Security Directory

D

Deutsche Forschungsgemeinschaft e.V.

gerit.org

56

GERiT is a comprehensive information portal operated by the Deutsche Forschungsgemeinschaft (DFG) in partnership with DAAD and HRK, providing detailed data on over 33,000 German research institutions. It serves students and researchers domestically and internationally, offering institutional profiles, job listings, doctoral program information, and links to DFG-funded projects. The portal is bilingual and well-structured, reflecting a mature digital presence. Technically, the site uses modern web technologies including React and integrates search capabilities via Apache Lucene/Solr. It employs Google Maps API for geolocation features and maintains good mobile responsiveness and accessibility standards. While no explicit CMS is detected, the platform appears custom-built for its specialized content. Security posture is solid with HTTPS enforced and cookie consent implemented, though improvements could be made by enabling DNSSEC and adding security headers. No vulnerabilities or malicious content were detected. Privacy compliance is strong, with a clear and comprehensive privacy policy and cookie management. Overall, GERiT represents a trustworthy, authoritative resource in the German academic research sector. Strategic recommendations include enhancing DNS security, publishing a formal security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and security.

O

Orchestre de Paris

monsieur-onde.com

48

Monsieur Onde is a culturally focused website dedicated to promoting classical music and the repertoire of the Orchestre de Paris through interactive games, videos, and educational content. The site targets a general audience interested in music education and classical symphonic works. The business model appears to be educational and promotional, leveraging multimedia content to engage users and enhance their knowledge of classical music. The website is professionally designed with consistent branding aligned with the Orchestre de Paris, indicating a strong association with this reputable cultural institution. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, Google Tag Manager, and Google Analytics. It is hosted by OVH sas, a well-known hosting provider. The site is mobile optimized and includes SEO best practices such as meta tags and Open Graph data. However, there is room for improvement in accessibility and security headers implementation. Performance is moderate, and the site is fully accessible without any blocking or WAF challenges. From a security perspective, the site uses HTTPS and protects the domain with registrar status flags. However, it lacks security headers and a cookie consent mechanism, which are important for GDPR compliance and overall security posture. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is transparent and consistent with the website's claims, enhancing trustworthiness. Overall, the website presents a moderate risk profile with good business credibility but some gaps in privacy compliance and security best practices. Strategic improvements in cookie consent, security headers, and contact transparency would enhance trust and compliance.

O

Orchestre de Paris

orchestredeparis.com

58

Orchestre de Paris is a prestigious French symphony orchestra presenting concerts primarily at the Philharmonie de Paris. The organization offers a rich cultural experience with over 150 years of history and a roster of 120 musicians. Their services include live concerts, subscription sales, educational outreach, and digital concert streaming. The website reflects a mature digital presence with professional design, clear navigation, and integration with social media and ticketing partners. Technically, the site uses modern web technologies and includes cookie consent and privacy policies, indicating awareness of GDPR compliance. Security posture is generally good with HTTPS enforced, though the absence of visible security headers suggests room for improvement. The WHOIS data for the domain is missing or unavailable, which is unusual and slightly reduces trustworthiness, but the overall content and external affiliations support legitimacy. No adult or explicit content is present, making the site safe for general audiences.

T

The Wallet Crew

neostore.cloud

62

The Wallet Crew is a French technology company specializing in providing a white-label Wallet as a Service platform that enables brands to digitalize loyalty cards, tickets, coupons, and other passes into Apple and Google Wallet. The company targets businesses seeking to enhance customer engagement through mobile wallet solutions, offering API integrations, real-time notifications, and a scalable platform hosted on Microsoft Azure. The website is professionally designed, mobile-optimized, and rich in content including client testimonials and case studies, indicating a mature digital presence. Technically, the site leverages modern web technologies such as Webflow CMS, Google Tag Manager, and cookie consent tools, ensuring good performance and user experience. Security posture is solid with HTTPS and signed passes, though explicit security headers and policies are lacking. The absence of WHOIS registration data is a concern for domain legitimacy but does not detract from the professional business presentation. Overall, the site demonstrates a good balance of business credibility and technical maturity with room for improvement in privacy and security transparency.

B

Bergh Special Products

berghspecialproducts.nl

61

Bergh Special Products is a specialized Dutch company focused on manufacturing and supplying wheelchair parts, accessories, and custom products such as spoke protectors and work surfaces. The company operates an e-commerce platform targeting both individual consumers and business clients, positioning itself as a niche supplier within the wheelchair and industrial product market. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its audience. Technically, the site is built on ASP.NET Web Forms with Telerik UI components and uses modern front-end frameworks like Bootstrap and FontAwesome. It integrates Google Tag Manager for analytics and maintains a moderate performance profile with good mobile optimization. Security-wise, the site enforces HTTPS and follows basic best practices but lacks some advanced headers like Content-Security-Policy. Privacy compliance is well addressed with visible privacy and cookie policies and GDPR adherence. No critical vulnerabilities or suspicious patterns were detected, and the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

