Security Directory

C

Comply.org: Easily demonstrate SaaS Privacy Compliance (by PrivacyCloud)

comply.org

62

Comply.org is a technology-focused SaaS platform designed to help businesses easily demonstrate privacy compliance and responsible AI practices. The website positions itself as a tool for SaaS providers and organizations needing to showcase their adherence to privacy regulations. The business model centers around providing compliance demonstration services, likely targeting small to medium-sized enterprises in the technology sector. The site uses modern web technologies including React, Bootstrap, and Softr, indicating a contemporary technical infrastructure with moderate digital maturity. Mobile optimization is good, and the site loads with moderate performance. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. WHOIS data is incomplete and privacy protected, which limits trust but does not necessarily indicate malicious intent. Overall, the site is functional but would benefit from enhanced privacy disclosures, contact information, and security best practices to improve trust and compliance.

Sky Way Travel Center is a small local business operating a travel center in Western New Mexico, providing essential services such as gasoline, food (Subway), restrooms, and a gift shop featuring local Native American artisan products. The website is built on WordPress using the Astra theme and Beaver Builder plugin, reflecting a moderate level of digital maturity with good mobile optimization and SEO practices. The technical infrastructure is standard for small business websites, with no advanced analytics or tracking detected. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not provide cookie consent or privacy compliance mechanisms. Overall, the website is functional and trustworthy for its business purpose but could improve in security and privacy compliance.

Sky City Travel Center is a regional travel and hospitality business located in Western New Mexico, offering a range of services including fuel for trucking fleets, dining, shopping, and a casino with slot machines. The business targets travelers and fleet operators along Route 66 and Interstate 40, positioning itself as a premier travel center in the region. The website reflects this with clear service descriptions and contact information. Technically, the site is built on WordPress using modern plugins and themes, with Cloudflare providing DNS and CDN services. SEO is well implemented, and the site is mobile optimized. Security posture is adequate with HTTPS and domain transfer protection, but lacks some advanced security headers and published policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy with room for improvement in security and privacy practices.

J

Jugendliche stärken

jugendlichestaerken-niedersachsen.de

55

Jugendliche stärken Niedersachsen is a regional educational and support platform focused on strengthening youth mental health and social cohesion in schools. The platform targets students, teachers, and parents in Niedersachsen, Germany, providing educational content, guidance, and resources to foster understanding and support for psychological challenges. It is a publicly funded initiative, indicated by the presence of the Niedersachsen logo and the MSH project logo, emphasizing its non-profit and educational nature. The website is well-structured, with clear navigation and content tailored to its audience, including dedicated sections for different user groups and topics related to mental health and social influences. Technically, the website employs modern web technologies such as htmx and hyperscript for dynamic content loading and interaction, and is hosted on AWS infrastructure. It uses Matomo for privacy-conscious web analytics with explicit cookie consent and opt-out mechanisms, reflecting a strong commitment to user privacy and GDPR compliance. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and integrates cookie consent with Do Not Track settings in analytics. However, it lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data and DNS configuration align with the hosting provider and business claims, supporting the legitimacy of the domain and platform. Overall, Jugendliche stärken Niedersachsen presents a trustworthy, privacy-conscious, and professionally maintained platform serving an important educational and social function. Strategic improvements could include adding explicit security policies, enhancing security headers, and publishing incident response and vulnerability disclosure information to further strengthen trust and compliance.

Z

Zartbitter e.V.

zartbitter.de

64

Zartbitter e.V. is a German non-profit organization focused on counseling and prevention of sexual violence against children and youth. The organization provides direct counseling services, educational workshops, and training for parents and professionals. It is recognized nationally for its engaging materials and theater productions addressing sensitive topics such as digital violence and children's rights. The website reflects a mature, well-structured digital presence with clear branding and comprehensive content tailored to its target audience. Technically, the website is built on WordPress using Elementor and several specialized plugins for events, SEO, and cookie management. Hosting is provided by SchlundTech, a reputable German hosting provider. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine understanding. Privacy and cookie policies are implemented with consent mechanisms, reflecting good compliance with GDPR. Security posture is solid with HTTPS enforced and no obvious vulnerabilities or exposed sensitive data. However, some recommended security headers are not explicitly detected, and no formal security policy or incident response contact is published. The site does not appear to use extensive tracking or advertising, focusing instead on user privacy and minimal data collection. Overall, Zartbitter e.V. presents a trustworthy, professional online presence appropriate for a sensitive non-profit mission. Strategic improvements could include publishing a security policy, adding vulnerability disclosure information, and enhancing security headers to further strengthen trust and compliance.

