Security Directory

C

Cookies lišta, s.r.o.

cookieslista.cz

49

Cookies lišta, s.r.o. is a Czech-based small technology company specializing in providing comprehensive cookie consent and GDPR compliance solutions tailored for websites. Their offerings include a cookie consent bar, privacy policy generator, and ongoing legislative and technological updates, positioning them as a niche player in the compliance software market. The company collaborates with legal experts and web design studios to ensure both legal accuracy and technical quality. Their market focus is primarily on Czech businesses needing to comply with evolving cookie legislation effective from 2022 and beyond. Technically, the website is built on WordPress and leverages modern JavaScript libraries and third-party services such as Google Analytics, Google Tag Manager, Facebook Pixel, Hotjar, and Smartsupp live chat. The site demonstrates good SEO practices, mobile optimization, and a user-friendly interface with clear navigation and professional design. Consent management is robust, with scripts loaded conditionally based on user consent, reflecting a mature digital compliance posture. From a security perspective, the site enforces HTTPS and implements consent-based script loading to protect user privacy. However, no explicit security headers were detected, suggesting room for improvement in hardening the site against common web threats. The absence of WHOIS data due to privacy protection is typical for small businesses and does not raise immediate concerns given the professional presentation and clear contact information. Overall, the website presents a low-risk profile with strong compliance focus, good technical implementation, and transparent business operations. Strategic recommendations include enhancing security headers, maintaining up-to-date third-party script audits, and possibly publishing a formal security policy to further build trust.

D

DGNB GmbH

dgnb.de

57

DGNB GmbH is a well-established non-profit organization founded in 2007, recognized as Europe's largest network for sustainable building and the second largest worldwide. The organization offers a comprehensive certification system (DGNB Zertifizierung), educational programs through the DGNB Akademie, and a digital networking platform (myDGNB). Their market position is strong within the sustainability and construction sectors, supported by over 2,800 member organizations and more than 11,000 certified projects globally. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support.

B

bvse-Bundesverband Sekundärrohstoffe und Entsorgung e.V.

bvse.de

54

The bvse-Bundesverband Sekundärrohstoffe und Entsorgung e.V. is a well-established German industry association representing approximately 1,000 medium-sized companies in the secondary raw materials, recycling, and waste disposal sectors. It holds a leading market position as the largest industry association in Germany and Europe for this sector. The organization provides a range of services including market news, seminars, quality seals, and political advocacy to support its members and promote sustainable circular economy practices. The website content is professionally presented in German, targeting industry professionals and stakeholders in the recycling and waste management fields. Technically, the website is built on Joomla CMS with modern frontend technologies such as Bootstrap 5 and jQuery, ensuring good mobile responsiveness and accessibility. The site uses HTTPS with strong SSL configuration and includes a cookie consent mechanism that limits cookie usage to essential session cookies. No major security vulnerabilities or tracking technologies were detected, indicating a privacy-conscious and secure digital infrastructure. From a security perspective, while HTTPS and secure login forms are implemented, the site lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. The WHOIS data aligns well with the website's business claims, showing consistent domain registration and no privacy protection, supporting legitimacy. Overall, the site is professional, secure, and compliant with GDPR requirements, serving as a credible resource for the recycling industry. Strategic improvements in security transparency and incident response readiness would further strengthen its posture.

D

Digital Hub Logistics & Commerce | Coworking und Community für Startups in der Logistik

digitalhublogistics.hamburg

61

The website www.digitalhub.hamburg appears to be a digital hub platform likely targeting technology and innovation sectors in Hamburg. However, due to the presence of a restrictive WHOIS response and truncated HTML content dominated by technical scripts, the full business scope and services cannot be confidently assessed. The site is built on the Wix platform, indicating a modern but possibly small-scale digital presence. The lack of visible contact information, privacy policies, and terms of service suggests limited transparency and compliance maturity. Security posture is basic with no advanced headers or policies detected, and the site likely employs a web application firewall or security mechanism that restricts full content access. Overall, the site presents a low trust profile due to limited accessible information and privacy-protected WHOIS data.

P

www.pilgerwege-schoenstatt.de | Pilgerwege Schoenstatt - Von Heiligtum zur Heiligtum - Schönstatt Zentren in Deutschland.

pilgerwege-schoenstatt.de

42

The website pilgerwege-schoenstatt.de serves as an informational platform focused on pilgrimage routes associated with the Schönstatt movement and its centers in Germany. It targets pilgrims and religious visitors interested in these routes. The site uses WordPress CMS with the Divi theme and integrates OpenStreetMap for mapping functionalities. The technical infrastructure is moderate, with basic mobile optimization and SEO practices. Security posture is weak due to lack of HTTPS verification in the provided data, absence of security headers, and missing privacy and cookie policies. No contact or incident response information is available, which limits user trust and compliance with data protection regulations. Overall, the site is functional but lacks advanced security and privacy features, which should be addressed to improve trust and compliance.

schoenstattTV is a small non-profit media platform dedicated to streaming and archiving religious events related to the Schoenstatt spirituality and community. It offers multilingual content and live streams, targeting followers and families interested in Schoenstatt. The website is hosted on servers associated with kasserver.com and uses HTTPS with embedded YouTube videos for media delivery. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is adequate with HTTPS but lacks advanced security headers and visible privacy or cookie policies. No contact information or social media presence is evident, which limits direct user engagement and trust signals. Overall, the site serves a niche religious community with a focus on media content delivery rather than commercial business operations.

