Security Directory

C

Commune d'Aire-la-Ville

aire-la-ville.ch

47

The website www.aire-la-ville.ch serves as the official online presence for the Commune d'Aire-la-Ville, a local government entity in the Canton of Geneva, Switzerland. It provides residents and visitors with information about municipal administration, political bodies, administrative procedures, territorial planning, communication, foundations, regulations, job offers, and election information. The site is primarily targeted at local citizens and government stakeholders. Technically, the site is built on WordPress 6.8.3, incorporating standard web technologies such as HTML5, CSS3, Google Maps API, and Swiper.js for interactive elements. The site demonstrates moderate performance and good mobile optimization, with a clear navigation structure and consistent branding. Security-wise, the site uses HTTPS with a good SSL configuration but lacks visible security headers and published security policies. Privacy compliance is weak, with no privacy or cookie policies detected, and no consent mechanisms in place. Contact information is not clearly visible in the provided HTML content. Overall, the site is legitimate and trustworthy as a government portal but would benefit from enhanced privacy and security disclosures.

D

Deutsche Hochschulmedizin e.V.

deutsche-hochschulmedizin.de

47

Deutsche Hochschulmedizin e.V. is a non-profit association representing university hospitals and medical faculties across Germany. It serves as a central body advocating for the interests of university medicine, promoting collaboration in teaching, research, and patient care. The organization targets stakeholders in politics, science, and society, positioning itself as a key player in the German healthcare sector. The website reflects a professional and consistent brand image, with clear communication of its mission and services. Technically, the website is built on WordPress 6.8.3, utilizing modern JavaScript libraries such as jQuery, Swiper.js, and Borlabs Cookie for consent management. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but consistent with the website's legitimacy, supported by authoritative nameservers and external partner links. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility would enhance its security posture and user trust.

T

The Innovation Group srl

tig.it

53

The Innovation Group srl is an established Italian company founded in 1993, specializing in digital transformation consulting, market research, event organization, and media publishing. The company targets enterprises seeking to leverage digital technologies to innovate and grow. Their website reflects a mature digital presence with professional design, structured data, and multilingual support. Technically, the site is built on WordPress with modern frameworks and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and policies could be enhanced. Overall, the site is trustworthy and compliant with GDPR, though direct contact details like emails and phone numbers are not explicitly published, relying instead on contact forms.

T

tirol kliniken

tirol-kliniken.blog

48

The Tirol Kliniken Blog is an informational healthcare blog operated by the Tirol Kliniken GmbH, a large healthcare provider in Austria. The blog provides health-related articles, patient education, and updates relevant to the regional healthcare sector. The website is built on WordPress with modern optimization plugins and uses HTTPS for secure communication. Social media presence across major platforms supports its outreach efforts. However, the domain WHOIS data is not publicly available, indicating privacy protection which slightly reduces transparency. The site lacks explicit contact information and cookie consent mechanisms, which are important for GDPR compliance. Hidden gambling-related content embedded offscreen raises concerns about possible SEO spam or content injection, which should be investigated and remediated. Security headers are absent, suggesting room for improvement in security posture. Overall, the site is professionally designed and provides valuable content but would benefit from enhanced security and privacy compliance measures.

Ö

Österreichische Gesellschaft für Pneumologie (ÖGP)

ogp.at

49

The Österreichische Gesellschaft für Pneumologie (ÖGP) is a well-established Austrian scientific society dedicated to the research, education, and patient care in the field of lung diseases. The website serves as a comprehensive portal offering information on expert groups, publications, events, and educational resources targeting medical professionals and patients interested in pneumology. The organization leverages international networks to provide high-quality knowledge dissemination and advocacy within the Austrian healthcare system. Technically, the website is built on WordPress with modern plugins for SEO, analytics, and cookie consent, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit privacy and security policies are missing. Overall, the site is professional, trustworthy, and well-positioned within its niche.

T

The Innovation Group srl

theinnovationgroup.it

53

The Innovation Group srl is an established Italian company specializing in digital transformation, market research, and advisory services since 1993. The company operates through multiple business areas including TIG Factory (digital communication and content strategy), TIG Events (industry conferences), and TIG Media (editorial content and research). Their website reflects a professional and consistent brand image targeting enterprises seeking to navigate digital challenges. Technically, the site is built on WordPress with modern frameworks and integrates analytics and marketing tools such as Google Tag Manager and Facebook Pixel. Security posture is good with HTTPS and reCAPTCHA implemented, though some security headers could be enhanced. Privacy compliance is well addressed with clear cookie and privacy policies and GDPR consent on forms. Overall, the website demonstrates a mature digital presence with strong business credibility and moderate to good technical and security implementations.