C

Aktuelle COVID-19 Zahlen weltweit | corona-zahlen-heute.de

corona-zahlen-heute.de

65

The website corona-zahlen-heute.de is a German-language informational portal focused on providing up-to-date COVID-19 statistics worldwide and detailed data for Germany. It aggregates official data sources and presents them with visualizations and detailed regional breakdowns. The site targets the general public interested in pandemic tracking and health data. Technically, the site uses modern web technologies including JavaScript, SVG for maps, Google Fonts, and Google Adsense for monetization. Hosting is via Cloudflare, providing performance and security benefits. Security posture is strong with HTTPS enforced and Content-Security-Policy headers present, though additional headers could improve security further. Privacy compliance is moderate; a cookie consent mechanism is implemented, but no explicit privacy policy or terms of service pages were found in the provided content. No direct contact information or incident response contacts are visible. Overall, the site is professional, trustworthy, and safe for general audiences, with a moderate AI score reflecting good content and technical implementation but some gaps in privacy and contact transparency.

E

Evangelisch-Lutherisches Dekanat Hof

dekanat-hof.de

46

The website www.dekanat-hof.de represents the Evangelisch-Lutherisches Dekanat Hof, a regional church organization in Germany providing religious, community, and social services. The site is well-structured, content-rich, and targets local community members including families, youth, and churchgoers. It offers information on events, contact persons, and church music groups, reflecting a strong community engagement focus. Technically, the site is built on Drupal 10 with modern web technologies and includes GDPR-compliant cookie consent mechanisms. The hosting is managed via kunde24.de, and the site shows good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent, though some security headers could be improved. No critical vulnerabilities or malicious content were detected. WHOIS data is limited but consistent with the site's purpose and hosting. Overall, the site is trustworthy, professional, and compliant with privacy regulations.

A

Ambulante Ethikberatung für Hochfranken e.V.

ethikberatung-hochfranken.de

44

Ambulante Ethikberatung für Hochfranken e.V. is a small non-profit association founded in 2022, providing ambulatory ethics consultation services in the Hochfranken region of Germany. The organization focuses on supporting patients, their families, and healthcare professionals in ethical decision-making related to end-of-life care. The website presents a professional and consistent brand image, with clear contact information and detailed descriptions of services and team members. Technically, the site uses modern web technologies including Bootstrap and jQuery, hosted by a regional provider, and is mobile-optimized with good SEO practices. Security posture is moderate with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is good with a privacy policy available, though no cookie consent mechanism is present. Overall, the website is trustworthy and well-suited for its target audience.

The website bernhard-lichtenberg-hof.de serves as the official online presence for the Catholic parish Bernhard Lichtenberg in Hof, Germany. It provides comprehensive information about church services, community events, pastoral contacts, and religious education. The site targets local parishioners and visitors interested in the Catholic community activities within the Hof region. The business model is non-profit, focusing on spiritual and community services. The website is well-branded, consistent, and contains trust indicators such as official contact details and legal disclosures.

B

Biological Records Centre

brc.ac.uk

66

The Biological Records Centre (BRC) is a well-established UK national organization focused on terrestrial and freshwater species recording, collaborating closely with volunteer recording communities and government research bodies. The website reflects a mature digital presence with comprehensive content supporting biological recording, research, and conservation efforts. It is supported by reputable partners such as the Joint Nature Conservation Committee and the UK Centre for Ecology & Hydrology, reinforcing its credibility and authority in the environmental research sector. Technically, the site is built on Drupal 10 with modern web technologies and demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and published security policies. Overall, the site is trustworthy, professional, and compliant with privacy regulations, though WHOIS data is unavailable likely due to privacy protection common for .uk domains. Strategic recommendations include enhancing security headers, publishing incident response information, and adding vulnerability disclosure details to further strengthen trust and security.

T

TFG ONLINE PLUS

tfgonlineplus.de

56

The website 'TFG ONLINE PLUS' appears to be a business-oriented platform hosted in Germany, utilizing a mobile-friendly jQuery Mobile framework. The site enforces HTTPS via client-side redirection and integrates a Usercentrics cookie consent mechanism, indicating some level of GDPR compliance. However, the content is minimal and lacks explicit business descriptions, contact information, or legal disclosures, which limits the ability to fully assess the business model or market position. Technically, the site uses standard JavaScript libraries and is hosted by Adacor, a reputable hosting provider. Security posture is moderate with HTTPS enabled but missing important HTTP security headers and no visible incident response or security policies. Privacy compliance is partial due to the presence of a cookie consent but absence of a privacy policy. Overall, the site is functional but would benefit from enhanced transparency and security hardening.

K

KKV Aktuell

kkv-aktuell.de

54

KKV Aktuell is a German non-profit association website providing current information about the KKV Bundesverband. The site targets members and potential members interested in the organization's activities and membership opportunities. The business model is focused on community engagement and information dissemination within a niche non-profit sector. Technically, the website is built on WordPress with modern plugins and frameworks such as Bootstrap and jQuery, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks explicit security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but could improve in privacy and security transparency.

