Security Directory

The University of Luxembourg is an international research university with a multilingual and interdisciplinary character, serving students and researchers primarily in Luxembourg. The website reflects a professional academic institution with a focus on education and research services. The digital infrastructure is built on WordPress with advanced SEO and privacy tools such as Yoast SEO Premium, Matomo analytics, and Cookiebot for cookie consent management. The site demonstrates good mobile optimization, accessibility, and user experience. Security posture is solid with HTTPS and privacy-aware analytics, though explicit security headers and incident response information are lacking. WHOIS data is unavailable, limiting domain trust assessment, but the website content and branding strongly support legitimacy. Overall, the site is well-maintained, privacy-conscious, and professionally presented.

L

Leibniz-Institut für ökologische Raumentwicklung e. V.

ioer.de

54

The Leibniz-Institut für ökologische Raumentwicklung e. V. is a reputable German research institute specializing in ecological spatial development and sustainable urban and regional planning. It operates under the Leibniz Association umbrella and is publicly funded by federal and state governments. The website serves as a comprehensive portal for research programs, publications, events, and data services, targeting researchers, policymakers, and urban planners. The institute maintains a strong market position within the academic and research community in Germany and internationally. Technically, the website is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and jQuery, ensuring good mobile responsiveness and accessibility. The site uses Matomo analytics configured with privacy-respecting settings, although it lacks a cookie consent mechanism. Performance is moderate with a well-structured navigation system and professional design. From a security perspective, the site enforces HTTPS and disables cookies in analytics, reflecting good privacy practices. However, it lacks several security headers and does not publish a formal security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's academic nature, hosted on trusted research network name servers. Overall, the website is professional, trustworthy, and well-maintained, with minor improvements recommended in security headers and privacy compliance to enhance its security posture and regulatory adherence.

M

Metropolregion Rhein-Neckar GmbH

m-r-n.com

55

Metropolregion Rhein-Neckar GmbH operates as a regional alliance and development organization focused on enhancing the Rhein-Neckar metropolitan area in Germany. The website serves as a platform for collaboration among regional institutions, promoting economic, cultural, and social initiatives. With a 20-year history, the organization is well-established and positioned as a key regional player. The site targets residents, businesses, and stakeholders interested in regional development and community engagement. Technically, the website employs modern web technologies including Matomo for privacy-conscious analytics, an accessibility widget (Eye-Able), and cookie consent management. Hosting is provided by Hetzner Online GmbH, a reputable German provider. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and structured navigation. From a security perspective, the site uses HTTPS and enforces domain transfer restrictions. However, it lacks DNSSEC and advanced HTTP security headers. Privacy compliance is strong with clear cookie consent and a comprehensive privacy policy. No direct contact emails or phone numbers are visible, and no explicit security or incident response policies are published. Overall, the website is professional, trustworthy, and well-maintained, with minor areas for security enhancement. It poses low risk and aligns well with its stated mission and audience.

L

Landesregierung Schleswig-Holstein

schleswig-holstein.de

61

The website schleswig-holstein.de serves as the official Landesportal (state portal) for the government of Schleswig-Holstein, Germany. It provides comprehensive information about the state government, ministries, authorities, justice system, news, and public services. The portal targets citizens, businesses, government employees, and media representatives, offering a centralized access point for administrative services and governmental information. The site is professionally designed with clear navigation and multilingual support, including an English version.

V

VBB Verkehrsverbund Berlin-Brandenburg GmbH

vbb.de

50

VBB Verkehrsverbund Berlin-Brandenburg GmbH operates as the regional public transportation association for Berlin and Brandenburg, providing comprehensive services including transport planning, ticketing, quality management, and digital journey planning. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support, targeting a broad audience including daily commuters and travelers in the region. The company holds a leading market position in regional transportation with a large operational scale. Technically, the site is built on TYPO3 CMS, integrates Matomo analytics for privacy-conscious tracking, and employs Cookiebot for cookie consent management, demonstrating compliance with GDPR and modern web standards. Security posture is strong with HTTPS enforced and secure form handling, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is trustworthy, well-maintained, and aligned with the business's public service mission.

HFDnetzwerk is a German-based community platform operated by the Hochschulforum Digitalisierung, a prominent think-and-do tank focused on digital transformation in higher education. The platform facilitates networking, knowledge exchange, and visibility of informal engagement in digital teaching through features like member search, discussion groups, and a Community Certificate. The website is professionally designed, mobile-optimized, and uses modern web technologies such as Laravel Livewire and Alpine.js, hosted on AWS infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are absent. Overall, the site is trustworthy, GDPR compliant, and serves a medium-sized educational community effectively.

