Security Directory

D

Diakonisches Werk Baden

diakonie-baden.de

42

Diakonie Baden is a leading non-profit social welfare organization in Baden-Württemberg, Germany, affiliated with the Evangelical Church. The website provides comprehensive information about their social services, including care, migration support, family services, and volunteer opportunities. The organization targets individuals in need, volunteers, and social institutions, positioning itself as a key player in the regional social welfare sector. Technically, the site is built on TYPO3 CMS with a modern tech stack including jQuery, Bootstrap, and various UI libraries, ensuring good performance, accessibility, and mobile optimization. Security posture is strong with HTTPS, consent management, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is robust with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, reflecting the organization's credibility and commitment to social causes.

E

Evangelische Landeskirche in Baden

ekiba-leicht.de

51

The website ekiba-leicht.de is operated by the Evangelische Landeskirche in Baden, a regional religious institution in Germany focused on providing accessible information in easy German language. The site targets individuals with language or cognitive challenges, promoting inclusion and accessibility in church-related content and community work. The business model is non-profit and government-related, with a medium organizational size and a clear focus on accessibility services. Technically, the website uses Edith CMS hosted on w-commerce.de infrastructure, leveraging jQuery, Matomo analytics, and Bootstrap-like responsive design. The site is moderately performant, mobile-optimized, and accessible, with good SEO practices. However, it lacks explicit cookie consent mechanisms and some security headers, which are areas for improvement. Security posture is solid with HTTPS enforced and email obfuscation implemented, but the absence of security policies and incident response contacts limits transparency. No critical vulnerabilities or suspicious patterns were detected. The domain WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is professional, trustworthy, and serves its target audience effectively. Strategic improvements in privacy compliance and security transparency would enhance its posture and user trust.

T

Threema

threema.id

75

Threema is a Swiss-based company providing highly secure, end-to-end encrypted communication services tailored for individuals, businesses, and government entities. The company emphasizes privacy, GDPR compliance, and zero-knowledge security, positioning itself as a trusted alternative to mainstream messaging platforms. Their product suite includes Threema Work, Broadcast, and Gateway, catering to various secure communication needs. The website reflects a professional and consistent brand image with a focus on security and privacy. Technically, the site uses modern JavaScript frameworks and privacy-respecting analytics (Matomo), with good mobile optimization and SEO practices. Security posture is solid with HTTPS and domain protections, though DNSSEC is not enabled and security headers are not explicitly detected in the provided data. No explicit privacy or cookie policies were found in the provided content, which is a gap in privacy compliance. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

Ulmer Akademie, operated by Verlag Eugen Ulmer, is a specialized online education platform focused on digital continuing education in agriculture, horticulture, and related sectors. The website offers live seminars, recorded sessions, and online courses tailored to professionals in these industries, positioning itself as a niche leader in Germany. The platform targets a broad audience interested in advancing their knowledge and skills remotely. Technically, the website employs a modern technology stack including jQuery, Tailwind CSS, AlpineJS, and uses Matomo and Google Tag Manager for analytics. It features responsive design and accessibility enhancements such as skip links and an accessibility settings menu. The site is hosted securely over HTTPS and implements a comprehensive cookie consent mechanism via Klaro, reflecting good privacy compliance. From a security perspective, the site enforces HTTPS and disables tracking on certain paths and hosts. However, it lacks explicit security headers and does not publish a dedicated security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the security posture is solid but could be improved by adding security headers and formalizing incident response information. The website is fully accessible without WAF or security challenge blocks. It maintains high content quality, professional design, and clear navigation. No adult or questionable content is present, making it safe for general audiences. The domain registration data is consistent with the business, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular audits of third-party libraries to sustain a strong security and compliance posture.

Agrarmarkt BW is a regional agricultural market information portal operated by the Landesbauernverband in Baden-Württemberg e.V., providing market prices, telegrams, and outlooks primarily for members in the agricultural sector. The website serves as an authoritative source for market data in the Baden-Württemberg region, focusing on crops, livestock, and agricultural inputs. The business model centers on delivering timely and relevant market information to its target audience of farmers and agricultural stakeholders. Technically, the site employs a modern tech stack including jQuery, AlpineJS, Tailwind CSS, and Matomo analytics, with a custom CMS backend. The site is mobile-optimized and features a professional design with clear navigation. Security posture is solid with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities, though it lacks published security policies or incident response information. Overall, the site is trustworthy and well-maintained, with room for improvement in transparency around security and incident handling.

Verlag Eugen Ulmer operates a professional e-commerce platform specializing in books, magazines, and e-books focused on gardening, agriculture, and nature topics. The company leverages its 150 years of expertise to serve a target audience that includes hobbyists, students, and professionals in related fields. The website demonstrates a mature digital presence with modern technologies such as Alpine.js, Matomo analytics, and a cookie consent mechanism, ensuring compliance with GDPR. Social media integration and user account features enhance customer engagement. Security posture is solid with HTTPS enforced and consent-based tracking, though additional security headers could further strengthen defenses. Overall, the site is trustworthy, well-structured, and provides a positive user experience.

BWagrar.de is a professional regional agricultural information portal serving Baden-Württemberg, Germany. Operated by Verlag Eugen Ulmer, it provides weekly news, market data, and specialist content for farmers and related audiences. The site supports subscription access and offers newsletters, job listings, and classifieds. Technically, the site uses modern JavaScript libraries including AlpineJS, jQuery, and Glide.js, with Matomo and Google Tag Manager for analytics, and Klaro for cookie consent management. The website is well-structured, mobile-optimized, and accessible, with a good user experience and clear navigation. Security posture is solid with HTTPS and consent-based tracking, though explicit security headers and policies are not evident. No privacy policy or terms of service pages were found in the provided content, which is a compliance gap. WHOIS data confirms the domain is legitimately registered to the publisher, consistent with the business identity. Overall, the site is trustworthy and professional but could improve privacy and security transparency.