X

XENOMEDIA internetbureau

xenomedia.nl

56

XENOMEDIA internetbureau is a well-established Dutch digital services company specializing in web design, online marketing, hosting, and communication services. With over 25 years of experience, it targets small to medium businesses and multinationals, offering a comprehensive suite of services including website and webshop development, Microsoft 365 solutions, and marketing communications. The company maintains a professional online presence with clear branding and consistent messaging. Technically, the website is built primarily on Drupal 9 with WordPress components, leveraging modern web technologies and third-party services such as Google Tag Manager and WP Statistics for analytics. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and explicit incident response policies suggests room for improvement. Privacy compliance is adequate with clear privacy and cookie policies, but lacks an active cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

SCHWING Stetter

schwing.de

49

SCHWING Stetter is a well-established German manufacturer specializing in concrete machinery and equipment, including truck-mounted concrete pumps, mixers, stationary pumps, and mixing plants. The company serves the construction industry globally with a broad product portfolio and after-sales services. Their website reflects a professional and consistent brand presence, targeting construction professionals and equipment buyers. The site is built on TYPO3 CMS and employs modern web technologies with a focus on privacy, as evidenced by the use of Matomo analytics and a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and domain registration consistent with the business history. However, there is room for improvement in security headers and published security policies. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

T

Total Bank

totalbank.com.br

64

Total Bank is a Brazilian financial technology company offering an integrated banking management system for businesses. Their platform consolidates multiple bank accounts, facilitates payment processing, billing, and financial reporting, targeting companies seeking streamlined banking operations. The website is built on WordPress and hosted on AWS, leveraging common web technologies and marketing tools such as Google Tag Manager and Hotjar. While the site is professionally designed and mobile-optimized, it lacks published privacy and cookie policies, which are important for compliance and user trust. Security posture is generally good with HTTPS enforced, but could be improved by adding security headers and incident response information. Overall, the site is safe, business-focused, and moderately trustworthy, with room for compliance and security enhancements.

W

Web Best Practice LTD

webbestpractice.co.uk

47

Web Best Practice LTD is a UK-based web development company with over 20 years of experience, specializing in web design, digital marketing, and branding services. The company targets businesses primarily in Manchester and across the UK, offering a full in-house team and a portfolio of over 1000 websites. The website is professionally designed, mobile optimized, and includes comprehensive customer reviews and contact options. Technically, the site uses modern web technologies and tracking tools such as Google Tag Manager, Facebook Pixel, and Mouseflow, with appropriate privacy and cookie consent mechanisms in place. Security posture is good with HTTPS and reCAPTCHA implemented, though explicit security headers are not detected and could be improved. WHOIS data is unavailable due to domain naming rules violation, which raises some legitimacy concerns, but the website content and business information appear consistent and trustworthy. Overall, the site demonstrates a mature digital presence with room for security enhancements.

D

DJK Landesverband NRW e.V.

vollwertsport.de

46

The website www.vollwertsport.de represents the DJK Landesverband NRW e.V., a small non-profit organization focused on promoting values in sports through seminars, events, and educational products. The site serves a niche audience interested in sports education and community engagement within the NRW region of Germany. The business model revolves around non-profit activities supplemented by an e-commerce shop offering value-based sports products. Technically, the site is built on a modern WordPress platform using WooCommerce and Avada theme, with SEO and cookie consent mechanisms properly implemented. Security posture is good with HTTPS and cookie consent, though some security headers and explicit policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and legal pages. No critical security or content safety issues were detected.

D

DJK Sportjugend

djk-sportjugend.de

61

DJK Sportjugend is a German non-profit youth sports organization affiliated with the Catholic DJK-Sportverband. It focuses on inclusive youth work, social and cultural diversity, and prevention initiatives such as anti-racism and sexualized violence prevention. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content relevant to its target audience of young people and sports communities. Technically, the site uses modern web technologies and a consent management platform to ensure GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the domain registration and website content are consistent and trustworthy, supporting a strong legitimacy score.

S

Sportvereinigung Deutsche Jugendkraft Spandau (DJK Spandau)

djk-spandau.de

47

Sportvereinigung Deutsche Jugendkraft Spandau (DJK Spandau) is a German non-profit sports club offering a variety of sports activities such as badminton, boule, gymnastics, Nordic walking, skate biathlon, sports shooting, table tennis, volleyball, and archery. The club targets local community members including children, adults, and people interested in inclusive sports programs. The website reflects a well-structured and accessible platform with clear navigation and content relevant to its audience. It maintains partnerships with reputable sports organizations, enhancing its community presence and trustworthiness. Technically, the website is built on Joomla CMS with modern web technologies including Bootstrap and jQuery. It is hosted on servers associated with kasserver.com and employs HTTPS with a cookie consent mechanism compliant with GDPR. Accessibility features such as screen reader support and contrast modes are implemented, indicating a commitment to inclusive design. Performance is moderate with good mobile optimization. From a security perspective, the site uses HTTPS and cookie consent banners but lacks visible security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is minimal but consistent with a legitimate hosting setup. Overall, the security posture is adequate but could be improved with additional headers and documented policies. The overall risk assessment is low with recommendations to enhance security headers, add incident response contact information, and maintain regular updates to Joomla and plugins. The website is professional, trustworthy, and compliant with privacy regulations, serving its community effectively.