G

Guten Tag Apotheke

mein-tag.de

61

MEIN TAG® is a German-language health advisory website affiliated with the Guten Tag Apotheke pharmacy network. It provides daily health and wellness content, including medical news, tips, recipes, and expert advice. The platform targets the general German-speaking public interested in health topics and wellness. The business model centers on content publishing with ancillary services such as a pharmacy finder and e-prescription information, supported by advertising partnerships and a linked online shop. Technically, the site is built on WordPress with modern plugins for SEO, advertising, and GDPR compliance, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. No critical vulnerabilities or privacy issues were detected. Overall, the site is professional, trustworthy, and compliant with GDPR, serving as a reliable health information source.

L

Löwen Apotheke

e-rezept-app.de

60

Löwen Apotheke operates a licensed online pharmacy service based in Baden-Baden, Germany, specializing in natural medicine and digital prescription fulfillment via their E-Rezept App. The website provides a modern e-commerce platform built on WordPress with WooCommerce and Elementor, offering a seamless user experience for customers to upload and redeem electronic prescriptions. The business is well-positioned in the healthcare sector with a focus on convenience and fast delivery, supported by positive customer ratings and certifications. Technically, the site uses contemporary web technologies and integrates Google Analytics and Tag Manager for marketing insights. Security posture is solid with HTTPS and secure forms, though improvements in security headers and incident response transparency are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie consent regulations.

U

Universitätsmedizin Bayern (UMB) e.V.

unimedizin-bayern.de

45

Universitätsmedizin Bayern (UMB) e.V. is a non-profit association representing the collaboration of Bavarian university medical faculties and university hospitals. Founded in 2017, it aims to promote cooperation in teaching, research, and patient care across six locations in Bavaria. The website serves as an informational and representative platform targeting academic, clinical, and political stakeholders within the Bavarian healthcare ecosystem. Technically, the site is built on WordPress with modern JavaScript libraries, offering a professional and responsive user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is supported by a comprehensive privacy policy, but cookie consent mechanisms are absent. Overall, the site reflects a trustworthy and credible organization with a clear mission and professional presentation.

Heart FM is a community-focused radio station based in Cape Town, South Africa, broadcasting on multiple FM frequencies and offering live streaming services. The station emphasizes authentic storytelling and community engagement, positioning itself as Cape Town's leading radio station with a strong digital and social media presence. The website is built on WordPress with modern plugins and technologies, providing a good user experience and mobile optimization. Security measures include HTTPS and reCAPTCHA, though some security headers and privacy compliance elements are missing. Overall, the site is professional and trustworthy, with room for improvement in privacy and security policy disclosures.

K

Kagiso Media

kmradio.co.za

45

Kagiso Media Radio is a prominent South African media company specializing in radio broadcasting, audio content, and digital publishing. Established in 2024, it operates multiple well-known radio stations and offers services including research and analytics, publishing, digital development, and podcast production. The company targets South African audiences and advertisers, positioning itself as a leading media entity in the region. Technically, the website is built on WordPress with modern front-end technologies like Swiper.js and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the website is professional, trustworthy, and content-rich, reflecting a medium-sized enterprise with a clear market presence.

K

Keiper & Co. KG

keiper-co.de

48

Keiper & Co. KG is a well-established German professional services firm specializing in auditing, tax consulting, and business advisory services since 1934. The company operates multiple offices across Germany, providing tailored solutions to medium-sized enterprises, entrepreneurs, freelancers, private individuals, foundations, and associations. Their website reflects a mature digital presence with comprehensive service descriptions, certifications, and a clear focus on client engagement. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO and user experience. Security measures include HTTPS, Google reCAPTCHA, and a cookie consent mechanism, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates a strong professional image with high trustworthiness and compliance with GDPR.

N

NXTGN

gruendermotor.io

41

NXTGN is a regional innovation platform based in Baden-Württemberg, Germany, focused on fostering startups, science, and industry collaboration. Founded in 2023, it operates as a startup factory, offering services such as deep tech incubation, acceleration, innovation and transformation consulting, and ecosystem connectivity. The platform targets entrepreneurial talents, startups seeking growth and funding, established companies looking for innovation, and ecosystem hubs. Technically, the website is built on WordPress with a modern tech stack including Gutenberg blocks, event management, and accessibility tools, reflecting a mature digital presence. Security posture is solid with HTTPS and domain transfer protection, though improvements like DNSSEC and security headers are recommended. Privacy compliance is partial, with cookie consent mechanisms but lacking explicit privacy and terms policies. Overall, the site is professional, trustworthy, and well-positioned in its niche.

N

NXTGN

join-nxtgn.com

56

NXTGN is a regional innovation platform based in Baden-Württemberg, Germany, focused on connecting startups, academia, and industry to foster deep tech innovation and ecosystem collaboration. Founded in 2023, it operates as a startup factory with services including incubation, acceleration, innovation and transformation consulting, and ecosystem connectivity. The platform targets entrepreneurial talents, startups seeking growth and funding, established companies looking for innovation, and ecosystem hubs. Technically, the website is built on WordPress with a modern tech stack including Gutenberg blocks, Gravity Forms, and SEO tools, delivering a professional and mobile-optimized user experience. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is credible and professionally presented, but could improve transparency and security practices.