D

Deutsches Forschungszentrum für Künstliche Intelligenz GmbH (DFKI)

dfki.de

60

The Deutsches Forschungszentrum für Künstliche Intelligenz GmbH (DFKI) is a leading German research institute specializing in artificial intelligence. With over 30 years of experience, DFKI combines scientific excellence with practical applications, targeting industry, academia, and government sectors. Their website reflects a mature digital presence with comprehensive content about their research areas, projects, and collaborations. The site is professionally designed, multilingual, and optimized for accessibility and SEO. Technically, it is built on TYPO3 CMS with modern web technologies and uses self-hosted Matomo analytics to respect user privacy. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, DFKI presents a trustworthy and authoritative online presence aligned with its reputation as a premier AI research center.

P

Private Pädagogische Hochschule der Diözese Linz

phdl.at

56

The website www.phdl.at represents the Private Pädagogische Hochschule der Diözese Linz, a private pedagogical university in Austria offering teacher education, professional development, research, and international programs. The institution targets educators, students, and school leaders with a comprehensive range of academic and training services. The website is built on TYPO3 CMS and integrates modern analytics and consent management tools, reflecting a mature digital infrastructure. The design and content quality are good, with clear navigation and relevant educational information. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security and privacy policies are missing. WHOIS data confirms the legitimacy and consistency of the domain registration with the institution's identity. Overall, the site is professional, trustworthy, and safe for general audiences.

U

Uliveto - Acqua della Salute

uliveto.it

60

Uliveto - Acqua della Salute is an Italian brand specializing in health-oriented bottled water products, emphasizing wellness and sustainability. The website serves as a marketing and informational platform targeting health-conscious consumers in Italy, providing product details, sustainability initiatives, and related health and sports content. The brand maintains a consistent and professional online presence with clear branding and social media integration. Technically, the website is built on WordPress using Elementor and several modern plugins such as Slider Revolution and Iubenda for cookie compliance. It employs HTTPS with good SSL configuration and security headers, ensuring a secure browsing experience. The site is moderately performant and optimized for mobile devices, with basic accessibility features and good SEO practices. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent management, and use of security headers. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. Analytics are handled via Matomo, with moderate user tracking balanced by GDPR-compliant consent mechanisms. Overall, Uliveto's website is a well-maintained, secure, and privacy-conscious platform that effectively supports its business goals. Strategic improvements in transparency around security policies and contact information could further strengthen its credibility and user trust.

CoGeDi International SpA is an established Italian company founded in 1984, specializing in the production and distribution of natural, effervescent, and carbonated mineral waters. The company holds a strong market position in Italy and internationally, emphasizing sustainability and circular economy principles. Their website reflects a professional and consistent brand image, targeting general consumers and business partners in the beverage sector. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and Matomo analytics, with good mobile optimization and basic accessibility features. Security-wise, the site uses HTTPS and GDPR-compliant cookie consent mechanisms but lacks explicit security policies and incident response contacts. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations.

GSI Helmholtzzentrum für Schwerionenforschung is a prominent German research institution specializing in ion accelerator technology and fundamental physics research. The organization operates a unique large-scale accelerator facility in Darmstadt, attracting researchers worldwide to conduct experiments on matter and the universe's development. Their work extends into medical applications, notably pioneering ion beam cancer therapies, and the synthesis of new chemical elements. The website reflects a mature, well-structured digital presence with comprehensive scientific content and strong affiliations with the Helmholtz Association and other German federal and state funding bodies. Technically, the website is built on TYPO3 CMS, leveraging privacy-conscious analytics via Matomo and employing a consent management system (Klaro). The site demonstrates good mobile optimization, accessibility, and SEO practices, hosted likely within a trusted German research network infrastructure. Security measures include HTTPS enforcement and standard security headers, though explicit security policies and vulnerability disclosure mechanisms are not publicly detailed. The security posture is solid with no detected vulnerabilities or blocking mechanisms. Privacy compliance is evident through clear privacy and cookie policies with consent mechanisms. The domain WHOIS data aligns with the institution's identity and location, reinforcing legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant, serving its audience effectively. Strategic recommendations include publishing explicit security and incident response policies, implementing a security.txt file, and enhancing security headers such as CSP for further hardening.

D

Deutsches Elektronen-Synchrotron DESY

desy.de

62

Deutsches Elektronen-Synchrotron DESY is a leading German research center specializing in particle accelerator science, photon science, particle physics, and astroparticle physics. It operates major research infrastructures accessible globally and actively promotes technology transfer and innovation. The website reflects a mature, professional institution with a clear focus on scientific research and collaboration. Technically, the site uses modern frameworks such as Bootstrap and jQuery, with a CMS based on ZMS, and integrates privacy-conscious Matomo analytics. Security posture is strong with HTTPS and privacy settings, though improvements can be made in cookie consent and security policy transparency. Overall, the site is trustworthy, well-branded, and serves a specialized scientific audience effectively.