S

SiteCockpit

sitecockpit.com

55

SiteCockpit is a professional SaaS provider specializing in digital accessibility solutions, offering products such as accessibility widgets, monitoring tools, and statement generators. The company targets businesses and website owners aiming to comply with accessibility regulations and improve user experience. Their market position is that of a specialized technology provider with integrations across major CMS and e-commerce platforms. Technically, the website employs modern JavaScript frameworks like Alpine.js, integrates with HubSpot for marketing and analytics, and uses Usercentrics for consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the website is well-designed, mobile-optimized, and GDPR-compliant, supporting a high level of trust and professionalism. However, the absence of WHOIS data slightly reduces transparency and trustworthiness. Strategic recommendations include publishing detailed security policies, vulnerability disclosure information, and incident response contacts to enhance security posture and trust.

H

Hagemeister GmbH & Co. KG

hagemeister.de

62

Hagemeister GmbH & Co. KG is a German manufacturing company specializing in clinker bricks, including facade clinker, paving clinker, shaped clinker, and functional clinker bricks. The company targets architects, builders, and construction professionals, providing high-quality building materials that contribute to aesthetic and functional construction projects. Their website reflects a professional and consistent brand image with a clear focus on their product offerings and services. Technically, the website is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager, HubSpot, and Cookiebot for analytics, marketing, and cookie consent management. The site is mobile-optimized with good SEO and accessibility features, providing a positive user experience. Performance is moderate, with room for optimization. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security policies and incident response contacts are not found, which could be improved. The domain registration data is consistent with the business identity, indicating legitimacy and trustworthiness. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic improvements in security policy transparency and technical performance could further enhance trust and resilience.

E

Evangelische Kirche von Westfalen

kirchenrecht-westfalen.de

62

The website kirchenrecht-westfalen.de serves as an official online legal reference system for the Evangelical Church of Westphalia, providing comprehensive access to church laws, ordinances, and related legal documents. It targets church officials, legal professionals, and members interested in church law. The platform offers systematic navigation, search functionality, and downloadable e-book formats, positioning itself as a trusted resource within its niche. Technically, the site employs Bootstrap for responsive design, Font Awesome for icons, and Matomo (Piwik) for analytics, indicating a modern and privacy-conscious infrastructure. Hosting is managed by SchlundTech, a known German hosting provider. The site is mobile-optimized with good navigation clarity and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, reflecting GDPR awareness. However, no explicit privacy policy, terms of service, or security headers were detected, suggesting areas for compliance and security enhancement. No vulnerabilities or suspicious content were found, and the domain registration aligns well with the church's identity, supporting legitimacy. Overall, the site is a professional, secure, and trustworthy resource for church law, with recommendations to improve privacy disclosures and security headers to enhance compliance and user trust.

D

Domain-Offensive

do.de

77

Domain-Offensive is a German-based domain registration and web hosting provider offering affordable, secure, and climate-neutral services including domain hosting, webspace, DNS, SSL, and email solutions. The company operates under Greenmark IT GmbH and targets individuals and businesses seeking reliable web project partners. The website demonstrates a mature digital infrastructure built on WordPress with Elementor and Yoast SEO, optimized for performance and mobile responsiveness. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and a comprehensive cookie consent mechanism compliant with GDPR. While explicit security headers could be enhanced, the overall security posture is solid with no evident vulnerabilities. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

O

Oranto GmbH

studienplattform.ch

53

Oranto GmbH operates the Studienplattform.ch, a specialized software platform designed to facilitate clinical and non-clinical studies with integrated CMS, CRM, and LMS capabilities. The company positions itself as a niche provider with a decade of experience, offering tailored study design and management solutions primarily targeting research institutions and clinical study leaders. The platform emphasizes data protection and GDPR compliance, catering to a German-speaking audience with professional and clear content presentation. Technically, the website is built on TYPO3 CMS and employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. Security posture is solid with HTTPS and no exposed sensitive data, though improvements are recommended in security headers and incident response transparency. Overall, the website demonstrates a mature digital presence with good usability and trustworthiness, though cookie consent and formal security policies could be enhanced for full compliance.

O

Oranto GmbH

study-platform.eu

49

Oranto GmbH operates the Study-Platform.eu website, offering a comprehensive software solution for clinical and non-clinical study management. Their platform integrates survey systems, content management, participant management (CRM), learning management (LMS), and statistical monitoring tools, emphasizing GDPR compliance and data protection. The company targets researchers and organizations requiring flexible, customizable study design and execution tools. The website reflects a niche market position with a decade of experience in customized study software development. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and Matomo analytics configured to disable cookies, indicating a privacy-conscious approach. The site is mobile-optimized, accessible, and well-structured with good SEO practices. However, some improvements are needed in cookie consent mechanisms and publishing security policies. From a security perspective, the site uses HTTPS with good SSL configuration and avoids third-party API integrations, reducing attack surface. No critical vulnerabilities or exposed sensitive data were detected. The absence of explicit security headers and incident response information suggests room for enhancement in security posture. WHOIS data is unavailable due to EURid privacy policies, which is common but slightly reduces transparency. Overall, the website presents a professional, trustworthy front for a small technology company specializing in study software solutions. Strategic recommendations include implementing cookie consent, publishing terms and security policies, adding security headers, and providing vulnerability disclosure contacts to strengthen compliance and trust.