D

Diözesanstelle Ehe Familie Leben

ehe-familie-lebensberatung.de

45

The website www.ebfr-efl.de represents the Diözesanstelle Ehe Familie Leben, a regional non-profit counseling service operating within the Archdiocese of Freiburg, Germany. It offers psychological counseling for marriage, family, and life issues, targeting individuals, couples, and families regardless of their background. The site provides information on counseling services, online counseling, training, and contact details, positioning itself as a trusted regional support entity. Technically, the site is built on the Edith CMS platform and hosted by w-commerce.de. It uses a modern tech stack including jQuery, AblePlayer for accessible video playback, and Matomo for analytics. The website is mobile-optimized and accessible, though SEO metadata is basic. Performance is moderate with well-structured navigation and consistent branding. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and a cookie consent mechanism, which impacts GDPR compliance. No explicit security or incident response policies are published. Analytics usage is moderate with privacy-conscious settings but could be improved with clearer user consent. Overall, the website is professional and trustworthy for its intended audience but would benefit from enhanced privacy compliance, security headers, and visible policy documentation to improve user trust and regulatory adherence.

E

Evangelische Landeskirche in Baden

ekiba.de

53

The Evangelische Landeskirche in Baden operates a comprehensive and professionally designed website serving as an information and community engagement platform for its members and the general public interested in religious and social topics in the Baden region of Germany. The site provides extensive content on church activities, social services, educational programs, and community events, positioning itself as a key regional religious institution. Technically, the website leverages Edith CMS, jQuery, Bootstrap, and Matomo analytics, indicating a mature digital infrastructure with good mobile optimization and accessibility. Security posture is solid with HTTPS enforcement, privacy-conscious analytics, and cookie consent mechanisms, though explicit security policies and incident response information are not published. Overall, the website is trustworthy, GDPR compliant, and free from suspicious or adult content, reflecting a low-risk profile for users and stakeholders.

K

Katholische Landjugendbewegung (KLJB) der Erzdiözese Freiburg

kljb-freiburg.de

45

The Katholische Landjugendbewegung (KLJB) der Erzdiözese Freiburg is a German non-profit youth organization focused on engaging young people in rural areas through education, events, and community activities. The website serves as an information hub for members and interested parties, providing contact details, event information, and organizational news. It is affiliated with the national KLJB and the international MIJARC movement, positioning it as a regional player with broader connections. Technically, the website is built on Edith CMS and uses jQuery libraries alongside Matomo analytics for user tracking with respect to privacy preferences. The site is hosted on German servers (Goneo) and employs HTTPS for secure communication. The design is professional, mobile-optimized, and accessible, though some SEO and security best practices could be improved. From a security perspective, the site uses HTTPS and respects cookie consent for tracking. However, it lacks explicit privacy and cookie policies, security headers, and incident response contact information, which are areas for improvement. No critical vulnerabilities or suspicious elements were detected. Overall, the website is trustworthy and professional, serving its non-profit mission effectively. Strategic enhancements in privacy transparency and security hardening would further strengthen its posture.

K

Katholische Landbewegung Freiburg (KLB)

klb-freiburg.de

45

Katholische Landbewegung Freiburg (KLB) is a small non-profit organization dedicated to supporting Christian life and community in rural areas around Freiburg, Germany. The website provides information about their mission, events, spiritual offerings, and campaigns to preserve rural culture and environment. Their target audience includes rural community members and those interested in Christian faith and rural life. Technically, the site is built on Edith CMS, uses common JavaScript libraries like jQuery and Bootstrap, and integrates Matomo for analytics with some privacy controls. Security posture is moderate with HTTPS enforced but lacks explicit security headers and formal privacy policies. Contact information is limited but includes an email and a contact page. Overall, the website is professional, well-structured, and trustworthy for its niche audience.

K

Katholische Landfrauenbewegung Freiburg (KLFB)

kath-landfrauen.de

45

The Katholische Landfrauenbewegung Freiburg (KLFB) is a regional non-profit organization dedicated to supporting women and families in rural areas within the Erzdiözese Freiburg. The website serves as an informational and event platform, providing news, event listings, and educational content aligned with its mission. The organization positions itself as a community advocate with a focus on Christian values and rural development. Technically, the website is built on Edith CMS, leveraging jQuery, Bootstrap, and Matomo analytics, hosted on infrastructure associated with w-commerce.de. The site is accessible, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and some privacy considerations via Matomo's cookie disabling, but lacks explicit privacy and cookie policies and security headers. Overall, the site reflects a trustworthy and professional presence for a small non-profit entity.

E

Erzdiözese Freiburg - Bildungshäuser und Familienferienstätten

bildungshaus-neckarelz.de

55

Bildungshaus Neckarelz is a small, non-profit educational and hospitality organization based in Mosbach-Neckarelz, Germany, affiliated with the Erzdiözese Freiburg. The website offers detailed information about seminars, courses, accommodation, and conference facilities, targeting individuals and groups interested in personal and professional development in a welcoming environment. The business model focuses on education and hospitality services with a strong community orientation. Technically, the website is built on Edith CMS and uses common JavaScript libraries such as jQuery and AblePlayer, with Matomo analytics integrated respecting user consent. The site is hosted on fibcom.de nameservers and enforces HTTPS, providing a secure browsing experience. The design is professional, mobile-optimized, and accessible, with good SEO practices. From a security perspective, the site enforces HTTPS and respects tracking consent but lacks explicit security headers and formal privacy and cookie policies, which are compliance gaps. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