S

Sandstein Neue Medien GmbH

sandstein.de

54

Sandstein Neue Medien GmbH is a well-established internet agency based in Dresden, Germany, founded in 1990. The company specializes in creating unique websites, portals, online shops, and custom software solutions, with a strong emphasis on accessibility, usability, and SEO. Their market position is solidified by a long history and notable public sector clients, reflecting a trusted and professional service provider in the technology sector. The website demonstrates a high level of digital maturity, featuring modern technologies such as Matomo analytics and friendly-challenge captcha for spam prevention, hosted on Schlundtech infrastructure. Accessibility features like sign language and easy language options further enhance user experience. Security posture is good with HTTPS and secure practices, though explicit security headers and incident response policies are not publicly documented. Overall, the site is professional, trustworthy, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a cookie consent mechanism to improve privacy compliance further.

S

Stadt Mannheim

mannheim.de

68

The website www.mannheim.de serves as the official digital portal for the city of Mannheim, Germany. It provides comprehensive information and services related to municipal administration, citizen services, economic development, culture, education, tourism, and career opportunities. The site targets residents, businesses, tourists, and public service users, positioning itself as a key government resource with a broad service offering. The content is well-structured, multilingual, and accessible, reflecting a mature digital presence for a large municipal entity. Technically, the website is built on Drupal 10, utilizing modern web technologies such as Matomo for analytics, SVG icons, and slick carousel for UI elements. The site demonstrates good performance, mobile optimization, and accessibility features. Security is robust with HTTPS enforced, multiple security headers present, and consent-based tracking mechanisms implemented. However, explicit security policies and incident response contacts are not prominently published, and no vulnerability disclosure or security.txt files were found. Overall, the security posture is strong with no detected vulnerabilities or suspicious activity. Privacy compliance is well addressed with clear privacy and cookie policies and user consent mechanisms. The business credibility is high, supported by official domain registration, consistent branding, and transparent contact information. The site is safe for general audiences with no adult or questionable content. Strategically, the site could enhance trust and security culture by publishing dedicated security policies and incident response information, and by implementing a vulnerability disclosure program. Regular audits of third-party scripts and form input sanitization are recommended to maintain security integrity.

B

Baden-Württemberg Stiftung

ki-garage.de

56

KI-Garage is a regional program operated by the Baden-Württemberg Stiftung focused on fostering the AI startup ecosystem in Baden-Württemberg, Germany. It supports technology transfer from AI research to startups, offers events, mentoring, and networking opportunities to AI scientists, startups, and economic actors. The website is professionally designed using TYPO3 CMS, with good mobile optimization and accessibility. It integrates multimedia content and maintains GDPR compliance through a consent management platform. Security posture is solid with HTTPS and basic security best practices, though some advanced headers and explicit security policies are absent. Contact is primarily via a web form, with no direct emails or phone numbers published. Overall, the site is trustworthy, well-branded, and serves a clear non-profit innovation mission.

G

Global Certification and Consulting Centre (GCCC)

gccc-exist.de

40

The Global Certification and Consulting Centre (GCCC) is a government-affiliated organization established in 2024 under the German Federal Ministry for Economic Affairs and Energy (BMWE). It serves as a central hub to support international start-up teams by providing certification, consultancy, and visa facilitation services, particularly related to the EXIST Business Start-up Grant and other similar funding programs. The GCCC acts as a liaison between German Missions Abroad, immigration authorities, universities, and research institutions to streamline start-up visa issuance and support innovative entrepreneurship in Germany. The website is professionally designed, multilingual, and provides comprehensive information tailored to entrepreneurs, official institutions, and start-up networks.

R

RH-Webdesign

rh-webdesign.com

59

RH-Webdesign is a specialized freelance business led by Robin Humpert, focusing on Shopware 6 e-commerce development. With over 10 years of experience, the company offers custom themes, modules, and online shop setup services targeting entrepreneurs and businesses seeking professional e-commerce solutions. The website is well-branded, professional, and clearly communicates its services and expertise, supported by strong trust indicators such as a Shopware Extension Partner badge and excellent customer reviews. Technically, the site uses modern frameworks like Bootstrap and jQuery, with Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. However, the absence of a cookie consent mechanism and explicit security policies are areas for improvement. Security posture is solid with HTTPS and domain transfer protections, but could benefit from enhanced security headers and published incident response information. Overall, the site is trustworthy, technically sound, and well-positioned in its niche, with moderate room for compliance and security enhancements.

A

Antifaschistisches Bildungszentrum und Archiv Göttingen e.V.

antifaschistisches-archiv.org

69

The Antifaschistisches Bildungszentrum und Archiv Göttingen e.V. is a small non-profit organization based in Germany focused on antifascist education, archiving, and activism. The website serves as a platform for educational content, event announcements, archival access, and publications related to right-wing extremism and antifascist efforts. It targets researchers, activists, and the general public interested in these topics. The organization maintains a consistent brand presence and provides encrypted contact forms to enhance privacy and security. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including Matomo for analytics and several plugins for GDPR compliance and media management. Hosting is provided by InterNetX GmbH, and the site uses HTTPS with good SSL configuration. The site is moderately performant, mobile-optimized, and has good SEO and accessibility basics. From a security perspective, the site employs HTTPS, encrypted contact forms, and a cookie consent mechanism, but lacks explicit security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and serves its non-profit educational mission effectively. Strategic recommendations include enhancing security headers, publishing a security.txt file, and expanding incident response documentation to further improve security posture and trust.