F

Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Hof/ BDKJ-Regionalverband Hof-Kulmbach

jugend-im-dekanat-hof.de

57

The website represents a regional Catholic youth pastoral office and youth organization in the Hof and Kulmbach areas of Germany, affiliated with the Erzdiözese Bamberg. It provides information on youth work, events, subsidies, and contact details for local offices. The site targets youth, volunteers, and community members involved in church-related youth activities. Technically, the site is built on the Alkacon Mercury CMS platform, uses Matomo for privacy-respecting analytics, and integrates accessibility features effectively. The site is well-structured, mobile-optimized, and includes GDPR-compliant privacy and cookie policies. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. No incident response or vulnerability disclosure policies are found. Overall, the site is trustworthy, professional, and safe for general audiences.

The website www.eucharistinerinnen.de represents the Kongregation der Schwestern Dienerinnen Jesu in der Eucharistie, a small non-profit Catholic religious community based in Germany. The site provides comprehensive information about their spiritual mission, community activities, youth programs, and opportunities for engagement. The organization has a long-standing history, celebrating 100 years, and targets individuals interested in Catholic spirituality and religious life. Technically, the website is built on the Jimdo CMS platform, utilizing standard web technologies such as jQuery and bxSlider for galleries. It is hosted by one.com and employs HTTPS with a good SSL configuration. The site is moderately optimized for performance and mobile devices, with basic accessibility features and good SEO practices. Privacy and cookie policies are present and GDPR compliant, including a functional cookie consent mechanism. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks some advanced security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, showing no suspicious registration patterns. Overall, the website is trustworthy, professionally maintained, and safe for general audiences. Strategic recommendations include enhancing security headers, adding explicit security policies, and possibly including contact emails for better communication. The site effectively serves its niche audience with clear content and navigation.

C

Caritas gGmbH St. Heinrich und Kunigunde

caritasheim-hof.de

62

Caritas gGmbH St. Heinrich und Kunigunde is a well-established non-profit organization providing comprehensive social care services in Bavaria, Germany. Their offerings include senior care, disability support, childcare, and educational services, positioning them as a regional leader in healthcare and social services. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to seniors, people with disabilities, children, and youth. Technically, the site uses modern JavaScript libraries, consent management tools, and tracking services, hosted likely on infrastructure associated with Deutsche Telekom AG. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy disclosures are lacking. Overall, the site is trustworthy and serves its audience effectively but would benefit from enhanced privacy compliance and security transparency.

K

Katholische Kindertagesstätte St. Klara Schwarzenbach

kiga-schwarzenbach.de

60

Katholische Kindertagesstätte St. Klara Schwarzenbach is a small, community-focused Catholic childcare institution located in Schwarzenbach/Saale, Germany. The website provides comprehensive information about their childcare services including nursery (Krippe), kindergarten, and school-age child care, targeting parents and guardians in the local area. The institution is affiliated with the Archdiocese of Bamberg, which supports its legitimacy and trustworthiness. The website content is well-structured, accessible, and includes detailed contact information and privacy policies, reflecting a professional and community-oriented organization. Technically, the website is built on the alkacon Mercury CMS platform, utilizing JavaScript, Matomo analytics for privacy-conscious tracking, and OpenStreetMap for location services. The site is mobile-optimized and includes strong accessibility features, enhancing usability for a broad audience. Performance is moderate, with room for optimization, but overall the technical infrastructure supports the business needs effectively. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, explicit security headers are not detected, and there is no dedicated security or incident response policy page. No vulnerabilities or exposed sensitive data were found, indicating a solid security posture for a small institution. The absence of a security.txt file or incident response contacts suggests areas for improvement in transparency and readiness. Overall, the website presents a low-risk profile with good privacy compliance and business credibility. Strategic recommendations include enhancing security headers, publishing incident response information, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

The website represents the Katholische Kindertagestätte Sankt Antonius, a Catholic kindergarten located in Oberkotzau, Germany. It serves as an informational portal for parents and the local community, providing details about the kindergarten's pedagogical approach, organizational information, news, events, and contact details. The site targets parents and guardians seeking childcare and early education services within a religious framework. The business operates as a small non-profit educational institution with a local community focus. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, Font Awesome, FancyBox, Revolution Slider, JWPlayer, and Google reCAPTCHA for bot protection. It is hosted on servers associated with internet1.de and uses HTTPS with a good SSL configuration. The site is mobile-optimized and includes accessibility features, though some areas could be improved. Analytics are handled via Matomo with privacy-conscious anonymous tracking fallback. From a security perspective, the site follows best practices such as HTTPS enforcement, cookie consent with granular user control, and bot protection. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present and should be implemented. No vulnerabilities or exposed sensitive data were detected. Incident response and security policy documentation are absent, which is typical for small non-commercial sites but recommended for improvement. Overall, the website is safe, professional, and trustworthy, with no adult or questionable content. It complies with GDPR through a comprehensive privacy policy and cookie consent mechanism. The domain WHOIS data is minimal but consistent with a legitimate small educational entity. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date third-party libraries to ensure ongoing security and compliance.

