Security Directory

D

Deutscher Olympischer Sportbund (DOSB)

deutsches-sportabzeichen.de

57

The Deutsches Sportabzeichen website serves as the official platform for Germany's prestigious multi-disciplinary sports award, managed by the Deutscher Olympischer Sportbund (DOSB). It targets a broad audience including individuals of all ages and abilities, schools, sports clubs, and examiners. The site offers comprehensive information, digital services for submitting and managing awards, event details, and community engagement resources. The platform is well-positioned as the authoritative source for the Sportabzeichen, supported by strong partnerships and a large active user base.

L

LandesSportBund Niedersachsen

lsb-niedersachsen.de

55

The LandesSportBund Niedersachsen is a prominent non-profit sports federation serving the Niedersachsen region in Germany. It acts as a lobbyist, service provider, and promoter of sports activities, offering a wide range of services including advocacy, funding, education, and member support. The website reflects a mature organization with a clear market position as the leading sports federation in the region, targeting a broad audience including sports clubs, athletes, and the general public. Technically, the website is built on TYPO3 CMS with a modern technology stack including jQuery, Bootstrap, and Matomo analytics configured for privacy compliance. The site is well-optimized for mobile and accessibility, featuring structured navigation and comprehensive content. Hosting appears to be local to Germany, consistent with the organization's regional focus. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms with disabled tracking cookies by default. While no explicit security policies or incident response contacts are published, no vulnerabilities or sensitive data exposures were detected. Security headers could be improved for enhanced protection. Overall, the website presents a professional, trustworthy, and privacy-conscious digital presence suitable for a large non-profit organization. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to strengthen trust and compliance.

L

Landeshauptstadt Hannover

hannover.de

55

The website www.hannover.de serves as the official portal for the city and region of Hannover, Germany. It provides comprehensive information and services for citizens, tourists, and businesses, including cultural events, tourism highlights, public services, and economic development resources. The portal is well-positioned as a trusted government resource with a broad target audience encompassing residents, visitors, and local enterprises. The business model focuses on public service delivery and regional promotion. Technically, the site employs modern web technologies such as React components, Matomo analytics with GDPR-compliant consent management, and a CMS likely based on EZ Publish. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate to fast performance profile. The infrastructure appears robust and professionally maintained. From a security perspective, the site enforces HTTPS, uses consent management for privacy compliance, and avoids exposing sensitive data. While explicit security headers are not fully confirmed, the overall posture is strong with no visible vulnerabilities. The WHOIS data aligns with the official nature of the site, confirming legitimacy and consistency. Overall, the site presents a low-risk profile with high trustworthiness and professionalism. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure mechanisms to further enhance transparency and security posture.

A

active elements GmbH

active-elements.de

57

active elements GmbH is a well-established German agency specializing in web design, print design, SEO, and digital marketing services. With nearly two decades of experience, the company serves businesses and organizations seeking comprehensive digital and print marketing solutions. Their offerings include modern web development using TYPO3 and WordPress, creative print projects, SEO optimization, Google AdWords campaign management, and client training through e-learning and on-site sessions. The company emphasizes personalized service and full support, positioning itself as a trusted partner in the regional market around Hannover and Garbsen. Technically, the website is built on a modern stack including HTML5, CSS3, JavaScript, Bootstrap, and CMS platforms TYPO3 and WordPress. Hosting is provided by Hetzner, a reputable German hosting provider, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with privacy-conscious analytics via Matomo. Cookie consent and GDPR-compliant privacy policies are implemented, reflecting a mature digital presence. From a security perspective, the site uses HTTPS with strong SSL configuration and secure form handling. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which are recommended for enhanced protection. No vulnerabilities or suspicious elements were detected in the content or scripts. Overall, active elements GmbH presents a professional, trustworthy, and technically sound online presence. The company demonstrates good compliance with privacy regulations and offers a comprehensive suite of services for digital and print marketing. Strategic improvements in security transparency and incident response readiness would further strengthen their security posture.

F

Fachagentur Nachwachsende Rohstoffe e.V.

bauerhubert.de

41

Bauer Hubert is an educational website operated by Fachagentur Nachwachsende Rohstoffe e.V., a German non-profit organization focused on renewable raw materials. The site targets children and parents by providing educational stories, games, comics, and audio plays to promote awareness of sustainable resources. The website is well-branded, consistent, and supported by official German government and agency partners, reflecting a strong market position in educational content for renewable energy and sustainability. Technically, the website is built on TYPO3 CMS with Foundation CSS and uses jQuery and Matomo analytics with cookies disabled, indicating a privacy-conscious approach. The site is hosted on servers associated with agenturserver domains, suggesting professional hosting. The website is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. From a security perspective, Bauer Hubert enforces HTTPS and disables cookies in analytics, which is positive. However, it lacks visible security headers, a cookie consent mechanism, and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. WHOIS data is consistent with the website's claims, showing legitimacy and stable domain registration. Overall, the website presents a low-risk profile with good business credibility and technical implementation but could improve privacy compliance and security posture by adding cookie consent, security headers, and formal security policies.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

