profit Catholic parish serving the local community in Germany. The website provides comprehensive information about church services, parish teams, community groups, and events, targeting parish members and local residents. The business model focuses on religious and community services with a long historical background dating back to 1308. Technically, the website is built on the Alkacon Mercury CMS platform, uses Matomo for analytics, and integrates accessibility features and cookie consent mechanisms, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are not explicitly presented. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements, making it a reliable resource for its audience.

Lebensfenster.de is a German non-profit website operated by the Internetseelsorge of the Archdiocese of Bamberg, providing spiritual guidance, counseling, and social support services primarily to the general public seeking pastoral care. The website is well-structured, professionally designed, and offers comprehensive content in German, including spiritual impulses, counseling contacts, and information on social issues. It maintains strong affiliations with official church and social service organizations, enhancing its credibility and trustworthiness. Technically, the site employs modern web technologies such as Bootstrap, jQuery, JWPlayer, and Matomo analytics, hosted on a German hosting provider with secure HTTPS connections. Privacy compliance is well addressed through a detailed cookie consent mechanism and GDPR-aligned privacy policy. Security posture is solid with HTTPS, reCAPTCHA, and privacy-respecting analytics, though some security headers could be improved. Overall, the site presents a low-risk profile with no detected vulnerabilities or suspicious content.

Ö

Ökumenische Kur- und Urlauberseelsorge Bad Staffelstein

kurseelsorge-bad-staffelstein.de

10

The Ökumenische Kur- und Urlauberseelsorge Bad Staffelstein website serves as a digital platform for spiritual care and community engagement in Bad Staffelstein, Germany. It provides detailed event information, pastoral contacts, and resources for visitors and locals interested in ecumenical services and cultural activities. The site is positioned as a small non-profit entity focused on local community support and spiritual well-being. Technically, the website is built on the Alkacon Mercury CMS platform, utilizing modern web technologies including JavaScript and Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization and excellent accessibility features, ensuring broad usability. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and incident response policies are not evident, suggesting areas for improvement. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic enhancements in security policies and technical optimizations could further strengthen its posture and user trust.

G

Gesundheitseinrichtungen des Bezirks Oberfranken (GeBO)

gebo-med.de

47

Gesundheitseinrichtungen des Bezirks Oberfranken (GeBO) is a regional healthcare provider in Germany specializing in psychiatric, psychosomatic, and somatic medical services. The organization operates multiple clinical and care facilities across Oberfranken, offering comprehensive healthcare, rehabilitation, and educational services including nursing training. The website is built on TYPO3 CMS with a professional design and clear navigation, targeting patients, healthcare professionals, and prospective employees. Technically, the site uses modern frameworks and privacy-conscious analytics (Matomo with cookies disabled), hosted likely via Deutsche Telekom domains. Security posture is adequate with HTTPS enabled but lacks explicit security headers and published privacy/cookie policies, representing compliance gaps. Contact information is detailed and trustworthy, supporting business credibility. Overall, the site is well-positioned in its market with good digital maturity but should improve privacy and security disclosures to enhance compliance and trust.

Caritasverband für den Landkreis Lichtenfels e.V. is a regional non-profit organization providing a wide range of social services including child and youth welfare, family support, senior care, and integration assistance. The website reflects a well-structured and professionally maintained digital presence, targeting local communities in Germany. The organization leverages modern web technologies such as Bootstrap, jQuery, and Matomo analytics, ensuring a balance between functionality and privacy compliance. Security measures include HTTPS, cookie consent management, and use of Google reCAPTCHA to protect forms. However, there is room for improvement in implementing security headers and explicit incident response policies. Overall, the website is trustworthy, accessible, and compliant with GDPR requirements, supporting the organization's mission effectively.