K

Kindergarten und Kinderkrippe "Regenbogen" Naila

kiga-regenbogen-naila.de

59

Kindergarten und Kinderkrippe "Regenbogen" Naila is a small, community-focused childcare and educational institution located in Naila, Germany. Affiliated with the Catholic Archdiocese of Bamberg, it provides kindergarten and nursery services with a strong emphasis on pedagogical concepts, parental cooperation, and community engagement. The website serves as an information portal for parents and guardians, detailing operational hours, fees, registration procedures, and educational philosophy. Technically, the website is built on the alkacon Mercury CMS platform, leveraging modern web technologies including HTML5, CSS3, JavaScript, and Matomo analytics for privacy-conscious user tracking. The site is well-optimized for mobile devices and accessibility, featuring a cookie consent mechanism and structured data for enhanced SEO and user experience. From a security perspective, the site enforces HTTPS and employs cookie consent for external content, but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and GDPR-aligned cookie management. Overall, the website presents a trustworthy, professional, and user-friendly digital presence for a local educational institution. Strategic improvements could focus on enhancing security headers, publishing a security policy, and adding incident response contacts to further strengthen trust and compliance.

The website represents the Katholische Kindertagesstätte St. Josef, a Catholic daycare center located in Münchberg, Germany. It provides comprehensive information about childcare services including kindergarten, nursery, and school-age care, targeting parents and families in the local community. The site is well-structured with clear navigation and includes sections for organizational details, pedagogical concepts, staff, and parent resources. The business operates as a non-profit educational childcare provider with a local community focus. Technically, the website is built on a CMS platform associated with kirche-bamberg.de, utilizing modern web technologies such as jQuery, Bootstrap, Font Awesome, and Matomo for analytics. It employs HTTPS with good SSL configuration and includes a cookie consent banner supporting GDPR compliance. The site is mobile-optimized and provides a generally good user experience, although some advanced security headers are missing. From a security perspective, the website demonstrates good practices including HTTPS enforcement, cookie consent with opt-in/out options, and use of Google reCAPTCHA for forms. However, explicit security policies and incident response contacts are not found, and no vulnerability disclosure or security.txt files are present. The domain WHOIS data is consistent with the website content and hosting provider, indicating legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It serves its target audience effectively with relevant content and a clear business model. Strategic improvements could focus on enhancing security headers, publishing security policies, and improving accessibility features.

Kindergarten St. Pius is a local early childhood education institution based in Hof, Germany, affiliated with the Archdiocese of Bamberg. The website serves as an informational portal for parents and guardians, providing details on organizational aspects, staff, enrollment, events, and contact information. The business model is non-profit and community-focused, targeting families in the region. The website is well-structured, professionally designed, and mobile-optimized, reflecting a good level of digital maturity for a small educational institution. Technically, it leverages common web technologies such as Bootstrap, jQuery, and Matomo analytics, hosted on a domain consistent with its religious affiliation. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong, with clear GDPR-aligned policies and user consent options. Overall, the site is trustworthy, safe, and professionally maintained, with no critical vulnerabilities or suspicious elements detected.

Katholische Kita St. Marien is a small, community-focused Catholic daycare center located in Hof, Germany, providing kindergarten and nursery childcare services. The website offers comprehensive organizational information, staff details, pedagogical concepts, and parent engagement resources. It is affiliated with the Archdiocese of Bamberg, indicating a non-profit educational mission. The digital infrastructure is built on a CMS platform associated with kirche-bamberg.de, utilizing modern web technologies such as Bootstrap, jQuery, and JWPlayer for multimedia content. The site is mobile responsive and provides a clear navigation structure, enhancing user experience. From a security perspective, the website enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. It uses Matomo analytics with options for anonymous tracking, reflecting a privacy-conscious approach. However, the site lacks advanced security headers and a formal vulnerability disclosure policy, which could be improved. No signs of WAF or content blocking were detected, and no critical vulnerabilities were found in the visible content. Overall, the website demonstrates a good balance of content quality, technical implementation, and privacy compliance suitable for its educational and community service role. Strategic improvements in security headers, accessibility, and formal security policies would enhance its security posture and trustworthiness further.

The website www.sankt-antonius-ok.de is currently inaccessible due to a Cloudflare Turnstile CAPTCHA security challenge, which prevents access to any substantive content. This indicates the site is protected by a Web Application Firewall (WAF) and anti-bot mechanisms, likely to mitigate malicious traffic or abuse. Due to this blocking, no business information, contact details, or policies are visible, limiting the ability to assess the company's market position or services. The technical infrastructure includes Jimdo hosting as inferred from nameservers and Cloudflare security services, suggesting a small-scale website with basic hosting and security measures. The security posture is moderate given the presence of Cloudflare protection, but the lack of visible security headers or policies reduces confidence. Overall, the site cannot be fully evaluated until the WAF challenge is passed or removed.

The website kirche-bad-steben.de serves as the official online presence for the Catholic parish office in Naila, Germany. It provides parishioners and visitors with comprehensive information about church services, community groups, pastoral care, church history, and contact details. The site targets local community members and those interested in religious activities and events. As a non-profit religious organization, the website focuses on community engagement and information dissemination rather than commercial activities. Technically, the website employs a modern tech stack including Bootstrap for responsive design, jQuery for interactivity, Font Awesome for icons, and integrates multimedia components like JWPlayer and Revolution Slider. It uses Matomo analytics with privacy-conscious configurations and Google reCAPTCHA for bot protection. Hosting is managed via internet1.de, with stable DNS configurations. The site is mobile-optimized and provides a clear navigation structure, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, explicit security headers are not detected, representing an area for improvement. No vulnerabilities or exposed sensitive data were found. Privacy policies and cookie management are comprehensive and transparent, enhancing user trust. No incident response or security policy pages are present, which could be considered for future enhancement. Overall, kirche-bad-steben.de is a well-maintained, trustworthy website for a small non-profit religious entity. It balances user privacy with functional analytics and provides clear contact information. Strategic recommendations include adding security headers, publishing incident response contacts, and maintaining up-to-date third-party libraries to further strengthen security posture.