G

Greystyle.com

greystyle.com

44

Greystyle.com is a small German-based graphic and web design company established since 2002, specializing in clean programming solutions and elegant design. Their market position is niche-focused, serving clients primarily in the cultural and ecclesiastical sectors in Germany. The website showcases a comprehensive portfolio of projects, emphasizing CMS development, corporate design, and print media. Technically, the site uses XHTML, JavaScript libraries including jQuery and Highslide, and Matomo for analytics, but includes some outdated Flash content. Security posture is moderate with privacy policies in place and anonymized analytics, but lacks visible security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional presentation. Overall, the site is functional and trustworthy but would benefit from modern security and privacy enhancements.

F

FRAMETRAXX UG (haftungsbeschränkt)

frametraxx.de

54

FRAMETRAXX UG operates a specialized e-commerce platform offering royalty-free (gemafreie) music for various applications including YouTube, advertising, film, and commercial use. The company targets content creators, agencies, and businesses seeking legally secure music licensing solutions. Their market position is that of a niche provider with a comprehensive catalog and clear licensing models, supported by a professional website and trusted client logos. Technically, the website is built on the Gambio e-commerce platform with modern JavaScript libraries and Google Tag Manager integration, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

D

Deutsche Atlantische Gesellschaft e.V.

ata-dag.de

38

The Deutsche Atlantische Gesellschaft e.V. is a German non-profit organization dedicated to informing and engaging the public on German and European security policy, NATO objectives, and transatlantic relations. The organization operates through events, seminars, lectures, podcasts, and publications, targeting individuals and entities interested in security and defense topics. Their market position is that of an established, reputable non-profit within the government and policy sector in Germany. Technically, the website is built on WordPress, utilizing common libraries such as jQuery, Bootstrap, and Font Awesome, with SEO optimization via Yoast. Hosting appears to be managed through kasserver.com. The site is moderately performant, mobile-optimized, and includes analytics via Matomo, reflecting a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and uses CAPTCHA on contact forms, alongside a cookie consent mechanism. However, it lacks explicit security headers, a published security policy, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy policy or terms of service pages found. Overall, the website presents a professional and trustworthy front for the organization, with good content quality and business credibility. Security and privacy practices could be enhanced to meet higher compliance standards and improve user trust.

E

Sign in - Matomo

etrackingserver.de

54

The website etrackingserver.de serves as a login portal for a Matomo analytics platform instance, providing web analytics and visitor tracking services. The platform is designed for website administrators or analytics users to access detailed analytics data. The site uses HTTPS and standard Matomo security features, but lacks publicly accessible business information, privacy policies, or contact details, limiting transparency and user trust. Technically, the site employs Matomo's JavaScript and PHP stack, with moderate performance and basic mobile optimization. Security measures include password authentication and support for two-factor authentication, though no explicit security headers were detected in the provided data. Overall, the site is functional but lacks comprehensive privacy compliance and business credibility indicators.

B

Brangs + Heinrich

brangs-heinrich.de

55

Brangs + Heinrich is a German-based company specializing in packaging solutions, including stretch films and other protective packaging materials. The company targets business customers requiring packaging and securing products, positioning itself as a solutions provider in the manufacturing sector. The website is built on WordPress with a moderate technical infrastructure, including common plugins for multilingual support, forms, and search functionality. The use of Cookiebot for cookie consent demonstrates a commitment to privacy compliance. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers are not detected and incident response information is absent. Overall, the website is professional and trustworthy, with room for improvement in explicit contact information and security policies.

S

Sachsenröder GmbH & Co. KG

sachsenroeder.com

61

Sachsenröder GmbH & Co. KG is a well-established German manufacturing company specializing in innovative natural fiber-based materials such as Vulkanfiber SAVUTEC® and Laufrollen GESADUR®. Founded in 1881, the company holds a strong market position as a pioneer in sustainable industrial materials, offering products that contribute to environmental responsibility and high performance. Their website reflects a professional and consistent brand image, targeting industrial and sustainability-conscious audiences. Technically, the site is built on WordPress with modern plugins for SEO, translation, and cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact and business information.

