Security Directory

A

Asociace neformálního vzdělávání

neformalnivzdelavani.eu

52

The website www.neformalnivzdelavani.eu serves as an educational resource focused on non-formal education primarily targeting youth workers, teachers, social workers, camp leaders, volunteers, and parents interested in innovative educational methods. It is managed by the Asociace neformálního vzdělávání (ANEV), a Czech non-profit organization, and is supported by European Union funding. The site offers multilingual content, including Czech, English, Finnish, and Portuguese versions, enhancing its accessibility across Europe. The business model is non-profit, focusing on providing educational content, resources, and community support rather than commercial services. Technically, the website is built on WordPress with common plugins such as WPML for multilingual support and Featherlight for image lightboxes. It uses jQuery and Google Fonts, with a moderate performance profile and good mobile optimization. SEO and accessibility are basic to good, but there is room for improvement in accessibility features and security headers. The site is served over HTTPS with a valid SSL certificate, ensuring secure communications. From a security perspective, the site lacks visible security headers and does not expose sensitive data or vulnerable libraries in the provided content. However, the absence of a privacy policy and terms of service pages, as well as no explicit contact emails or phone numbers, reduces privacy compliance and user trust. The WHOIS data is unavailable due to EURid privacy policies, but the website’s association with known organizations and EU funding supports its legitimacy. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, the website is a credible, well-structured educational resource with moderate technical maturity and a good security baseline. Strategic improvements in privacy documentation, security headers, and contact transparency would enhance compliance and trustworthiness.

The website 'Šlabikár neformálneho vzdelávania' serves as an educational platform focused on improving the quality of non-formal education for youth workers primarily in Slovakia and the Czech Republic. It offers a methodological guide and an interactive e-learning tool developed through a partnership between YouthWatch, ANEV, and Luducrafts, supported by Erasmus+. The site targets youth educators and non-profit organizations involved in youth work, providing free resources to enhance educational practices. Technically, the site uses modern JavaScript libraries, Google Analytics for tracking, and is served over HTTPS with a valid SSL certificate. However, it lacks visible privacy and cookie policies and does not provide direct contact information, which impacts privacy compliance and user trust. Security posture is moderate with some best practices like CSRF token usage but missing security headers. WHOIS data is unavailable due to EURid privacy policies, but the domain and content appear legitimate and consistent with the stated mission. Overall, the site is professionally designed and functional but could improve transparency and security practices.

Y

YoDel

yodel.sk

42

YoDel is a small-scale educational conference focused on new approaches to working with young people, primarily targeting youth workers and educators in Slovakia. The website provides detailed program information and workshop descriptions, demonstrating a clear business purpose and target audience. Technically, the site is built on WordPress using Elementor and Yoast SEO, with modern fonts and some SEO optimization. However, Google Analytics is installed but not configured, and no privacy or cookie policies are present, which impacts privacy compliance. Security posture is moderate with HTTPS enabled but lacking security headers and explicit security policies. Overall, the site is professional and functional but could improve in privacy and security transparency.

M

Vorreiter-Magazin

magazin-vorreiter.de

65

The Vorreiter-Magazin website serves as an informational platform focused on European cooperation and regional initiatives in Niedersachsen, Germany. It provides articles and news related to Interreg programs and cross-border collaboration, targeting residents and stakeholders interested in these topics. The site uses WordPress with the Avada theme and several plugins to deliver content, including a cookie consent mechanism via Borlabs Cookie. Social media presence includes Facebook, Instagram, and YouTube channels. However, the site lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Technically, the website employs a modern CMS platform with common plugins and libraries such as jQuery and Slider Revolution. Hosting appears to be managed via DomainControl.com, a reputable provider. Performance and mobile optimization are moderate to good, but SEO and accessibility could be improved. Security posture is basic, with HTTPS implied but no visible security headers or vulnerability disclosures. Analytics is implemented through Google Tag Manager, indicating moderate user tracking. Security-wise, the site shows some best practices like cookie consent but lacks comprehensive security headers and formal vulnerability disclosure mechanisms. No critical vulnerabilities or malware indicators were detected, but improvements are recommended to enhance security and compliance. The domain WHOIS data is limited, with an unusual domain status 'connect' and no registrant details, which slightly reduces trustworthiness. Overall, the website is functional and serves its informational purpose but requires enhancements in privacy compliance, security hardening, and transparency to improve trust and regulatory adherence.

O

on-collect solutions AG

on-collect.de

39

on-collect solutions AG operates a legaltech cloud platform specializing in debt collection and receivables management, primarily serving companies in the energy sector in Germany. The company combines software as a service with consulting and legal expertise to optimize the entire customer lifecycle in receivables management. Their platform integrates seamlessly with ERP systems and offers automated processing, digital file management, and comprehensive reporting. The website positions on-collect as a pioneer in legaltech with over 200 customers using their SaaS solution. Technically, the website is built on WordPress with Elementor and Bootstrap, leveraging modern JavaScript libraries and Matomo for privacy-conscious analytics. The site is mobile-optimized and demonstrates good SEO practices, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, but lacks some security headers and formal security policies. Overall, the security posture is good but could be improved by adding explicit privacy and cookie policies, incident response information, and security headers. The domain WHOIS data is consistent with the business claims, supporting legitimacy. No blocking or WAF challenges were detected, allowing full content analysis. Strategic recommendations include enhancing privacy compliance, publishing security and incident response policies, and implementing security headers to strengthen trust and compliance with GDPR and related regulations.