R

Referat Kirche und Ländlicher Raum Erzdiözese Freiburg

landpastoral.de

43

The website 'Kirche im Ländlichen Raum' represents the Referat Kirche und Ländlicher Raum of the Erzdiözese Freiburg, a church-affiliated non-profit organization focused on supporting and fostering community life in rural areas of Germany. It provides information, news, and collaboration opportunities with various rural and church-related organizations. The site targets rural communities and church members, offering resources and event information to strengthen social and spiritual ties. Technically, the website is built on Edith CMS, uses modern JavaScript libraries such as jQuery and Bootstrap, and integrates Matomo for analytics with respect to user privacy. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is enforced, but the absence of explicit security headers and cookie consent mechanisms indicates room for improvement. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the website's purpose and content, indicating legitimacy.

V

Verband Katholisches Landvolk e. V.

landvolk.de

50

Verband Katholisches Landvolk e. V. is a German non-profit organization representing Christian rural communities and agricultural interests. The website serves as an information hub for community engagement, events, family counseling, and advocacy on rural and agricultural topics. It targets a niche audience of rural Christians in Germany, providing relevant content and resources. The business model is non-profit and community-focused, with a small organizational size and consistent branding. Technically, the website is built on the REDAXO CMS platform, utilizing Bootstrap, jQuery, and Owl Carousel for UI components. It employs Matomo analytics with privacy-conscious settings disabling cookies and campaign parameters. The site is mobile optimized with good navigation and content quality, though accessibility and SEO are basic. Hosting details are not explicitly known. From a security perspective, the site uses HTTPS but lacks visible security headers and published security or incident response policies. No forms with data submission are active, reducing attack surface. Privacy compliance is partial with a privacy and cookie policy present but no explicit consent mechanism. No vulnerability disclosure or security.txt file is found. Overall, the security posture is moderate but could be improved with standard headers and policies. The overall risk is low given the non-profit nature and limited sensitive data handling. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security policies, and adding vulnerability disclosure mechanisms to improve trust and compliance.

The Bundesarbeitsgemeinschaft der Landwirtschaftlichen Familienberatungen und Sorgentelefone operates as a non-profit organization dedicated to providing counseling and support services to agricultural families in Germany. Their services include crisis management, mediation, financial and legal advice, and helpline support. The organization is well-established with regional member institutions and supported by reputable sponsors such as Rentenbank and the German Federal Ministry of Food and Agriculture (BMEL). The website reflects a professional and consistent brand image, targeting agricultural families and individuals seeking assistance.

E

Erzdiözese Freiburg

initiative-wertvolle-zukunft.de

45

Initiative Wert-volle Zukunft is a German non-profit initiative founded in 2009 under the Erzdiözese Freiburg. It focuses on charitable fundraising and promoting social values such as justice, peace, and community. The website targets donors and the faithful, providing donation options, project information, and contact details. Technically, the site uses Edith CMS, jQuery, Bootstrap, and Matomo analytics, hosted on professional infrastructure. Security posture is good with HTTPS and security headers, but lacks visible cookie consent and published security policies. Overall, the site is professional, trustworthy, and serves its non-profit mission effectively.

A

Arbeitsgemeinschaft für Kinder- und Jugendhilfe – AGJ

jugendhilfetag.de

54

The website www.jugendhilfetag.de represents the 18th Deutscher Kinder- und Jugendhilfetag (DJHT), the largest youth welfare summit in Europe, organized by the Arbeitsgemeinschaft für Kinder- und Jugendhilfe (AGJ). It serves as an information hub for the event held in Leipzig in May 2025, targeting professionals and stakeholders in child and youth welfare. The site offers event details, documentation, media galleries, and newsletter subscription, positioning itself as a key platform for networking and knowledge exchange in the sector. Technically, the site is built on WordPress 6.8.3, utilizing modern libraries such as jQuery and Swiper.js, and employs the Borlabs Cookie plugin for GDPR-compliant cookie management. Hosting is provided by hostingforyou.de, with a good SSL configuration and privacy-respecting analytics via Matomo. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and avoids exposing sensitive data. While explicit security headers are not fully confirmed, the overall posture is strong with no visible vulnerabilities. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. Business credibility is supported by official partner logos and consistent branding. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy and security standards. It effectively supports its mission as a major event platform in the youth welfare sector.

A

Arbeitsgemeinschaft für Kinder- und Jugendhilfe (AGJ)

jugendgerecht.de

44

Jugendgerecht.de is a German non-profit project dedicated to promoting independent youth policy and participation for young people aged 12 to 27. It operates as an information and resource platform funded by the German Federal Ministry for Family Affairs and associated with the Arbeitsgemeinschaft für Kinder- und Jugendhilfe (AGJ). The website offers news, debates, materials, and tools to support youth policy development at various government levels. The platform maintains a professional and consistent brand presence with clear navigation and relevant content tailored to youth and policy stakeholders. Technically, the website is built on the 4flexNG CMS framework, utilizing modern web technologies such as Bootstrap, FontAwesome, and jQuery. It employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The site is hosted by hostingforyou.de and uses HTTPS with good security practices, although some security headers are missing. Mobile optimization and accessibility are adequate but could be improved. From a security perspective, the site demonstrates a solid posture with no detected vulnerabilities or exposed sensitive data. However, it lacks explicit cookie consent mechanisms and security or incident response policies. The WHOIS data aligns well with the website content and hosting, indicating legitimacy and consistency. Overall, the site is safe, trustworthy, and compliant with GDPR principles, though some enhancements in privacy and security transparency are recommended. The overall risk is low, with strategic recommendations focusing on improving cookie consent, adding security headers, publishing security policies, and enhancing accessibility to further strengthen trust and compliance.