B

Basilika Vierzehnheiligen

vierzehnheiligen.de

59

Basilika Vierzehnheiligen is a religious and cultural institution located in Bad Staffelstein, Germany. The website serves as an official portal providing comprehensive information about church services, events, visitor information, and historical context. It targets pilgrims, local community members, and visitors interested in the basilica and its activities. The business model is non-profit, focusing on cultural and religious service provision. The site maintains a strong regional presence as a religious landmark with a consistent and professional brand image. Technically, the website is built on the Alkacon Mercury CMS platform, utilizing JavaScript, Matomo analytics for privacy-conscious tracking, and OpenStreetMap for location services. The site is mobile-optimized, accessible, and moderately performant. It integrates accessibility features and provides a cookie consent mechanism compliant with GDPR. From a security perspective, the site enforces HTTPS and employs cookie consent for external content. However, it lacks explicit security policy documentation and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the website's legitimacy. Overall, the site demonstrates a good security posture with room for improvement in transparency and security policy publication. The overall risk assessment is low, with recommendations to enhance security documentation, implement security headers, and publish incident response information to strengthen trust and compliance.

The website steinach-rodach-main.de serves as the official online presence of the Catholic parish Schwürbitz, located in the Lichtenfels-Obermain pastoral area in Germany. It provides parishioners and visitors with comprehensive information about church services, community events, staff, and sacraments. The site targets local community members and those interested in parish activities, operating as a non-profit religious community service platform. The content is well-organized, professionally presented, and primarily in German, reflecting its local audience focus. Technically, the website employs a modern technology stack including Bootstrap for responsive design, jQuery, Font Awesome, and specialized plugins like FancyBox and Revolution Slider for enhanced user experience. It uses FlexiWeb CMS inferred from AJAX glossary features and is hosted on servers associated with internet1.de. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance characteristics. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA for bot protection, and implements a cookie consent mechanism compliant with GDPR. Matomo analytics is used with anonymous tracking fallback to respect user privacy. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, the website demonstrates a solid security posture and good privacy compliance, with clear contact information and trust indicators such as official email addresses and imprint pages. The domain registration details align with the website content, indicating legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, ensuring CSRF protection on forms, and publishing a dedicated security policy to further strengthen trust and compliance.

The website for Kath. Pfarramt St. Kilian serves as the official online presence of the Catholic parish in Bad Staffelstein, Germany. It provides parishioners and visitors with comprehensive information about church services, sacraments, community groups, staff, events, and contact details. The site is positioned as a local religious community portal under the Archdiocese of Bamberg, targeting local residents and church members. The business model is non-profit, focusing on community engagement and religious service information. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, and specialized plugins like Revolution Slider and JWPlayer. It uses Matomo analytics with privacy-conscious configurations and Google reCAPTCHA for bot protection. The site is mobile optimized and uses a CMS likely based on FlexiWeb, with hosting provided by internet1.de. Performance is moderate with good SEO and basic accessibility features. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. While some security headers are not explicitly detected, the site follows best practices such as anonymized analytics fallback and bot protection. No vulnerabilities or exposed sensitive data were found. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively serves its community purpose with clear contact information and consistent branding. Strategic recommendations include enhancing security headers, publishing security policies, and adding a vulnerability disclosure channel to strengthen security posture and trust.

E

Evangelisch-Lutherische Kirche in Bayern

vernetzte-kirche.de

44

Vernetzte Kirche & Intranet is a specialized IT department within the Evangelisch-Lutherische Kirche in Bayern, focusing on developing the church's intranet and supporting digital presence for church communities in Bavaria. Their offerings include sample websites, event calendars, training, and individual web projects, targeting church institutions and members. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility. Privacy compliance is well addressed with a clear privacy policy and cookie consent management. Security posture is solid with HTTPS and anti-bot measures, though some security headers and policies could be improved. Overall, the site reflects a trustworthy and professional governmental/non-profit entity with a clear mission and audience.