D

Datadruck GmbH

datadruck.com

53

Datadruck GmbH operates as a regional printing service provider based in the Ulm / Neu-Ulm area in Germany. The company offers a variety of printing products and services targeting both business and individual customers. The website is professionally designed using WordPress with Elementor and Astra theme, indicating a moderate level of digital maturity. The presence of structured data and SEO optimizations further supports their online presence. From a security perspective, the website uses HTTPS and employs Matomo analytics with cookies disabled, reflecting some privacy awareness. However, the absence of explicit privacy, cookie, and security policies, as well as missing WHOIS domain registration data, presents concerns that should be addressed to improve trust and compliance. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

E

e-rechtsanwälte.eu

e-rechtsanwaelte.de

42

e-rechtsanwälte.eu is a specialized legal consultancy firm focusing on energy law, IT law, internet law, and data protection, primarily serving energy suppliers and medium-sized industries in Germany. The website presents a professional image with clear navigation and a modern design, leveraging WordPress with Elementor and Bootstrap frameworks. The firm offers a range of legal services including contract law, insolvency law, and organizational liability. Technically, the site uses HTTPS, Matomo analytics with cookies disabled, and a cookie consent mechanism, indicating a moderate level of digital maturity. However, the absence of a published privacy policy and terms of service pages suggests room for improvement in compliance transparency. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the lack of security headers is a minor concern. Overall, the website is trustworthy and professional, though enhancing privacy and security disclosures would strengthen its compliance and user trust.

F

Flurbereinigungsverband Oldenburg-Ostfriesland

fbv-oo.de

43

Flurbereinigungsverband Oldenburg-Ostfriesland is a public law corporation operating in Germany, focused on land consolidation and related administrative services for its members in the Oldenburg and Ostfriesland regions. The organization provides essential services such as financial management and maintenance of communal facilities, positioning itself as a regional governmental entity with a clear mandate and defined governance structure. The website reflects a professional and consistent brand image, targeting members and stakeholders involved in land management and public administration. Technically, the website is built on WordPress with standard SEO and accessibility plugins, hosted on a German hosting provider. It demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. The absence of advanced analytics or tracking tools suggests a privacy-conscious approach, albeit with room for improvement in cookie consent mechanisms. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and published security policies or incident response information, which could enhance trust and compliance. The WHOIS data aligns well with the website content, indicating a legitimate and consistent domain registration. Overall, the website is safe, professional, and trustworthy, with recommendations to improve privacy compliance and security posture to meet higher standards and regulatory expectations.

T

TB Transportbeton Glöckle GmbH & Co. KG

tb-gloeckle.de

64

TB Transportbeton Glöckle GmbH & Co. KG is a regional German company specializing in the supply of transport concrete, mortar, special concrete, and flowable fill products. Established with a modern mixing plant since 2009, the company positions itself as a reliable and quality-focused partner for the construction industry in its region. The website reflects a professional business presence with clear service offerings and contact information. Technically, the site is built on WordPress with modern plugins for SEO, GDPR compliance, and interactive maps, indicating a moderate to advanced digital maturity. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy and compliant with EU regulations, supporting the company's credibility in its sector.

G

GW-Immobilienverwaltungs GmbH

gwi-sw.de

58

GW-Immobilienverwaltungs GmbH is a small regional real estate management company based in Schweinfurt, Germany, specializing in residential property management, rental property management, facility management, and rental services. The website is professionally designed using Joomla! CMS with modern front-end libraries such as jQuery, Bootstrap, and UIkit, providing a good user experience and mobile optimization. The company targets property owners, homeowners associations, and tenants within the local market. Security posture is moderate with HTTPS implied but no explicit security headers detected; cookie consent is implemented indicating GDPR awareness. No advanced security or incident response policies are published, and no analytics or advertising scripts are present, reducing privacy risks. Overall, the website is trustworthy and business credible with clear contact information and consistent branding.

A

arvenio marketing GmbH

creedle.io

47

creedle.de is a German-based digital platform focused on creating a Christian digital ecosystem called creedle. The platform aims to make Jesus digitally visible by connecting Christians, churches, and seekers through multiple applications (creedlec) integrated into a central search engine. The project started in 2022 with a roadmap to complete the first system version by 2027. The business is positioned as a niche technology provider in the Christian digital content space, supported by arvenio marketing GmbH and partnerships with organizations like the Deutsche Bibelgesellschaft. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, with modern plugins for multilingual support and cookie consent. Security posture is strong with HTTPS and security headers, though privacy and incident response policies are missing. Overall, the site is professional, well-branded, and trustworthy, but could improve compliance documentation and explicit contact information.