S

Statistisches Bundesamt (Destatis)

destatis.de

63

The Statistisches Bundesamt (Destatis) is the official German Federal Statistical Office providing comprehensive statistical data, publications, and analyses to the public, government, and researchers. The website serves as a central portal for accessing official statistics across various sectors including economy, society, environment, and government. It maintains a strong market position as the authoritative source of official statistics in Germany. Technically, the website is built on the Government Site Builder CMS, employs Matomo analytics hosted on trusted government infrastructure, and demonstrates good performance and mobile optimization. The site features a clear navigation structure, extensive content, and accessibility features, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS, uses a cookie consent mechanism compliant with GDPR, and avoids exposing sensitive data. While explicit security headers are not visible in the HTML, the overall security posture is strong with recommendations to enhance header implementation and publish a dedicated security policy. Privacy compliance is robust with transparent data collection and retention policies. Overall, the website is highly trustworthy, professionally maintained, and compliant with relevant privacy regulations. It effectively balances user experience, data transparency, and security, making it a reliable resource for official statistical information in Germany.

ENERGY is a prominent German radio broadcasting network offering a wide range of hit music, live streaming, podcasts, and event promotions. The website serves as a comprehensive portal for national and regional stations, targeting a broad German-speaking audience interested in contemporary music and entertainment. The business model is primarily advertising-driven, supported by digital streaming and event marketing. The site demonstrates a strong market position with consistent branding and professional content quality. Technically, the website is built on Drupal 10, leveraging modern analytics and marketing tools such as Google Analytics, Matomo, Facebook Pixel, and Usercentrics for consent management. Hosting and DNS are managed via Cloudflare, ensuring performance and security. The site is mobile-optimized and integrates app promotion for Android and iOS platforms, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses Cloudflare for CDN and DNS, and implements consent-based tracking mechanisms. While explicit security policies and incident response contacts are not publicly detailed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies. Overall, the website presents a low risk profile with high professionalism and trustworthiness. Strategic recommendations include publishing explicit security headers, providing a public security policy, and maintaining regular audits of third-party scripts to sustain security and compliance standards.

N

NEXT LEVEL SOLUTIONS

next-level-solutions.eu

51

NEXT LEVEL SOLUTIONS is a premium transportation and chauffeur service provider based in Germany, offering tailored VIP chauffeur, shuttle, valet, vehicle transfer, and event transport services across Europe. The company targets exclusive clientele including business and private customers, emphasizing excellence and comfort. Their website reflects a professional and consistent brand image with detailed service descriptions and team member profiles. Technically, the site is built on WordPress with modern plugins and frameworks, including Matomo for privacy-conscious analytics and Borlabs Cookie for GDPR-compliant consent management. Security posture is good with HTTPS enforced and no exposed sensitive data, though additional security headers and explicit security policies could enhance protection. The absence of public WHOIS data is due to EURid privacy policies common for .eu domains, and the website content supports legitimacy. Overall, the site is well-structured, user-friendly, and compliant with privacy regulations, making it a trustworthy digital presence for the business.

T

TVN GROUP HOLDING GmbH & Co. KG

tvn.de

53

TVN GROUP HOLDING GmbH & Co. KG is a well-established German media company specializing in film and television production services, corporate media, live broadcasting, and innovative media solutions including VR/AR and 360° films. As part of the Madsack Mediengruppe, it leverages over 40 years of industry experience and offers a comprehensive portfolio of services to media professionals and corporate clients. The company maintains a strong market position with diversified competencies and a focus on technical and content innovation. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries such as jQuery, Bootstrap, and Slick Carousel. It integrates Matomo analytics and a consent management platform to ensure GDPR compliance. Hosting appears to be stable and professional, likely provided by Deutsche Telekom. The site is mobile-optimized and SEO-friendly, with good accessibility and performance characteristics. From a security perspective, the website enforces HTTPS and uses a consent management platform for privacy compliance. However, it lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The overall security posture is solid but could be improved by adding security headers and formal policies. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It effectively communicates the company's services and corporate identity, supporting a positive user experience and business credibility.

F

fragFINN e.V.

fragfinn.de

64

fragFINN e.V. operates a German-language child-friendly search engine and educational platform targeting children up to 12 years old. The website offers curated, media pedagogue-reviewed content including tips, quizzes, videos, audio, and games designed to provide a safe and educational online environment for children. The organization positions itself as a non-profit entity focused on child safety and education in the digital space. Technically, the website is built on WordPress with common plugins such as Yoast SEO and WPBakery Page Builder, leveraging Matomo analytics with cookies disabled to respect user privacy. The site is hosted on servers associated with internet1.de and uses HTTPS with a good SSL configuration. The site is mobile-optimized, accessible, and SEO-friendly, providing a high-quality user experience. From a security perspective, the site employs HTTPS and disables cookies in analytics, but lacks explicit security headers and does not provide visible privacy or cookie policies on the homepage. There is no public vulnerability disclosure or incident response information. WHOIS data is consistent and indicates a legitimate domain registration dating back to 2016, appropriate for the organization's history. Overall, fragFINN.de is a trustworthy, well-maintained educational platform with a strong focus on child safety and content quality. However, it would benefit from publishing explicit privacy and cookie policies, implementing security headers, and providing clear incident response contacts to enhance compliance and security posture.

