Security Directory

K

Krytox™ Lubricants

krytox.de

67

Krytox™ Lubricants is a specialized industrial brand offering high-performance lubricants and greases designed for extreme conditions and demanding industries such as aerospace, automotive, chemical processing, electronics, and paper manufacturing. The website reflects a mature B2B business model under the Chemours parent company, targeting industrial manufacturers and OEMs globally. The site is multilingual and provides extensive product information, technical literature, and sales support resources. Technically, the website employs modern tracking and analytics tools including Google Tag Manager and Microsoft Application Insights, and is hosted with reliable DNS infrastructure. The site is well-optimized for SEO, mobile, and accessibility, with a professional design and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and published security policies are absent. Overall, the domain and website appear legitimate and trustworthy with no signs of malicious activity or content blocking.

S

Startnext

startnext.de

71

Startnext is a well-established German crowdfunding platform founded in 2010, focusing on supporting creative, sustainable, and community-driven projects. The platform offers project hosting, promotion, and community engagement services, positioning itself as a trusted player in the crowdfunding space within German-speaking markets. The website is professionally designed with consistent branding and provides comprehensive privacy and cookie policies compliant with GDPR. Technically, the site uses a modern JavaScript stack with libraries such as jQuery, GSAP, and Swiper, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the platform demonstrates a high level of trustworthiness and professionalism.

A

ARD

ard.de

61

ARD is a major German public broadcasting organization providing a wide range of media services including news, sports, podcasts, and children's programming. The website serves as a portal linking to various ARD brands and partner broadcasters, reflecting a strong market position in the German media landscape. The business model is publicly funded broadcasting, targeting a general audience with diverse content offerings. Technically, the website uses modern web technologies such as React and is optimized for mobile devices, though some accessibility features could be improved. Security posture is moderate with no visible security headers or explicit policies, and privacy compliance is good with a comprehensive privacy policy but lacking a cookie consent mechanism. Overall, the site is professional and trustworthy, with strong business credibility but room for technical and security enhancements.

H

hr werbung GmbH

hr-werbung.de

46

hr werbung GmbH operates as the advertising and sponsorship division of Hessischer Rundfunk, providing radio and television advertising services primarily in the Hessen region of Germany. The company offers targeted radio advertising, sponsoring opportunities, spot production, and licensing services, positioning itself as a key regional media advertising provider. The website reflects a professional and well-structured digital presence with comprehensive service information and legal documentation.

H

Hessischer Rundfunk

hr-rundfunkrat.de

59

The website hr-rundfunkrat.de represents the Rundfunkrat (Broadcasting Council) of the Hessischer Rundfunk, a public broadcasting entity in Germany. It serves as an oversight and governance body ensuring compliance with legal mandates and advising the broadcaster's management. The site provides comprehensive information on governance, meetings, committees, press releases, and contact options, targeting the general public and stakeholders interested in media oversight in Hessen. Technically, the site employs modern web technologies including Alpine.js, Modernizr, and Piano Analytics for analytics, with a CMS identified as hrcms-delivery 4.26.0. The hosting is managed via sec-provider.de, and the site is well-optimized for mobile and accessibility. Security measures include HTTPS, Content Security Policy, and polyfills for legacy browser support, though additional security headers could enhance protection. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is evident through a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. Analytics usage is moderate with user privacy controls available. No incident response or vulnerability disclosure policies were found. Overall, the website is professional, trustworthy, and well-maintained, reflecting the public service nature of the organization. Strategic recommendations include enhancing security headers, maintaining up-to-date third-party libraries, and possibly publishing explicit security and incident response policies to further strengthen trust and compliance.

H

Hessischer Rundfunk

hr-bigband.de

59

The hr-bigband.de website represents the hr-Bigband, a prestigious jazz big band affiliated with Hessischer Rundfunk, a major German public broadcasting organization. The site provides comprehensive information about concerts, educational programs, media content, and news related to the band. It targets jazz enthusiasts and cultural audiences primarily in Germany. The business model focuses on cultural promotion and event organization within the public media sector. The website is professionally designed with consistent branding and rich content, reflecting a strong market position in the media and cultural domain.

H

Hessischer Rundfunk

hr-sinfonieorchester.de

59

The hr-sinfonieorchester.de website represents the official online presence of the hr-Sinfonieorchester, a classical symphony orchestra under the Hessischer Rundfunk media organization in Germany. The site offers comprehensive information about concerts, livestreams, educational programs, and media content, targeting classical music enthusiasts and cultural audiences. The business model focuses on cultural event promotion, education, and media dissemination, positioning the orchestra as a key regional cultural institution.