The website represents the Catholic Deanery of Bayreuth, a regional religious institution providing comprehensive information about church services, community institutions, counseling centers, and news relevant to the local Catholic community. It serves as an official communication platform under the Archdiocese of Bamberg, targeting residents and parishioners in Bayreuth and surrounding areas. The site is well-structured with clear navigation and a professional design consistent with its religious and community-oriented mission. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and Matomo analytics, hosted on a German provider with secure HTTPS connections. Privacy compliance is well addressed through a detailed cookie consent mechanism and a comprehensive privacy policy in German, aligned with GDPR requirements. Security posture is good with HTTPS and bot protection via Google reCAPTCHA, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected, and the site maintains high trustworthiness through official contact information and partner links.

S

Schlosskirchenmusik Bayreuth

schlosskirchenmusik-bayreuth.de

60

Schlosskirchenmusik Bayreuth is a small non-profit organization dedicated to church music at the Schlosskirche in Bayreuth, Germany. It organizes liturgical music, concerts, and provides training for part-time church musicians. The website reflects a well-structured community-focused entity with clear contact information and event listings. Technically, the site uses the Alkacon Mercury CMS, integrates Matomo for privacy-conscious analytics, and includes accessibility features via the EyeAble plugin. The site is hosted on German infrastructure with HTTPS enforced, ensuring secure communications. Security posture is good but could be enhanced with additional HTTP security headers and formal security policies. Privacy compliance is strong with a clear cookie consent mechanism and a comprehensive privacy policy. Overall, the site presents a trustworthy and professional image suitable for its community and non-profit mission.

F

Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth / BDKJ-Regionalverband Bayreuth

jugend-im-dekanat-bayreuth.de

60

The website represents the Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth and the BDKJ-Regionalverband Bayreuth, focusing on youth pastoral work and church-related youth services in the Bayreuth region of Germany. It provides comprehensive information on events, youth programs, prevention of sexual violence, and support for volunteers. The site is affiliated with the Erzbistum Bamberg, indicating a strong institutional backing. Technically, the site is built on the Alkacon Mercury CMS platform, uses Matomo for analytics, and integrates accessibility tools such as Eye-Able, demonstrating a commitment to inclusivity and privacy. The website is well-structured, mobile-optimized, and GDPR compliant with clear cookie consent mechanisms. Security posture is good with HTTPS enforced, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is trustworthy, professional, and serves its non-profit mission effectively.

Pfarrei St. Franziskus Eckersdorf is a small non-profit Catholic parish serving the local community in Eckersdorf, Germany. The website provides parishioners and visitors with information about church services, events, contact details, and parish groups. It is positioned as a local religious community hub with a focus on spiritual and community services. The site is well-branded, consistent, and offers good content quality tailored to its audience. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and Matomo analytics, hosted on internet1.de with proper HTTPS configuration. The site is mobile optimized and provides basic accessibility features. Security posture is good with HTTPS, cookie consent, and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is strong with a clear cookie banner and privacy policy in German, aligned with GDPR requirements. Contact information is clearly presented with verified email and phone details. Overall, the website is trustworthy, professional, and suitable for its non-profit religious purpose.

The website nepomuk-bayreuth.de serves as the official online presence for the Catholic parish offices of St. Johannes Nepomuk and Heilig Geist in Bayreuth, Germany. It provides parishioners and local community members with information about church services, events, staff, and contact details. The site is positioned as a local religious institution focused on community engagement and spiritual services. The business model is non-profit, serving the religious and social needs of its audience. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, Font Awesome, and specialized plugins such as Revolution Slider and JWPlayer. It uses a CMS likely based on FlexiWeb and is hosted on infrastructure associated with kirche-bamberg.de. The site is mobile-optimized and includes accessibility features, though these could be enhanced. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site enforces HTTPS and uses a cookie consent banner with granular user controls. It integrates Google reCAPTCHA for bot protection and Matomo analytics with options for anonymous tracking, demonstrating a commitment to privacy compliance. However, it lacks advanced security headers like Content-Security-Policy and does not publish a security.txt or vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional, with clear contact information and links to official Catholic organizations. It contains no adult or questionable content and is suitable for a general audience. Recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving SEO and accessibility to further strengthen its digital maturity and security posture.