E

Evangelisch-lutherische Landeskirche Hannovers

material-e.de

53

The website material-e.de operates as the official online shop for the Evangelisch-lutherische Landeskirche Hannovers, providing a specialized e-commerce platform focused on church-related materials such as brochures, campaign products, and educational aids. The platform targets church communities, educators, and local organizers, positioning itself as a niche provider within the religious and non-profit sector in Germany. The site features professional branding consistent with the organization's identity and offers clear contact channels including email, phone, and a contact form. Technically, the website is built on the Shopware CMS platform, utilizing modern web technologies including Bootstrap and JavaScript. It demonstrates good mobile optimization, accessibility, and SEO practices. The site employs HTTPS with strong SSL configuration and implements security best practices such as CSRF tokens and cookie consent mechanisms. Analytics and marketing tools like Google Analytics, Facebook Pixel, and Hotjar are used with appropriate consent management. From a security perspective, the site maintains a solid posture with essential security headers and no detected vulnerabilities or exposed sensitive data. However, it lacks a publicly available security policy or incident response contact information, which could enhance transparency and preparedness. Privacy compliance is robust, with comprehensive privacy and cookie policies aligned with GDPR requirements. Overall, material-e.de presents a trustworthy, professional, and secure platform serving its target audience effectively. Strategic recommendations include publishing a dedicated security policy, establishing incident response contacts, and enhancing transparency around vulnerability disclosures to further strengthen its security and compliance posture.

E

Evangelische Medienarbeit | EMA

termine-e.de

59

The website www.termine-e.de is an online login portal for the 'termine-e' scheduling system operated by Evangelische Medienarbeit (EMA), a media organization in Germany. It serves registered users with max-e-Accounts, providing access to media scheduling and management tools. The site is professionally branded and targets media professionals or affiliated entities within the EMA ecosystem. The business model focuses on providing specialized online tools for media scheduling and support services. Technically, the site is built on Ruby on Rails with modern frontend assets like Font Awesome and Turbo, indicating a contemporary web infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and consistent branding. Security-wise, the site uses HTTPS and includes CSRF protection in forms, but lacks visible security headers and cookie consent mechanisms, which are recommended for enhanced security and compliance. No vulnerabilities or suspicious content were detected. Overall, the site is trustworthy, secure, and professionally maintained, though improvements in privacy compliance and security headers are advised.

T

Tivoli Casino

tivolicasino.dk

57

Tivoli Casino is a well-established Danish online gambling platform operating since 2010. It offers access to Danish slot machines, jackpots, and mobile gaming, targeting adult Danish users interested in online casino games. The website is built on the Sitecore CMS platform and employs modern JavaScript frameworks and tag management tools to deliver a responsive and user-friendly experience. While the site includes a cookie consent mechanism, it lacks visible privacy policy and terms of service pages, which are critical for compliance and user trust. Security posture is generally good with HTTPS enabled and no exposed sensitive data, but could be improved by adding explicit security headers and incident response contact information. The domain WHOIS data is consistent with the business claims, showing a long registration history and active status, supporting the site's legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

S

SuprNation

suprnation.com

53

SuprNation is a Malta-based technology company specializing in the iGaming industry, founded in 2015. The company develops innovative online casino products with a focus on mobile optimization and enhanced user experience. Their product portfolio includes brands such as VoodooDreams, NYspins, and Duelz, positioning them as a creative challenger in the competitive iGaming market. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the site is built on WordPress with common industry plugins and uses Cloudflare for DNS and likely CDN services. Analytics are implemented via Google Tag Manager. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy measures.

S

Restricted Country - Slotbox

slotbox.com

54

The website slotbox.com currently serves a restricted country notice page, indicating that access to the full content is blocked or limited by geographic or regulatory restrictions. The domain is registered since 2002 with GoDaddy.com, LLC and uses Cloudflare for DNS and likely DDoS protection. Due to the restricted content, no meaningful business information, contact details, or policies are available on the site. The lack of accessible content and absence of privacy or cookie policies limits the ability to assess compliance and security posture fully. The site appears to be related to online gaming or casino services based on the domain name and metadata, but this cannot be confirmed from the current page.

Sky City Casino is a well-established hospitality and gaming business located in Western New Mexico, offering casino gaming, hotel accommodations, an RV park, dining, entertainment, and cultural tourism services. The website reflects a medium-sized regional casino and hotel destination with a focus on adult customers interested in gaming and cultural experiences. Technically, the site is built on WordPress using the Astra theme and Beaver Builder, integrating Google Analytics and Facebook Pixel for marketing and tracking. The site is mobile optimized with good design and navigation but lacks explicit privacy and cookie policies, which impacts privacy compliance. Security posture is moderate with HTTPS enabled and domain transfer lock in place, but no DNSSEC or security headers detected. The domain is long-standing and consistent with the business claims, enhancing trustworthiness. Overall, the website is professional and functional but would benefit from improved privacy disclosures and enhanced security headers.