M

Musikkultur Rheinsberg gGmbH

kammeroper-schloss-rheinsberg.de

45

Kammeroper Schloss Rheinsberg is a well-established international festival and music education organization based in Germany, focusing on young opera singers. It offers a rich program of operas, concerts, and an international singing competition, attracting a culturally engaged audience. The organization operates as a non-profit and maintains a professional online presence with detailed event and visitor information. Technically, the website is built on WordPress with modern libraries and plugins, providing good mobile optimization and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit privacy and security policy pages. Overall, the site is trustworthy and professionally managed, serving its cultural mission effectively.

M

Musikkultur Rheinsberg gGmbH

musikakademie-rheinsberg.de

45

Musikakademie Rheinsberg is a well-established cultural and educational institution based in Brandenburg, Germany, focused on music education, music theater, and amateur music. The organization offers a wide range of courses, workshops, and event hosting services targeting musicians, educators, and music enthusiasts. The website reflects a medium-sized non-profit entity with a clear mission to serve musicians of all generations and promote cultural engagement through music. The business model is centered on educational and cultural services with a strong regional presence. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap Grid, and various plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. The site demonstrates good mobile optimization, SEO practices, and moderate performance. The use of structured data enhances search engine visibility. However, hosting provider details are not explicitly identified. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. Security headers are not explicitly detected, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found in the content. Overall, the security posture is good but could be enhanced with additional policies and technical controls. The overall risk assessment is low with no signs of malicious activity or unsafe content. Strategic recommendations include publishing security and privacy policies, implementing security headers, and establishing incident response contacts to improve trust and compliance. The website is professional, trustworthy, and suitable for its target audience.

F

Federazione per l’Economia del Bene Comune in Italia Associazione di Promozione Sociale

economia-del-bene-comune.it

36

The website represents the Federazione per l’Economia del Bene Comune in Italia, a non-profit association promoting an ethical and sustainable economic model centered on the well-being of people and the planet. It offers tools such as the Matrice del Bene Comune and Bilancio del Bene Comune, alongside training, certification, and events to support organizations, municipalities, families, and individuals in adopting sustainable practices. The organization holds a recognized position within the Italian and international sustainability movement, targeting a diverse audience interested in ethical economy. Technically, the website is built on WordPress using the Divi theme and several plugins for social media integration, cookie compliance, and event management. The site is well-structured, mobile-optimized, and uses HTTPS with appropriate security headers, though some security enhancements could be implemented. Analytics tools are present but not fully configured, indicating room for improvement in data collection and marketing. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent mechanisms, with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies or incident response information, which could be beneficial for transparency and trust. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, serving as a credible platform for the organization's mission. Strategic recommendations include enhancing security headers, properly configuring analytics, and publishing clear security and incident response policies to further strengthen trust and compliance.

The HFD EdTech-Kompass website serves as a specialized platform showcasing educational technology products from various companies, primarily targeting educational institutions and stakeholders in Germany. It provides categorized listings for different education sectors such as school education, vocational training, higher education, and lifelong learning. The platform encourages EdTech companies to participate and offers contact channels for feedback and inquiries. Technically, the site is built on WordPress 6.8.3, employs modern JavaScript libraries like jQuery 3.7.1, and integrates a robust cookie consent mechanism via Borlabs Cookie, ensuring GDPR compliance. Hosting is managed through netcup, a reputable provider, and the site uses HTTPS with a good SSL configuration. Security posture is solid with no evident vulnerabilities or exposed sensitive data, although some security headers could be enhanced. Analytics are implemented using Google Analytics and Matomo, with transparent cookie management. Overall, the website is professional, well-structured, and trustworthy, with a clear focus on the EdTech sector in Germany.

Hochschulforum Digitalisierung is a well-established German non-profit initiative focused on supporting and shaping the digital transformation of higher education institutions. It operates as a think-and-do tank, providing networking, consulting, innovation, qualification, and publishing services to universities and related stakeholders. The organization is affiliated with reputable entities such as the Stifterverband, CHE, and HRK, reinforcing its credibility and market position within the education sector in Germany. The website content is rich, professionally designed, and regularly updated with news, events, and publications relevant to its target audience of higher education professionals and students. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WPBakery Page Builder, and multilingual support via WPML. It demonstrates good performance, mobile optimization, and SEO best practices. Cookie consent is managed via Borlabs Cookie, indicating attention to privacy compliance, although explicit privacy and terms of service documents are not detected. Security posture is solid with HTTPS enforced and some security plugins in use, but lacks published security policies or vulnerability disclosure information. Overall, the security posture is good but could be improved by adding explicit privacy, security, and incident response policies. No critical vulnerabilities or suspicious content were detected. The domain registration data is consistent with the website's claims, supporting legitimacy. The site is safe for general audiences and does not contain any adult or questionable content. Strategic recommendations include publishing comprehensive privacy and terms of service policies, establishing a security incident response framework, and enhancing security headers to further strengthen the security posture and trustworthiness of the website.