I

Institut der deutschen Wirtschaft

iwd.de

45

The website www.iwd.de serves as the information service of the Institut der deutschen Wirtschaft, providing up-to-date economic analyses, research results, and background information on current economic topics primarily focused on Germany and Europe. It targets professionals, policymakers, academics, and the general public interested in economic affairs. The business model revolves around disseminating economic knowledge through articles, dossiers, newsletters, and interactive graphics, positioning itself as a reputable and authoritative source in the German economic research landscape. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript, CSS, and integrates analytics tools such as Matomo and Google Tag Manager. It employs Usercentrics for GDPR-compliant consent management. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine visibility. Hosting is managed via domaincontrol.com (GoDaddy), a common and reliable provider. From a security perspective, the website enforces HTTPS with a strong SSL configuration and uses consent management for cookies, reflecting good privacy practices. However, it lacks explicit security headers and published security policies or incident response contacts, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the content. The site demonstrates a moderate to high security posture but could enhance transparency and technical security controls. Overall, www.iwd.de is a professional, trustworthy, and content-rich platform with strong compliance to privacy regulations and a solid technical foundation. Strategic recommendations include implementing security headers, publishing a security policy and incident response information, and adding a security.txt file to facilitate vulnerability disclosures. These steps would further strengthen the site's security posture and trustworthiness.

The website arbeitgebernet.de serves as a members-only portal for the Vereinigung Bergischer Unternehmerverbände e.V. (VBU®), a regional business association in Germany. It provides comprehensive resources and tools to support employers in areas such as labor law, social law, tariff agreements, personnel management, and economic data. The portal targets member companies, offering them access to categorized documents, newsletters, surveys, and seminar registrations. The business model is membership-based, focusing on delivering specialized content and services to its audience. The website maintains a professional and consistent brand presence, reinforcing trust among its users. Technically, the site employs a traditional web stack with jQuery UI, Modernizr, and Piwik (Matomo) for analytics. The site is moderately optimized for mobile devices and performance, with deferred script loading and responsive images. However, it lacks advanced security headers and publicly visible privacy or cookie policies, which are critical for compliance and user trust. The login form collects user credentials securely via HTTPS, but no explicit security policies or incident response contacts are provided. From a security perspective, the site benefits from HTTPS and basic best practices but misses opportunities to enhance security posture through headers and transparency about data protection. The absence of privacy and cookie policies, as well as vulnerability disclosure information, indicates gaps in compliance with GDPR and modern security standards. No suspicious or malicious content was detected, and the site is safe for general audiences. Overall, arbeitgebernet.de is a professionally maintained portal with solid business credibility but requires improvements in privacy compliance and security transparency to meet higher standards. Strategic enhancements in these areas will strengthen user trust and regulatory adherence.

C

Cruise Gate Hamburg GmbH

cruisegate-hamburg.de

49

Cruise Gate Hamburg GmbH operates the cruise terminals in Hamburg, managing berth allocations and serving as the central contact for cruise operators. The company also markets Hamburg as a cruise destination internationally. The website is professionally designed, primarily in German, and targets cruise operators, passengers, and tourism stakeholders. Technically, the site uses modern JavaScript libraries such as jQuery and Video.js, with a CMS likely Kirby. It is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is good with HTTPS enforced, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact is mainly via forms, with no direct emails or phone numbers visible. Social media presence is strong, enhancing trust and engagement.

H

Hamburg Port Authority (HPA)

tideelbe.info

54

The website www.tideelbe.info serves as an informational blog managed by the Hamburg Port Authority (HPA), focusing on sediment management and the Tideelbe river to ensure navigable water depths for ships in Hamburg's harbor. It provides news, analyses, and downloadable reports targeted at the general public and stakeholders in maritime transport and environmental sectors. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on TYPO3 CMS, a reputable open-source content management system, and employs Matomo analytics configured to respect user privacy by disabling cookies and honoring DoNotTrack signals. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured content. However, no explicit cookie consent mechanism was detected, which may impact full GDPR compliance. From a security perspective, the site uses HTTPS and shows good security practices, but lacks visible security headers and published security policies or incident response contacts. The WHOIS data for the domain is unavailable or protected, limiting transparency and trust verification, though the official branding and content quality mitigate some concerns. Overall, the website presents a trustworthy and professional platform for disseminating port-related environmental information, with moderate technical and privacy compliance maturity. Strategic improvements in cookie consent, security policy publication, and WHOIS transparency would enhance its security posture and user trust.

I

Industrie – Wasser – Umweltschutz e.V.

iwu-dueren.de

45

Industrie – Wasser – Umweltschutz e.V. (IWU) is a regional non-profit association serving industrial companies with a focus on environmental law and water management. The organization provides legal advice, administrative procedure support, environmental policy representation, and training for environmental officers. It collaborates closely with regional industry associations and municipalities, positioning itself as a key environmental service provider in its region. The website reflects a professional and consistent brand image with clear service offerings and partner affiliations. Technically, the site is built on WordPress with Visual Composer and uses standard web technologies, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response information. Overall, the site is trustworthy and compliant with GDPR, though improvements in security practices and transparency could enhance its posture.

H

Haus der Industrie

hausderindustrie.de

40

Haus der Industrie is a German-language website likely representing an industrial or business entity, though explicit business details are not present in the accessible content. The site uses WordPress with common plugins such as Bootstrap and Visual Composer, indicating a standard CMS-based infrastructure. The technical setup is moderate with basic mobile optimization and no advanced analytics or marketing tools detected. Security posture is basic, with HTTPS enabled but lacking security headers and visible security policies. No privacy or cookie policies were found, and no contact information is provided, limiting user trust and compliance. Overall, the site is accessible and functional but lacks comprehensive business and security information.