The website is the official online booking platform for Seminole Hard Rock Hollywood, a major hospitality brand in Florida. It provides users with the ability to reserve hotel rooms, access loyalty programs, and view promotional offers. The site is well-branded and professionally designed, targeting travelers seeking accommodations at this property. The technical infrastructure leverages modern web technologies including ASP.NET, JavaScript libraries, and integrates multiple analytics and marketing tools such as Google Analytics, TikTok Pixel, and Facebook Pixel. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with GDPR and other privacy regulations. Security posture is strong with HTTPS enforcement and appropriate security headers, though no explicit incident response or vulnerability disclosure information is provided. Overall, the site presents a trustworthy and professional digital presence aligned with the parent Hard Rock brand.

The website is an online booking platform for Hard Rock Hotel & Casino Sacramento at Fire Mountain, a hospitality and casino property located in Wheatland, California. It serves as a reservation interface for hotel rooms and related services, targeting adult customers interested in gaming and lodging. The site is branded consistently with the Hard Rock brand and integrates multiple third-party marketing and analytics tools to optimize user engagement and conversion. Technically, the site uses a modern JavaScript stack with integrations for Google Tag Manager, OneTrust for cookie consent, and various advertising pixels. The site is mobile responsive and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers could be improved. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy, though direct contact information and security policies are limited. WHOIS data for the subdomain is not available, which is typical for subdomains managed under a parent domain. Overall, the site is legitimate, professionally maintained, and suitable for its business purpose.

The website is an online booking platform for Hard Rock Atlantic City, a hospitality property located in Atlantic City, New Jersey. It provides hotel room reservations and package bookings integrated with loyalty programs. The site is part of the Hard Rock Hotels chain, a well-known brand in the hospitality industry. The technical infrastructure includes modern JavaScript libraries, Google Maps API, and multiple analytics and advertising tools, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers are not explicitly detected. The absence of visible privacy policy and terms of service pages is a compliance gap. WHOIS data is unavailable for the subdomain, which is expected, and the domain is consistent with the parent Hard Rock brand. Overall, the site is professional, trustworthy, and safe for general audiences.

P

Palladium Hotel Group

palladiumhotelgroup.com

71

Palladium Hotel Group operates a large portfolio of luxury 4 and 5-star hotels across multiple countries including Spain, Mexico, and Germany. The website is professionally designed, multilingual, and targets leisure travelers seeking premium hospitality experiences. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries, and integrates multiple analytics and marketing tools with user consent mechanisms. Security posture is strong with HTTPS, security headers, and cookie consent, though explicit security policies and incident response contacts are not prominently published. The absence of WHOIS data reduces transparency but the website's content and branding indicate a legitimate and established business. Overall, the site demonstrates a mature digital presence with good compliance and user experience.

A

ATG

atg.se

62

ATG is a prominent Swedish betting company specializing in horse racing, sports betting, and casino games. The website serves a Swedish-speaking adult audience with comprehensive betting services, expert tips, live streaming, and news. It holds a leading market position in Sweden's gambling industry. Technically, the site is built on a modern React framework, leveraging Google Tag Manager, Dynatrace for monitoring, and OneTrust for privacy compliance. The infrastructure includes AWS streaming services, ensuring robust performance and scalability. Security-wise, the site enforces HTTPS, employs standard security headers, and integrates cookie consent mechanisms aligned with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates a mature digital presence with strong privacy and security postures appropriate for its industry.

A

ATG

atgvision.com

54

The website www.swedishhorseracing.com is a media and betting platform focused on Swedish horse racing. It provides video replays of races, coverage of major events, and betting information targeting horse racing enthusiasts primarily in Sweden. The site is branded under ATG, a known entity in the Swedish horse racing and betting industry. Technically, the site uses modern web technologies including AngularJS, JWPlayer for video playback, Google Tag Manager for analytics, and AdRoll for advertising and retargeting. The hosting for media content is provided by Rackfish, indicating a professional infrastructure. Security posture is generally good with HTTPS enforced and use of Google reCAPTCHA, but lacks some security headers and explicit privacy and terms of service documentation. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and branding suggest a legitimate business. Overall, the site is well-designed, mobile-optimized, and provides relevant content for its audience, but would benefit from improved transparency in privacy and security policies.

F

Fakuma Internationale Fachmesse für Kunststoffverarbeitung

fakuma-messe.de

55

Fakuma is a leading international trade fair specializing in industrial plastics processing, held in Friedrichshafen, Germany. The website provides comprehensive information about the event, including exhibitor and visitor details, news, and multimedia content. The site is professionally designed using WordPress with modern performance optimizations and SEO best practices. The technical infrastructure includes popular plugins such as WP Rocket for caching and Borlabs Cookie for GDPR-compliant cookie consent management. Security posture is solid with HTTPS enforced and some security headers implied, though explicit security policies and incident response contacts are not published. Overall, the website is trustworthy and well-positioned in its niche, serving industry professionals and exhibitors effectively.