F

For Future Bündnis

for-future-buendnis.de

59

For Future Bündnis is a German non-profit organization focused on climate protection activism, operating a network of over 50 local groups across Germany. The website serves as a hub for networking, event organization, and knowledge sharing, targeting individuals interested in climate activism. The organization holds a reputable position in the non-profit sector, evidenced by certifications such as the Phineo Wirkt-Siegel and support from the German Environment Agency (UBA). The business model centers on community engagement and empowerment rather than commercial activities. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins for event management, cookie consent, and analytics. The infrastructure is modern and well-maintained, with good mobile optimization and SEO practices. Hosting is managed via UI-DNS, and the site employs HTTPS with strong SSL configuration, ensuring secure communications. Security posture is solid, with appropriate security headers, privacy-respecting analytics via Matomo, and a comprehensive cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy or incident response contact, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It effectively supports the organization's mission while maintaining a secure and user-friendly online presence. Strategic recommendations include publishing explicit security policies, enhancing accessibility, and considering a vulnerability disclosure policy to further strengthen security culture.

I

InnoCoding GmbH

innocoding.com

60

InnoCoding GmbH is a specialized digitalization and funding consultancy company based in Münster, Germany, focusing on medium-sized enterprises. Their services encompass web and app development, funding application support, and data science solutions. The company positions itself as a full-service provider with a strong emphasis on quality, transparency, and customer proximity. The website reflects a professional and modern digital presence, leveraging TYPO3 CMS and integrating advanced analytics and marketing tools such as Google Analytics, Matomo, and Microsoft Clarity. Security practices include HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS registration data is a notable concern for domain legitimacy verification but does not detract from the professional appearance and trust signals on the website. Overall, InnoCoding GmbH presents a credible and trustworthy business with a solid technical infrastructure and compliance posture.

F

Fridays for Future

fridaysforfuture.de

10

Fridays for Future Germany is a prominent non-profit climate activism organization dedicated to raising awareness and mobilizing public action against the climate crisis. The website serves as a central hub for information dissemination, event coordination, and community engagement, targeting a broad audience of climate-conscious individuals and supporters. The organization maintains a strong market position within Germany and internationally through its decentralized and independent structure. Technically, the website is built on WordPress, leveraging modern plugins such as Gutenslider for dynamic content and Matomo for privacy-focused analytics. The site is hosted on rzone.de with custom nameservers, employs HTTPS with excellent SSL configuration, and demonstrates good mobile optimization and accessibility standards. SEO practices are well implemented with comprehensive metadata and structured data. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. The privacy policy and cookie policy are comprehensive and GDPR compliant, reflecting a strong commitment to user privacy. Overall, the website is professional, trustworthy, and well-maintained, with minor areas for improvement in security transparency and contact information availability. The risk profile is low, with no indications of malicious activity or content safety concerns.

A

Ackermann-Gemeinde e.V.

ackermann-gemeinde.de

10

Ackermann-Gemeinde e.V. is a German non-profit organization focused on fostering German-Czech-Slovak neighborhood relations through cultural, social, and religious initiatives within the Catholic Church. The website serves as a platform to promote events, publications, volunteer opportunities, and community engagement targeting German and Czech-speaking Christian audiences. The organization maintains a medium-sized presence with regional activities and a clear mission to build bridges in Europe. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design and uses Matomo for privacy-conscious analytics. The site is well-structured, bilingual, and provides comprehensive contact and donation information. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious elements were detected. Overall, the website reflects a professional and trustworthy non-profit entity with a solid digital presence.

Caritasverband Bayreuth für die Stadt und den Landkreis Bayreuth e.V. is a medium-sized non-profit organization dedicated to providing social services and support to diverse community groups including elderly, children, families, and migrants in the Bayreuth region of Germany. The website reflects a well-structured and professional digital presence with clear navigation, comprehensive service descriptions, and active community engagement. The organization offers a broad range of services such as social counseling, care services, integration support, and volunteer coordination, positioning itself as a key regional social welfare provider. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Font Awesome, and Matomo analytics, hosted on infrastructure associated with kirche-bamberg.de. It is mobile responsive and implements privacy-conscious features such as cookie consent and anonymous tracking fallback. Security posture is solid with HTTPS enforced and use of Google reCAPTCHA for form protection, although some security headers and explicit incident response policies could be improved. Overall, the website is trustworthy, privacy compliant, and professionally maintained, with no signs of malicious activity or content blocking. The domain registration data aligns well with the organizational identity, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility features to further strengthen compliance and user trust.