CertUp is a specialized audit bureau based in Belgium, focusing on quality certification and registration audits for organizations in the education, consulting, and HR sectors. With over 30 years of experience and more than 10,000 audits completed, CertUp offers a range of services including Qfor, ISO, WSE, and Qualiopi audits. The company targets training centers, consultants, HR service providers, and sector organizations, helping them achieve recognized quality certifications to enhance their market credibility and access government subsidies. Technically, the website is built with modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and Facebook SDK for analytics and marketing. The site is mobile-optimized with good SEO practices and a clear navigation structure. However, no explicit CMS or hosting provider information is detected. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The domain registration data is consistent with the business claims, supporting the legitimacy of the website. Overall, CertUp presents a professional and trustworthy online presence with strong business credibility. Strategic improvements in security policy transparency and security headers would enhance their security posture further.

S

sovd-tv.de – Top-Deals

sovd-tv.de

54

The website 'sovd-tv.de – Top-Deals' functions primarily as a domain-for-sale landing page combined with an affiliate marketing platform showcasing discounted product deals across multiple categories such as electronics, home & kitchen, beauty, clothing, and toys. The business model appears to rely on affiliate commissions from Amazon product links and domain sales. The site targets general consumers interested in bargain shopping, primarily German-speaking users. Technically, the site uses standard HTML5, CSS3, and JavaScript with Google Fonts integration and dynamic search features. However, it lacks modern security practices such as HTTPS enforcement and security headers. No privacy or cookie policies are present, and no contact or company information is disclosed, which negatively impacts trust and compliance. The WHOIS data indicates the domain is unregistered or parked, raising legitimacy concerns. Overall, the site has moderate content quality and usability but poor security and compliance posture.

D

DeMa IT

dema-it.com

53

DeMa IT is a small German IT service provider based in Cologne, specializing in web design, software and app development, and IT services. The company targets business customers seeking tailored IT solutions and emphasizes customer satisfaction and long-term relationships. Their website reflects a professional and consistent brand image with clear service offerings and partner logos. Technically, the site uses modern web technologies including Laravel backend, Cloudflare DNS/CDN, and standard frontend frameworks. The site is mobile optimized and SEO friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS enforced and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is good with a GDPR-compliant privacy policy and cookie consent mechanism, though no terms of service or incident response policies are visible. Overall, the website is trustworthy and functional with moderate security maturity.

R

RM

rm.com

73

RM is a UK-based leading supplier of technology and services tailored for the education sector, supporting a wide range of educational institutions from pre-school to higher education, including examination boards and government bodies. Their offerings encompass education technology, assessment solutions, broadband, VoIP, and support services, positioning them as a comprehensive provider in the education technology market. The website reflects a professional and consistent brand presence with clear navigation and extensive content targeting schools, teachers, and educational institutions globally. Technically, the site employs a modern tech stack including C#, jQuery, Google Analytics, and OneTrust for cookie consent, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and use of reCAPTCHA, though some security headers and explicit policies are not evident in the provided data. The absence of WHOIS registration details limits domain trust verification but the overall digital footprint and related domains support legitimacy. Privacy compliance is partially addressed with cookie consent but lacks a clearly accessible privacy policy in the analyzed content. Overall, RM demonstrates a strong market position with room for improvement in transparency and security documentation.

M

mediagrafen

mediagrafen.de

58

mediagrafen is a small, specialized internet agency based in Bielefeld, Germany, founded in 2008. The company focuses on providing tailored web design, SEO, and digital solutions primarily using TYPO3 CMS. Their market position is regional with clients across Germany and neighboring countries, emphasizing quality, strategic digital development, and long-term partnerships. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that targets businesses and organizations seeking reliable web solutions. Technically, the site leverages TYPO3 CMS, modern JavaScript libraries, and Google Analytics with a GDPR-compliant cookie consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though some HTTP security headers could be improved. Overall, the site demonstrates high professionalism and trustworthiness with clear contact information and client references.