M

Motek Messe - Internationale Fachmesse für Produktions- und Montageautomatisierung

motek-messe.de

55

Motek Messe is an established international trade fair organizer specializing in production and assembly automation, hosting events in Stuttgart, Germany. The website serves as a comprehensive platform for exhibitors and visitors, providing detailed event information, ticketing, and industry news. The business holds a strong market position within the manufacturing sector, partnering with related events such as Bondexpo to offer a broad industry platform. Technically, the site is built on WordPress with modern optimization plugins like WP Rocket and Borlabs Cookie for consent management, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit privacy and security policies are missing. Overall, the site demonstrates professionalism and trustworthiness, supported by consistent branding and active social media presence.

P

P. E. Schall GmbH & Co. KG

stanztec-messe.de

53

Stanztec is a specialized trade fair focused on stamping technology, organized by P. E. Schall GmbH & Co. KG in Germany. The event targets industry professionals and exhibitors, providing a platform for showcasing innovations in miniaturization, functional integration, and material efficiency. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it leverages WordPress with modern plugins and caching mechanisms, hosted on Anexia infrastructure. Security posture is strong with HTTPS enforcement and security best practices, though explicit cookie consent and security policies could be improved. Overall, the site is trustworthy, with clear contact information and social media presence, supporting its legitimacy and business credibility.

O

Optatec Internationale Fachmesse für optische Technologien, Komponenten und Systeme

optatec-messe.de

55

Optatec is a well-established international trade fair specializing in optical technologies, components, and systems, held in Frankfurt, Germany. The website serves as a comprehensive platform for exhibitors and visitors, providing detailed information about upcoming events, exhibitor directories, and industry news. The business operates in the manufacturing sector, focusing on photonics and optical technology industries, targeting professionals and companies in these fields. The site is professionally designed with consistent branding and good content quality, supporting its market position as a key industry event. Technically, the website is built on WordPress with a modern tech stack including performance optimizations like WP Rocket and cookie management via Borlabs Cookie. It uses structured data (JSON-LD) for SEO and social media integration, and is hosted on Anexia servers. The site is mobile-optimized and performs well, with good SEO practices implemented. From a security perspective, the site uses HTTPS with good SSL configuration and security headers. Cookie consent is implemented, but explicit privacy policies, terms of service, and incident response information are not found, representing areas for improvement. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the website is trustworthy and professional, with a strong business credibility score. Strategic recommendations include publishing clear privacy and security policies, adding incident response contacts, and enhancing accessibility features to further improve compliance and user trust.

C

Control Internationale Fachmesse für Qualitätssicherung

control-messe.de

55

Control Internationale Fachmesse für Qualitätssicherung is a leading international trade fair focused on industrial quality assurance technologies, procedures, products, and system solutions. The event is organized by P. E. Schall GmbH & Co. KG and targets professionals and companies involved in quality assurance across manufacturing sectors. The website provides comprehensive information for exhibitors and visitors, including event dates, exhibitor directories, news, and special features. The company maintains a strong market position as a premier platform for quality assurance innovations and networking. Technically, the website is built on WordPress with a modern tech stack including WP Rocket for performance optimization, Borlabs Cookie for consent management, and Slider Revolution for dynamic content. The site is hosted on Anexia servers, uses HTTPS with excellent SSL configuration, and is mobile-optimized with good SEO practices. The presence of structured data and multilingual support enhances its digital maturity. From a security perspective, the site enforces HTTPS, implements cookie consent, and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and some security headers. No vulnerabilities or suspicious activities were detected. Privacy compliance is partial, with cookie consent but no explicit privacy or terms of service pages found in the analyzed content. Overall, the website is professional, trustworthy, and well-maintained, serving its business purpose effectively. Strategic improvements in privacy documentation and security transparency would enhance its compliance and trustworthiness further.

T

TC-Innovations GmbH

tc-innovations.de

53

TC-Innovations GmbH is a specialized Shopware agency based in Germany, recognized as a market leader in Shopware themes, particularly through their flagship product ThemeWare®, which is deployed in over 15,000 shops. Their core services include grand design, sales promotion, and individualization of Shopware shops, complemented by installation and support services. The company targets e-commerce businesses and agencies seeking professional Shopware solutions. Technically, the website employs modern web technologies such as jQuery, Slick Carousel, and LazyLoad, and is optimized for mobile devices with good SEO and accessibility practices. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism, though it lacks explicit security headers and published security policies. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate operation.

E

ELBE DECKEN

elbedecken.de

37

ELBE Decken is a specialized German manufacturer and supplier of prestressed concrete floor slabs, operating under the umbrella of Heidelberg Materials, a major global construction materials company. The company offers a broad product range and comprehensive services including manufacturing, delivery, consulting, planning, and project support. Their market position is strong within Germany, targeting construction professionals such as builders, architects, and investors. The website reflects a professional and well-branded digital presence with clear navigation and relevant content tailored to their audience. Technically, the site is built on WordPress with modern plugins and themes, optimized for SEO and mobile use, and hosted by Goneo. Security measures include HTTPS, Google reCAPTCHA, and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and provides sufficient contact and business information.