I

Iconoir | Free Icons

iconoir.com

65

Iconoir is an open source icon library offering a large collection of free, high-quality icons for developers and designers. It positions itself as a strong alternative to established icon resources like Noun Project and Flaticon, supporting multiple platforms including React, Flutter, and Figma. The website is professionally designed with excellent user experience and mobile optimization, leveraging modern technologies such as React and Next.js. Security posture is good with HTTPS enforced and domain registration consistent and transparent. However, the site lacks formal privacy and cookie policies, as well as explicit contact information and security incident response details, which are areas for improvement. Overall, Iconoir presents a trustworthy and valuable resource for its target audience, with room to enhance compliance and security transparency.

D

DIE.PROJEKTOREN – FARYS & RUSCH GBR

die-projektoren.de

44

DIE.PROJEKTOREN – FARYS & RUSCH GBR is a small creative agency based in Berlin, Germany, specializing in design and presentation services with a focus on socially and environmentally conscious sectors such as nature and climate protection, social issues, education, and culture. Their offerings include corporate design, illustration, photography, web development, and film production, serving non-profit and cultural clients. The agency has over 20 years of experience, positioning itself as a niche player with a strong commitment to its thematic focus. Technically, the website is built on WordPress 6.8.3 using the Kadence theme and several modern plugins including Toolset Blocks and Bootstrap 4. The site is mobile-optimized and performs moderately well, with good accessibility and basic SEO features. Hosting appears to be provided by a German hosting provider, consistent with the business location. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and a formal security or incident response policy. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; a privacy policy is present and GDPR compliant, but no cookie consent mechanism was found. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in security headers, cookie consent, and incident response documentation would enhance its security posture and compliance standing.

P

Polsko-Niemiecka Współpraca Młodzieży

dpjw.org

53

The Deutsch-Polnisches Jugendwerk (DPJW) is a well-established non-profit organization dedicated to fostering German-Polish youth cooperation through funding, training, and cultural exchange projects. The website serves as a comprehensive portal for project applications, partner searches, publications, and educational resources targeting youth organizations, schools, and project leaders. The organization enjoys a strong market position with a domain age dating back to 1998, reflecting its longstanding presence and credibility in the bilateral youth cooperation sector. Technically, the website is built on a modern WordPress CMS with a robust tech stack including Yoast SEO, Matomo analytics, and accessibility features. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although improvements such as enabling DNSSEC and adding security headers could enhance protection. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent aligned with GDPR requirements. Contact information is primarily provided via physical addresses and contact forms, with social media channels actively linked. However, explicit security policies and incident response contacts are not present. Overall, the DPJW website reflects a professional, trustworthy, and user-friendly platform supporting its mission of youth cooperation. Strategic recommendations include enhancing DNS security, publishing security policies, and maintaining up-to-date software to sustain its secure and compliant posture.

Junge Aktion der Ackermann-Gemeinde is a small non-profit Catholic youth organization based in Germany, focused on fostering German-Czech and broader Central European cultural exchange through youth projects and international encounters. The website is built on TYPO3 CMS with Bootstrap, providing a modern and mobile-optimized user experience. The organization maintains an active social media presence and offers newsletter subscriptions to engage its audience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it lacks explicit terms of service and detailed security policies.

G

Gemeinschaft Junges Ermland

junges-ermland.de

46

Gemeinschaft Junges Ermland is a small non-profit organization focused on fostering German-Polish youth relations through cultural exchange, societal and religious education, and youth meetings. The organization targets young people aged 16 to 26 and organizes multiple annual events to promote friendship and understanding between Germany and Poland. The website serves as an information hub for events, photo galleries, and blog posts documenting their activities. Technically, the site is built on WordPress using Elementor and several plugins to manage events and user interactions. The site is well-structured, mobile-optimized, and uses HTTPS, indicating a mature digital presence. However, it lacks key compliance documents such as a privacy policy and terms of service, which are critical for GDPR compliance and user trust. Security posture is good with no visible vulnerabilities or exposed sensitive data. Overall, the site is professional and trustworthy but could improve privacy and compliance documentation.