V

Vereinigte Industrieverbände von Düren, Jülich, Euskirchen und Umgebung e.V.

extraviv.de

38

The website extraviv.de serves as a members-only information portal for the Vereinigte Industrieverbände von Düren, Jülich, Euskirchen und Umgebung e.V., a regional industry association in Germany. It provides employers and association members with access to documents, newsletters, event information, and other resources relevant to their business operations and networking. The site is primarily in German and targets local employers within the manufacturing and non-profit sectors. Technically, the site uses a custom or unknown CMS with JavaScript libraries such as jQuery UI and Modernizr, hosted on servers associated with kasserver.com. The design is professional and consistent, though mobile optimization and accessibility are basic. Security posture is moderate with a login form secured by POST but lacks advanced security headers and cookie consent mechanisms. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the website's business purpose, indicating legitimacy. Overall, the site scores well on business credibility and content quality but could improve technical implementation and security practices.

Internet Port Hamburg GmbH (IPHH) is a medium-sized German technology company specializing in datacenter solutions, colocation, managed services, and fiber optic network connectivity exclusively for business customers. Founded in 1996 and operating under the parent company Portus Data Centers Company, IPHH positions itself as a reliable partner offering customized infrastructure and consulting services tailored to enterprise needs. The website reflects a professional and consistent brand image with detailed service descriptions and certifications such as ISO/IEC 27001 and Health Data Hosting (HDS) France, underscoring its commitment to security and compliance. Technically, the website is built on the Contao Open Source CMS platform and leverages modern JavaScript libraries like jQuery, Swipe.js, and Colorbox for enhanced user experience. The site is mobile-optimized with good navigation clarity and moderate performance. However, there is room for improvement in accessibility and SEO optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and cookie consent mechanisms suggests areas for enhancement. The WHOIS data for the domain www.iphh.net is unavailable, which raises some concerns about domain registration transparency. Despite this, the website content, certifications, and contact information indicate a legitimate and established business. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, IPHH demonstrates a mature digital presence with a strong focus on security and customer service, though improvements in privacy compliance and domain registration transparency are recommended.

Internet Port Hamburg GmbH (IPHH) is a medium-sized German company founded in 1996, specializing in providing colocation, housing, managed services, and IP/fiber optic connectivity exclusively to business customers. Positioned as a reliable full-service provider, IPHH emphasizes personalized service, technical excellence, and compliance with industry standards such as ISO/IEC 27001 and Health Data Hosting (HDS) certifications. Their business model focuses on B2B enterprise clients requiring secure and customized data center solutions. The website reflects a professional and consistent brand image with clear contact information and detailed service offerings. Technically, the website is built on the Contao Open Source CMS and utilizes modern JavaScript libraries such as jQuery, Swipe.js, and Colorbox for enhanced user experience. The site is mobile-optimized with good navigation clarity and moderate performance. SEO and accessibility are basic but adequate for the target audience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers and cookie consent mechanisms are missing. The security posture is bolstered by the company's ISO certifications and clear emphasis on data center security. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. No explicit incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the website and business present a trustworthy and professional image with room for technical and compliance enhancements. Strategically, IPHH should verify and publish domain registration details, implement cookie consent mechanisms, and provide clear incident response contacts to strengthen security culture and regulatory compliance. These steps will improve customer trust and align with best practices in data protection and cybersecurity.

Craftverk Digital's website is currently under construction, displaying only a placeholder message with no substantive content or business details. The site uses WordPress with the Impreza theme and WPBakery page builder, hosted likely by WebSupport based on nameservers. Basic security features such as HTTPS and DNSSEC are enabled, but no privacy, cookie, or terms of service policies are present, nor is there any contact information or forms. The domain WHOIS data is suspicious due to a future creation date, which undermines trust and legitimacy. Overall, the website is in an early stage of development with minimal digital maturity and poor content quality.

C

Centrum pre filantropiu n.o.

darujme.sk

63

DARUJME.sk is a well-established Slovak online fundraising platform operated by Centrum pre filantropiu n.o., founded in 2011. It serves as a donation gateway and fundraising tool provider primarily targeting non-profit organizations and individual donors within Slovakia. The platform offers a comprehensive suite of services including secure payment processing, donor communication, administrative tools, and training resources. It holds a strong market position with over 1,000 registered organizations and nearly 40 million euros donated through its system. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content relevant to its audience.

S

STORK Umweltdienste GmbH

stork-umwelt.de

46

STORK Umweltdienste GmbH is a medium-sized German company specializing in recycling, waste disposal, and raw material recovery with over 30 years of experience. The company operates from Magdeburg with a strong focus on environmental sustainability, supported by ISO 14001 certification. Their services include recycling, container services, mobile processing technology, and logistics leveraging trimodal transport connections. The website is professionally designed using TYPO3 CMS, providing clear navigation and multilingual support. Contact information and social media presence enhance business credibility. Security posture is good with HTTPS and cookie consent mechanisms, though no explicit security policy or incident response contacts are published. Overall, the website reflects a trustworthy and established business with a solid digital presence.