I

Institut für Angewandte Informatik (InfAI)

infai.org

55

InfAI is a well-established German research institute specializing in applied computer science with a focus on digitalization, energy systems, and transportation. The website reflects a professional and consistent brand presence, targeting researchers and industry stakeholders. The technical infrastructure is based on WordPress with modern plugins and themes, ensuring a good user experience and SEO optimization. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled. Privacy compliance is strong, featuring a comprehensive GDPR-compliant cookie consent mechanism and detailed privacy policies. Overall, the website demonstrates a mature digital presence suitable for its research and consultancy business model.

L

Landkreis Freyung-Grafenau

mehralsduerwartest.de

50

The website www.mehralsduerwartest.de serves as the official regional marketing campaign platform for Landkreis Freyung-Grafenau, Germany. It promotes the region's business landscape, quality of life, and community engagement through rich multimedia content, stories, and event information. The site targets residents, families, local businesses, and tourists, positioning itself as a trusted source for regional promotion backed by local government. Technically, the site is built on WordPress with modern plugins like Yoast SEO and Borlabs Cookie, ensuring good SEO and privacy compliance. The infrastructure is stable with HTTPS and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR regulations.

T

The International Network for Quality Assurance Agencies in Higher Education (INQAAHE)

inqaahe.org

45

INQAAHE is a globally recognized non-profit network dedicated to quality assurance in higher education, serving over 300 member organizations worldwide. The website reflects a mature digital presence built on WordPress with modern plugins and technologies, offering rich content including membership information, professional development, research, events, and news. The site is well-structured, mobile-optimized, and professionally branded, targeting quality assurance agencies and higher education stakeholders globally. Security posture is solid with HTTPS and secure form handling, though security headers and incident response policies are absent. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. WHOIS data is unavailable, limiting domain trust verification, but the website content and contact information support legitimacy. Overall, the site demonstrates a strong professional and educational focus with room for security and privacy enhancements.

S

Schwäbisch Media

suedfinder.de

49

Südfinder is a well-established regional weekly newspaper operated by Schwäbisch Media, targeting readers across southern Germany with a strong presence in local markets. The website offers digital e-paper editions, advertising services, and local contact points, reflecting a mature media business model focused on free distribution funded by advertising. Technically, the site is built on WordPress with a modern tech stack including jQuery and Cookiebot for consent management, ensuring GDPR compliance. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong, with comprehensive cookie consent and a detailed privacy policy. Overall, the site is trustworthy and professionally maintained, with no critical issues detected.

M

Musikkultur Rheinsberg gGmbH

musikkultur-rheinsberg.de

52

Musikkultur Rheinsberg gGmbH is a well-established cultural non-profit organization based in Germany, offering a broad range of music and cultural events, including concerts, operas, festivals, and educational courses. It operates through three main divisions: the Musikakademie Rheinsberg, the Kammeroper Schloss Rheinsberg, and the Schlosstheater Rheinsberg, serving both professional and amateur musicians as well as cultural audiences. The organization holds a strong market position as a cultural beacon in northern Brandenburg, with a clear focus on music and performing arts. The website is built on a modern WordPress platform utilizing popular plugins such as Yoast SEO, Borlabs Cookie for privacy compliance, and various JavaScript libraries for enhanced user experience. The site demonstrates good technical maturity with responsive design, SEO optimization, and moderate performance. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. From a security perspective, the site enforces HTTPS and uses privacy and cookie management plugins, but lacks explicit published security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, supporting the legitimacy of the domain and organization. Overall, the website is professional, trustworthy, and serves its cultural mission effectively. However, improvements in privacy documentation, security transparency, and accessibility could enhance compliance and user trust.

M

MARS – Center for Entrepreneurship

launchtomars.de

55

MARS – Center for Entrepreneurship is a university-affiliated startup support center based at Technische Hochschule Mannheim, Germany. Founded in 2020, it provides free entrepreneurial support, coaching, courses, workspace, and networking opportunities primarily to university members, alumni, and select external participants. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins and follows good security practices including HTTPS and cookie consent mechanisms. However, it lacks explicit security policies and incident response contacts, which could be improved. Overall, the site is trustworthy, compliant with GDPR, and safe for general audiences.

K

Kreuzberger Lebensbrücke gGmbH

kreuzberger-lebensbruecke.de

46

The website www.wald-bruecke.de represents Kreuzberger Lebensbrücke gGmbH, a German non-profit organization focused on social integration by providing employment and training opportunities for youth, disabled, and disadvantaged individuals. The business model relies on sales of office and hygiene products, as well as specialized blind products, to fund its social projects. The site is well-structured, professionally designed, and targets a German-speaking audience interested in social welfare and integration services. Technically, the site runs on WordPress with standard plugins like Yoast SEO and CookieYes for cookie consent management. Hosting is provided by Cloudpit, as indicated by the nameservers. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and incident response contact details. The site contains some suspicious hidden content related to online casinos, which may be SEO spam or misplaced text, slightly impacting trust. Overall, the site is functional, compliant with GDPR, and trustworthy for its intended audience.