A

Adalbertus-Werk e.V.

adalbertuswerk.de

42

Adalbertus-Werk e.V. is a small non-profit educational organization focused on fostering reconciliation and understanding between Germans and Poles, particularly relating to the history and culture of Danzig. Founded in 1960, it offers educational events, publications, and cultural exchanges to promote dialogue and historical awareness. The website serves as an information portal for their activities, publications, and contact details. Technically, the site is built on WordPress with common plugins and scripts, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

C

corporate benefits Germany GmbH

mitarbeiterangebote.de

62

corporate benefits Germany GmbH operates as the European market leader in employee benefit portals, providing companies with customized platforms offering attractive discounts from well-known brands to enhance employee satisfaction. The company serves a large client base of over 40,000 companies and 15.6 million registered users across multiple European countries. Their business model focuses on B2B services, targeting employers and benefit providers with tailored portals and mobile-friendly solutions. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the website is built on TYPO3 CMS, leveraging modern tracking and analytics tools such as Google Tag Manager and Hotjar. The site is mobile-optimized with good SEO practices and a cookie consent mechanism aligned with GDPR requirements. Performance is moderate, with room for improvement in accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response information are missing. Overall, the security posture is good but could be enhanced by publishing explicit security policies and incident response contacts. The domain WHOIS data aligns well with the business claims, showing a consistent and legitimate registration history. The site maintains high trustworthiness with TÜV IT certification and comprehensive privacy compliance. Strategically, corporate benefits Germany GmbH is well-positioned in its niche with strong market presence and digital maturity. Continued focus on security transparency and accessibility will further strengthen its credibility and compliance standing.

R

Referat Freiwilliges Soziales Jahr und Bundesfreiwilligendienst

fsj-bfd-bamberg.de

56

The Referat Freiwilliges Soziales Jahr und Bundesfreiwilligendienst website serves as an official regional government/non-profit portal providing comprehensive information and support for voluntary social service programs in Bamberg, Germany. It targets young individuals interested in FSJ and BFD programs, offering details on application processes, educational seminars, and partner organizations. The site is well-branded, consistent, and supported by recognized government and church entities, reflecting a trustworthy and established presence. Technically, the website is built on the Alkacon Mercury CMS platform, hosted on infrastructure related to the Archdiocese of Bamberg. It employs modern web technologies including JavaScript, Matomo analytics for privacy-conscious tracking, and accessibility tools such as the Eye-Able plugin. The site is mobile-optimized and demonstrates good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie banner. Overall, the website presents a low-risk profile with a solid business credibility and technical foundation. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

D

Durchstarter - Freiwilliges Schuljahr

freiwilligennet.de

41

Durchstarter - Freiwilliges Schuljahr is a German non-profit educational initiative aimed at engaging students from the 8th grade onwards in voluntary social and active school year programs. The website serves as an informational and engagement platform, offering a variety of social, cultural, and ecological volunteer opportunities in cooperation with local organizations. The platform targets young students seeking meaningful extracurricular experiences and supports partnerships with local social institutions. Technically, the website is built on a modern stack including Vue.js, Bootstrap, and Pimcore CMS, with privacy-conscious analytics via Matomo and a compliant cookie consent mechanism. Security posture is adequate with HTTPS enforced and privacy best practices observed, although explicit security headers and incident response policies are not published. Overall, the site is professional, accessible, and trustworthy, with a clear focus on educational and social engagement.

F

FiZ gGmbH

fiz-hof.de

57

FiZ gGmbH is a social enterprise based in Hof, Germany, providing ambulatory assistance services to families and adults. The organization positions itself as a local non-profit entity focused on social support. The website is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies such as JavaScript and CSS. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, it lacks comprehensive privacy and cookie policies, terms of service, and incident response information, which are critical for compliance and trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal policies. Overall, the site is functional and professional but would benefit from enhanced privacy and security measures to strengthen user trust and regulatory compliance.

L

Landkreis Hof

landkreis-hof.de

49

Landkreis Hof operates as a regional government authority serving over 95,000 residents across 27 municipalities in Germany. The website provides comprehensive administrative information and services, supporting local businesses and citizens. It maintains a solid market position as the official digital presence of the Landkreis Hof government, offering key services such as local governance, public announcements, and administrative support. The target audience includes residents, local enterprises, and visitors seeking regional information. Technically, the website is built on WordPress with the LayersWP theme and utilizes modern web technologies including jQuery and Google Analytics for performance and user insights. Hosting appears stable with Inttech nameservers, and the site demonstrates good mobile optimization and accessibility features, including a dedicated accessibility tool. SEO practices are well implemented with proper metadata and structured data. From a security perspective, the site enforces HTTPS with HSTS, employs IP anonymization in analytics, and offers user opt-out for tracking. Security headers are partially implemented, though improvements like a full Content-Security-Policy and a published security.txt file would enhance posture. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, Landkreis Hof's website is a trustworthy, professional government portal with good content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, publishing incident response information, and maintaining regular security audits to sustain trust and compliance.

The website represents the Catholic parish Bernhard Lichtenberg in Hof, Germany, serving as an information hub for parishioners and the local community. It provides details on church services, events, groups, and contact information, positioning itself as a trusted local religious community resource. The site is affiliated with the Bamberg diocese, as indicated by multiple external resources and analytics domains. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and JW Player, hosted on Evanzo nameservers, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and incident response policies. Privacy compliance is strong, with a comprehensive privacy policy and cookie banner. Overall, the site is professional, trustworthy, and well-suited for its non-profit religious mission.