H

Hessischer Rundfunk

hr-fernsehen.de

57

Hessischer Rundfunk operates hr-fernsehen.de as a regional public broadcasting platform providing TV programming, video on demand, livestreams, recipes, and weather information primarily for the Hessen region in Germany. The website is professionally designed with excellent content quality and user experience, targeting a broad general audience. The technical infrastructure leverages modern JavaScript frameworks, analytics tools, and a custom CMS, hosted on secure servers with appropriate HTTPS and security headers. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Security posture is strong with no critical vulnerabilities detected, though some enhancements to security headers and explicit incident response policies could improve resilience. Overall, the website is trustworthy, well-maintained, and aligned with the organization's public service mission.

H

Hessischer Rundfunk

you-fm.de

63

YOU FM is a public radio station operated by Hessischer Rundfunk, serving a broad German audience with music, podcasts, events, and news. The website demonstrates a mature digital presence with modern technologies, responsive design, and rich multimedia content. It integrates social media and external news sources to enhance user engagement. The technical infrastructure is robust, leveraging custom CMS and advanced media players, ensuring good performance and accessibility. Security posture is solid with HTTPS and Content Security Policy, though some security headers could be improved. Privacy compliance is limited due to missing explicit privacy and cookie policies in the analyzed content. Overall, the site is trustworthy and professional, reflecting a reputable public broadcaster.

H

Hessischer Rundfunk

hr-inforadio.de

63

hr INFO is a professional public broadcasting information radio service operated by Hessischer Rundfunk, serving the Hessen region in Germany. The website offers news, analyses, opinions, podcasts, livestreams, and event information targeted at a general audience interested in regional and national current affairs. The site is well-branded and consistent with the parent organization's identity, reflecting a strong market position in regional media.

H

Hessischer Rundfunk

hr4.de

60

The website hr4.de is the official online presence of hr4, a radio station operated by Hessischer Rundfunk, a major public broadcaster in Germany. It targets the 50+ generation with positive lifestyle content, music, and community engagement. The site offers rich multimedia content including radio streaming, podcasts, recipes, and event information, reflecting a mature and well-established media entity. The branding and structured data confirm its authenticity and regional focus on Hessen, Germany. Technically, the site uses modern web technologies such as Alpine.js, Piano Analytics, and ARD Player, hosted on professional infrastructure with secure HTTPS connections and some security headers. However, explicit privacy and cookie policies are not detected in the provided content, which is a compliance gap. No security policy or incident response information is available, limiting transparency in security posture. Overall, the site is professionally designed, user-friendly, and trustworthy, but could improve privacy compliance and security disclosures.

H

Hessischer Rundfunk

hr3.de

64

The website hr3.de is the official online presence of hr3, a public radio station operated by Hessischer Rundfunk, serving the Hessen region in Germany. It offers a comprehensive range of services including music broadcasting, news updates, podcasts, event information, and traffic and weather reports. The site targets listeners in Hessen and provides rich multimedia content with a focus on regional relevance. The business model is that of a public broadcaster, supported by the parent organization Hessischer Rundfunk, with a strong market position in regional media.

H

Hessischer Rundfunk

hr2.de

52

The website hr2.de is the official online presence of Hessischer Rundfunk's hr2-kultur radio channel, a public cultural radio broadcaster in Hessen, Germany. It offers a rich variety of cultural programming including classical music, podcasts, audio on demand, and event information. The site is professionally designed with consistent branding and targets a general audience interested in cultural content. The business model is that of a public broadcaster, supported by the parent organization Hessischer Rundfunk.

H

Hessischer Rundfunk

hr1.de

68

The website www.hr1.de is the official online presence of hr1, a public radio program operated by Hessischer Rundfunk, a major public broadcaster in Hessen, Germany. The site offers a rich mix of content including radio programming, news, podcasts, events, and recipes, targeting the Hessen regional audience and German-speaking listeners. The business model is that of a public media service, focusing on providing entertainment and information with a strong regional identity. The website is professionally designed with consistent branding and high-quality content, reflecting a large and established media organization.

H

Hessischer Rundfunk

hessenschau.de

63

Hessenschau.de is a professional regional news portal operated by Hessischer Rundfunk, the public broadcaster for the German state of Hessen. The website provides comprehensive news coverage including weather, traffic, sports, and politics, supported by multimedia content such as videos and audio. It serves a general audience interested in regional news and information. The site demonstrates strong branding consistency and high content quality, reflecting its position as a trusted media source in the region. Technically, the website employs modern JavaScript frameworks like Alpine.js and uses ARD Player for media content delivery. It is hosted on secure infrastructure with HTTPS and Content Security Policy headers implemented, ensuring good security posture. The site is mobile-optimized and accessible, with good SEO practices evident from meta tags and structured data. Analytics tools such as Piano Analytics and Xiti are used for user behavior tracking, with moderate user tracking levels. Security-wise, the site follows best practices with HTTPS and security headers but lacks explicit published security policies or vulnerability disclosure mechanisms. Privacy compliance is partial, as no explicit privacy or cookie policies were found in the provided content, which could be improved to enhance user trust and regulatory compliance. Overall, Hessenschau.de is a high-quality, trustworthy regional news platform with solid technical infrastructure and security measures. Strategic improvements in privacy transparency and security policy publication would further strengthen its compliance and user confidence.