K

Kath. St. Marien - Oberschule Berlin

marienschule-berlin.de

59

Kath. St. Marien - Oberschule Berlin is a Catholic secondary school located in Berlin Neukölln, Germany, offering integrated secondary education and gymnasium programs. The website serves as an information platform for students, parents, and the local community, providing details about school life, events, job offers, and administrative services. The school is sponsored by the Archdiocese of Berlin, which is reflected in the website's branding and partner links. Technically, the site is built on Joomla CMS with modern web technologies including jQuery and Bootstrap, and it incorporates GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are not published. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

K

Katholische Schule Sankt Franziskus

kssf-berlin.de

58

Katholische Schule Sankt Franziskus is a well-established Catholic educational institution in Berlin offering primary, integrated secondary, and gymnasiale oberstufe education. The website reflects a mature digital presence with comprehensive content, including news, events, and detailed service information for students and parents. The technical infrastructure is based on Joomla CMS with modern web technologies and good mobile optimization. Security posture is solid with HTTPS, GDPR-compliant cookie consent, and no evident vulnerabilities. However, some security headers could be improved. Overall, the site is trustworthy and professionally maintained, supporting the school's long-standing reputation.

K

Katholische Schule Salvator

salvator-grundschule.de

59

Katholische Schule Salvator is a Catholic primary school located in Berlin, Germany, operating under the sponsorship of the Erzbistum Berlin. The website serves as an information portal for parents, students, and the local community, providing news, event updates, and essential school information. The school emphasizes a community-oriented, faith-based educational approach. The website is built on Joomla CMS and incorporates modern web technologies and GDPR-compliant cookie consent mechanisms. It offers clear contact details and regularly updated content, reflecting an active and engaged institution. Security-wise, the site uses HTTPS and cookie consent best practices but lacks explicit security policies or vulnerability disclosures. Overall, the site is trustworthy, professional, and well-maintained, suitable for its educational purpose.

K

Katholische Theresienschule Berlin

theresienschule.de

57

Katholische Theresienschule Berlin is a well-established Catholic educational institution operating under the Archdiocese of Berlin. The website serves as an information hub for students, parents, and the school community, providing news, event updates, and service information. The school emphasizes community engagement and offers a variety of extracurricular activities and workshops. The domain age and content reflect a mature and credible organization with a long history dating back over a century. Technically, the website is built on Joomla CMS with modern web technologies including jQuery and Bootstrap. It features a GDPR-compliant cookie consent mechanism and is served over HTTPS with good security practices. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some security headers and formal security policies are missing. From a security perspective, the site demonstrates a solid baseline with HTTPS enforcement and cookie management. There are no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contact is a gap that could be addressed to improve trust and preparedness. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website is trustworthy, professional, and well-maintained, suitable for its educational purpose. Strategic recommendations include enhancing security transparency, adding incident response information, and implementing additional security headers to further harden the site against potential threats.

K

Katholische Schule Sankt Hildegard

kssh-berlin.de

61

Katholische Schule Sankt Hildegard is a recognized Catholic educational institution in Berlin providing primary and secondary education with a focus on children and youth with specific educational needs. The website serves as an information portal for students, parents, and educators, offering news, events, and service information. The school is supported by the Archdiocese of Berlin and holds a digital education certification (fobizz Schule 2024/25). The site is well-structured, professionally designed, and regularly updated with relevant content.

F

FederlegnoArredo

federlegnoarredo.it

61

FederlegnoArredo is a well-established Italian industry association representing companies in the wood and furniture manufacturing sector. The website serves as a professional platform targeting industry stakeholders, providing information and event details relevant to the sector. The site is built on modern web technologies including React and Next.js, ensuring a responsive and user-friendly experience. The presence of a Cookiebot consent mechanism indicates attention to privacy compliance, although explicit privacy and terms of service documents were not found in the provided content. Security posture is adequate with HTTPS enabled, but could be improved by adding security headers and vulnerability disclosure information. Overall, the website is professional and trustworthy, with room for enhancement in privacy transparency and security best practices.

M

MH PC Servis s.r.o.

mhweb.cz

57

MH PC Servis s.r.o. is a Czech Republic based small IT service company founded in 2012, specializing in computer repair, external PC network management, sales of computing equipment, and installation of security and camera systems. The company targets both businesses and individual customers seeking reliable IT solutions and remote support services. The website reflects a professional and consistent brand image with clear presentation of key services and contact information. Technically, the site is built on WordPress with WooCommerce, uses modern libraries such as jQuery and Font Awesome, and integrates analytics tools including Matomo and Google Analytics. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is good with HTTPS enabled and secure forms, but lacks published security policies and headers. Privacy compliance is weak due to missing privacy and cookie policies. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

S

Superchat

superchat.de

66

Superchat is a German-based technology company specializing in AI-powered messaging solutions for businesses. Their platform integrates popular communication channels such as WhatsApp Business to streamline customer interactions, automate follow-ups, and enhance sales and support processes. The company targets a broad range of industries and team functions, positioning itself as a comprehensive B2B SaaS provider with a strong focus on GDPR compliance and customer experience. Technically, the website is built on modern frameworks like Next.js and React, hosted on AWS infrastructure, and employs consent management tools to comply with privacy regulations. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers and policies are not publicly visible. Overall, the site demonstrates professional design, excellent content quality, and strong market positioning, but could improve transparency by publishing privacy policies and security disclosures.