The website www.pudim.com.br is a minimalistic page primarily showcasing an image of a pudding dessert and providing a single contact email address. There is no detailed business description, no privacy or cookie policies, and no terms of service. The site appears to be a small-scale or personal project rather than a commercial business. Technically, the site uses Google Analytics and Google Tag Manager for visitor tracking but lacks modern security headers and does not disclose HTTPS status. The absence of privacy compliance documentation and minimal content limits its professional credibility. Security posture is weak due to missing security headers and lack of HTTPS confirmation. Overall, the site poses low risk but also offers limited trust signals or business information.

B

B3 S.A. - Brasil, Bolsa, Balcão

b3.com.br

67

B3 S.A. is the primary stock exchange operator in Brazil, offering a comprehensive suite of financial market services including trading, clearing, and settlement. The website serves a broad audience ranging from individual investors to large financial institutions, providing access to market data, investment products, and educational resources. The company holds a leading market position in Latin America and operates with a strong brand presence and professional digital infrastructure. Technically, the website is built on modern web technologies including Angular and leverages Cloudflare for DNS and CDN services, ensuring good performance and security. The site incorporates multiple analytics and tracking tools with appropriate privacy and cookie consent mechanisms, reflecting a mature digital compliance posture. Security-wise, the site enforces HTTPS, employs security headers, and maintains ISO 27001 certification, indicating a robust security framework. However, explicit security policies and incident response contacts could be more visible. Overall, the website is professional, trustworthy, and well-aligned with the company's business stature.

C

COST - European Cooperation in Science and Technology

cost.eu

56

COST - European Cooperation in Science and Technology is a European intergovernmental framework that funds and supports science and technology research networks known as COST Actions. The organization connects researchers and innovators across Europe and beyond, facilitating collaboration and knowledge sharing. The website reflects a professional and well-structured digital presence, targeting researchers, scientific communities, and policy makers. It provides information about funding opportunities and networking services, positioning itself as a key player in European scientific cooperation. The technical infrastructure is based on WordPress with modern SEO and event management plugins, ensuring good performance, mobile optimization, and accessibility. The site uses HTTPS with a strong SSL configuration and integrates analytics tools such as Microsoft Clarity and Matomo for user behavior insights. Cookie consent is managed via Cookiebot, indicating attention to privacy compliance, although explicit privacy and terms of service pages are not detected. Security posture is solid with HTTPS and cookie consent, but the absence of explicit security headers and vulnerability disclosure policies suggests room for improvement. No critical vulnerabilities or suspicious content were found. The domain WHOIS data is privacy protected, which is typical for European organizations, and the website's content and social media presence support its legitimacy. Overall, the website is trustworthy, professional, and well-maintained, with recommendations to enhance privacy transparency and security headers to further strengthen its security and compliance stance.

Enetwild is a European non-profit consortium and network of wildlife professionals dedicated to harmonizing and enhancing wildlife health monitoring across Europe under the One Health approach. The organization facilitates collaboration among scientific institutions and citizen scientists, providing training, resources, and tools to support integrated wildlife disease surveillance and population monitoring. The website reflects a mature project founded in 2017, with a clear focus on scientific collaboration and public engagement through projects like MammalNet. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced DNS security and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but could improve transparency and security documentation.

Mammalnet is a European citizen science initiative focused on monitoring wild mammals through collaboration between scientific institutions and local enthusiasts. The platform offers educational resources, citizen participation opportunities, and multimedia content to engage a broad audience including students, researchers, and conservationists. Technically, the website is built on WordPress using modern plugins and themes, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and domain protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic, lacking cookie consent mechanisms. Overall, Mammalnet presents a credible and professional online presence supporting its mission in wildlife conservation and education.

I

INES Berlin

ines-berlin.de

41

INES Berlin is an independent research institute based in Berlin-Mitte, specializing in empirical social and economic research with a focus on labor market policy, education, and personnel research in Germany and Europe. The website presents a professional and consistent brand image, targeting academic and policy audiences interested in social sciences. Key services include data analysis, survey design, and qualitative research. The market position is that of a specialized, small-sized research entity within the education sector. Technically, the website is built using AngularJS and FontAwesome, hosted likely on rzone.de servers. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. No CMS or advanced analytics tools are detected, indicating a straightforward technical infrastructure. From a security perspective, the site uses HTTPS (assumed from standard practice though not explicitly confirmed), but lacks visible security headers and cookie consent mechanisms. No forms or contact emails are present on the homepage, limiting data collection risks but also reducing direct contact options. The WHOIS data is minimal but consistent with the hosting provider, with no suspicious patterns detected. Overall, the security posture is moderate with room for improvement in policy transparency and technical safeguards. The overall risk is low given the nature of the business and content, but strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers to improve trust and compliance.

A

ARPIK OSTRAVA s.r.o.

arpik.cz

42

ARPIK OSTRAVA s.r.o. is a Czech architectural and engineering firm established in 2008, specializing in comprehensive project documentation for civil, industrial, and residential buildings, including engineering activities and author supervision during construction. The company serves clients seeking professional architectural and engineering services primarily in the Czech Republic. The website is built on a modern WordPress platform using Elementor and related plugins, demonstrating a moderate to good level of technical maturity and mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and formal privacy or cookie policies indicates room for improvement. Overall, the website presents a professional image with clear contact information and related group companies, supporting business credibility.