S

Spielwarenmesse eG

spielwarenmesse.de

65

Spielwarenmesse eG operates the world's largest toy fair in Nuremberg, Germany, serving as a central platform for the toy industry. The website provides comprehensive information for visitors, exhibitors, and journalists, showcasing new trends, product groups, and event details. The company holds a strong market position as a leading trade fair organizer in the retail sector, with a large-scale, professional digital presence. Technically, the site is built on TYPO3 CMS, integrates modern analytics and marketing tools, and employs a robust consent management platform ensuring GDPR compliance. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and well-optimized for performance and accessibility.

A

Autophorie

autophorie.de

46

Autophorie.de is a German automotive media website specializing in car reviews, video test drives, and automotive features. The site targets automotive enthusiasts and general consumers interested in detailed and engaging automotive content. It maintains a niche position in the German automotive media landscape, leveraging video content and expert reviews to attract its audience. Technically, the website is built on WordPress using the Twenty Fifteen theme, enhanced with SEO and GDPR compliance plugins such as Yoast SEO and Complianz. Hosting is provided by Bananabyte, a German hosting provider, ensuring regional consistency. The site demonstrates good mobile optimization, moderate performance, and solid SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. However, no explicit terms of service or security policy pages were found. Overall, the website is professional, trustworthy, and safe for general audiences.

T

Tee & Gewürzecke Lux

tee-gewuerze-lux.de

46

Tee & Gewürzecke Lux is a small, well-established retail business based in Weißenburg, Germany, specializing in a diverse range of teas, spices, regional delicacies, and gift products. Founded in 1979, it enjoys a loyal local customer base and emphasizes personalized service and high-quality products. The website reflects this focus with clear product descriptions and social media integration but lacks advanced digital marketing or e-commerce features. Technically, the site is built with standard web technologies and hosted via a German provider, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled, but the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and protection. Overall, the business presents a trustworthy and professional image online, though enhancements in privacy compliance and security policies would strengthen its digital maturity.

The website stirlingmoss.de is a professionally designed informational site dedicated to the exclusive Mercedes-Benz SLR McLaren Stirling Moss (Z199) sports car. It targets enthusiasts and collectors interested in this limited edition vehicle, providing detailed descriptions, high-quality images, and downloadable manufacturer documentation. The site is hosted on German infrastructure and references Mercedes-Benz Group AG as the rights holder for images and content, lending credibility to the business representation. Technically, the site uses standard web technologies (HTML5, CSS3, JavaScript) with moderate performance and good mobile optimization. However, it lacks advanced security headers and visible privacy compliance mechanisms such as cookie consent banners. No contact or incident response information is provided, which limits user engagement and trust in security matters. Overall, the site is safe, free of adult or questionable content, and serves as a niche marketing and informational platform for a luxury automotive product.

D

der Freitag

freitag.de

57

Der Freitag is a German weekly newspaper focusing on politics, economy, and culture, serving a German-speaking audience interested in these topics. The website acts as a digital platform for the newspaper, offering news articles and subscription services. The business model centers on media publishing with a strong digital presence, positioning itself as an established player in the German media landscape. The company targets readers seeking in-depth political and cultural content. Technically, the website uses a modern stack including Plone CMS, Google Tag Manager, Matomo analytics, and advanced header bidding technologies for advertising. Consent management is implemented via Sourcepoint, indicating GDPR compliance efforts. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers are not explicitly detected. Privacy compliance is supported by consent mechanisms but lacks explicit privacy and terms of service pages. Overall, the website is professional, trustworthy, and well-optimized for mobile users. Recommendations include publishing clear privacy and security policies, enhancing security headers, and providing contact information for improved transparency and compliance.

H

Hessischer Rundfunk

hr.de

63

Hessischer Rundfunk (hr) is the official public broadcasting institution for the German state of Hessen and a founding member of the ARD consortium. The website hr.de serves as a comprehensive portal for news, cultural programming, radio and television services, and public information. It targets the general public in Hessen and Germany, offering a wide range of media content including live streams, press releases, event information, and career opportunities. The business model is publicly funded broadcasting, emphasizing transparency and public service.

G

GALORE

galore.de

44

GALORE is a German interview magazine focused on cultural, societal, and lifestyle topics, offering authentic and insightful interviews with notable personalities. The website serves as a platform for magazine subscription, cultural articles, and newsletters, targeting a general audience interested in culture and society. The business operates in the media sector with a niche market position and a small company size. Technically, the website uses modern web technologies including Bootstrap and Owl Carousel, with Google Analytics for user tracking. The site is mobile optimized and has good SEO practices, though no CMS is explicitly identified. Security posture is solid with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and a cookie consent mechanism, which impacts privacy compliance. No explicit contact information or security policies are published, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and safe for general audiences.