charta-fuer-holz.de

43

The website www.charta-fuer-holz.de represents the 'Charta für Holz 2.0' initiative managed by the Fachagentur Nachwachsende Rohstoffe e.V. (FNR), a German non-profit agency focused on promoting sustainable wood use and forestry. The site serves as an information hub for government bodies, industry stakeholders, researchers, and the public, offering resources, event information, and project updates related to renewable raw materials and wood construction. The business model is non-profit and government-supported, positioning the organization as a key player in Germany's sustainable forestry sector. Technically, the website is built on TYPO3 CMS with modern front-end technologies including jQuery, Foundation CSS, and Slick Carousel. It is mobile-optimized and provides a good user experience with clear navigation and professional design. Analytics are implemented via Matomo with cookies disabled, reflecting a privacy-conscious approach. However, the site lacks a cookie consent mechanism and some security headers, which are areas for improvement. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. No major vulnerabilities or security incidents are evident. The absence of a published security policy or incident response contact reduces transparency but does not indicate immediate risk. WHOIS data is consistent and supports the legitimacy of the domain and organization. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and publishing security and incident response policies to enhance compliance and trust.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

holzbauplus-wettbewerb.info

62

The website holzbauplus-wettbewerb.info serves as the official platform for the Bundeswettbewerb HolzbauPlus 2025/26, a German federal competition promoting sustainable wood construction projects. It is managed by the Fachagentur Nachwachsende Rohstoffe e.V. (FNR) under the auspices of the German Federal Ministry of Food, Agriculture and Homeland. The site provides comprehensive information about competition goals, categories, jury, archives, and an online application portal. The content is professionally presented, targeting builders, planners, and stakeholders interested in sustainable building practices in Germany. Technically, the website is built on TYPO3 CMS with modern frontend frameworks such as Foundation and uses privacy-conscious Matomo analytics with cookies disabled. The site is mobile-optimized and demonstrates good SEO and accessibility basics. HTTPS is enforced, but security headers are missing, and no cookie consent mechanism is present, indicating areas for improvement in security and privacy compliance. From a security perspective, the site shows a solid posture with secure forms and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and cookie consent could be addressed to enhance compliance and protection. The WHOIS data is malformed and lacks detailed registrant information, likely due to privacy protection, but the website's official nature and government affiliation support its legitimacy. Overall, the website is trustworthy, professionally maintained, and serves an important government function promoting sustainable construction. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, and publishing security and incident response policies to further strengthen trust and compliance.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

klav.de

45

KLAV is a German government-affiliated competence center focused on reducing food waste across the supply chain sectors including primary production, processing, trade, and out-of-home catering. It operates as part of the National Strategy to reduce food waste and collaborates with economic actors, policymakers, and scientists. The website is professionally designed using TYPO3 CMS and modern frontend technologies, providing comprehensive information, seminar offerings, and sector dialogue facilitation. The technical infrastructure is solid with good mobile optimization and accessibility. Security posture is strong with HTTPS and privacy-conscious analytics (Matomo with disabled cookies), though explicit cookie consent and security policies are missing. Contact information is clearly presented, enhancing trust and credibility. Overall, KLAV presents a trustworthy and authoritative online presence aligned with its governmental mission.

F

Fachagentur Nachwachsende Rohstoffe e. V. (FNR)

klimaanpassung-wald.de

44

The website www.klimaanpassung-wald.de is an official government-related platform operated by the Fachagentur Nachwachsende Rohstoffe e. V. (FNR) that provides comprehensive information and support for the climate-adapted forest management funding program in Germany. It serves private and communal forest owners by offering program details, document submission options, and relevant news. The site is well-positioned as an authoritative source within the forestry and environmental protection sector, supported by government ministries. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and uses Matomo for privacy-conscious analytics. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced, though some security headers are missing and privacy policies are not explicitly presented. Contact information is clearly provided, enhancing trust and credibility.

W

Westermann Gruppe

westermanngruppe.de

10

Westermann Gruppe is a prominent German educational media provider offering a broad range of digital and print educational products, supported by printing and logistics services. The company holds a strong market position in the German-speaking education sector, serving educators, students, and institutions. Their website reflects a professional and consistent brand image with clear navigation and comprehensive business information. Technically, the site is built on TYPO3 CMS with modern web technologies and includes GDPR-compliant cookie consent mechanisms and privacy protections. Security posture is solid with HTTPS enforced and privacy-respecting analytics, though formal security policies and incident response contacts are absent. Overall, the website is trustworthy, well-maintained, and compliant with relevant privacy regulations.

N

Niedersächsische Lotto-Sport-Stiftung

lotto-sport-stiftung.de

56

The Niedersächsische Lotto-Sport-Stiftung is a regional non-profit foundation focused on promoting sports and the integration of people with migration backgrounds in Lower Saxony, Germany. The website serves as an information and engagement platform, offering news, project details, funding opportunities, and community initiatives. It targets local organizations, sports clubs, and integration stakeholders. The foundation maintains a professional online presence with clear branding and consistent messaging aligned with its mission. Technically, the website employs modern web technologies including Vue.js and Bootstrap, with performance and mobile optimization rated as good. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. However, some technical improvements are possible, such as implementing security headers and a cookie consent mechanism to enhance GDPR compliance. From a security perspective, the site uses HTTPS with a strong SSL configuration and no visible vulnerabilities in the HTML content. The absence of explicit security policies or incident response contacts suggests room for maturity in security governance. Overall, the domain registration data aligns well with the foundation's identity, supporting legitimacy and trustworthiness. The website is safe for general audiences, containing no adult or explicit content. It provides valuable resources and engagement channels for its community. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding cookie consent to improve compliance and user trust.