A

Antifaschistisches Bildungszentrum und Archiv Göttingen e.V.

antifaschistisches-archiv.org

69

The Antifaschistisches Bildungszentrum und Archiv Göttingen e.V. is a small non-profit organization based in Germany focused on antifascist education, archiving, and activism. The website serves as a platform for educational content, event announcements, archival access, and publications related to right-wing extremism and antifascist efforts. It targets researchers, activists, and the general public interested in these topics. The organization maintains a consistent brand presence and provides encrypted contact forms to enhance privacy and security. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including Matomo for analytics and several plugins for GDPR compliance and media management. Hosting is provided by InterNetX GmbH, and the site uses HTTPS with good SSL configuration. The site is moderately performant, mobile-optimized, and has good SEO and accessibility basics. From a security perspective, the site employs HTTPS, encrypted contact forms, and a cookie consent mechanism, but lacks explicit security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and serves its non-profit educational mission effectively. Strategic recommendations include enhancing security headers, publishing a security.txt file, and expanding incident response documentation to further improve security posture and trust.

I

Institut für Lehrerfort- und -weiterbildung (ILF Mainz)

ilf-mainz.de

58

The Institut für Lehrerfort- und -weiterbildung (ILF Mainz) is a well-established non-profit educational institute focused on providing professional development and certification programs for teachers and pedagogical staff in the Rheinland-Pfalz and Saarland regions of Germany. The institute operates under the umbrella of a charitable company supported by multiple (Erz-)Diözesen, reflecting its strong regional and religious affiliations. The website clearly targets educators and school leadership personnel, offering a broad range of training services including in-house and online courses. Technically, the website is built on a modern WordPress platform with up-to-date plugins and libraries, ensuring a stable and maintainable infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some accessibility features could be enhanced. The use of HTTPS and cookie consent mechanisms indicates a commitment to user privacy and security. From a security perspective, the site employs HTTPS with a good SSL configuration but lacks some advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent, aligning with GDPR requirements. Overall, the ILF Mainz website presents a trustworthy, professional, and secure online presence appropriate for its educational mission. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen its posture.

S

ScaDS.AI Dresden/Leipzig

scads.de

50

ScaDS.AI Dresden/Leipzig is a German government-funded research center specializing in scalable data analytics, artificial intelligence, and big data. It operates as a permanent research facility with strong ties to TU Dresden and Leipzig University, positioning itself as a key player among Germany's AI competence centers. The website reflects a mature digital presence with comprehensive content targeting researchers, students, professionals, and the general public interested in AI and data science. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses several plugins for enhanced functionality, including Contact Form 7 and Yoast SEO. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and no obvious vulnerabilities, but lacks DNSSEC and some security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, supporting its academic and research mission.

S

ScaDS.AI

scads.ai

45

ScaDS.AI Dresden/Leipzig is a government-funded German research center specializing in scalable data analytics, artificial intelligence, and big data. It operates as a permanent research facility with strong academic partnerships with TU Dresden and Leipzig University. The center offers interdisciplinary research, graduate education, consulting, and public engagement through its Living Lab. The website reflects a mature digital presence with professional design and comprehensive content tailored to researchers, students, and professionals in AI and data science. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses common plugins for forms and media display. Security posture is solid with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is good with a clear privacy policy but lacks cookie consent mechanisms. Overall, the site is trustworthy, well-maintained, and aligned with its academic and governmental mission.

W

Website-Check

website-check.de

56

Website-Check is a German legal-tech company specializing in automated compliance solutions for websites and online shops, including legally compliant texts, cybersecurity checks, and cookie consent tools. The company positions itself as a trusted partner for businesses seeking to maintain GDPR compliance and cybersecurity hygiene with minimal effort, leveraging AI technology and expert legal support. The website is professionally designed using WordPress and Elementor, optimized for SEO and mobile devices, and features clear navigation and strong branding consistency. Technically, the site uses modern plugins and frameworks, hosted via DomainDiscount24, with HTTPS enabled and a good security posture. However, explicit privacy and cookie policies are not clearly found in the provided content, and no direct contact information is visible, which slightly impacts privacy compliance and user trust. Overall, the domain registration data aligns well with the website's claims, indicating legitimacy and trustworthiness.