V

Verein Deutscher Zementwerke e.V.

vdz-online.de

68

The Verein Deutscher Zementwerke e.V. (VDZ) is a well-established German non-profit association serving as a leading research and competence center for the cement, concrete, and environmental protection sectors. Founded in 1877, it provides a broad range of services including research, certification, consulting, and professional training to the cement industry. The website reflects a professional and comprehensive digital presence with multilingual support and clear navigation tailored to industry professionals and stakeholders. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including SVG graphics and asynchronous JavaScript loading. The use of Matomo analytics indicates a privacy-conscious approach to user tracking. The website is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks some recommended security headers such as Content-Security-Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the organization's identity and domain usage, supporting legitimacy. Overall, the VDZ website presents a trustworthy, professional, and secure platform that effectively supports its business objectives and stakeholder engagement.

The Bundesverband der Deutschen Transportbetonindustrie e.V. (BTB) is a professional industry association representing transport concrete manufacturers and related businesses in Germany. The organization focuses on key industry challenges such as decarbonization, resource conservation, technical standards, research, education, and workplace safety. It operates the Concrete Sustainability Council (CSC) certification system in Germany, underscoring its commitment to sustainable construction practices. The website serves as a comprehensive resource for members and the broader industry, offering news, training, research updates, and member-exclusive content. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including jQuery and Matomo analytics. It features good SEO optimization, accessibility, and mobile responsiveness. Security practices include HTTPS enforcement and secure login forms with CSRF protection. Cookie consent mechanisms and GDPR-compliant privacy policies are implemented, reflecting a mature approach to privacy and compliance. While the website content and technical infrastructure are robust and professional, the WHOIS data for the domain is unavailable due to a malformed WHOIS response, limiting the ability to fully verify domain registration legitimacy. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Overall, the site demonstrates a strong security posture with minor recommendations for enhanced security headers and explicit incident response information. Strategically, BTB is well-positioned as a leading industry association in Germany's transport concrete sector, with a clear focus on sustainability and member services. The digital presence supports its mission effectively, though verifying domain registration details through alternative means is advisable to strengthen trust.

I

Industrieverband Steine und Erden Baden-Württemberg e.V.

iste.de

51

The Industrieverband Steine und Erden Baden-Württemberg e.V. operates as a regional industry association representing the stones and earths sector in Baden-Württemberg, Germany. The website serves as an information hub providing news, events, educational initiatives, and service offerings to its members and the broader public interested in the industry. It maintains a professional and consistent brand presence with clear communication channels and social media engagement. Technically, the site is built on the 'cumodis simple cms' platform, uses modern web standards, and integrates Matomo analytics with privacy-conscious configurations. Security posture is adequate with HTTPS enforced and secure login forms, though the absence of explicit security headers suggests room for improvement. Privacy compliance is strong, evidenced by a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

E

EP Power Minerals

eppowerminerals.com

50

EP Power Minerals is a well-established European company specializing in the supply of cementitious materials such as fly ash and granulated blast furnace slag, serving the concrete and cement industries globally. With over 40 years of experience and a network of subsidiaries and partners, the company positions itself as a leader in its sector. The website reflects a professional and modern digital presence built on TYPO3 CMS, featuring comprehensive content, clear navigation, and mobile optimization. Privacy and cookie compliance are well implemented with a consent manager and detailed policies. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit policies could be improved. The absence of WHOIS registration data introduces some uncertainty about domain legitimacy, but the overall business credibility remains high based on website content and external domain relationships.

Uniper is a large, established energy company headquartered in Germany, focused on power generation, energy trading, and accelerating the energy transition through renewables and hydrogen economy development. The company operates in over 40 countries and has a strong green energy portfolio. The website is built on Drupal 10 with modern web technologies and includes comprehensive content about their business, strategy, and sustainability efforts. Security posture is strong with HTTPS, security headers, and captcha-protected forms, though explicit incident response contacts and vulnerability disclosure policies are not found. Privacy and compliance policies are comprehensive and GDPR compliant. Overall, the website reflects a mature digital presence consistent with a reputable energy sector enterprise.

H

Heinrich Krieger KG

dialog-krieger.de

46

Dialog Krieger, operated by Heinrich Krieger KG, is a specialized service provider focusing on modern conflict management and public participation facilitation in Germany. The company emphasizes transparent and fair dialogue processes, primarily serving municipalities, companies, and initiatives. Their website reflects a professional and consistent brand image, highlighting certified mediators and structured citizen engagement services. The technical infrastructure is based on WordPress CMS with common plugins and a hosting provider identified as netcup, ensuring reliable performance and moderate mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy, GDPR compliant, and provides sufficient contact information and business insights.

W

Waibel

waibel-gruppe.de

56

Waibel is a medium-sized German company specializing in the building materials market, offering integrated services including extraction, production, transport logistics with its own fleet, shipping, and disposal. The company has over 50 years of experience and targets both construction companies and private customers. The website is built on TYPO3 CMS and uses modern web technologies, providing a professional and well-structured user experience with good mobile optimization. Security posture is moderate with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the website reflects a credible business with room for improvement in security and privacy transparency.