R

Regionssportbund Hannover e.V.

rsbhannover.de

56

Regionssportbund Hannover e.V. is a well-established regional sports association based in Hannover, Germany, focused on supporting local sports clubs, volunteers, and youth organizations. The website provides comprehensive information about membership, events, funding opportunities, educational programs, and community projects. It serves as a hub for regional sports development and inclusion initiatives. Technically, the site is built on TYPO3 CMS with Bootstrap framework, featuring modern web standards, good mobile optimization, and accessibility enhancements such as the eyeAble assistive technology plugin. Privacy is well addressed with a GDPR-compliant privacy policy, cookie consent mechanism, and use of privacy-respecting analytics (Matomo). Security posture is solid with HTTPS enforced and privacy-enhanced video embedding, though explicit security headers and incident response policies are not publicly documented. Overall, the website is professional, trustworthy, and well-suited for its target audience.

W

Wissenschaftsrat

wissenschaftsrat.de

58

The Wissenschaftsrat website represents a German government advisory council focused on science, research, and higher education policy. It provides expert recommendations, evaluations, and accreditation services to universities and research institutions. The site targets academics, policymakers, and the public with comprehensive, well-structured content in German. The business model is non-profit and advisory, positioning the Wissenschaftsrat as a leading authority in its sector within Germany. Technically, the website is built on the Tremonia DXP CMS platform, using modern web technologies including HTML5, CSS3, JavaScript, and Matomo for analytics. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting appears to be via EPAG DNS services, indicating a professional infrastructure. Security posture is strong with HTTPS enforced and cookie consent implemented. However, the site lacks visible security headers and a published security policy or vulnerability disclosure mechanism. No exposed sensitive data or vulnerabilities were detected. Privacy compliance is good, with a comprehensive privacy policy and cookie banner aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, with no signs of malicious content or security risks. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure channel to further strengthen trust and compliance.

C

Clinic Bad Ragaz

clinic-badragaz.ch

50

Clinic Bad Ragaz is a reputable Swiss rehabilitation clinic specializing in inpatient rehabilitation services across multiple medical disciplines. The clinic combines evidence-based medical care with luxury hospitality, positioning itself as a premium healthcare provider within the Grand Resort Bad Ragaz group. The website reflects a professional and user-friendly digital presence built on TYPO3 CMS, featuring comprehensive service descriptions and clear contact information. Technically, the site employs modern analytics and tag management tools, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

D

dieGitarre.ch

diegitarre.ch

53

dieGitarre.ch is a Swiss-based online platform dedicated to the world of acoustic guitars, providing both e-commerce services and informational content targeted at guitar enthusiasts and musicians. The website leverages a modern WordPress infrastructure with Kadence theme and blocks, WooCommerce for e-commerce capabilities, and integrates privacy and security tools such as CleanTalk anti-spam and CookieYes for cookie consent. Matomo analytics is used for user tracking with moderate privacy considerations. Security posture is solid with HTTPS and security headers properly configured, though the absence of explicit privacy policy and terms of service pages indicates room for compliance improvement. Overall, the site presents a professional and trustworthy front for a small retail business in the musical instruments niche.

D

Deutscher Olympischer Sportbund

dosb.de

57

The Deutscher Olympischer Sportbund (DOSB) is the national umbrella organization representing sports interests in Germany, focusing on club sports, athlete support, and the Olympic and Paralympic movement. The website serves as an authoritative platform for sports organizations, athletes, and the general public interested in sports in Germany. It provides comprehensive information, news, event details, and resources related to sports governance and promotion. The site is well-positioned in the German sports sector as a large, non-profit government-related entity with strong partnerships and a clear mission. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript modules and accessibility tools like ReadSpeaker. It uses Matomo for analytics and integrates cookie consent mechanisms compliant with GDPR. The site is fast, mobile-optimized, and accessible, with a professional design and clear navigation. Hosting appears stable and professional, with no blocking or WAF interference detected. From a security perspective, the site enforces HTTPS and employs cookie consent with granular user control. However, explicit security headers and a public security policy or vulnerability disclosure page are absent. No exposed sensitive data or vulnerabilities were detected in the content. The WHOIS data is consistent and legitimate, supporting the trustworthiness of the domain. Overall, the DOSB website demonstrates a strong security posture, excellent content quality, and good privacy compliance. It effectively supports its business goals and target audience with professional presentation and trustworthy information.

M

Matthäi

matthaei.de

48

Matthäi is a well-established German construction and infrastructure company with over 90 years of experience. The company operates across multiple sectors including infrastructure construction, building construction, raw materials, building materials, logistics, and disposal services. With a workforce of over 3,500 employees and more than 75 locations, Matthäi holds a strong market position in Germany. The website reflects a mature digital presence with modern technologies, good performance, and a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS and privacy-respecting analytics, though explicit security policies and incident response contacts are not publicly visible. Overall, the domain registration and website content align well, indicating a trustworthy and credible business.

H

Hochschule RheinMain

hs-rm.de

73

Hochschule RheinMain is a well-established public university of applied sciences in Germany, offering over 70 practical and international degree programs across multiple campuses in Wiesbaden and Rüsselsheim. The institution emphasizes applied research, international cooperation, and career readiness for students. The website reflects a mature digital presence built on TYPO3 CMS, featuring comprehensive content, clear navigation, and multilingual support. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong, with a detailed privacy policy and cookie management in place. Overall, the website projects high professionalism and trustworthiness consistent with a reputable academic institution.