C

Con i Bambini

percorsiconibambini.it

39

Percorsi con i bambini is a non-profit network platform managed by Con i Bambini, focused on coordinating and sharing projects aimed at combating educational poverty among minors in Italy. The website serves as a collaborative space for project leaders and partners to publish updates, articles, and event information. It is affiliated with Fondazione CON IL SUD, indicating a strong institutional backing. The platform targets organizations involved in social and educational initiatives, providing a niche but important service in the non-profit sector. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and the Yoast SEO plugin, ensuring good SEO and mobile responsiveness. It uses Matomo for analytics, emphasizing privacy. The site is well-structured with comprehensive metadata and structured data for SEO. However, the domain is currently expired, posing a risk to availability. Security headers are not explicitly detected, and there is no visible security policy or incident response information, which are areas for improvement. From a security perspective, the site uses HTTPS and DNSSEC, which are positive indicators. The lack of explicit security headers and vulnerability disclosure mechanisms suggests moderate security maturity. Privacy compliance is good, with clear privacy and cookie policies and a consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is professional, trustworthy, and serves a clear social mission. The main risk is operational due to domain expiration and some missing security best practices. Addressing these will improve resilience and trustworthiness.

B

basemap.de

basiskarte.com

46

basemap.de is a German-focused official cartographic service provider offering a range of modern map products including vector and raster services, 3D geodata visualization, and flexible cartographic solutions. The website is professionally designed using WordPress and modern plugins, targeting government agencies, GIS professionals, and businesses requiring authoritative geospatial data. The technical infrastructure is solid, leveraging a reputable hosting provider and modern web technologies, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and incident response transparency. Privacy compliance is adequate with a privacy policy present but lacks cookie consent mechanisms. Overall, the site is trustworthy and well-positioned in its niche.

N

NESİL BİLİŞİM TEKNOLOJİLERİ TİC. A.Ş.

nesilteknoloji.com

62

NESİL BİLİŞİM TEKNOLOJİLERİ TİC. A.Ş. operates as a prominent Turkish technology company specializing in cybersecurity, data protection, and regulatory compliance services such as KVKK consultancy, penetration testing, and information security management. The company targets corporate clients in regulated sectors including banking, telecommunications, healthcare, and payment systems, positioning itself as a trusted partner with certifications like ISO 27001 and accreditations from TSE and Türkak. Their service portfolio includes software code analysis, AI solutions, and privacy management platforms, reflecting a comprehensive approach to modern cybersecurity challenges. Technically, the website is built on WordPress with modern plugins and frameworks, incorporating SEO best practices, accessibility features, and integration with Google Analytics and Tag Manager. The site demonstrates good mobile optimization and user experience, with clear navigation and professional design. Security measures include HTTPS enforcement and use of reCAPTCHA, though some security headers are not explicitly detected and could be improved. From a security posture perspective, the company shows maturity with published security policies and certifications, but lacks visible incident response or vulnerability disclosure mechanisms. The absence of WHOIS registration data for the domain is a notable anomaly that reduces trust and should be investigated further to confirm domain ownership and legitimacy. Overall, NESİL Teknoloji presents a professional and credible digital presence with strong compliance and security focus, serving a critical niche in the Turkish market. Addressing WHOIS transparency and enhancing security headers would further strengthen their trustworthiness and security posture.

G

German Road Races (GRR) e.V.

germanroadraces.de

42

German Road Races (GRR) e.V. is a German non-profit association representing running event organizers. It serves as a community hub and voice for running sports, providing event promotion, knowledge exchange, and awards. The website is professionally designed using WordPress with BuddyBoss and Elementor, offering good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy policies are present and GDPR compliant. Contact is available via email and forms, and social media presence supports community engagement. Overall, the site reflects a legitimate, well-maintained organization with a clear focus on running sports in Germany.

E

exist – From science to business

exist.de

72

exist is a German government-backed program under the Bundesministerium für Wirtschaft und Energie (BMWE) that supports university graduates, scientists, and students in preparing technology-oriented and knowledge-based startups. Established in 1998, it offers multiple funding and support programs such as the exist Gründungsstipendium, exist Women, and exist Forschungstransfer, aiming to foster a vibrant startup culture and increase successful technology spin-offs from academia. The website reflects a professional and consistent brand presence with clear communication of its services and goals. Technically, the site is built on WordPress with modern plugins and uses Matomo analytics for privacy-conscious tracking. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates strong business credibility and compliance with GDPR, serving as a trustworthy resource for its target audience.

C

COSMO Wissenschaftsforum

cosmo-wissenschaftsforum.de

44

COSMO Wissenschaftsforum is a science communication and exhibition platform located in Dresden, Germany, focused on engaging the public with current scientific research in areas such as artificial intelligence, robotics, and medical technology. It offers interactive exhibitions, workshops for children and youth, guided tours, and space rental services. The website is built on WordPress with Elementor and integrates various plugins for social media feeds, event management, and GDPR compliance. The technical infrastructure is modern and hosted on OVH, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and secure forms, though some security headers and policies could be improved. Privacy compliance is well addressed with a comprehensive privacy and cookie policy. Overall, the website presents a professional and trustworthy image suitable for its educational mission.