F

Familie & Beruf Management GmbH

familieundberuf.at

59

Familie & Beruf Management GmbH is an Austrian organization dedicated to promoting family-friendly work and living environments through state certification programs and initiatives. They serve companies, municipalities, universities, and individuals with family care obligations, positioning themselves as a leading entity in Austria for family and career compatibility. The website is professionally designed, content-rich, and well-structured, targeting a German-speaking Austrian audience. Technically, the site runs on Drupal 7 with modern JavaScript libraries and analytics tools, though the CMS version is outdated and poses potential security risks. Security posture is generally good with HTTPS and cookie consent mechanisms, but lacks some advanced security headers. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site is trustworthy and authoritative in its domain.

U

Uzin Utz Nederland bv

floorconfigurator.com

55

Floorconfigurator.com is an online tool designed to allow users to customize self-smoothing floor colors and flakes, primarily supporting Arturo Flooring systems. The website serves a niche market of flooring professionals and customers seeking tailored flooring solutions. The business is linked to Uzin Utz Nederland bv, a medium-sized manufacturing company based in the Netherlands, founded in 2015. The site provides a user-friendly interface with options to select colors, flakes, and download or send requests for product information. Technically, the site uses JavaScript and jQuery Mobile frameworks, with analytics powered by Google Analytics and Matomo. The site is mobile optimized and presents a professional design with clear navigation. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, which are recommended for enhanced security. Privacy policies are comprehensive and GDPR compliant, though no explicit cookie consent mechanism is implemented. Overall, the site is trustworthy and functional but could improve security and privacy compliance aspects.

M

MaklerWerft - Webseiten für Immobilienmakler

maklerwerft.de

74

MaklerWerft Beratungsgesellschaft mbH operates a professional website offering specialized digital marketing and web solutions for real estate agents in Germany. Their services include website systems, CRM automation, SEO, SEA strategies, and content marketing tailored to the real estate sector. The company positions itself as an expert niche provider with a strong focus on client success and digital transformation in real estate marketing. Technically, the website is built on WordPress using the Enfold theme, integrates privacy-compliant analytics via Matomo, and employs Cloudflare DNS services, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and consent management, though explicit privacy and security policy pages are missing. Overall, the site is professional, well-structured, and optimized for SEO and mobile use, targeting real estate professionals and property owners. The domain registration data aligns with the business claims, indicating legitimacy and consistency.

U

Uzin Utz Tools GmbH & Co.KG

pajarito-tools.com

63

Pajarito is a German manufacturer specializing in high-quality professional tools for painters, drywall installers, and plasterers, with a history dating back to 1923. The company emphasizes precision, durability, and reliability, offering a comprehensive product range made entirely in Germany. Their market position is strong within the professional trades sector, supported by a well-structured website and active social media presence. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies and analytics tools such as Google Analytics and Matomo, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not found. The absence of WHOIS data for the domain raises some concerns but may be explained by the use of a subdomain or privacy measures. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

S

Servicestelle der Initiative Klischeefrei

klischee-frei.de

57

The website www.klischee-frei.de represents the Servicestelle der Initiative Klischeefrei, a German non-profit initiative dedicated to promoting gender-neutral career and study choices. It serves a broad audience including youth, parents, educators, and career counselors by providing educational resources, events, and a network of partner organizations. The initiative is supported by government entities and well-established partners, positioning it as a credible and trusted source in the education sector. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Hosting details are not explicit, but the domain uses stable nameservers consistent with a legitimate German educational initiative. From a security perspective, the site enforces HTTPS and uses secure form submissions. However, it lacks visible security headers and explicit incident response or security policy disclosures. Privacy compliance is strong with a comprehensive privacy policy and cookie policy, though no explicit cookie consent mechanism is present. No contact emails or phone numbers are directly listed, relying instead on contact forms. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for its educational and governmental audience. Strategic improvements in security headers, incident response transparency, and cookie consent would further enhance its security posture and privacy compliance.

C

Con i Bambini

percorsiconibambini.it

39

Percorsi con i bambini is a non-profit network platform managed by Con i Bambini, focused on coordinating and sharing projects aimed at combating educational poverty among minors in Italy. The website serves as a collaborative space for project leaders and partners to publish updates, articles, and event information. It is affiliated with Fondazione CON IL SUD, indicating a strong institutional backing. The platform targets organizations involved in social and educational initiatives, providing a niche but important service in the non-profit sector. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and the Yoast SEO plugin, ensuring good SEO and mobile responsiveness. It uses Matomo for analytics, emphasizing privacy. The site is well-structured with comprehensive metadata and structured data for SEO. However, the domain is currently expired, posing a risk to availability. Security headers are not explicitly detected, and there is no visible security policy or incident response information, which are areas for improvement. From a security perspective, the site uses HTTPS and DNSSEC, which are positive indicators. The lack of explicit security headers and vulnerability disclosure mechanisms suggests moderate security maturity. Privacy compliance is good, with clear privacy and cookie policies and a consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is professional, trustworthy, and serves a clear social mission. The main risk is operational due to domain expiration and some missing security best practices. Addressing these will improve resilience and trustworthiness.