T

Technische Hochschule Mittelhessen

thm.de

52

Technische Hochschule Mittelhessen (THM) is a German university of applied sciences offering a wide range of Bachelor, Master, and continuing education programs primarily in technical and business fields. The website serves students, prospective students, academic staff, and partners, providing comprehensive information about study programs, research, campus life, and international cooperation. The institution positions itself as a regional leader in applied sciences education with a strong focus on practical and research-oriented learning. Technically, the website is built on Joomla CMS with a modern tech stack including Bootstrap, jQuery, and Smart Slider 3 for UI components. It employs Matomo for analytics, indicating moderate user tracking. The site is responsive and optimized for mobile devices, with good navigation clarity and professional design. However, some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks visible security headers and published security policies. No vulnerability disclosure or incident response information is available. Privacy compliance is limited, with no explicit privacy or cookie policies detected in the provided content. Overall, the website is trustworthy and professional, suitable for its educational purpose. Strategic improvements in privacy transparency, security headers, and published policies would enhance compliance and user trust.

H

Hochschule Fulda

hs-fulda.de

52

Hochschule Fulda is a German university of applied sciences offering a broad range of academic programs including bachelor, master, dual studies, and continuing education. The institution emphasizes practical education, personal contact, and regional engagement. The website reflects a mature digital presence built on TYPO3 CMS, with modern web technologies and a focus on accessibility and user experience. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism using Matomo analytics with user consent. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some HTTP security headers could be improved. Overall, the website is professional, trustworthy, and well-aligned with the institution's educational mission.

F

Frankfurt University of Applied Sciences

frankfurt-university.de

56

Frankfurt University of Applied Sciences is a large German educational institution offering over 70 degree programs to approximately 15,000 students from more than 100 nations. The website is professionally designed using TYPO3 CMS, featuring comprehensive content and clear navigation tailored to various target audiences including prospective students, current students, researchers, and alumni. The institution emphasizes research, education, and community engagement with a strong focus on applied sciences. Technically, the website employs modern web technologies, responsive design, and privacy-conscious analytics via Matomo with anonymization. Security measures include HTTPS enforcement and two-factor authentication for critical services, although explicit security policies and incident response information are not publicly available. Overall, the website demonstrates a mature digital presence with good privacy compliance and user experience, supporting the university's credibility and trustworthiness.

The Gemeinsame Ethikkommission der Hochschulen Bayerns (GEHBa) serves as the joint ethics commission for Bavarian universities, providing ethical review and evaluation of research projects involving human subjects. It operates as a specialized non-profit academic body, ensuring compliance with ethical and legal standards in research. The website clearly targets researchers and academic staff within Bavarian higher education institutions, offering information on application procedures and contact details. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and hosted on AWS infrastructure, indicating a mature digital presence. The use of Matomo analytics with Do Not Track enabled reflects a privacy-conscious approach. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements are recommended in implementing security headers and visible cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with its academic mission.

The Association of the Bavarian Universities of Applied Sciences (UAS), represented by Hochschule Bayern e.V., is a significant educational organization combining academic education with applied research and development across Bavaria. It encompasses 19 universities, serving approximately 120,000 students including a substantial international cohort. The association offers a broad spectrum of degree programs and maintains extensive partnerships with companies and universities worldwide, positioning itself as a key player in regional higher education. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as Swiper and Drawer for UI components, and Font Awesome for icons. The site is mobile-optimized with good navigation and SEO practices. Analytics are handled via Matomo with Do Not Track enabled, reflecting a privacy-conscious approach. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a cookie consent mechanism. No security policy or incident response information is published, which could be improved to enhance trust and compliance. The WHOIS data is privacy protected, which is justified for this type of organization. Overall, the website is professional, trustworthy, and serves its educational mission well. Strategic improvements in security headers, privacy notices, and incident response transparency would further strengthen its posture.

H

Hochschule für Technik Stuttgart

hft-stuttgart.de

60

Hochschule für Technik Stuttgart (HFT Stuttgart) is a medium-sized public technical university located in Germany, offering a broad range of Bachelor and Master degree programs in architecture, civil engineering, computer science, mathematics, surveying, and economics. The website serves students, researchers, and academic stakeholders with comprehensive information about study programs, research activities, and transfer initiatives. The digital infrastructure is built on TYPO3 CMS, enhanced with Usercentrics for GDPR-compliant cookie consent and Matomo for privacy-focused analytics. The website demonstrates good design quality, accessibility, and SEO optimization, supporting a positive user experience across devices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and formal security policies are absent. Overall, the site reflects a professional and trustworthy academic institution with room for improvement in privacy policy transparency and security documentation.

W

werkraum Digitalmanufaktur GmbH

werkraum.net

63

werkraum Digitalmanufaktur GmbH is a well-established digital agency based in Karlsruhe, Germany, specializing in TYPO3 and Shopware CMS solutions, e-commerce platforms, and custom web development. With over 20 years of experience, the company offers a comprehensive suite of services including web design, SEO, hosting, SaaS development, and digital accessibility. Their market position is strengthened by recognized certifications such as TYPO3 Association Gold Membership and active participation in regional media and business networks. The website reflects a professional and consistent brand image with detailed project references and active news updates, targeting businesses seeking advanced digital solutions. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and analytics tools, optimized for mobile and accessibility. Security practices include HTTPS, cookie consent with opt-out, and CAPTCHA on forms, though some security headers and policies could be improved. Overall, the website is secure, compliant with GDPR, and trustworthy, with no critical vulnerabilities detected.