H

HZDR Innovators School

hzdr-academy.de

53

The HZDR Academy website serves as an internal coaching and qualification platform for employees of the Helmholtz-Zentrum Dresden-Rossendorf (HZDR). It focuses on scientific knowledge transfer, career development, and networking within the research community. The site offers event listings, e-learning resources, and links to career support services, targeting doctoral researchers, postdocs, group leaders, and technical staff. The business model is centered on employee development and fostering innovation within the HZDR ecosystem. Technically, the website is built on WordPress with a modern stack including Yoast SEO, Flatpickr, and custom event management plugins. The site is mobile-optimized, well-structured, and uses HTTPS with good SSL configuration. However, some security best practices such as security headers and explicit cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. The domain registration aligns with the institutional affiliation, supporting legitimacy. Privacy policies are present but could be more comprehensive with explicit GDPR consent mechanisms. No incident response or vulnerability disclosure information is provided, which is a potential area for enhancement. Overall, the website is professional, trustworthy, and serves its internal audience well. Strategic recommendations include implementing security headers, adding cookie consent banners, publishing security policies, and establishing a vulnerability disclosure process to strengthen security and compliance further.

B

basemap.de

basemap.de

46

basemap.de is a specialized provider of official cartographic products and web mapping services for Germany, targeting government agencies and GIS professionals. The website presents a professional and consistent brand image with a focus on official geospatial data products derived from centralized data sources. The technical infrastructure is based on a modern WordPress CMS with popular plugins and frameworks, hosted on German servers, indicating a mature digital presence. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks advanced security headers and incident response disclosures. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and well-positioned in its niche, though improvements in security and compliance would enhance its profile.

P

Parlabox

parlabox.pro

62

Parlabox is a German-based company providing a cloud-based digital whistleblower reporting system designed to help small and medium enterprises comply with the EU Whistleblower Directive and the German Hinweisgeberschutzgesetz. Their solution emphasizes legal compliance, end-to-end encryption, and ease of use, targeting companies required by law to implement internal reporting channels. The website is professionally designed using WordPress and Elementor, featuring rich media content and structured data to enhance SEO and user experience. The technical infrastructure is modern and includes performance optimizations and multilingual support. Security posture is solid with HTTPS and encryption claims, though some security headers could be improved. Privacy compliance is partially addressed with cookie consent but lacks explicit privacy and terms of service pages. WHOIS data is unavailable due to privacy protections, which is justified given the sensitive nature of the business. Overall, Parlabox presents a trustworthy and professional digital compliance solution with room for enhanced transparency and security documentation.

E

Entrepreneurship Hub

entrepreneurship-hub.org

56

The Entrepreneurship Hub is an educational initiative focused on fostering entrepreneurship and innovation among students, primarily affiliated with the TU Braunschweig and Ostfalia Hochschule in Germany. It offers a range of teaching formats, research projects, and support services aimed at enabling students to successfully found innovative companies. The website is professionally designed using WordPress and Elementor, with a clear structure and good mobile optimization. It integrates GDPR-compliant cookie consent and uses Matomo for analytics, reflecting a mature approach to privacy and data protection. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The absence of WHOIS data is likely due to privacy protection, which is justified for this type of educational entity. Overall, the site presents a trustworthy and professional image with strong business credibility in the education sector.

M

Musikkultur Rheinsberg gGmbH

schlosstheater-rheinsberg.de

10

Musikkultur Rheinsberg gGmbH operates the Schlosstheater Rheinsberg, a year-round cultural venue offering concerts, theater, dance, film, and opera in Rheinsberg, Germany. The organization targets a broad audience including families and culture enthusiasts, providing diverse programming and venue rental services. The website reflects a well-established regional cultural institution with a professional online presence and clear event information. Technically, the website is built on WordPress with modern plugins and libraries such as jQuery, Slick Slider, and Yoast SEO, indicating a mature digital infrastructure. The site is mobile-optimized and uses HTTPS with good SEO practices, although some accessibility features could be improved. Cookie consent is managed via Borlabs Cookie, showing attention to privacy compliance. From a security perspective, the site uses HTTPS and nonce tokens for AJAX calls but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The absence of a privacy policy page is a notable compliance gap. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The risk assessment is low given the site's cultural and non-profit nature, absence of sensitive data exposure, and legitimate domain registration. Strategic recommendations include publishing a comprehensive privacy policy, implementing security headers, and adding vulnerability disclosure information to improve trust and compliance.

K

KESLAR

keslar.de

9

KESLAR is a German energy supplier specializing in heating oil, fuels, lubricants, natural gas, electricity, and AVIA pellets, targeting private individuals, agriculture, and commercial sectors. The company operates a professional website built on WordPress with the Divi theme, enhanced by SEO and accessibility tools. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and formal security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the business appears legitimate and regionally focused with room for improvement in transparency and security practices.