I

Internationaler Bund

internationaler-bund.de

69

Internationaler Bund is a large, well-established German non-profit organization focused on social work, education, and integration services across Germany. With approximately 14,000 employees, it supports children, youth, and adults through a wide range of programs including youth social work, refugee assistance, vocational training, and international cooperation. The website reflects a mature digital presence with comprehensive content tailored to its target audience of social workers, educational institutions, and beneficiaries. Technically, the site is built on TYPO3 CMS, hosted on German Telekom infrastructure, and employs Matomo analytics with a robust cookie consent mechanism, demonstrating good digital maturity and privacy compliance. Security posture is solid with HTTPS enforcement and standard security headers, though the absence of a dedicated security policy or incident response page suggests room for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting the organization's credibility and mission.

H

Hive-IT GmbH

meinimmoportal.eu

70

MeinImmoPortal, a product of Hive-IT GmbH, is a leading provider of fully managed WordPress websites tailored for real estate professionals in Germany and Europe. The company offers scalable service packages with CRM integration, process automation, and technical support, positioning itself as a market leader with a strong partner ecosystem. The website reflects a mature digital presence with excellent content quality, clear navigation, and professional branding. Technically, the platform leverages WordPress, Yoast SEO, Matomo Analytics, and Cloudflare CDN, ensuring fast performance, mobile optimization, and privacy compliance. Security posture is strong with HTTPS, web firewall, automated backups, and privacy-respecting analytics, although explicit security headers and incident response policies could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

U

Uzin Utz Tools GmbH & Co.KG

pajarito.de

50

Pajarito is a well-established German manufacturer specializing in high-quality professional tools for painters, drywall installers, and plasterers. Founded in 1923, the company emphasizes precision, durability, and reliability with all products made in Germany. The website reflects a mature digital presence with comprehensive product catalogs, clear navigation, and strong branding. Technically, the site is built on TYPO3 CMS and integrates modern analytics tools such as Google Analytics and Matomo, alongside a robust cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though security headers could be improved. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, the site projects professionalism and trustworthiness, targeting professional tradespeople and the construction industry.

C

Codex GmbH & Co. KG

codex-x.com

47

Codex GmbH & Co. KG operates a professional website focused on providing high-quality installation systems for tiling and natural stone, targeting qualified tilers and construction professionals. The company is positioned as a medium-sized manufacturing entity within Germany and is part of the Uzin Utz SE group, which is reflected in the branding and linked domains. The website is built on TYPO3 CMS and integrates modern analytics tools such as Google Analytics and Matomo, demonstrating a mature digital infrastructure. The site features comprehensive cookie consent mechanisms and privacy policies aligned with GDPR requirements, enhancing user trust and compliance. Security posture is solid with HTTPS enforced and session management for logged-in users, though some security headers and explicit security policies are absent. Overall, the website presents a professional, well-structured, and user-friendly experience with clear business information and contact details. However, the lack of WHOIS data for the subdomain reduces domain trustworthiness slightly, though the overall legitimacy is supported by consistent branding and external references.

U

Uzin Utz Nederland bv

arturoflooring.com

60

Arturo Flooring, operated by Uzin Utz Nederland bv, specializes in resin and cementitious flooring solutions for industrial, retail, public, office, and residential applications. The company offers a broad product portfolio including self-smoothing floors, resin screeds, coatings, sealers, and professional tools, positioning itself as a reputable international brand in the flooring industry. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to industry professionals and end customers alike. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries, and integrates analytics tools such as Google Analytics and Matomo, demonstrating a balanced approach to performance and user tracking. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and incident response information are not publicly disclosed. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact channels, supporting a positive business credibility profile.

U

Uzin Utz Tools GmbH & Co.KG

wolff-tools.com

61

WOLFF, operated by Uzin Utz Tools GmbH & Co.KG, is a well-established manufacturer and distributor of powerful machines and premium quality tools for floor removal, subfloor preparation, and floor installation. The company targets flooring professionals and distributors, offering a comprehensive product range including cordless power tools, measurement devices, and cleaning equipment. The website reflects a strong market position with consistent branding and detailed product information, supported by a parent company presence (Uzin Utz SE). Technically, the website is built on TYPO3 CMS with modern frontend technologies such as Bootstrap, FontAwesome, and slick sliders. It integrates Google Analytics and Matomo for analytics, with a robust cookie consent mechanism ensuring GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. From a security perspective, the site enforces HTTPS and implements cookie consent but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS registration data for the domain raises moderate concerns about domain legitimacy, although the website content and company information appear trustworthy and professional. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, incident response transparency, and domain registration verification would enhance trust and security posture.