C

Computed·By

computedby.com

55

Computed·By is a Swiss-based technology company specializing in bespoke web and mobile application development for creative professionals, including designers, architects, artists, and cultural institutions. Founded in 2011, the company has established a niche market position by collaborating with notable clients and art directors, delivering innovative digital projects such as online collections, phygital events, and installations involving AI and NFTs. Their business model focuses on providing tailored digital solutions with an emphasis on quality and sustainability. Technically, the website employs modern JavaScript libraries such as Swiper.js and uses Matomo for privacy-conscious analytics. Hosting is provided by Infomaniak, a Swiss ISO 27001 certified provider using renewable energy, reflecting the company's commitment to digital sustainability. The website is well-designed, mobile-optimized, and offers a good user experience, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and benefits from a secure hosting environment. However, it lacks DNSSEC, security headers, and publicly available privacy and cookie policies, which are important for compliance and enhanced security posture. No incident response or vulnerability disclosure information is provided, representing an area for improvement. Overall, the website and business present a high level of professionalism and trustworthiness with minor gaps in privacy compliance and security best practices. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and publishing incident response contacts to strengthen the security and compliance posture.

G

GHD – Geschäftsstelle der Studienkommission für Hochschuldidaktik B.-W.

hochschuldidaktik.net

53

The GHD – Geschäftsstelle der Studienkommission für Hochschuldidaktik B.-W. is a regional educational organization focused on advancing the quality of teaching and learning at universities of applied sciences in Baden-Württemberg, Germany. It provides a broad range of services including training seminars, innovative teaching projects, consulting, and networking opportunities for academic staff. The website reflects a professional and well-structured digital presence, leveraging WordPress and modern web technologies to deliver content effectively to its target audience of higher education professionals. Technically, the site employs a robust tech stack with Bootstrap, jQuery, and various WordPress plugins to enhance user experience and accessibility. SEO is well-implemented with Yoast SEO and structured data, and the site is mobile-optimized. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers are missing and WHOIS data is unavailable, which slightly impacts trust. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with GDPR-aligned cookie consent and a comprehensive privacy policy. The absence of WHOIS registration details is a concern but does not detract significantly from the site's legitimacy given the professional content and organizational transparency. Strategically, the organization should consider publishing explicit security policies and incident response contacts, implement missing security headers, and verify domain registration details to enhance trust and compliance further.

Hochschule Bayern e.V. is a non-profit association representing the interests of Bavarian universities of applied sciences. The organization acts as a communication bridge between its member institutions and governmental bodies, politics, and the public. The website is professionally designed using TYPO3 CMS and hosted on AWS infrastructure, indicating a mature technical setup. The site provides comprehensive information about member universities, current news, events, and position papers relevant to higher education in Bavaria. Security posture is solid with HTTPS and privacy-conscious analytics (Matomo with DoNotTrack), though improvements are recommended in cookie consent and security headers. Overall, the site is trustworthy, well-maintained, and serves its educational and representative mission effectively.

M

MTV v. 1848 Hildesheim e.V.

mtv48hildesheim.de

49

MTV v. 1848 Hildesheim e.V. is a well-established local sports club in Germany, offering a wide range of sports and health-related activities including courses, training, rehabilitation sports, and community events. The club targets a broad audience including families, children, seniors, and sports enthusiasts within the Hildesheim region. Their market position as the oldest sports club in Hildesheim supports a strong community presence and trust. Technically, the website is built with standard web technologies including HTML5, CSS, and JavaScript, enhanced by Matomo analytics for user tracking and Sliderm.js for interactive slideshows. Hosting is provided by rzone.de, and the site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers, a cookie consent mechanism, and formal security or incident response policies. The use of Matomo suggests some privacy awareness, but GDPR compliance could be improved by adding explicit cookie consent and privacy notices. Overall, the website is professional, trustworthy, and content-rich, serving its community effectively. Strategic improvements in privacy compliance and security posture would enhance user trust and regulatory adherence.

K

Kanton Schwyz

sz.ch

67

The website www.sz.ch is the official online portal for the Canton of Schwyz, Switzerland. It serves as a comprehensive information hub for residents and visitors, providing access to government offices, authorities, official gazettes, laws, and current notices. The site is clearly positioned as a government entity's digital presence, offering essential public services and information. The target audience primarily includes local citizens and stakeholders interested in regional governance and administrative matters. Technically, the website employs modern web technologies including jQuery, Font Awesome Pro icons, Matomo analytics for user tracking, and embeds content via Flockler. The site uses HTTPS with a strong SSL configuration, ensuring secure data transmission. The design is responsive and optimized for mobile devices, with good SEO practices evident from meta tags and Open Graph data. However, explicit privacy and cookie policies are not detected in the provided content, which is a gap in compliance. From a security perspective, the site benefits from HTTPS and asynchronous script loading, reducing some risks. No WAF or blocking mechanisms were detected, indicating open accessibility. However, the absence of explicit security headers such as Content Security Policy or HSTS is a potential area for improvement. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, the website demonstrates a strong business credibility as an official government portal with consistent branding and trustworthy domain registration. The main risks relate to privacy compliance and security header implementation. Strategic recommendations include publishing clear privacy and cookie policies, implementing security headers, and providing incident response contact information to enhance trust and compliance.