B

Bezirksverband Pfalz

bv-pfalz.de

54

Bezirksverband Pfalz is a regional governmental organization in Germany focused on political administration, culture, education, health, and environmental protection within the Pfalz region. The website serves as an official portal providing information about its services, events, and regional initiatives. The organization maintains a moderate-sized digital presence with clear navigation and professional content tailored to residents and stakeholders in the region. Technically, the website is built on WordPress with several plugins including WooCommerce and The Events Calendar, supported by Matomo analytics respecting user privacy through consent mechanisms. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and accessible platform. Overall, the site reflects a trustworthy and compliant governmental entity with room for technical modernization and enhanced security policies.

The website www.sgit.se serves as a portal for Försäkringskassan's coordinated and secure state IT operations, offering standardized IT services tailored for Swedish government agencies. The site presents a professional and consistent brand image aligned with government standards, focusing on services such as application management, IT workplace solutions, and e-identity services for the public sector. The technical infrastructure is built on SiteVision CMS with jQuery and integrates Matomo analytics for user tracking. While the site is mobile-optimized and accessible, it lacks explicit privacy and cookie policies, and no security headers were detected, indicating areas for security enhancement. The absence of WHOIS data for the exact domain suggests it may be a subdomain or alias, but the strong association with Försäkringskassan supports its legitimacy. Overall, the site demonstrates a solid business and technical foundation with room for improved privacy compliance and security posture.

E

escape GmbH

escape-germany.de

65

escape GmbH is a German software development agency with over 20 years of experience specializing in digital enterprise platforms, workflow innovation, and intelligent marketing solutions. The company targets businesses and organizations seeking tailored digital tools and services, offering end-to-end project support from consulting to maintenance. Their market position is supported by a portfolio of reputable clients including BMW, Leica, and Vodafone. Technically, the website is built on the Cellms CMS platform, leveraging jQuery and includes modern analytics tools such as Google Analytics and Matomo. Mobile optimization and SEO are well addressed, though some accessibility features could be improved. Security posture is solid with HTTPS and cookie consent mechanisms in place, but could benefit from enhanced security headers and updated libraries. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Bildungswerk der Erzdiözese Freiburg

bildungszentrum-digital.de

10

The Digitales Bildungszentrum website serves as a digital platform for the Bildungswerk der Erzdiözese Freiburg, focusing on adult education through online workshops and media literacy programs. It targets adults, church employees, seniors, and families, providing educational content and interactive learning opportunities. The platform consolidates regional educational offerings into a centralized online presence, enhancing accessibility and engagement. Technically, the website employs a modern frontend stack including jQuery, Bootstrap-like components, FontAwesome, and is powered by the Edith CMS backend. It uses Matomo for analytics with respect to user cookie preferences, indicating a moderate level of digital maturity. The site is mobile-optimized and structured for good SEO and accessibility, though some accessibility features could be improved. From a security perspective, the site enforces HTTPS and respects user tracking preferences, but lacks visible security headers and explicit privacy or cookie policies. No vulnerability disclosures or incident response contacts are published, which could be improved to enhance trust and compliance. The WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the website is professional, trustworthy, and well-positioned within its niche but would benefit from enhanced privacy compliance and security documentation to align with best practices and regulatory requirements.

U

UNIZO

unizo.be

57

UNIZO is a Belgian organization focused on supporting entrepreneurs and business owners by providing membership benefits such as discounts on meal vouchers and other services. The website is built on Drupal 11 and integrates multiple analytics and marketing technologies including Matomo, Google Tag Manager, TikTok Pixel, and Cookiebot for GDPR-compliant cookie consent management. The site is professionally designed, mobile-optimized, and provides comprehensive privacy and cookie policies in Dutch. Security posture is good with HTTPS enforced and secure cookie usage, though security headers and incident response information are not explicitly found. WHOIS data is restricted by DNS Belgium, which is common for .be domains and does not raise immediate concerns. Overall, the website presents a trustworthy and professional digital presence for a large business support organization in Belgium.

P

PERSKIMEDIA Szymon Perski

swietlicawszkole.pl

56

Świetlica w Szkole is a specialized educational service targeting school daycare teachers in Poland, providing nearly 2000 practical materials including work plans, games, legal advice, and training. The website is operated by PERSKIMEDIA Szymon Perski and is supported by the publishing house Wydawnictwo Sukurs. It holds a strong market position as the first and leading resource of its kind in Poland, with a business model based on subscription access to educational content and training. The site is well-branded, professionally designed, and offers a rich user experience tailored to its niche audience. Technically, the website employs modern frontend technologies such as Vue.js and Bootstrap, integrates analytics tools like Matomo and Microsoft Clarity, and uses HTTPS with good SSL configuration. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. While security best practices are partially implemented, including CSRF tokens and HTTPS, the site lacks some security headers and explicit public security policies. From a security perspective, the site shows a moderate maturity level with no visible vulnerabilities or exposed sensitive data. However, the absence of a cookie consent mechanism and security headers slightly reduces its privacy compliance score. WHOIS data confirms the domain's legitimacy and long-term operation, consistent with the business claims. Overall, Świetlica w Szkole presents a trustworthy, professional, and content-rich platform with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

S

Stadt Burglengenfeld

burglengenfeld.de

59

The website www.burglengenfeld.de serves as the official municipal portal for the city of Burglengenfeld in Germany. It provides residents and visitors with comprehensive information about the city, local government services, tourism, cultural events, and administrative resources. The site is well-structured, primarily targeting local citizens and tourists, and operates under a government business model. The content is presented in German and is professionally maintained with consistent branding and clear navigation.