K

Konzeptwerk Neue Ökonomie

konzeptwerk-neue-oekonomie.org

11

Konzeptwerk Neue Ökonomie is a German non-profit thinktank and educational organization founded in 2012, focusing on social-ecological transformation, climate justice, and transformative education. The organization targets social movements, educators, activists, and the general public interested in sustainable societal change. Their offerings include research, educational workshops, publications, podcasts, and consulting services. The website is professionally designed, content-rich, and well-structured, supporting multiple languages and providing clear navigation and user engagement features such as newsletters and contact forms. Technically, the site is built on WordPress with modern plugins and technologies, hosted by a reputable provider, and optimized for performance and mobile devices. Security posture is strong with HTTPS, privacy-conscious analytics (Matomo) with explicit consent, and cookie management, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the organization's history. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

L

Lime Tree Theatre

limetreebelltable.ie

51

Lime Tree Theatre is a cultural venue and event organizer based in Limerick, Ireland, focusing on theatre, music, dance, film, and community arts programs. The organization supports local artists and audiences through diverse programming and professional development initiatives such as Belltable:Connect. The website reflects a medium-sized non-profit entity with a strong local presence and partnerships with arts councils and educational institutions. Technically, the site is built on WordPress with modern plugins and technologies, offering good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS, hCaptcha on forms, and no visible vulnerabilities, though DNSSEC and some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned in its market niche.

A

AQAS e.V.

aqas.de

66

AQAS e.V. is a German accreditation agency specializing in quality assurance for higher education institutions through program and system accreditation. The organization holds recognized certifications from European and international accreditation bodies, positioning it as a reputable entity in the education sector. The website presents clear service offerings including accreditation procedures, consulting, workshops, and international accreditation services, targeting academic institutions and stakeholders. Technically, the website is built on WordPress with modern plugins and a professional theme, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and some obfuscation of emails, but lacks explicit security headers and cookie consent mechanisms. No forms or direct contact details are visible on the homepage, suggesting contact information is provided on dedicated pages. Overall, the site is professional, trustworthy, and compliant with GDPR, though improvements in security policies and transparency are recommended.

E

ELAN e.V.

elan-ev.de

48

ELAN e.V. is a German non-profit organization specializing in the development and support of open source software tailored for higher education institutions. With over 15 years of active involvement in open source communities, ELAN e.V. empowers universities by providing flexible, secure digital teaching and learning tools. Their market position is strengthened by their community engagement and recognized certifications such as the Open EdTech Associate Membership. The organization offers services including software development, consulting, hosting, and support, targeting educators and students in the academic sector. Technically, the website is built on a modern WordPress platform enhanced with plugins like Rank Math PRO for SEO, Matomo for privacy-conscious analytics, and Oxygen Builder for design flexibility. Hosting and DNS services are managed via Cloudflare, ensuring robust performance and security. The site demonstrates good mobile optimization and accessibility, with a professional and consistent branding approach. From a security perspective, the site enforces HTTPS and employs privacy-respecting analytics. However, it lacks visible cookie consent mechanisms and explicit security or incident response policies. No vulnerability disclosure or security.txt files are present, which could be improved to enhance transparency and trust. Overall, the security posture is solid but could benefit from additional compliance features. The overall risk assessment is low, with the website presenting a trustworthy and professional front for ELAN e.V. Strategic recommendations include implementing cookie consent, publishing security policies, and adding vulnerability disclosure information to further strengthen compliance and user trust.

D

data-quest Suchi & Berg GmbH

data-quest.de

45

data-quest Suchi & Berg GmbH is a specialized German company providing consulting, development, installation, and support services primarily for educational institutions, especially universities. They focus on open-source learning and campus management software, notably the Stud.IP system, which they co-develop and support. Their market position is that of a niche full-service provider with over 20 years of experience, serving a targeted audience of educational and administrative organizations. The website content is professional, well-structured, and clearly communicates their services and expertise. Technically, the site is built on WordPress with modern plugins and themes, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements are possible in security headers and incident response transparency. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site is trustworthy and credible, reflecting a mature business with strong industry ties.

C

CampusSource e.V.

campussource.de

62

CampusSource e.V. is a non-profit organization focused on promoting and supporting open source software solutions for higher education institutions in Germany. The website serves as a community and information hub, offering resources, news, and collaboration opportunities related to open source software in academia. The organization targets universities and related stakeholders, positioning itself as a niche player in the education technology sector. The business model revolves around community engagement and software development support rather than commercial sales. Technically, the website is built on WordPress 6.8.3, utilizing popular plugins such as Yoast SEO for search engine optimization and Real Cookie Banner for GDPR-compliant cookie consent management. Matomo analytics is employed for privacy-conscious user tracking. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. Hosting details are not explicitly disclosed but the domain uses multiple name servers under ui-dns, indicating a stable DNS setup. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism. However, no explicit security headers were detected, and there is no published security or incident response policy. No vulnerabilities or exposed sensitive data were found in the analysis. The WHOIS data is consistent and trustworthy, with no privacy protection or suspicious registration patterns. Overall, the security posture is solid but could be improved by adding security headers and formal policies. The overall risk assessment is low, with no critical issues detected. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance. The website is professional, trustworthy, and compliant with GDPR requirements, making it a reliable resource for its target audience.