G

G-Consult, spol. s r.o.

g-consult.cz

42

G-Consult, spol. s r.o. is a Czech Republic based medium-sized company specializing in engineering geology, geotechnics, hydrogeology, ecological consulting, risk analysis, and remediation work. Established in 2004, the company has a solid market presence with over 27 employees and more than 200 projects annually. Their services cater primarily to construction, environmental, and engineering sectors, offering comprehensive geological and ecological solutions. The website is professionally designed using WordPress and Elementor, featuring clear navigation and bilingual support (Czech and English).

K

Kreative Kommunikation GbR

kreative-kommunikation.com

47

Kreative Kommunikation GbR is a small German marketing and advertising agency with over 30 years of experience, specializing in creative marketing and advertising solutions across classic and digital media. Their services include strategy and consulting, classic media marketing, online marketing, direct marketing, and promotional items. The website is primarily in German and targets business clients seeking tailored marketing concepts. Technically, the website uses Bootstrap for responsive design and standard web technologies but lacks advanced CMS or analytics integrations. Security posture is basic with no detected security headers or incident response policies, and DNSSEC is not enabled on the domain. Privacy compliance is minimal with a basic privacy policy but no cookie consent mechanism. Overall, the website is functional but could benefit from improved security and privacy practices to enhance trust and compliance.

N

neuwaerts GmbH

neuwaerts.de

64

neuwaerts GmbH is a creative agency based in Hannover, Germany, specializing in brand development, communication consulting, and integrated marketing campaigns. With over 15 years of experience, they serve clients primarily in the German-speaking region, offering a blend of traditional print and modern digital services. Their market position is that of a well-established regional agency with a strong focus on innovation and client collaboration. Technically, the website is built on the Webflow platform, utilizing modern JavaScript libraries such as GSAP and Alpine.js for interactive features. The site is well-optimized for performance, mobile responsiveness, and accessibility, with a comprehensive cookie consent mechanism powered by CookieHub. SEO and structured data are properly implemented, enhancing discoverability and trust. From a security perspective, the site enforces HTTPS and employs cookie consent best practices. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, neuwaerts GmbH presents a professional, trustworthy, and user-friendly online presence with strong privacy compliance and business credibility. Strategic improvements in security transparency and policy publication could further strengthen their security posture and client confidence.

C

CTS Composite Technologie

gfk-bahnsteig.de

42

CTS Composite Technologie operates a professional website focused on innovative railway platform solutions made from glass fiber reinforced plastic (GFK). The company offers consulting, design, production, and turnkey assembly services targeting transportation infrastructure clients primarily in Germany. The website content is well-structured, relevant, and consistent with the company's niche market position. Technically, the site runs on Drupal 7 with common JavaScript libraries such as jQuery and Bootstrap, hosted on servers linked to kasserver.com. While the site is accessible and uses HTTPS, it lacks advanced security headers and uses an outdated jQuery version, which could pose security risks. Privacy compliance is addressed with a cookie consent banner and linked privacy and terms pages, but no explicit security or incident response policies are published. Overall, the site demonstrates a moderate to good security posture with room for improvement in security best practices and contact transparency.

T

TFG-GRUPPE

tfg-gruppe.de

55

TFG-GRUPPE is a regional partnership of specialized wholesalers serving the civil engineering (Tiefbau) and industrial technology sectors in Germany. The company positions itself as a central partner offering a broad product range and digital services such as the TFG DigitalBox. The website is professionally designed using Drupal 10, with good navigation, mobile optimization, and structured content. Privacy compliance is well addressed with GDPR-aligned policies and a cookie consent mechanism powered by Usercentrics. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website reflects a mature digital presence supporting the company's regional market leadership.

K

KLOSTERMANN GmbH

klostermann-group.com

9

Klostermann Group is a well-established German manufacturing and service company specializing in advertising technology, including light advertising, wayfinding systems, digital signage, steel constructions, and e-car charging stations. With over 200 employees and a history dating back to 1911, the company positions itself as a flexible and passionate provider in the signage and advertising sector. The website reflects this professional image with consistent branding and a clear presentation of services. Technically, the site is built on TYPO3 CMS and uses common JavaScript libraries such as jQuery and Owl Carousel to enhance user experience. The site is mobile optimized and includes a GDPR-compliant cookie consent mechanism. Security-wise, the site uses HTTPS and cookie consent but lacks visible security headers and explicit incident response contact information. The absence of WHOIS data for the domain is a notable concern, reducing trustworthiness despite the professional website content. Overall, the site is functional and professional but would benefit from enhanced security practices and clearer contact information.

K

KÜHN Sicherheit GmbH

kuehn-sicherheit.de

10

KÜHN Sicherheit GmbH is a well-established German security technology and services provider with over 50 years of experience. The company offers a comprehensive portfolio including alarm systems, video surveillance, mechanical security, fire protection, and smart home solutions, targeting both private and commercial customers primarily in Germany. Their market position is reinforced by multiple certifications and memberships in industry organizations, reflecting a strong trust foundation. Technically, the website is built on WordPress with the Divi theme and integrates modern tracking and booking plugins, demonstrating a mature digital infrastructure. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are absent. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for users and search engines.