The Medienanstalt Berlin-Brandenburg (mabb) operates as the joint media regulatory authority for the German states of Berlin and Brandenburg. The organization focuses on ensuring media diversity, supporting local journalism, combating disinformation, and enhancing media literacy across all generations. Their services include media oversight, sustainable media funding, and public engagement through educational initiatives. The website reflects a professional and well-structured digital presence, leveraging modern web technologies and a reputable CMS (Contao). It is hosted behind Cloudflare, ensuring reliable DNS and security infrastructure. Privacy and cookie policies are comprehensive and GDPR compliant, with a clear consent mechanism implemented. Contact information is transparent, including physical address, phone numbers, and email, complemented by active social media channels on Facebook, LinkedIn, and Vimeo. Security posture is strong with HTTPS enforced, CSRF protection, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government-related media authority.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ)

bmbfsfj.de

11

The Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ) is a German federal government ministry focused on education, family, seniors, women, and youth policies. The website serves as an official information portal providing policy updates, publications, and public service tools targeted at a broad audience including families, seniors, and youth. It holds a strong market position as a government entity and offers comprehensive content with consistent branding and high trust indicators. Technically, the website employs a modern tech stack including Matomo for privacy-conscious analytics, custom JavaScript and CSS, and a proprietary or custom CMS. The site is hosted with DNS managed by the German Research Network, indicating a secure and reliable infrastructure. Performance and mobile optimization are good, with strong accessibility and SEO practices. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. While some advanced security headers are missing, no vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear policies and data retention rules. Contact information is available, enhancing business credibility. Overall, the website is professional, secure, and trustworthy, with no signs of blocking or WAF interference. It is safe for general audiences and aligns well with government standards. Strategic recommendations include enhancing security headers and publishing a vulnerability disclosure policy to further strengthen security posture.

G

Gemini | Demokratiestärker*innen

demokratiestaerkerinnen.de

10

The website demokratiestaerkerinnen.de represents GEMINI, a significant network within the German political youth education sector, affiliated with the Bundesausschuss Politische Bildung (bap e.V.). It serves as a platform for over 1,750 institutions focused on political education, democracy promotion, and youth participation. The site provides comprehensive information about the organization's mission, members, and activities, targeting educators, youth organizations, and stakeholders in political education. Technically, the site is built on Joomla CMS with UIkit framework and uses Matomo analytics, reflecting a modern and privacy-conscious infrastructure. Security posture is adequate with HTTPS and CSRF protections, but lacks some security headers and formal security policies. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned in its niche, though improvements in privacy disclosures and security headers are recommended.

I

Institut für Pastorale Bildung der Erzdiözese Freiburg KdöR

theologischer-kurs.de

44

Theologischer Kurs Freiburg is an educational initiative operated by the Institut für Pastorale Bildung der Erzdiözese Freiburg, offering a specialized theological course for adults and church volunteers. The course has a strong market position as the only diocesan theological course in Germany with a 50-year history, providing foundational theological knowledge and pathways to academic qualifications such as a Bachelor in Practical Theology. The website reflects a professional and consistent brand image aligned with its religious and educational mission. Technically, the website is built on the W-Commerce CMS platform, leveraging modern JavaScript libraries like jQuery and AblePlayer, and employs Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and performs moderately well. Hosting and DNS are managed by W-Commerce GmbH, consistent with the website's author metadata. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms, and restricts third-party content until user consent is given, demonstrating good privacy compliance. However, explicit security policies and incident response contacts are not found, representing areas for improvement. Overall, the website is trustworthy, safe, and well-suited for its target audience. Strategic recommendations include adding a security.txt file, incident response information, and enhancing security headers to further strengthen the security posture.

G

Geistliches Zentrum St. Peter

geistliches-zentrum.org

49

Geistliches Zentrum St. Peter is a German non-profit spiritual center offering a variety of programs including spiritual retreats, exercises, contemplations, training, and monastery tours. The website targets individuals interested in spiritual growth and religious education, positioning itself as a regional center for contemplative and educational services. Technically, the site is built on Edith CMS, uses jQuery and Bootstrap frameworks, and integrates Matomo for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which limits domain trust verification. Overall, the site is professional and trustworthy for its intended audience but could improve in privacy compliance and security best practices.

B

Bildungswerk der Erzdiözese Freiburg

bwerk.de

43

Bildungswerk der Erzdiözese Freiburg is a state-recognized institution specializing in Catholic adult education within the Erzdiözese Freiburg region in Germany. The organization provides open adult education services, including workshops, seminars, and community engagement programs, primarily targeting adults and volunteers in the Catholic community. The website reflects a professional and consistent brand presence with clear navigation and relevant content in German. Technically, the site uses Edith CMS, jQuery, Bootstrap, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and employs HTTPS with good security headers, although some improvements in privacy compliance and security disclosures are recommended. Overall, the website is trustworthy and well-positioned in its niche educational sector.

I

Institut für Religionspädagogik der Erzdiözese Freiburg

irp-freiburg.de

43

The Institut für Religionspädagogik der Erzdiözese Freiburg operates as a regional educational and consulting center supporting Catholic religious education across various school types and kindergartens within the Erzdiözese Freiburg region in Germany. The website serves as an information hub offering educational materials, news, and training opportunities tailored to educators and institutions involved in religious pedagogy. The business model focuses on educational support and resource provision, positioning itself as a trusted regional institute affiliated with the Erzdiözese Freiburg. Technically, the website is built on the Edith CMS platform, utilizing modern web technologies such as jQuery, Bootstrap, and Matomo analytics for user tracking. The site is mobile-optimized with good SEO practices and accessibility basics in place. Hosting and domain management appear professional, with consistent use of web commerce services for site management. From a security perspective, the site employs HTTPS with a good SSL configuration and respects user tracking preferences by disabling analytics if the user denies consent. However, there are gaps in privacy compliance, notably the absence of explicit privacy and cookie policies, and no visible incident response or vulnerability disclosure information. Security headers are minimal, and accessibility could be improved. Overall, the website presents a low-risk profile with a solid business credibility and technical foundation but would benefit from enhanced privacy compliance and security best practices to strengthen trust and regulatory adherence.