D

decide

decide.de

40

Decide is a small German technology company specializing in web design, development, CMS integrations (notably Typo3 and Wordpress), online shops with Magento, professional hosting, and comprehensive online marketing consulting and implementation. Established since 1996, the company positions itself as a professional and experienced digital agency serving businesses seeking tailored internet solutions. The website content is well-structured, professional, and clearly communicates the company's services and contact information. Technically, the website uses standard modern web technologies including HTML5, CSS, JavaScript, and Matomo analytics for privacy-conscious user tracking. The hosting appears to be managed via odn.de nameservers, consistent with the company's German location. The site is mobile optimized with good SEO practices and basic accessibility features. Performance is moderate with no evident technical debt or errors. From a security perspective, the website uses HTTPS with good SSL configuration, but lacks visible security headers and explicit cookie consent mechanisms. No forms or data collection inputs are present on the homepage, reducing attack surface. The use of Matomo analytics indicates a privacy-aware approach. WHOIS data is limited but consistent with the website's claims and hosting. No suspicious patterns or vulnerabilities were detected. Overall, the website presents a low-risk profile with good business credibility and technical maturity. Recommendations include adding security headers, implementing cookie consent, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to enhance trust and compliance.

The Landwirtschaftliche Familienberatung der KLB Bamberg e.V. is a non-profit organization providing specialized counseling and support services to agricultural families in Bavaria, Germany. Their services focus on psychosocial support, financial advice, and family-related agricultural issues, emphasizing Christian responsibility and sustainable solutions. The organization maintains a regional presence with a clear mission to assist farmers and their families through various challenges. Technically, the website is built on a modern stack including jQuery, Bootstrap, Font Awesome, and integrates multimedia via JWPlayer. It uses Matomo for privacy-conscious analytics and Google reCAPTCHA for bot protection. The site is hosted on servers associated with internet1.de, consistent with the domain's WHOIS data. The website is mobile-optimized, accessible, and features a cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site enforces HTTPS and employs standard privacy and consent mechanisms. However, it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or suspicious content were detected. The WHOIS data is consistent with the website's purpose and hosting, indicating legitimacy. Overall, the website presents a professional, trustworthy, and privacy-conscious digital presence for a small non-profit organization. Strategic improvements could include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

K

Kath. Arbeitnehmerpastoral im Erzbistum Bamberg

arbeitnehmerpastoral-bamberg.de

60

The Katholische Arbeitnehmerpastoral im Erzbistum Bamberg operates as a regional non-profit church organization providing social and pastoral support services including unemployment counseling, workplace pastoral care, conflict and bullying counseling, and truck driver pastoral care. The website serves as an information and engagement platform for its target audience of employees, unemployed persons, and those seeking social support within the Bamberg diocese. The organization maintains a clear market position as a trusted regional church entity with a focus on social welfare and pastoral care. Technically, the website is built on the Alkacon Mercury CMS platform, leveraging modern web technologies and accessibility features, with moderate performance and good mobile optimization. Privacy compliance is well addressed with comprehensive cookie and privacy policies and a consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the website is professional, trustworthy, and well-aligned with its mission and audience.