S

SCHWING Stetter

schwing-stetter.com

49

SCHWING Stetter is a well-established German manufacturer specializing in concrete technology products such as truck-mounted concrete pumps, truck mixers, batching plants, and industrial pumping systems. The company maintains a strong global presence with multiple regional partner sites and subsidiaries, targeting construction industry professionals and industrial clients. Their website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on TYPO3 CMS, uses modern JavaScript frameworks, and integrates privacy-conscious analytics via Matomo. Cookie consent is managed effectively through Cookiebot, ensuring GDPR compliance. Security posture is solid with HTTPS enabled and basic security headers, though there is room for improvement in DNSSEC and advanced security headers. No critical vulnerabilities or suspicious patterns were detected. Overall, the website and domain registration data indicate a legitimate and credible business with a mature digital infrastructure.

P

Putzmeister

putzmeister.com

61

Putzmeister is a globally recognized leader in manufacturing and servicing construction and mining machinery, specializing in concrete pumps, mixers, and related equipment. Founded in 1958 and headquartered in Germany, the company operates under the parent company SANY Group and maintains a strong market position with multiple subsidiary brands. The website reflects a professional and comprehensive digital presence targeting industry professionals and customers worldwide. Technically, the site is built on the Liferay CMS platform with modern web technologies including React and Matomo analytics, providing a good user experience with moderate performance and mobile optimization. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC and explicit cookie consent mechanisms are recommended. Overall, the domain registration and website content align well, supporting high legitimacy and trustworthiness.

M

MSE Camsoft GmbH

camsoft.de

52

MSE Camsoft GmbH is a German-based small technology company specializing in custom software development with a focus on mobile software and dispatch systems for industrial and commercial sectors such as construction, airport services, and vehicle rental. Their business model is B2B, providing tailored software solutions integrated into existing IT environments. The website is professionally designed with clear navigation and relevant content targeting business clients. Technically, the site uses a modern front-end stack including Bootstrap and jQuery, but relies on an outdated Google Analytics script and lacks visible security headers, indicating room for modernization and security improvements. Security posture is moderate with no critical vulnerabilities detected but missing best practices such as security headers and cookie consent mechanisms. WHOIS data aligns well with the website's German business identity, supporting legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

B

BEYER-Mietservice KG

beyer-mietservice.de

43

BEYER-Mietservice KG operates a professional and established European construction machinery rental business, offering a wide range of equipment including aerial work platforms, cranes, forklifts, and generators. The website presents a clear business focus with detailed product listings and a consistent brand presence. Technically, the site uses modern web technologies such as Google Tag Manager and lazy loading for images, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks important security headers and formal privacy and cookie policies. The WHOIS data is minimal but does not indicate privacy protection or suspicious registration, supporting legitimacy. Overall, the site is functional and professional but could improve privacy compliance and security best practices.

A

AULBACH GmbH & Co. KG

aulbach.com

50

AULBACH GmbH & Co. KG operates as a medium-sized German company specializing in meat, poultry, and game specialties with a focus on convenience food products for professional kitchens and gastronomy. Their product range includes raw meat pieces, convenience items such as pre-cooked snacks, sausage products, and organic meat options. The company targets B2B customers in the catering and food service sectors, positioning itself as a reliable supplier with a broad assortment of traditional and innovative products. Technically, the website is built using the connectiv! WebCMS platform and employs older JavaScript libraries like Prototype.js and Scriptaculous. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Cookie consent mechanisms are implemented, indicating awareness of privacy compliance requirements. However, no advanced analytics or marketing tools are detected. From a security perspective, the site lacks visible security headers and explicit security policies or incident response contacts. The SSL configuration and hosting details are not provided, limiting the assessment of encryption strength. The absence of WHOIS data for the domain is a notable concern, as it reduces trust in domain legitimacy despite the professional appearance of the website. Overall, the website presents a professional and trustworthy front for its business operations but would benefit from enhanced security practices, improved transparency in domain registration, and clearer contact information to strengthen its credibility and compliance posture.

Profi Beton GmbH is a medium-sized manufacturing company specializing in the production and distribution of transport concrete and splitt concrete, primarily serving the Rhein-Main region and the vorderen Odenwald in Germany. As a 100% subsidiary of Mitteldeutsche Hartstein-Industrie Aktiengesellschaft, it holds a leading market position with over 30 years of experience and a DIN ISO 9001 certification, indicating a commitment to quality. The company targets private, commercial, and public customers with tailored concrete products for various construction needs. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including jQuery, FontAwesome, and Google Maps API for location services. The site demonstrates good mobile optimization, clear navigation, and moderate performance. Privacy and compliance are well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policies. Matomo analytics is used for user tracking, reflecting a privacy-conscious approach. From a security perspective, the site enforces HTTPS and uses session cookies appropriately. However, some standard security headers are not explicitly detected, and there is no visible security policy or incident response contact, which could be improved. No vulnerabilities or suspicious content were found, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, Profi Beton GmbH presents a professional, trustworthy online presence with solid compliance and security foundations. Strategic improvements in security headers and incident response transparency would further enhance their security posture and trustworthiness.