M

MAGNET Werkstatt für Verständigung

demoslam.org

59

demoSlam.org is a German-based educational non-profit organization focused on facilitating dialogue and understanding among people with differing opinions through their demoSlam dialog format. The website presents a professional and consistent brand with clear descriptions of their services, events, and educational offerings. Their market position is niche, targeting individuals and organizations interested in social cohesion and dialogue facilitation. Technically, the site is built on the Tilda CMS platform, leveraging modern web technologies and providing a mobile-optimized experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers and DNSSEC could improve resilience. Privacy compliance is supported by GDPR-consistent consent mechanisms and a privacy policy, though terms of service and security policies are absent. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

3

3E Company

3eonline.com

69

3E Company operates a suite of specialized software platforms focused on chemical management, product notification, compliance, and supply chain sustainability. The company targets businesses requiring regulatory compliance and chemical safety management solutions, positioning itself as an established provider in this niche market. The website serves as a portal hub linking to various client login areas and informational resources hosted primarily on the parent domain 3eco.com. Technically, the site employs modern web technologies including Bootstrap, jQuery, and analytics tools such as Heap and ContentSquare, indicating a moderate level of digital maturity. However, the absence of structured data and limited SEO optimization suggest room for improvement. Security posture is adequate with HTTPS implied and monitoring scripts in place, but lacks visible security headers and cookie consent mechanisms, which are important for compliance and protection. The WHOIS data is unavailable, raising some concerns about domain registration legitimacy, though the business presence and external links support authenticity. Overall, the site is professional and functional but would benefit from enhanced security and privacy compliance measures.

T

The Chemours Company

viton.com

63

The Viton™ website represents a high-performance fluoroelastomer brand operated by The Chemours Company, a large and established chemical manufacturing entity. The site provides comprehensive product information, industry applications, technical resources, and sales support aimed at industrial and manufacturing sectors such as automotive, aerospace, chemical processing, and oil and gas. The brand is positioned as a leader in durable, chemical-resistant elastomer products, targeting engineers and industrial buyers. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and Microsoft Application Insights for analytics and performance monitoring. It is well-structured with responsive design and accessibility considerations, delivering a professional user experience. The site uses HTTPS and secure external resources but lacks explicit security headers and a published security policy or incident response contacts. From a security perspective, the site shows good practices with no visible vulnerabilities or exposed sensitive data. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanisms. However, the absence of a vulnerability disclosure program or security.txt file is noted. WHOIS data for the domain is unavailable publicly, likely due to privacy or registrar policies, but the site’s corporate affiliation and branding strongly support legitimacy. Overall, the website is professionally maintained, secure, and compliant with privacy standards, serving a clear B2B industrial market. Strategic recommendations include enhancing security headers, publishing incident response information, and improving transparency around vulnerability disclosures to further strengthen trust and security posture.

K

Krytox™ Lubricants

krytox.com

69

Krytox™ Lubricants is a specialized brand offering high-performance lubricants designed for extreme industrial conditions, serving sectors such as aerospace, automotive, and manufacturing. The brand operates under the parent company Chemours and positions itself as a leader in durable and sustainable lubricant solutions. The website reflects a mature digital presence with comprehensive product and industry information, supported by modern analytics and consent management technologies. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response details are not published. The absence of WHOIS registration data is a notable gap but does not detract significantly from the overall legitimacy given the strong brand association and professional web presence. Strategic recommendations include publishing detailed security and incident response policies and adding vulnerability disclosure mechanisms to enhance trust and compliance.

C

Chemours Company

opteon.com

70

The Opteon website represents a professional and well-maintained digital presence for the Opteon brand, which is a part of the Chemours Company. The business focuses on providing sustainable, high-performance refrigerants and specialty fluids with low global warming potential, targeting industrial and commercial sectors such as refrigeration, air conditioning, automotive, electronics, and specialty chemical applications. The website supports multiple languages, indicating a global market reach and a B2B business model. The content is relevant, well-structured, and aligned with the brand's sustainability messaging. From a technical perspective, the website employs modern web technologies including HTML5, CSS3, JavaScript, Google Tag Manager, and Microsoft Application Insights for analytics and monitoring. The site is mobile-optimized, accessible, and SEO-friendly, with proper meta tags and structured navigation. Security posture is strong with HTTPS enforced and standard security headers likely in place, although explicit CSP headers were not confirmed in the HTML. The site includes a cookie consent mechanism and privacy policy consistent with GDPR compliance. Security-wise, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy, incident response information, or vulnerability disclosure page suggests room for improvement in transparency and security communication. The WHOIS data for the domain www.opteon.com is missing or unavailable, which is unusual but does not appear to impact the legitimacy given the strong corporate branding and association with Chemours. Overall, the website scores well in content quality, technical implementation, security posture, privacy compliance, and business credibility. Strategic recommendations include publishing a security policy and vulnerability disclosure, enhancing security header implementation, and ensuring WHOIS data transparency to improve trust and compliance further.