C

Caritasverband für den Landkreis Kulmbach e. V.

caritas-kulmbach.de

59

The Caritasverband für den Landkreis Kulmbach e.V. is a regional non-profit organization dedicated to providing social services and support to vulnerable populations including the elderly, socially isolated individuals, people with disabilities, children, youth, families, and migrants. The organization operates with a mix of approximately 25 full-time and 120 volunteer staff, emphasizing community assistance and social justice. Their key services include migration and integration counseling, debt counseling, social advice, self-help groups, and support for youth and families. The website reflects a well-structured and accessible digital presence, supporting their mission with clear navigation and comprehensive service information. Technically, the website is built on the alkacon Mercury CMS platform, utilizing modern web technologies including JavaScript, Matomo analytics for privacy-conscious user tracking, and embedded YouTube videos with privacy enhancements. The site is mobile-optimized and includes strong accessibility features such as an accessibility toolbar and keyboard navigation aids. Performance is moderate, with some reliance on external content that requires user consent, such as OpenStreetMap and YouTube embeds. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms that comply with GDPR requirements. Email addresses are obfuscated to reduce spam risk. However, there is a lack of explicit security headers and no published security or incident response policies, which could be improved to enhance trust and resilience. No vulnerabilities or suspicious content were detected. Overall, the website presents a trustworthy and professional image consistent with a reputable non-profit organization. The digital infrastructure supports their community-focused mission effectively, though there is room for improvement in security policy transparency and technical hardening.

Caritasverband für die Stadt und den Landkreis Coburg e.V. is a medium-sized non-profit organization dedicated to providing a wide range of social services in the Coburg region of Germany. Their offerings include social counseling, debt and insolvency advice, refugee and integration support, childcare, senior care, hospice services, and community engagement. The organization is well-established with a clear regional focus and maintains partnerships with larger Caritas entities at the diocesan and national levels. The website reflects a professional and consistent brand image, targeting individuals and families seeking social support.

S

SmartMaps

smartmaps.net

67

SmartMaps is a European technology company specializing in GDPR-compliant mapping solutions for businesses worldwide. Their platform offers a comprehensive suite of services including maps, autocomplete, geocoding, routing, and store locators, targeting enterprises that require data privacy and sovereignty. The website demonstrates a mature digital presence with professional design, multilingual support, and strong trust signals such as certifications and customer testimonials. Technically, the site is built on WordPress with modern plugins and integrates analytics and tracking tools responsibly. Security posture is good with HTTPS and secure forms, though some security headers and incident response disclosures are missing. The WHOIS data is notably absent or unavailable, which raises some concerns about domain registration legitimacy despite the professional business presentation. Overall, the site scores well on content quality, technical implementation, and privacy compliance, but would benefit from improved transparency on domain registration and security policies.

B

Brandbonsai

emailmarketer.sk

52

Email Marketér is a Slovak-based automated email marketing system tailored for WordPress and WooCommerce users, developed and operated by Brandbonsai. The platform emphasizes cost efficiency by not charging based on the number of contacts or emails sent, targeting content creators and online shops. The website demonstrates a professional digital presence with modern WordPress technologies, SEO optimization, and integration with popular plugins. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is solid with HTTPS and DNSSEC enabled, but could be improved by adding security headers and formal incident response policies.

B

Brandbonsai

brandbonsai.com

59

Brandbonsai is an innovative design and web agency based in Slovakia, established in 2007, offering a range of services including custom logo and visual identity design, custom website development, web care, email marketing, business coaching, and a client portal. The company targets both beginning online entrepreneurs and established companies seeking growth. The website is professionally designed, mobile-optimized, and uses WordPress CMS with modern plugins and analytics tools such as Matomo and Hotjar. Security posture is good with HTTPS and hCaptcha integration, though some security headers and privacy policies are missing. The domain registration is consistent with the business profile, registered through a Slovak registrar with no privacy protection, indicating transparency. Overall, the website presents a trustworthy and professional digital presence.

D

Don Bosco Medien GmbH

donbosco-medien.de

62

Don Bosco Medien GmbH is a well-established German specialist publisher focused on early childhood and religious education materials, operating since 1948. The company serves educators, religious workers, and parents with a broad range of pedagogical products, including the Kamishibai storytelling theater. Their market position is strong within their niche, supported by a professional e-commerce platform featuring detailed product information and customer reviews. The website demonstrates a mature digital presence with good content quality and user experience.