F

Fachstelle Geistliche Begleitung

geistliche-begleitung-ebfr.de

44

The website geistliche-begleitung-ebfr.de serves as the official online presence of the Diocesan Office for Spiritual Guidance within the Archdiocese of Freiburg, Germany. It provides comprehensive information about spiritual accompaniment services, including FAQs, step-by-step guidance, and a directory of spiritual guides categorized by region. The target audience is primarily German-speaking individuals seeking spiritual guidance within the Roman Catholic tradition. The business operates as a non-profit religious service affiliated with the Archdiocese, positioning itself as a niche provider in the regional religious sector. Technically, the website is built on the Edith CMS platform and hosted on infrastructure associated with w-commerce.de. It employs modern web technologies including jQuery, Bootstrap, and AOS for animations, with Matomo analytics integrated for user tracking while disabling cookies to respect privacy. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO optimization is present but could be enhanced. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several recommended security headers and does not implement a cookie consent mechanism, which is important for GDPR compliance. No explicit security or incident response policies are published. The WHOIS data indicates a consistent domain registration aligned with the hosting provider, supporting legitimacy. Overall, the website is professional, trustworthy, and well-structured, serving its informational and community role effectively. Strategic improvements in privacy compliance, security headers, and transparency policies would enhance its security posture and regulatory adherence.

E

Erzdiözese Freiburg KdöR, Referat Pastoralpsychologie im Institut für Pastorale Bildung

pastoralpsychologie-freiburg.de

10

The website pastoralpsychologie-freiburg.de represents the Referat Pastoralpsychologie, a department within the Institut für Pastorale Bildung affiliated with the Erzdiözese Freiburg. It offers educational and counseling services focused on pastoral psychology and seelsorgliche Kommunikation (pastoral care communication). The target audience includes both full-time and volunteer church workers seeking training and supervision in pastoral counseling. The site positions itself as a niche educational provider within the religious and non-profit sector in Germany. Technically, the website is built on the Edith CMS platform, utilizing modern JavaScript libraries such as jQuery and Bootstrap components for responsive design. It employs Matomo analytics, reflecting a privacy-conscious approach to user tracking. The site is hosted professionally with HTTPS enforced, ensuring secure data transmission. However, some modern security headers are missing, and no cookie consent mechanism is implemented, which could be improved for compliance. From a security perspective, the site shows good practices such as email obfuscation and HTTPS usage. There is no evidence of exposed vulnerabilities or sensitive data leakage. The absence of an incident response page or vulnerability disclosure policy is a gap. The WHOIS data indicates a legitimate domain with consistent hosting but lacks detailed registrant information, which slightly reduces trust but is not uncommon for small non-profit entities. Overall, the website is professional, trustworthy, and serves its educational mission well. Strategic improvements in privacy compliance and security headers would enhance its posture and user trust.

B

Beratungsdienst Familie & Betrieb der KLB Freiburg

familie-und-betrieb.de

44

Beratungsdienst Familie & Betrieb der KLB Freiburg is a non-profit agricultural family advisory service affiliated with the Catholic Land Movement in the Freiburg Archdiocese. It provides confidential, cost-free counseling to agricultural families facing challenges such as succession, family conflicts, financial difficulties, and health issues. The website offers detailed information about its services, partners, publications, and contact options, primarily targeting German-speaking agricultural communities in Germany, Austria, and Switzerland. Technically, the site is built on Edith CMS, uses jQuery and Bootstrap frameworks, and integrates Matomo analytics with privacy-conscious settings. Security posture is good with HTTPS and some security headers, though improvements like cookie consent and security.txt are recommended. The domain registration and hosting align well with the business profile, indicating legitimacy and consistency.

D

Deutscher Caritasverband e. V.

caritas.de

10

Deutscher Caritasverband e. V. operates the website caritas.de as a leading non-profit social welfare organization in Germany. The website serves as a comprehensive platform offering social counseling, advice, campaigns, job listings, and informational resources targeting the general public and vulnerable groups. The organization maintains a strong market position as the Catholic Church's welfare association in Germany, providing extensive social services and support. Technically, the website employs a mature tech stack including AngularJS, jQuery, and Matomo analytics, hosted on a CMS platform likely CariNet. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and professional design. Security posture is good with HTTPS and consent management in place, though some security headers and explicit policies are missing. Overall, the domain and WHOIS data align well with the organization's identity, indicating legitimacy and trustworthiness.

R

Referat Ehe-Familie-Diversität im Erzbistum Freiburg

eintagfueruns.de

46

The website 'Heiraten in der Erzdiözese Freiburg' serves as an official informational platform managed by the Referat Ehe-Familie-Diversität within the Archdiocese of Freiburg. It provides comprehensive resources, event listings, and guidance for couples preparing for a church wedding, focusing on the Catholic and ecumenical communities in Germany. The site is well-positioned as a niche regional service provider with a clear target audience and a consistent brand identity aligned with the Archdiocese's mission. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and the Edith CMS platform, hosted likely by w-commerce.de. It integrates Matomo analytics with privacy-conscious configurations, though it lacks a cookie consent mechanism. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements in security headers and privacy compliance are recommended. From a security perspective, the site uses HTTPS with a solid SSL configuration and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data aligns well with the website's purpose and hosting, indicating a legitimate and trustworthy domain. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic enhancements in privacy compliance and security best practices would further strengthen its posture.