CloudPit is a cloud platform service operated under dogado GmbH, a German company established in 2015. The website analyzed is primarily a login portal for users to access cloud infrastructure management services. The business targets IT professionals and organizations requiring cloud hosting and management solutions. The platform appears to be a niche player in the cloud technology sector with a medium-sized company profile. Technically, the website employs standard web technologies including JavaScript and CSS, with scripts loaded from its own domain. The site uses HTTPS with a valid CSRF token for form security, but lacks advanced security headers and visible privacy or cookie policies. The site is moderately optimized for performance and mobile use but could improve accessibility and SEO features. From a security perspective, the site demonstrates basic good practices such as HTTPS and CSRF protection but lacks DNSSEC and security headers that would enhance protection. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a consistent and legitimate domain registration with no privacy protection, matching the business location and entity. Overall, the website is functional and trustworthy but would benefit from enhanced privacy compliance, security hardening, and more comprehensive business transparency. Strategic improvements in these areas would strengthen user trust and regulatory compliance.

D

Datatrans

datatrans.com

61

Datatrans is a Swiss-based payment solutions provider offering a flexible and customizable payment platform tailored for companies demanding advanced payment capabilities. The website presents a professional image with consistent branding and a clear focus on payment services, targeting business clients. The technical infrastructure leverages modern web technologies including Vue.js, and integrates reputable analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Cookiebot for privacy compliance. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and CSRF protection, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates good digital maturity and compliance with GDPR, supporting trustworthiness and business credibility.

The website bonnespratiquestms.fr is a specialized platform focused on the prevention of musculoskeletal disorders (TMS) among cordistes, professionals working at heights using ropes. It is supported by OPPBTP and partners such as France Travaux sur Cordes, providing practical fiches, resources, and tools to improve occupational health and safety in the construction sector in France. The platform targets cordistes and safety professionals, offering educational content and prevention best practices. Technically, the site uses modern JavaScript libraries, Google Tag Manager, reCAPTCHA v3, and a consent management platform (Didomi), hosted on GANDI infrastructure. The site is mobile-optimized with good SEO and accessibility basics. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not published. The WHOIS data shows an anomalous future domain creation date, which reduces trust from a domain registration perspective but does not detract from the professional content and partner associations. Overall, the site is a credible resource in its niche with room for improvement in transparency and security documentation.

1

1&1 Telecom GmbH

1und1.de

72

1&1 Telecom GmbH is a major telecommunications provider in Germany offering a comprehensive range of internet and mobile telephony services. The company operates under the umbrella of United Internet AG and has a strong market presence with a focus on private and business customers. Their website reflects a professional and modern digital presence, leveraging advanced web technologies and a robust content management system (Neos CMS). The site is well-optimized for mobile devices and provides clear navigation and comprehensive service information. Security-wise, the website enforces HTTPS, employs secure form handling, and integrates reputable third-party analytics and marketing tools. Privacy compliance is well addressed with detailed policies and consent mechanisms, aligning with GDPR requirements. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity, supporting the company's enterprise-level stature in the telecommunications sector.

The website amzcon.de presents itself as a German-language deal aggregator offering discounted products across multiple categories such as electronics, home & kitchen, beauty, clothing, and toys. The business model appears to be affiliate marketing, leveraging Amazon product links to generate revenue. The domain is currently marked as for sale, and WHOIS data indicates the domain is unregistered or expired, which raises concerns about the legitimacy and continuity of the business. Technically, the site uses modern HTML5, CSS3, and JavaScript with Google Fonts integration and basic client-side search functionality. However, there is no evidence of HTTPS enforcement or security headers, and no privacy or cookie policies are present, indicating poor compliance with data protection regulations. Security best practices such as delayed activation of affiliate links to prevent bot clicks are observed, but overall security posture is weak due to missing HTTPS and security headers. The site contains no adult or explicit content and targets general consumers looking for deals. Overall, the site is functional but lacks critical trust and compliance elements, and the domain status undermines its credibility.

pretixstatus.com serves as the official system status page for the pretix event ticketing platform, providing real-time operational status updates. The website is minimalistic, focusing on clear communication of system uptime and support contact information. The business operates in the technology sector, specifically targeting event organizers requiring ticketing solutions. The domain is newly registered in early 2024, consistent with a dedicated status subdomain for the pretix platform. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with no detected CMS or complex frameworks. Hosting is likely provided by IONOS SE, the domain registrar. The site is mobile optimized with good navigation clarity but lacks advanced SEO and accessibility features. No analytics or advertising scripts are present, indicating a privacy-conscious approach. From a security perspective, the domain uses HTTPS (implied by modern web standards though SSL details are not explicit), has domain transfer protection enabled, but lacks DNSSEC and security headers. No forms or user input fields reduce attack surface. The absence of explicit security policies or incident response contacts suggests room for improvement in transparency and preparedness. Overall, pretixstatus.com is a trustworthy and professional status page with a good baseline security posture and privacy compliance. Strategic enhancements in security headers, DNSSEC, and published security policies would strengthen its resilience and user trust.