D

Don Bosco Volunteers

donboscovolunteers.de

45

Don Bosco Volunteers is a German non-profit organization offering voluntary service opportunities for young people finishing school, training, or studies. The organization operates under the umbrella of Don Bosco in Deutschland and provides services both domestically and internationally. Their website is well-branded, content-rich, and targets youth interested in meaningful volunteer experiences. Technically, the site uses modern web technologies including Matomo for privacy-respecting analytics and is hosted on a German provider's infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained.

D

Don Bosco Mission

donbosco-engagement.de

45

Don Bosco Engagement is a German-based non-profit organization dedicated to improving the lives of disadvantaged children and youth worldwide through donations, foundations, and project support. The organization operates under the Deutsche Provinz der Salesianer Don Boscos and maintains a professional online presence with clear calls to action for donors and supporters. Their market position is strong within the charitable sector, with outreach in over 130 countries. The website is well-structured, mobile-optimized, and uses modern technologies such as Bootstrap, Leaflet maps, and Matomo analytics to provide a user-friendly experience. Security posture is solid with HTTPS enforced and secure forms, though some improvements in security headers and explicit policies could be made. Privacy compliance is generally good, with a comprehensive privacy policy present, but lacks a cookie consent mechanism. Overall, the website is trustworthy and professional, supporting its mission effectively.

K

Katholischer Seelsorgebereich Main-Itz

seelsorgebereich-main-itz.de

61

The website 'Katholischer Seelsorgebereich Main-Itz' serves as an informational portal for a Catholic pastoral care area in Germany, targeting local parishioners and community members. It provides comprehensive information on church services, community events, pastoral care, and contact options primarily through web forms. The site is well-structured, accessible, and includes privacy and cookie consent mechanisms, reflecting a commitment to GDPR compliance and user accessibility. Technically, it leverages the Alkacon Mercury CMS platform, uses Matomo analytics for privacy-conscious tracking, and hosts content on servers associated with internet1.de. Security posture is adequate with HTTPS in use and privacy features, though explicit security headers and incident response policies are not evident. The domain registration data aligns with the website's purpose and location, supporting its legitimacy. Overall, the site is professional, trustworthy, and suitable for its community-focused mission.

S

Stadt Nürnberg

nuernberg.de

64

The website www.nuernberg.de is the official city portal for Nürnberg, Germany, providing comprehensive information and services related to city administration, events, news, and citizen engagement. It serves a broad audience including residents, visitors, and stakeholders interested in municipal affairs. The site is professionally designed with a strong emphasis on accessibility, multilingual support, and user-friendly navigation. The content is rich, relevant, and regularly updated, reflecting a mature digital presence for a large government entity. Technically, the site is built on the IMPERIA CMS platform, utilizing JavaScript libraries including jQuery and jQuery UI, with Cookiebot managing cookie consent and Matomo for analytics. The infrastructure appears stable and hosted on city-managed servers. Performance is moderate with good mobile optimization and accessibility features. However, the use of an outdated jQuery version presents a minor security risk. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is strong, with clear GDPR-aligned privacy and cookie policies. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government portal. Strategic improvements include updating JavaScript libraries, publishing a security policy, and enhancing security headers to further strengthen the security posture.

Deutsche Fernsehlotterie gGmbH operates Germany's longest-standing social lottery, established in 1956, focusing on raising funds through lottery ticket sales to support social projects. The website is professionally designed, mobile-optimized, and provides comprehensive information about lottery products, participation, and social impact. It maintains a strong market position with official licensing and TÜV certification, reinforcing trust and legitimacy. Technically, the site leverages modern frameworks like Next.js and React, integrates privacy-compliant tools such as Usercentrics CMP, and uses Matomo for analytics, reflecting a mature digital infrastructure. Security measures include TLS encryption, age verification via SCHUFA, and secure payment gateways through PayOne and PayPal. Overall, the site demonstrates a robust security posture with no critical vulnerabilities detected, though it lacks a dedicated security policy or incident response page. The domain WHOIS data is minimal but consistent with the business profile. Strategic recommendations include publishing explicit security and incident response policies and establishing a vulnerability disclosure mechanism to enhance transparency and trust.