N

Nimbuscloud GmbH

nimbuscloud.at

54

Nimbuscloud GmbH is a small Austrian technology company founded in 2013, specializing in SaaS software solutions for event organizers and dance schools. Their platform offers comprehensive tools for ticketing, event management, customer relationship management, and communication, targeting businesses in the event and dance education sectors. The website is professionally designed, well-branded, and provides clear contact information and customer testimonials, supporting a trustworthy market position in German-speaking regions. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Matomo analytics and Usercentrics for GDPR-compliant consent management. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit policies could be improved. Overall, the site is accessible, privacy-aware, and professionally maintained, reflecting a mature digital presence for a small enterprise.

R

rapidmail

rapidmail.co.uk

64

rapidmail is a professional email marketing and transaction email software provider targeting businesses and agencies primarily in the UK and Europe. The company offers a SaaS platform with key services including newsletter creation, marketing automation, and transaction email management. The website demonstrates a strong market position with over 80,000 customers and high customer satisfaction. Technically, the site uses modern web technologies and integrates multiple analytics tools, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though some improvements in security headers and incident response transparency are recommended. Overall, the domain WHOIS data is unavailable or inconsistent, which slightly reduces trustworthiness for the exact domain analyzed but does not detract from the legitimacy of the business itself. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding vulnerability disclosure mechanisms.

E

exist – From science to business

exist.de

72

exist is a German government-backed program under the Bundesministerium für Wirtschaft und Energie (BMWE) that supports university graduates, scientists, and students in preparing technology-oriented and knowledge-based startups. Established in 1998, it offers multiple funding and support programs such as the exist Gründungsstipendium, exist Women, and exist Forschungstransfer, aiming to foster a vibrant startup culture and increase successful technology spin-offs from academia. The website reflects a professional and consistent brand presence with clear communication of its services and goals. Technically, the site is built on WordPress with modern plugins and uses Matomo analytics for privacy-conscious tracking. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates strong business credibility and compliance with GDPR, serving as a trustworthy resource for its target audience.

I

ISGroup SRL

isgroup.it

70

ISGroup SRL is an established Italian IT security company founded in 2005, specializing in high-quality cybersecurity services including penetration testing, vulnerability assessments, ethical hacking, code review, and training. The company targets ICT operators, security agencies, and enterprises requiring independent and customized IT security solutions. Their market position is that of a trusted independent specialist with national and international collaborations, supported by recognized certifications such as ISO 27001 and ISO 9001. The website reflects a professional and consistent brand image with comprehensive service descriptions and client references.

V

Verity Systems

veritysystems.com

68

Verity Systems is a well-established company specializing in data destruction technology, including degaussing, hard drive and SSD destruction, and data erasure solutions. With over 30 years of experience, it holds a strong market position as a leader in secure data destruction, serving government agencies, defense, banking, healthcare, and education sectors. Their product portfolio includes high pulse degaussers, shredders, and auditing software, supported by multiple industry certifications. The company operates a professional and multilingual website built on WordPress with WooCommerce and Elementor, demonstrating a mature digital infrastructure. Hosting and domain registration are managed via Cloudflare, ensuring robust performance and security. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy and cookie policies are present with consent mechanisms, indicating good compliance practices. Social media presence and partner brands enhance credibility. Overall, the website and business demonstrate high professionalism, trustworthiness, and technical maturity.

L

Leibniz-Gemeinschaft

leibniz-gemeinschaft.de

50

The Leibniz-Gemeinschaft website represents a major German non-university research organization uniting 96 independent research institutes across multiple scientific disciplines. The organization focuses on research, knowledge transfer, and advising policy and public stakeholders. The website is professionally designed using TYPO3 CMS and modern web technologies, providing comprehensive content and clear navigation targeted at researchers, policymakers, and the public. The technical infrastructure is solid, hosted via INWX with HTTPS and cookie consent mechanisms implemented. Security posture is good, though lacking explicit published security policies or incident response contacts. Overall, the site is trustworthy, compliant with GDPR, and well-positioned in its sector.

M

Munich Intellectual Property Law Center (MIPLC)

miplc.de

45

The Munich Intellectual Property Law Center (MIPLC) is a specialized academic institution offering a one-year LL.M. program focused on intellectual property, innovation, and competition law. It operates with strong partnerships including the Max Planck Institute for Innovation and Competition and prominent universities, positioning itself as a niche leader in legal education for innovation-driven economies. The website reflects a high level of professionalism, with comprehensive content, multimedia integration, and clear navigation tailored to prospective students and academic audiences. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and frameworks, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and privacy-conscious analytics via Matomo with cookies disabled. However, some security headers and explicit security policies are missing, and no direct contact emails or phone numbers are provided, relying instead on contact forms. Overall, the site is trustworthy, well-maintained, and compliant with GDPR, though improvements in transparency and security documentation could enhance user trust further.