M

Musikschule

musikschuleschwyz.ch

63

The website www.musikschuleschwyz.ch represents a regional music school located in Schwyz, Switzerland. It provides comprehensive information about music education offerings, including courses, ensembles, events, and administrative contacts. The site targets local residents interested in music education, including children, adults, and educators. The business model appears to be a public educational institution supported by tuition fees and public funding. The website is professionally designed with clear navigation and accessibility features, reflecting a good level of digital maturity. Technically, it uses a modern CMS (i-web), JavaScript, CSS, and Matomo analytics for privacy-conscious user tracking. Security posture is solid with HTTPS and secure forms, though it lacks published security policies or incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious content or vulnerabilities.

E

Erich Jaeger GmbH + Co. KG

erich-jaeger.de

60

Erich Jaeger GmbH + Co. KG operates a professional website specializing in electrical connector systems for towing vehicles and trailers, serving the transportation sector primarily in Germany and internationally. The company offers a comprehensive product portfolio including plugs, sockets, adapters, controllers, and cable components. The website is built on TYPO3 CMS and employs modern technologies such as Matomo analytics and Google reCAPTCHA for user tracking and security. Security posture is strong with HTTPS and TISAX certification, though some security headers and privacy policies are missing. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding and detailed product information.

P

ProGolf AG

swiss-challenge.ch

63

Swiss Challenge is a professional golf tournament event organized by ProGolf AG in Switzerland, targeting golf professionals and enthusiasts. The website serves as an information portal for the event, providing tournament details, news, sponsorship, volunteer opportunities, and ticketing information. It holds a reputable position within the European Challenge Tour circuit and is supported by multiple golf clubs and partners in Switzerland. Technically, the website is built on TYPO3 CMS, employs standard analytics tools like Google Analytics and Matomo, and uses HTTPS for secure communications. The site is well-structured with good navigation and mobile optimization, though some accessibility features could be improved. Security posture is moderate with HTTPS enforced but lacks explicit security headers and a cookie consent mechanism. Privacy compliance is basic with a privacy policy present but no cookie banner. Overall, the site is trustworthy and professional but could enhance security and privacy practices.

C

ClubGolf

clubgolf.ch

63

ClubGolf is a prominent operator of golf resorts in Switzerland, managing the largest golf resort Golf Sempach along with Golf Kyburg and Golf Saint Apollinaire. The organization caters to approximately 4000 members and offers internationally recognized championship courses. Their services extend beyond golf to include event hosting for weddings, seminars, and group activities, supported by gourmet dining options. The website reflects a mature digital presence built on TYPO3 CMS, integrating modern analytics and user-friendly navigation. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in cookie consent and security policy disclosures are recommended. Overall, ClubGolf demonstrates a strong market position within the hospitality and sports sectors in Switzerland.

B

bgm business group munich GmbH und Co. KG

gcheidiland.ch

51

Golf Club Heidiland operates a 9-hole executive golf course embedded in the scenic Bündner Rheintal region of Switzerland, affiliated with the Grand Resort Bad Ragaz. The club offers golfing facilities including a driving range, golf academy, bistro, and shop, targeting golf enthusiasts and resort guests. The website is professionally designed using TYPO3 CMS and integrates modern analytics and consent management tools, reflecting a moderate to high level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks explicit security policies and headers. Contact information and legal documents are clearly presented, supporting business credibility. Overall, the site is trustworthy and well-maintained with no blocking or suspicious content detected.

C

Casino Bad Ragaz AG

casinoragaz.ch

52

Casino Bad Ragaz AG operates a regional casino located within the Grand Resort Bad Ragaz in Switzerland, offering a variety of gambling options including slot machines, roulette, and blackjack, complemented by a large Gin Bar and regular events. The website is professionally designed using TYPO3 CMS, with good mobile optimization and accessibility. It integrates modern analytics tools such as Google Analytics and Matomo, and employs HTTPS with a solid security posture, though lacks explicit security policy and incident response information. Privacy compliance is partially addressed with a privacy policy but no cookie consent mechanism is evident. Overall, the site presents a trustworthy and professional image suitable for its adult target audience.

H

Herzog & de Meuron Basel Ltd.

herzogdemeuron.com

46

Herzog & de Meuron Basel Ltd. is an internationally renowned architectural practice based in Basel, Switzerland. The company specializes in architectural design, project development, exhibitions, and publications, serving a global audience including cultural institutions and design professionals. Their website reflects a strong market position with a comprehensive portfolio and professional presentation. The technical infrastructure is built on WordPress with modern JavaScript frameworks such as Alpine.js and jQuery, supplemented by Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers are missing which could be improved. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of certain security headers and a cookie consent mechanism indicates room for enhancement in compliance and security best practices. Overall, the website is professional, trustworthy, and content-rich, but the lack of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy. Strategic verification of domain registration and implementation of additional security headers and privacy mechanisms are recommended.

L

Landesamt für Umwelt (LfU)

westhavelland-naturpark.de

44

The Natur- und Sternenpark Westhavelland website represents a regional government-affiliated nature park focused on conservation, sustainable tourism, and environmental education. It serves as an information hub for visitors and locals interested in the natural landscape, wildlife, and cultural heritage of the Westhavelland region in Brandenburg, Germany. The site emphasizes its unique status as Germany's first designated star park, highlighting its commitment to preserving dark skies and biodiversity. Technically, the website is built on TYPO3 CMS, hosted by agenturserver, and employs modern web technologies including responsive design and Matomo analytics for visitor tracking. The site is well-structured with clear navigation and multilingual support, though some accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No incident response or security policies are publicly disclosed. The domain registration data aligns well with the website content, indicating legitimacy and consistency with a government or non-profit entity. Overall, the website is professional, trustworthy, and serves its informational and educational purpose effectively. Strategic improvements in privacy compliance and security headers would further strengthen its posture.