HEMA Maschinen- und Apparateschutz GmbH is a medium-sized German manufacturing company specializing in machine protection products and services for industrial production machines. The company offers a broad portfolio including safety glass services, protection systems, clamping and braking systems, and sanitation technologies using ozone and UV-C. Their market position is supported by ISO 9001:2015 certification and a global presence with multiple international locations. The website is professionally designed using TYPO3 CMS, featuring multilingual support and modern consent management tools, indicating a mature digital infrastructure. Security posture is good with HTTPS, captcha-protected forms, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, possibly due to privacy protection or recent registration, which slightly reduces transparency but does not detract from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to improve trust and compliance.

R

Roth Elektrotechnik

roth-elektrotechnik.com

57

Roth Elektrotechnik is a well-established electrical services company based in Großwallstadt, Germany, with over 18 years of experience. The company specializes in photovoltaic systems, electrical engineering, smart home KNX technology, and construction site power supply rental. Their market position is that of a trusted regional master craftsman business emphasizing quality, reliability, and customer satisfaction. The website reflects a professional and consistent brand image targeting residential and commercial customers in the local region. Technically, the website is built on Joomla CMS with modern frontend technologies such as Bootstrap, GLightbox, and AOS for animations. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Cookie consent is implemented via TermsFeed scripts, indicating attention to privacy compliance. However, no advanced analytics or tracking services are detected, suggesting a privacy-conscious approach. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks visible security headers and does not provide explicit security or incident response policies. The domain WHOIS data is consistent with the business claims, showing a long registration period without privacy protection, supporting legitimacy. No critical vulnerabilities or suspicious patterns were detected. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, with moderate security posture. Strategic improvements in security headers and incident response disclosures could further enhance trust and security maturity.

B

Beato Umzüge - Aschaffenburg - Miltenberg

beato.de

51

Beato Umzüge is a small, family-owned moving and logistics company operating primarily in the German regions of Aschaffenburg, Miltenberg, Frankfurt, and Würzburg, with services extending nationally and internationally. Their offerings include private and corporate moves, international relocations, storage solutions, and additional services such as furniture assembly and clearance. The company positions itself as a reliable, customer-focused partner with a strong emphasis on professional service and customer satisfaction, supported by positive testimonials and a well-structured website. Technically, the website is built on Joomla CMS with modern frontend technologies including Bootstrap, Swiper.js, and AOS for animations. The site is mobile-optimized, uses HTTPS with a valid SSL configuration, and incorporates anti-spam measures like Google ReCaptcha in its contact form. SEO and accessibility are adequately addressed, though some security headers are missing. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and CSRF token usage but lacks explicit security policies or incident response contacts. No vulnerabilities or suspicious elements were detected. Privacy compliance is supported by a comprehensive privacy policy, though no cookie consent mechanism was found. Contact information is transparent and complete, enhancing trust. Overall, the website presents a professional, trustworthy image with a solid technical foundation and good security hygiene. Recommendations include adding security headers, implementing a cookie consent banner, and publishing incident response information to further strengthen compliance and security posture.

H

Hauptverband der Deutschen Bauindustrie e.V.

leisegehtsnicht.de

49

The website 'Leise geht's nicht.' represents the Hauptverband der Deutschen Bauindustrie e.V., a key industry association for the German construction sector. It serves as an informational platform highlighting the industry's role in infrastructure, digitalization, climate protection, and housing development. The site targets stakeholders including government, industry professionals, and the general public, emphasizing the societal importance and challenges of construction projects. Technically, the site is built on TYPO3 CMS with Matomo analytics, demonstrating a modern and professional digital infrastructure. The site is mobile-optimized and well-structured, though some accessibility and security header improvements are possible. Security posture is strong with HTTPS and no visible vulnerabilities, but lacks published security policies or vulnerability disclosure mechanisms. Overall, the site is trustworthy, professional, and compliant with GDPR through linked policies on the bauindustrie.de domain.

O

Oranto GmbH

oranto.de

54

Oranto GmbH is a small technology company based in Berlin, Germany, specializing in agile software development with a focus on Enterprise Content Management Systems, database applications, and scientific study platforms. Their key offerings include Oranto AI, a secure AI management solution emphasizing data privacy, and a flexible, GDPR-compliant Studienplattform for managing clinical and non-clinical studies. The company positions itself as a trusted partner for digital transformation, providing services such as web hosting, SEO, TYPO3 expertise, and IT consulting. Technically, the website is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is hosted via domainoffensive.de. The site is well-structured, mobile-optimized, and demonstrates good SEO practices.

E

Evangelische Kirche von Westfalen, Landeskirchenamt

ekvw.de

49

The Evangelische Kirche von Westfalen is a major regional Protestant church organization in Germany, providing religious, educational, and social services. The website serves as an information and engagement platform for members and the public, featuring news, events, and resources. The organization holds a strong market position as the fourth largest evangelical church in Germany, targeting a broad general audience interested in faith and community activities. Technically, the website is built on TYPO3 CMS, with modern web standards, responsive design, and accessibility features. It integrates third-party services for analytics and media content while maintaining GDPR compliance through a comprehensive cookie consent mechanism. Security posture is solid with HTTPS and privacy-respecting analytics, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and well-maintained, reflecting the organization's credibility and commitment to transparency.