U

University of Augsburg

uni-augsburg.de

68

The University of Augsburg is a medium-sized public university in Germany offering a broad range of academic programs and research opportunities across eight faculties. The website reflects a professional and comprehensive digital presence with detailed information for students, researchers, and the public. The university emphasizes interdisciplinary research and international cooperation. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Matomo analytics, hosted likely within German academic infrastructure. Security posture is good with HTTPS and privacy-conscious analytics, though cookie consent mechanisms and explicit security policies are not visible. Contact information is provided clearly, enhancing trust. Overall, the site is well-designed, accessible, and trustworthy, suitable for its academic audience.

L

LMU Klinikum

lmu-klinikum.de

67

LMU Klinikum is a leading university hospital in Munich, Germany, recognized for its extensive medical services, research, and education. It operates two main campuses and serves approximately 500,000 patients annually. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional design. Technically, it uses modern web technologies including Scrivito CMS and Matomo analytics, hosted on AWS infrastructure. Security posture is strong with HTTPS and CSRF protections, though some security headers and explicit incident response policies are absent. Privacy compliance is well addressed with clear cookie consent and a detailed privacy policy. Overall, the site demonstrates high business credibility and trustworthiness.

T

Technische Universität Braunschweig

tu-braunschweig.de

10

Technische Universität Braunschweig is a well-established German technical university specializing in engineering, natural sciences, and related academic disciplines. The website serves students, researchers, and academic staff with comprehensive information on study programs, research initiatives, and university services. The institution maintains a strong digital presence with a modern TYPO3 CMS platform and integrates privacy-conscious analytics via Matomo. Social media engagement spans multiple platforms including Instagram, YouTube, LinkedIn, Mastodon, and Bluesky. Technically, the website is built on a robust CMS framework tailored for higher education, ensuring good mobile optimization and SEO practices. The site uses HTTPS and includes a secure login form for single sign-on, but lacks explicit security headers and published security policies. Privacy compliance is partial, with no visible privacy or cookie policies or consent mechanisms on the homepage. Security posture is moderate with no detected vulnerabilities or exposed sensitive data, but improvements are recommended in publishing security policies, incident response contacts, and enhancing HTTP security headers. Overall, the website is professional, trustworthy, and serves its academic audience effectively, though it would benefit from enhanced transparency in privacy and security practices.

T

Technische Universität Dresden

tu-dresden.de

61

Technische Universität Dresden (TU Dresden) is a large, internationally recognized German university with a strong focus on education, research, and innovation. It serves a diverse audience including students, researchers, cooperation partners, and employees. The university holds the prestigious status of a University of Excellence, reflecting its top-tier research and academic standing in Germany. The website provides comprehensive information about degree programs, research initiatives, innovation support, and international collaborations, positioning TU Dresden as a leading academic institution. Technically, the website is built on the Plone CMS platform, utilizing modern web technologies such as RequireJS, Lottie animations, and Owl Carousel for interactive content. The site is mobile-optimized, accessible, and performs moderately well. It employs Matomo for analytics, indicating a preference for privacy-conscious tracking. The site uses HTTPS with good SSL configuration, though some security headers are not explicitly detected. From a security perspective, the site demonstrates good practices including HTTPS enforcement and no visible sensitive data exposure. However, it lacks explicit cookie consent mechanisms and published security policies or incident response contacts. The WHOIS data and DNS setup align with a legitimate academic institution, supporting the domain's trustworthiness. Overall, TU Dresden's website is professional, secure, and user-friendly, with minor areas for improvement in privacy compliance and security header implementation. The site is safe for general audiences and reflects the university's reputable standing in the education sector.

U

Uzin Utz SE

uzin-utz.com

57

Uzin Utz SE is a well-established German manufacturer specializing in floor installation systems and related products, boasting over a century of history. The company operates a portfolio of strong brands including UZIN, WOLFF, PALLMANN, Arturo, codex, and Pajarito, serving professionals in construction, flooring, and related industries. Their website reflects a mature digital presence with comprehensive content, investor relations, and career opportunities. Technically, the site is built on TYPO3 CMS with modern analytics and consent management tools, ensuring good performance and compliance with privacy regulations. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though some security headers could be explicitly implemented. The absence of WHOIS data limits domain trust verification, but the overall professional presentation and transparent policies support legitimacy. Strategic recommendations include enhancing security headers, maintaining updated software, and improving incident response visibility.

W

WeLocal World AG

welocal.world

65

WeLocal World AG is a specialized technology company providing a comprehensive Content Management System (CMS) tailored for media companies including TV and radio stations, as well as enterprises. Their flagship product, CMMS, is a video CMS designed to manage and publish multimedia content across multiple platforms such as websites, mobile apps, smart TVs, and streaming services. The company emphasizes full-service solutions including hardware, software, and ongoing support, positioning itself as a niche provider in the media technology sector. Their market approach includes white-label solutions for rapid deployment and customization, targeting media houses and broadcasters primarily in Germany. Technically, the website leverages modern web technologies including Vue.js, Video.js, and integrates Matomo for analytics alongside Usercentrics for consent management, reflecting a mature digital infrastructure. The site is well-optimized for performance, mobile responsiveness, and SEO, with structured data enhancing search visibility. Hosting is GDPR-compliant with servers located in Germany, underscoring their commitment to data privacy. From a security perspective, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data limits domain trust assessment, but the professional presentation and contact transparency mitigate concerns. Overall, WeLocal World AG demonstrates a strong business and technical foundation with good privacy compliance and a solid security posture. Strategic recommendations include enhancing HTTP security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and compliance.