L

LearningApps.org

learningapps.org

52

LearningApps.org is an established educational platform founded in 2010, offering interactive and multimedia learning blocks aimed at educators and students. The platform operates primarily as a free service supported by donations, focusing on providing customizable educational apps and collections to enhance learning experiences. The website is professionally designed with consistent branding and clear navigation, targeting a global audience with multilingual support. Technically, the site uses a custom CMS with a technology stack including jQuery, Bootstrap, Font Awesome, and Matomo analytics, hosted by netcup GmbH. While the performance and mobile optimization are moderate, the site maintains a good level of accessibility and SEO basics. Security-wise, the site enforces HTTPS and uses secure login iframes but lacks DNSSEC and modern security headers, and it uses an outdated jQuery version, which could pose risks. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism. Overall, the website is trustworthy and safe for general audiences, with room for improvement in security and privacy practices.

L

Lunds universitet

lu.se

61

Lunds universitet is a prestigious public university in Sweden, founded in 1666, and consistently ranked among the top 100 universities worldwide. The website serves a broad audience including students, researchers, academic staff, and the general public, providing comprehensive information about education programs, research, student services, and international collaboration. The digital presence is built on a modern Drupal 10 CMS platform, with good mobile optimization, accessibility, and SEO practices. The site uses Matomo analytics with privacy-respecting configurations and implements a cookie consent mechanism in compliance with GDPR. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be explicitly confirmed and enhanced. WHOIS data for the www.lu.se subdomain is missing, which is not uncommon for subdomains, and does not detract from the site's legitimacy given the strong branding and content quality. Overall, the website reflects a mature, professional, and trustworthy digital asset for Lund University.

A

AUTOCOMMERCE, d.o.o.

autocommerce.si

53

AUTOCOMMERCE, d.o.o. is a medium-sized Slovenian company acting as the official general representative of Daimler Truck AG brands including Mercedes-Benz Trucks, Setra, Omniplus, Unimog, and Fuso. The company focuses on sales, servicing, and parts supply for heavy trucks, specialized vehicles, and buses, targeting transport companies, public transport providers, and public sector clients. The website is professionally designed, well-structured, and localized in Slovenian, reflecting a strong brand alignment with Daimler Truck AG. Technically, the site uses Adobe Experience Manager CMS, integrates modern consent management (Usercentrics), and employs Matomo for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates high business credibility and good privacy compliance, supporting trust and user engagement.

A

Anyday

anyday.io

70

Anyday.io is a Danish-based financial technology company specializing in interest-free payment installment services integrated with over 1,500 online shops. Their business model focuses on enabling consumers to split payments into four parts without fees, with merchants bearing the cost. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Webflow CMS, Matomo analytics, and Weglot for multilingual support. Privacy compliance is strong, with a detailed cookie consent mechanism and a comprehensive privacy policy. However, the site lacks visible contact information and a terms of service page, which slightly impacts business credibility. Security posture is solid with HTTPS and reputable third-party tools, though explicit security headers and policies are not fully documented. WHOIS data is privacy protected, which is typical for financial services. Overall, the site presents a trustworthy and professional front for a fintech service in the Nordic market.

A

a. hartrodt

hartrodt.com

47

a. hartrodt is a large, established international logistics and transport company with over 2,000 employees and a global network spanning more than 100 locations. Their business focuses on providing comprehensive transport and forwarding services including sea freight, airfreight, land transport, project logistics, and warehousing. The company emphasizes reliability and customer service, offering tracking and tracing capabilities to ensure shipment visibility. Technically, the website is well-constructed with modern web technologies including SVG icons and Matomo analytics for privacy-respecting user tracking. The site is mobile-optimized and accessible, with good SEO practices and a professional design. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and published security policies are absent. The WHOIS data is unavailable from the queried source, which raises some concerns about domain registration transparency. However, the professional presentation, comprehensive content, and consistent branding strongly indicate a legitimate and trustworthy business. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the website represents a mature digital presence for a global logistics provider with minor areas for improvement in security transparency and WHOIS data availability.

P

PERSKIMEDIA Szymon Perski

dydaktyczne.pl

54

Dydaktyczne.pl is a Polish educational e-commerce website specializing in the sale of didactic posters and teaching aids for schools, preschools, and libraries. The company, registered as PERSKIMEDIA Szymon Perski, offers a wide range of educational materials aligned with the current curriculum, targeting children and youth across various educational levels. The website demonstrates a solid market position within the Polish educational sector, supported by professional graphic design and a comprehensive product catalog. Technically, the site employs modern JavaScript frameworks such as Vue.js and Bootstrap, with integrated analytics tools including Matomo and Google Tag Manager, reflecting a mature digital infrastructure. Security posture is good with HTTPS enabled and CSRF protections, though improvements such as DNSSEC and CSP headers are recommended. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website is trustworthy, professional, and well-suited for its educational audience.

W

Wydawnictwo Sukurs

bibliotekawszkole.pl

51

Biblioteka.pl is a well-established Polish educational portal and magazine primarily serving school librarians and teachers. It offers a subscription-based model providing access to educational articles, training, community forums, and downloadable resources. The website is professionally designed with a consistent brand and targets the education sector in Poland. The domain has been active since 1999, reinforcing its credibility and market presence. Technically, the site uses modern JavaScript frameworks like Vue.js, integrates analytics tools such as Matomo and Google Tag Manager, and employs Cloudflare's Turnstile captcha for bot protection. Security measures are adequate with HTTPS enforced and security headers present, though DNSSEC is not enabled. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Contact information is primarily via forms and editorial pages, with no explicit emails or phone numbers publicly listed. Overall, the site demonstrates a mature digital infrastructure and a strong business credibility in the educational publishing niche.