The website www.mein-t-raum.de is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) protecting the site from automated access or potential threats. Due to this blocking, no actual business content, contact information, or policies are accessible for analysis. The domain is hosted on the Jimdo platform as inferred from the nameservers, and Cloudflare provides security and performance services. The lack of visible content and business data limits the ability to assess the company's market position, services, or compliance posture. Security-wise, the use of Cloudflare WAF and CAPTCHA is a positive indicator, but the absence of security headers and policies reduces the overall security maturity score. Privacy compliance and business credibility cannot be evaluated due to missing information.

K

Katholische Studierende Jugend

ksjberlin.de

45

KSJ Berlin is a non-profit youth organization focused on engaging students and young people in Berlin through volunteer activities, school participation, and societal involvement. The organization operates as part of the Catholic youth umbrella (BDKJ) but is inclusive of all beliefs. Their website provides information about membership, events, and community platforms such as a Discord server. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google Fonts, and is hosted with domain control services. It is mobile optimized and includes SEO best practices. Security-wise, the site enforces HTTPS, uses Google Analytics with IP anonymization, and implements a cookie consent banner, but lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and professionally maintained, suitable for its target audience of youth in Berlin.

okaJ is a small non-profit youth organization based in Berlin, Germany, focused on providing an open, catholic, and active community for young people. The organization supports youth groups within the church, offers networking opportunities, spiritual programs, and volunteer engagement. The website reflects a professional and consistent brand image targeting youth and youth groups in the Berlin area. Technically, the site is built on WordPress with common plugins and uses Google reCAPTCHA for form security. While the site is well designed and user-friendly, it lacks privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the domain and website appear legitimate and trustworthy for their stated purpose.

W

World4You Internet Services GmbH

j.berlin

71

Sedo.com operates as a domain marketplace platform specializing in domain sales and parking services. The analyzed page indicates that the domain j.berlin is available for purchase, targeting domain investors and businesses seeking premium domain names. The company behind the domain registration is World4You Internet Services GmbH, an established registrar founded in 1998, which aligns with the domain's age and legitimacy. The website employs modern web technologies including JavaScript ES modules and Cloudflare DNS services, ensuring a moderate level of performance and mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection in place, though DNSSEC is not enabled and security headers are absent, representing areas for improvement. Privacy compliance is minimal on this page, with no explicit privacy policy or terms of service detected, but a cookie consent mechanism is implemented. Overall, the site presents a basic but functional domain sales landing page with moderate trustworthiness and business credibility.

K

KjG Berlin

kjg-berlin.de

56

KjG Berlin is a small non-profit Catholic youth organization based in Germany, focused on engaging young people in community activities, education, and events within the Catholic framework. The website serves as an informational and organizational platform for members and interested parties, providing updates, event information, and contact details primarily via email. The organization maintains a presence on social media platforms such as Instagram and Facebook to reach its target audience. Technically, the website is built on WordPress, utilizing standard web technologies such as PHP, JavaScript, and CSS. The site is served over HTTPS with a valid SSL certificate, ensuring secure communication. While the site demonstrates good mobile optimization and basic SEO practices, it lacks advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance and enhanced security. From a security perspective, the site shows a moderate security posture with HTTPS enabled but missing several security headers and no visible incident response or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a privacy policy present, but the absence of a cookie consent banner is a gap. Overall, KjG Berlin presents a trustworthy and professional online presence for a small non-profit organization. Strategic improvements in security headers, cookie consent, and incident response documentation would enhance compliance and security posture, supporting the organization's credibility and user trust.

J

Jugendverbände der Gemeinschaft Christlichen Lebens - Diözesanverband Berlin

j-gcl.berlin

42

J-GCL Berlin is a small non-profit youth organization focused on Christian community activities within the Berlin region. The website serves primarily as an informational portal presenting the organization's identity, social media presence, and contact email. The business model centers on community engagement and youth involvement in Christian life, positioning itself as a local entity without commercial operations. Technically, the website is built on a simple HTML5 and CSS stack with some JavaScript for UI enhancements, using the HTML5 UP design template and Font Awesome icons. The site is moderately optimized for mobile devices but lacks advanced SEO and accessibility features. Security posture is basic; while the domain is registered with a reputable German registrar and protected against unauthorized transfers, the site lacks DNSSEC, security headers, and visible HTTPS enforcement details. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Overall, the site is safe, with no adult or questionable content, but would benefit from enhanced security and compliance measures.