L

Landesamt für Umwelt (LfU)

schlaubetal-naturpark.de

44

The Naturpark Schlaubetal website serves as an official information portal for the Schlaubetal Nature Park in Brandenburg, Germany, managed by the Landesamt für Umwelt (LfU). It provides comprehensive details about the park's natural features, events, conservation efforts, and visitor information, targeting nature enthusiasts and tourists. The site is positioned as a regional government-affiliated resource with a focus on environmental education and sustainable tourism. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including JavaScript and CSS, and employs Matomo for analytics, reflecting a commitment to privacy-conscious tracking. The hosting is managed via agenturserver, consistent with the domain's nameservers. The site demonstrates good mobile optimization, accessibility, and SEO practices, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site uses HTTPS with excellent SSL configuration and shows no signs of exposed sensitive data or vulnerable libraries. However, the absence of explicit security headers and a formal security policy or incident response contact reduces the overall security posture. Privacy compliance is adequate with a clear privacy policy linked, but lacks a cookie consent mechanism. Overall, the website is trustworthy, professionally maintained, and serves its informational purpose well. Strategic enhancements in security headers, cookie consent, and direct contact information would further strengthen its security and compliance profile.

L

Landesamt für Umwelt (LfU)

nuthe-nieplitz-naturpark.de

44

Naturpark Nuthe-Nieplitz is a government-affiliated nature park located near Berlin, Germany, focused on nature conservation, environmental education, and regional tourism. The website provides comprehensive information about the park's landscapes, wildlife, events, and visitor services. It is positioned as a quality-certified nature park serving local residents, tourists, and educational groups. The digital infrastructure is based on TYPO3 CMS with a moderate performance profile and good mobile optimization. The site uses Matomo analytics, reflecting a privacy-conscious approach. Security posture is adequate with HTTPS enforced but lacks some advanced security headers and explicit incident response details. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional, serving its public and non-profit mission effectively.

L

Landesamt für Umwelt (LfU)

niederlausitzer-landruecken-naturpark.de

44

The Naturpark Niederlausitzer Landrücken website serves as an informative portal for a regional nature park in southern Brandenburg, Germany. It provides comprehensive information about the natural landscape, conservation efforts, events, and educational programs. The site is operated under the auspices of the Landesamt für Umwelt (LfU), a government environmental agency, and features partnerships with recognized organizations such as the Heinz Sielmann Stiftung and Naturwacht. The website targets nature enthusiasts, tourists, and local communities interested in environmental preservation and outdoor activities. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries like jQuery and SlidesJS for interactive elements, and uses Matomo for privacy-conscious analytics. The site is hosted on professional infrastructure with secure HTTPS configuration and moderate performance. It supports multiple languages and offers good mobile optimization and SEO practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks certain security headers and explicit incident response or vulnerability disclosure information. Privacy compliance is strong with a comprehensive privacy policy, but no visible cookie consent mechanism was detected. Contact information is primarily via a web form, with no direct emails or phone numbers published. Overall, the website is a trustworthy, well-maintained resource for regional nature conservation and tourism, with minor areas for improvement in security headers, contact transparency, and cookie consent mechanisms.

L

Landesamt für Umwelt (LfU)

niederlausitzer-heidelandschaft-naturpark.de

43

Naturpark Niederlausitzer Heidelandschaft is a government-affiliated nature park entity in Brandenburg, Germany, focused on nature conservation, environmental education, and promoting regional tourism. The website provides detailed information about the park's landscapes, events, and activities, targeting nature enthusiasts and local communities. Technically, the site is built on TYPO3 CMS, hosted by a professional hosting provider, and uses Matomo for analytics, indicating moderate digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy, professional, and serves its informational purpose well.

L

Landesamt für Umwelt (LfU)

maerkische-schweiz-naturpark.de

44

The Naturpark Märkische Schweiz website is a well-established online presence managed by the Landesamt für Umwelt (LfU) in Brandenburg, Germany. It serves as an informational and educational platform promoting the nature park's diverse landscapes, conservation efforts, and visitor services. The site targets nature enthusiasts, tourists, and educational groups, providing rich content on events, routes, flora, fauna, and regional specialties. The business model is non-profit and government-supported, positioning the organization as a key regional nature conservation entity. Technically, the website is built on TYPO3 CMS, hosted by agenturserver, and employs Matomo for analytics. The site demonstrates good mobile optimization, clear navigation, and a professional design consistent with its branding. However, some modern security best practices like explicit security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. No WAF or blocking mechanisms are detected, and the WHOIS data aligns well with the website's public nature and hosting details, indicating legitimacy. Privacy policy is present and GDPR compliant, but cookie consent and incident response contacts are absent. Overall, the website is trustworthy, safe for general audiences, and professionally managed. Strategic improvements in security headers, cookie consent, and incident response transparency would further strengthen its security and compliance standing.