V

Venueless

venueless.org

69

Venueless is a technology company founded in 2020 that provides a SaaS platform for hosting digital, hybrid, and on-site events. Their platform supports live streaming, workshop rooms with chat, integrated scheduling, and a kiosk mode for hybrid events. The company targets event organizers and conference planners seeking versatile and scalable event solutions. The website demonstrates a strong market position with ISO 27001 certification and GDPR compliance, supported by client testimonials and open source transparency. Technically, the website uses modern web technologies including Bootstrap, FontAwesome, and Matomo analytics for privacy-conscious user tracking. The site is mobile optimized, well-structured, and performs moderately well. Hosting and domain registration are consistent and reputable, with no blocking or WAF interference detected. From a security perspective, Venueless shows maturity with ISO 27001 certification and GDPR compliance. HTTPS is enforced, forms are protected with CSRF tokens, and no obvious vulnerabilities or exposed sensitive data were found. However, DNSSEC is not enabled and security headers are not explicitly detected, representing areas for improvement. Incident response contact details and vulnerability disclosure mechanisms are not publicly available. Overall, Venueless presents a trustworthy, professional, and secure digital event platform with good privacy practices. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and publishing incident response contacts to further enhance security and compliance posture.

P

pretix

pretix.cloud

72

pretix is a technology company specializing in event ticketing software, offering a comprehensive platform that includes online ticket shops, box office solutions, and various event management tools. The company targets event organizers across multiple sectors such as conferences, festivals, concerts, and exhibitions. With over 1000 customers and ISO 27001 certification, pretix holds a strong market position as a secure and privacy-focused ticketing solution provider. The website reflects a professional and consistent brand image with clear navigation and extensive product offerings. Technically, pretix employs modern web technologies including Matomo analytics for privacy-conscious tracking, SVG graphics for UI, and a REST API for extensibility. The site is well-optimized for performance and mobile devices, providing a good user experience. Security-wise, pretix demonstrates strong practices with HTTPS enforcement and ISO certification, though it lacks some security headers and a public vulnerability disclosure policy. Contact information is clearly presented, supporting business credibility. Overall, pretix presents a trustworthy and mature digital presence with minor areas for compliance and security enhancement.

R

rami.io GmbH

rami.io

65

rami.io GmbH is a small German software development company founded in 2013 by Raphael Michel, specializing in bespoke software projects and notably the pretix ticketing solution. The company is undergoing a rebranding to pretix GmbH in July 2025, reflecting its strategic focus on the ticketing market. The website content is professional, well-structured, and targeted at businesses and organizations requiring software and ticketing solutions. Technically, the site uses standard web technologies with moderate performance and good mobile optimization but lacks advanced frameworks or CMS. Security posture is moderate with domain transfer protections but missing DNSSEC and security headers. Privacy compliance is supported by a clear privacy policy and cookie consent mechanism, though no explicit security or incident response policies are published. Overall, the domain registration data aligns well with the website claims, supporting legitimacy and trustworthiness.

C

Carbon GmbH

carbon.ag

50

Carbon GmbH is a specialized company focused on innovative automotive body repair solutions, particularly the CBR-System for efficient exterior bodywork repairs. Established in 2002 and based in Germany, the company targets automotive repair professionals and businesses, positioning itself as a niche expert in the manufacturing sector. The website reflects a professional and consistent brand image with good content quality and clear business information. Technically, the site is built on WordPress with Elementor and integrates modern analytics and security tools such as Google Analytics, Matomo, and Wordfence, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and security headers, though DNSSEC is not enabled and no public security policy or incident response information is available. Privacy compliance is well addressed with comprehensive cookie and privacy policies and active consent mechanisms. Overall, the website is trustworthy, well-maintained, and aligned with the company's business claims.

J

Jotform Inc.

jotform.co

66

Jotform Inc. is a well-established technology company specializing in online form building and related productivity tools. Founded in 2006 and headquartered in San Francisco, it serves a global audience with a comprehensive SaaS platform that includes form creation, surveys, e-signatures, PDF editing, and AI-powered agents. The company has a strong market presence with over 30 million users and a consistent brand identity. Technically, the website demonstrates modern web development practices, including the use of JavaScript frameworks, lazy loading, and structured data for SEO. It is optimized for performance, mobile responsiveness, and accessibility, with robust security measures such as HTTPS and security headers in place. The integration of Google Tag Manager and analytics indicates mature digital marketing and user tracking capabilities. From a security perspective, the site follows best practices with no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, Jotform presents a low-risk profile with a professional online presence, strong business credibility, and a secure technical foundation. The absence of WHOIS data is noted but does not detract significantly from the trustworthiness given the company's established reputation and transparent contact information.