E

Europäische Metropolregion Nürnberg

metropolregionnuernberg.de

48

The Europäische Metropolregion Nürnberg website represents a regional alliance of 23 counties and 11 independent cities in Germany, focused on economic development, cultural promotion, sustainability, and infrastructure collaboration. The site is built on TYPO3 CMS with Bootstrap framework, featuring a professional design and structured navigation. It uses Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. Security posture is solid with HTTPS enforced and spam-protected emails, though explicit security headers and privacy policies are missing. Overall, the website is trustworthy and serves as a comprehensive regional information and cooperation platform.

KEB - Katholische Erwachsenenbildung im Landkreis Kulmbach e. V. is a non-profit organization focused on providing adult education and cultural programs within the Kulmbach district in Germany. The website offers detailed information about their programs, events, family education, and local offers, targeting adults in the region interested in lifelong learning and community engagement. The organization holds a QESplus certification, indicating adherence to quality management standards. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Matomo analytics, with a cookie consent mechanism ensuring GDPR compliance. Security posture is generally good with HTTPS and bot protection via Google reCAPTCHA, though security headers are not detected and incident response information is absent. Overall, the website is professional, trustworthy, and well-structured, serving its audience effectively.

KEB Hof is a regional non-profit organization focused on adult education and community programs in the city and district of Hof, Germany. The website provides comprehensive information about educational offerings, family education, events, and service resources, targeting local adult learners and community members. The organization holds a recognized quality certification (QESplus), enhancing its credibility and trustworthiness. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI plugins, hosted on kirche-bamberg.de infrastructure. It features responsive design and basic accessibility features, with moderate performance. Privacy compliance is well addressed through a visible cookie consent mechanism and a comprehensive privacy policy in German. Security posture is solid with HTTPS enforced, use of Google reCAPTCHA, and Matomo analytics configured for anonymous tracking by default. However, security headers are not explicitly detected, and no incident response or vulnerability disclosure information is provided. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with room for improvement in security best practices and accessibility. The risk level is low, with no critical vulnerabilities or suspicious indicators found. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility compliance to further strengthen the security and trust profile.

KEB Coburg is a regional non-profit organization focused on adult education, cultural, and religious activities in the Coburg area of Germany. The organization targets a broad audience across generations and social strata, offering educational courses, cultural events, and community engagement opportunities. Their market position is that of a trusted local educational provider with certification from CERTQUA, indicating adherence to quality standards. The website reflects a professional and consistent brand image with clear contact information and comprehensive privacy and cookie policies. Technically, the website employs modern web technologies including Bootstrap, jQuery, Font Awesome, and integrates Matomo analytics with a GDPR-compliant cookie consent mechanism. The site is mobile-optimized, accessible, and performs moderately well. Hosting appears to be managed by kirche-bamberg.de infrastructure, aligning with the religious and educational nature of the organization. From a security perspective, the site uses HTTPS and implements cookie consent and bot protection via Google reCAPTCHA. However, explicit security headers are not clearly detected, and no public security or incident response policies are found. No vulnerabilities or exposed sensitive data were identified in the content. The domain WHOIS data is limited but consistent with a regional German entity, supporting legitimacy. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date third-party libraries to further strengthen security posture.

KEB Lichtenfels is a regional non-profit organization focused on Catholic adult education within Landkreis Lichtenfels, Germany. It offers a variety of educational programs, family and cultural services, and community engagement initiatives. The organization is certified by CERTQUA for quality management, indicating a commitment to high standards. The website reflects a professional and consistent brand image with clear navigation and relevant content targeted at adults seeking value-oriented lifelong learning. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Matomo analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and bot protection via Google reCAPTCHA, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. Overall, the site is trustworthy and well-maintained, serving its educational mission effectively.