L

Landesamt für Umwelt (LfU)

hoher-flaeming-naturpark.de

44

The Naturpark Hoher Fläming website represents a regional nature park managed by the Landesamt für Umwelt (LfU) in Brandenburg, Germany. It provides comprehensive information about the park's natural and cultural attractions, events, educational programs, and visitor services. The site targets nature enthusiasts, tourists, families, and educational groups, positioning itself as a trusted regional nature conservation and tourism resource. The business model is non-profit and government-affiliated, focusing on environmental protection and regional development. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and SlidesJS for interactive content, and uses Matomo for analytics. The hosting is managed by a provider indicated by the nameservers (agenturserver). The site is mobile-optimized with good navigation and SEO practices, though some accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks security headers like Content-Security-Policy and does not provide a security policy or incident response contacts. Privacy compliance is partial; a privacy policy is linked externally and GDPR compliance is implied, but no cookie consent mechanism is present. No vulnerability disclosure or security.txt file is found. The WHOIS data is consistent and trustworthy, with no privacy protection or suspicious patterns. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements include implementing security headers, adding cookie consent, publishing security policies, and enhancing contact information transparency to strengthen security posture and compliance.

I

infect werbeagentur GmbH

infect.at

56

Talks at Work is a niche community platform focused on internal communication and employer branding professionals, operated by infect werbeagentur GmbH based in Austria. The website serves as a hub for pioneers and thought leaders in internal communication, offering community events and networking opportunities. The business is relatively young, founded in 2021, and targets a specialized audience within the communications sector. The platform positions itself as a professional and innovative community for internal communication experts.

L

Landesamt für Umwelt (LfU)

natur-brandenburg.de

44

Natur Brandenburg is an official government-affiliated website managed by the Landesamt für Umwelt (LfU) focused on promoting and preserving the natural landscapes of Brandenburg, Germany. It serves as an informational portal highlighting nature parks, biosphere reserves, and national parks, targeting nature enthusiasts, tourists, and environmental educators. The site offers detailed content on natural habitats, events, and educational resources, positioning itself as a trusted regional authority in nature conservation and tourism. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Matomo for privacy-conscious analytics. The hosting is managed by agenturserver, a professional hosting provider, ensuring stable performance and moderate loading speeds. The site is mobile-optimized with good navigation clarity and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks visible security headers such as CSP or HSTS. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a privacy policy page present, but no cookie consent mechanism was found. Contact information is primarily via a contact form, with no direct emails or phone numbers exposed. Overall, the security posture is adequate but could be improved with enhanced headers and explicit cookie consent. The overall risk assessment is low, with no signs of malicious activity or suspicious registrations. Strategic recommendations include implementing cookie consent, adding security headers, and publishing incident response policies to strengthen compliance and trust. The website is professional, trustworthy, and well-aligned with its governmental and environmental mission.

L

Landesamt für Umwelt (LfU)

spreewald-biosphaerenreservat.de

44

The Biosphärenreservat Spreewald website represents a governmental/non-profit organization dedicated to the conservation and sustainable development of the Spreewald biosphere reserve in Germany. It provides comprehensive information on the natural landscape, conservation efforts, educational projects, and tourism opportunities. The site is well-positioned within a network of regional and international partners, including UNESCO and various nature parks. The business model focuses on environmental stewardship, education, and regional promotion. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Hosting is managed by agenturserver, consistent with the domain's WHOIS data. The site lacks some advanced security headers and cookie consent mechanisms, which are areas for improvement. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it does not publish a security policy or incident response contacts, nor does it have a vulnerability disclosure policy. The use of Matomo analytics aligns with GDPR principles, but the absence of a cookie consent banner may be a compliance gap. Overall, the security posture is solid but could be enhanced with additional headers and policies. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing cookie consent, security headers, and publishing security-related policies to strengthen compliance and trust. The website serves its audience effectively with high-quality content and clear navigation, supporting its mission as a conservation and educational resource.

R

Recordati S.p.A.

imidazyl.it

45

Imidazyl.it is the official website for the Imidazyl brand of eye drops, owned by Recordati S.p.A., a well-established pharmaceutical company in Italy. The site provides detailed product information, usage instructions, and advice related to eye irritation and allergic conditions. It targets Italian consumers seeking relief for eye allergies and redness. The website is built on WordPress with a modern tech stack including Bootstrap and jQuery, and integrates analytics tools such as Google Analytics, Matomo, and Facebook Pixel for user tracking and marketing purposes. The site is mobile optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks DNSSEC and explicit security headers. No direct contact information or security policies are published, which could be improved to enhance trust and compliance. Overall, the domain registration is consistent with the business, indicating legitimacy and a mature online presence.

G

Golf Club Bad Ragaz

golfclubragaz.ch

44

Golf Club Bad Ragaz is a prestigious golf club located in Switzerland, offering an 18-hole championship golf course embedded in a scenic mountain and park environment. It operates as part of the Grand Resort Bad Ragaz, a leading European wellbeing and medical health resort. The club is recognized as a member of Leading Golf Courses and World of Leading Golf, emphasizing a commitment to quality and perfection. The website provides comprehensive information about the club's services, tournaments, golf shop, and restaurant, targeting golf enthusiasts and resort guests. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies including jQuery, Matomo analytics, and Google Tag Manager. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and professional design. Hosting appears to be managed by bgm-hosting.de, and the site uses HTTPS with a good SSL configuration. From a security perspective, the site enforces HTTPS and uses standard analytics tools but lacks visible security headers and explicit cookie consent mechanisms, which are recommended for GDPR compliance. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business claims, showing a consistent and legitimate domain registration. Overall, the Golf Club Bad Ragaz website is professional, trustworthy, and well-maintained, with minor recommendations to enhance privacy compliance and security posture.