W

WasSchBer CORE – ERP für Gebäudereinigung & Facility

wasschber.de

58

WasSchBer CORE is a specialized ERP software solution tailored for the building cleaning and facility management sector in Germany. The website presents a professional business offering flexible, automated, and practical ERP tools designed to improve operational efficiency and customer satisfaction for small to medium-sized cleaning service providers. The market positioning is niche, focusing on digital process optimization within the German cleaning industry. Technically, the website uses modern web standards with HTML5, CSS3, and JavaScript, hosted on UI-DNS infrastructure. Mobile optimization and SEO appear adequate, though accessibility features are basic. Security posture is moderate but lacks visible security headers and published privacy or cookie policies, which are critical for GDPR compliance. No contact or incident response information is provided, limiting transparency and trust. Overall, the domain and website appear legitimate but would benefit from enhanced security and compliance disclosures.

N

Nexaro

nexaro.com

71

Nexaro operates as a specialized provider of professional vacuum robots designed for commercial use, including individual units and fleet management solutions. The company emphasizes TÜV certification and targets commercial sectors such as hospitality, public sector, and office cleaning. Their digital presence is built on the Shopify platform, integrating advanced marketing and analytics tools, and employing a robust consent management system to ensure GDPR compliance. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Security posture is strong with HTTPS enforcement and domain transfer locks, though there is room for improvement in DNSSEC and explicit security policies. Overall, Nexaro presents a credible and trustworthy business with a mature digital infrastructure.

J

Johannes Kiehl KG

kiehl-group.com

64

Johannes Kiehl KG is a well-established company with over 120 years of experience specializing in innovative and environmentally friendly cleaning products. Their product portfolio includes high-quality detergents for professional building cleaning and car wash sectors. The company emphasizes sustainability and environmental protection while delivering effective hygiene solutions. The website targets professional cleaning businesses, hospitals, nursing homes, and car wash operators, positioning itself as a trusted and environmentally conscious market player. Technically, the website is built on a modern CMS platform (likely eZ Platform) with JavaScript frameworks and libraries such as Flickity for carousels and Matomo for analytics. The site is mobile optimized, has good SEO practices, and integrates privacy-compliant cookie consent mechanisms. The presence of CAPTCHA and CSRF tokens on login forms indicates attention to security in user interactions. From a security perspective, the site enforces HTTPS and uses cookie consent with opt-in/out options. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data for the domain is a concern, slightly reducing trustworthiness, though the website content and business information appear professional and consistent. Overall, the website presents a professional and trustworthy front for the company, with good technical and privacy compliance. Strategic improvements include publishing security policies, enhancing security headers, and clarifying domain registration details to improve trust and compliance.

M

Messe Friedrichshafen GmbH

cleanpro-expo.de

64

The CLEAN PRO EXPO website represents a professional trade fair platform organized by Messe Friedrichshafen GmbH, focusing on cleaning technologies and facility management for the DACH region and neighboring markets. The site effectively communicates the event's purpose, target audience, and key services, positioning itself as an innovative marketplace launching in 2026. Technically, the website employs modern web technologies including Bootstrap, Algolia Autocomplete, and Usercentrics for consent management, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is trustworthy, professional, and compliant with privacy standards, though explicit privacy and terms of service pages were not found in the provided content.

W

Weser-Ems Halle Oldenburg GmbH & Co. KG

motorradshow-oldenburg.de

62

MOTORRAD SHOW Oldenburg is a well-established regional motorcycle trade fair organized by Weser-Ems Halle Oldenburg GmbH & Co. KG, targeting motorcycle enthusiasts and industry stakeholders in the Oldenburg region of Germany. The event showcases new motorcycle models, accessories, and offers an engaging program including contests and social spaces. The website is professionally designed with good content quality and consistent branding, supporting a positive market position as a leading regional event. Technically, the site uses modern web technologies and Matomo analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit privacy and terms policies. Overall, the site is trustworthy and functional but could improve compliance and security transparency.

Suicide Monkeys is a small German-based e-commerce business specializing in streetwear clothing and accessories targeted at adrenaline junkies and extreme sports enthusiasts. The website is built on the Shopify platform using the Dawn theme, integrating modern payment methods such as Shopify Payments, PayPal, and Apple Pay. The business has a clear niche market and a growing community presence, with a focus on robust and simple fashion styles. Technically, the website is well-implemented with good performance, mobile optimization, and accessibility features. Security posture is solid with HTTPS and bot protection via hCaptcha, though explicit security headers and incident response policies are absent. Privacy compliance is basic with privacy and terms policies present but lacking cookie consent mechanisms. Overall, the site is professional and trustworthy but could improve in transparency and compliance areas.