C

Con i Bambini

conibambini.org

63

Con i Bambini is a reputable Italian non-profit foundation dedicated to combating educational poverty among minors. The organization supports social projects through funding, monitoring, and impact evaluation, targeting non-profit entities and social sector stakeholders. The website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, it is built on WordPress with modern frameworks and privacy-conscious analytics (Matomo). Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms, though it lacks a dedicated security policy or incident response page. WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization. Overall, the website demonstrates high trustworthiness and compliance with privacy regulations.

M

Marco Bonatta Photography

suedtirolerfotograf.com

61

Marco Bonatta Photography is a specialized small business offering professional photography and videography services focused on the hospitality and tourism sector in South Tyrol, Italy. The website presents a comprehensive portfolio including hotel, food, event, architectural photography, virtual tours, drone footage, and AI-enhanced reels. The business targets hotels, restaurants, tourism operators, and real estate clients seeking high-quality visual content to enhance their marketing and customer engagement. Technically, the website is built on the Incomedia WebSite X5 Pro CMS platform, utilizing modern JavaScript libraries and analytics tools such as Google Analytics and Matomo with privacy-conscious configurations. The site is well-structured, mobile-optimized, and includes GDPR-compliant privacy and cookie policies with consent mechanisms. However, the WHOIS data for the domain is missing or inaccessible, which raises concerns about domain registration legitimacy and requires further verification. Security headers are not detected, suggesting room for improvement in security posture. Overall, the website is professional and trustworthy in content and presentation but should address domain registration transparency and enhance security configurations.

M

Marco Bonatta Photography

bonatta.it

55

Marco Bonatta Photography is a specialized professional photography business focused on hotel and tourism marketing in South Tyrol, Italy. The company offers a broad range of services including food photography, product and still life photography, event and wedding coverage, architectural photography, and virtual tours with augmented reality and Google Street View integration. The website reflects a niche market positioning with strong regional expertise and trusted certifications such as Google Street View Trusted Photographer. The business targets hospitality and tourism clients, providing high-quality visual content to enhance marketing efforts. Technically, the website is built on the Incomedia WebSite X5 Pro CMS platform, utilizing modern JavaScript libraries like jQuery, and integrates analytics tools such as Google Analytics and Matomo. Cookie consent mechanisms are implemented, and the site is mobile optimized with good SEO practices. While the site uses HTTPS and includes GDPR-compliant privacy and cookie policies, it lacks explicit security policies or incident response information. From a security perspective, the site demonstrates good practices with HTTPS enforcement and secure form handling including GDPR consent. However, it could improve by adding security headers and publicly available security policies. No vulnerabilities or suspicious domains were detected. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving a clear business purpose in the hospitality photography sector. Strategic improvements in security transparency and terms of service documentation would enhance its credibility further.

Virtual Merano is a niche virtual tourism website offering interactive panoramic tours of the Merano region in Italy. The site targets tourists and visitors interested in exploring Merano virtually, providing multilingual content and detailed aerial views. The business appears to be recently established in 2023, focusing on delivering immersive virtual experiences rather than traditional tourism services. The website uses a technology stack including HTML5, JavaScript, jQuery, and the krpano panorama viewer, supported by Matomo analytics for user tracking. Hosting and domain registration are managed through Tucows Domains Inc., with DNS parking services. The site demonstrates basic mobile optimization and accessibility but lacks advanced SEO and security features.

C

Co.Ge.Di. International S.p.A.

acquedellasalute.it

63

Acque della Salute is a health-focused informational website promoting the mineral water brands Uliveto and Rocchetta, operated by Co.Ge.Di. International S.p.A. The site targets Italian consumers interested in wellness benefits of mineral waters, offering scientific studies and free specialist consultations. The business model centers on brand promotion through educational content and expert advice, positioning itself as a niche player in the healthcare and wellness sector. Technically, the website is built on WordPress, leveraging modern analytics tools like Matomo and Google Tag Manager, and implements GDPR-compliant cookie consent via Iubenda. The site is mobile-optimized with good navigation and professional design. Security posture is solid with HTTPS and cookie consent, though lacks explicit security headers and incident response contacts. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include enhancing security headers, adding incident response information, and maintaining compliance transparency.

T

Technische Hochschule Lübeck

th-luebeck.de

68

Technische Hochschule Lübeck is a reputable German technical university offering a broad range of applied science degree programs and research projects primarily in technology, economics, and design. The institution emphasizes practical education, industry cooperation, and innovation, positioning itself as one of Germany's top-funded universities. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-respecting analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response details are absent. Overall, the site is professional, trustworthy, and well-structured, serving students, researchers, and industry partners effectively.