D

daisys-diner.click

daisys-diner.click

62

The website daisys-diner.click serves as a branded short domain landing page associated with the Rebrandly URL shortening service. It does not provide any direct business information, contact details, or user engagement content beyond redirecting users to Rebrandly's main site. The domain WHOIS data is suspicious due to a creation date set in the future (June 2025), which undermines trust and legitimacy. The site uses minimal technical infrastructure with basic HTML, CSS, and JavaScript, and lacks modern security features such as DNSSEC or security headers. No privacy or cookie policies are present, and no contact or incident response information is provided, indicating low compliance with privacy and security best practices.

D

DELTA PARTS

deltaparts.de

46

DELTA PARTS is a German manufacturer and retailer specializing in high-quality custom motorcycle parts produced using advanced CNC milling and laser technology. The company targets motorcycle enthusiasts and retailers seeking premium components such as license plate holders, fuel caps, lighting, and accessories. Their market position is that of a specialized manufacturer with a focus on quality and German engineering. The website is built on WordPress with Elementor, featuring modern design and multilingual support via GTranslate. Technical infrastructure is solid with HTTPS enabled and use of SEO plugins, though performance is moderate. Security posture is adequate but lacks explicit security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security transparency.

T

Toni-Garten und Landschaftsbau

toni-garten-und-landschaftsbau.de

49

Toni-Garten und Landschaftsbau is a small, local landscaping and garden care business based in Delmenhorst, Germany. The company offers a range of services including hedge trimming, lawn mowing, and complete garden redesigns, emphasizing quality workmanship and customer satisfaction. Their website is professionally designed with clear navigation and provides comprehensive contact options including phone numbers, email, physical address, and a secure contact form with CAPTCHA. Social media presence on Facebook and Instagram supports their local marketing efforts. Technically, the website is built using the MyWebsite NOW platform, employing modern web standards such as HTML5, CSS3, and JavaScript. The site is mobile-optimized and includes basic SEO and accessibility features. Hosting is managed via UI-DNS name servers, indicating a professional DNS setup. Privacy compliance is addressed through a GDPR-compliant privacy policy and cookie consent banner, although no explicit security policy or incident response information is provided. Security posture is moderate, with secure form handling and consent mechanisms in place, but lacking visible security headers and detailed security documentation. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the website's business claims, supporting legitimacy. Overall, the site presents a trustworthy and professional image suitable for its local service market. Recommendations include enhancing security headers, verifying SSL/TLS configurations, adding explicit security and incident response policies, and improving accessibility features to strengthen compliance and user trust.

G

Google LLC

fuenfkommasechs.de

73

This website is a consent management page for YouTube, a service operated by Google LLC. It facilitates user consent for data processing and cookie usage in compliance with privacy regulations such as GDPR. The site is part of the youtube.com domain, which is a well-established and reputable platform in the online video streaming industry. The page is technically sophisticated, leveraging modern web technologies and Google’s cloud infrastructure to deliver a fast, responsive, and accessible user experience. Security is robust, with HTTPS enforced and multiple security headers present, reflecting Google's strong security posture. However, explicit privacy and cookie policy links are not directly present on this subdomain page, which slightly impacts privacy compliance scoring. Overall, the site is trustworthy, professional, and safe for general audiences.

M

MyVeyron

myveyron.com

52

MyVeyron is a niche luxury automotive experience provider based in France, specializing in offering exceptional driving experiences with the Bugatti Grand Sport Vitesse in the Alsace region. The website presents a professional and consistent brand image, targeting car enthusiasts and luxury experience seekers. Technically, the site is built on WordPress using the Divi theme and WooCommerce, with integrations such as Google Tag Manager and Mailchimp for analytics and marketing. Hosting is managed via Scaleway SAS with DNS hosted on o2switch.net. Security posture is moderate, with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is basic, with a cookie policy and consent mechanism present but no visible privacy policy or terms of service. Contact information is not explicitly provided on the site, which may impact user trust. Overall, the site is functional and well-designed but could improve in security and compliance documentation.

M

My Classic Automobile

myclassicautomobile.com

58

My Classic Automobile is a small French business specializing in the rental of classic and supercars such as Ferrari, Lamborghini, and Bugatti, primarily serving the Alsace region including Mulhouse. The company targets customers seeking luxury and vintage car experiences for weddings, track baptisms, wine route tours, and gifting. The website is professionally designed using the Wix platform, featuring bilingual support (French and English) and structured data to enhance search visibility. Technical infrastructure relies on Wix's hosting and JavaScript libraries, with some client-side security hardening scripts in place. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS enforced but lacks explicit security headers and visible privacy or cookie policies. Overall, the site presents a trustworthy front for its niche market but would benefit from improved compliance and transparency.