S

SMJ-Bamberg

smj-bamberg.de

60

SMJ-Bamberg is a small non-profit youth organization based in Scheßlitz, Germany, focused on organizing children and youth activities such as camps, weekend retreats, and day trips. The organization operates on a volunteer basis and is part of the international Schönstatt Movement. The website serves as an official information portal for the community and interested participants. Technically, the website is built on the Wix platform, leveraging Wix's hosting and content management capabilities. The site is moderately optimized for mobile devices and has a good design quality with clear navigation. Security-wise, the site uses HTTPS and includes some security hardening scripts, but lacks comprehensive security headers and formal policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced compliance and security documentation.

S

Schönstatt-Bewegung Deutschland, PressOffice Schoenstatt

schoenstatt.de

53

The Schönstatt-Bewegung Deutschland operates a German-language website providing news, events, and spiritual resources related to the Schönstatt religious movement. The organization targets members and interested parties within the Christian community, offering livestreams, newsletters, and educational materials. The website reflects a medium-sized non-profit entity with a consistent brand presence and a focus on community engagement. Technically, the site uses a custom CMS with legacy JavaScript libraries such as jQuery 1.7.2 and jQuery UI 1.8.21. The site is served over HTTPS, but lacks modern security headers and cookie consent mechanisms, which are important for GDPR compliance. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO. Security posture is moderate; the site uses HTTPS and does not expose sensitive data, but the absence of security headers and use of outdated libraries present potential risks. No incident response or vulnerability disclosure policies are publicly available. WHOIS data is consistent and supports the legitimacy of the domain. Overall, the website is trustworthy and safe for general audiences, but could benefit from enhanced security practices and privacy compliance measures to improve user trust and regulatory adherence.

S

ISA Sign Expo 2026

signexpo.org

49

The ISA Sign Expo 2026 website serves as an informational platform for a signage industry event, targeting professionals and businesses in the signage and visual communications sector. The site is built on WordPress using Elementor and Yoast SEO, indicating a modern CMS with SEO optimization. Google Tag Manager is used for analytics and tracking, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy and cookie policies are absent, which is a compliance gap. Overall, the site is professionally designed with good user experience but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

B

BarCamp Bonn

barcampbonn.de

61

BarCamp Bonn is a regional community event platform focused on open, participant-driven sessions for the Bonn and Rhein-Sieg area. The website presents a professional and consistent brand image supported by reputable local partners and sponsors. The event format encourages active participation and networking within the digital community. Technically, the site is built on WordPress, hosted by taenzer.hosting, and integrates a Pretix ticketing widget and Matomo analytics with privacy-conscious settings. Security posture is solid with HTTPS and no exposed sensitive data, though improvements can be made by adding security headers and cookie consent mechanisms. Overall, the site is trustworthy and well-positioned for its community event purpose.

S

Startup City Hamburg

startupcity.hamburg

64

Startup City Hamburg is an official city platform dedicated to supporting and connecting startups within Hamburg's vibrant ecosystem. It offers comprehensive resources including startup registration, funding opportunities, investor connections, job listings, and event information. The platform targets entrepreneurs, investors, corporates, and support organizations, positioning itself as a central hub for startup activities in Hamburg. Technically, the website employs modern JavaScript frameworks such as Alpine.js and Leaflet.js, integrates a consent management platform (Usercentrics), and uses self-hosted Matomo analytics, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is moderate, with cookie consent mechanisms in place but no explicit privacy policy or terms of service found in the analyzed content. Overall, the domain registration aligns well with the business purpose and location, enhancing trustworthiness. Strategic recommendations include enabling DNSSEC, publishing privacy and security policies, and adding vulnerability disclosure information to strengthen security and compliance.

O

Oberfranken Offensiv e.V.

oberfranken.de

50

Oberfranken Offensiv e.V. is a regional non-profit association dedicated to promoting the development, innovation, and cultural richness of the Oberfranken region in Germany. The website serves as an information portal highlighting regional projects, events, and campaigns to foster community engagement and regional pride. It targets residents, businesses, and institutions interested in the region's growth and quality of life. The association positions itself as a key regional player with a focus on innovation and community collaboration. Technically, the website is built on the Weblication CMS platform and uses modern web technologies including JavaScript, jQuery, and Font Awesome. It employs Piwik/Matomo for analytics, indicating a preference for privacy-conscious tracking. The site is mobile-optimized with good SEO practices and a cookie consent mechanism compliant with GDPR. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and provides cookie consent controls but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's regional and organizational identity, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could enhance its security posture and transparency by adding formal security policies and incident response information.

I

IPY 2007-2008

ipy.org

57

The website www.ipy.org represents the International Polar Year initiative, a collaborative international scientific effort focused on polar region research. The site provides educational resources, news, event information, and project data related to polar science. The target audience includes educators, researchers, participants, and the general public interested in polar studies. The website uses Joomla CMS with K2 components and includes legacy technologies such as Flash and older JavaScript libraries, indicating a need for modernization. Analytics tools like Google Analytics and Piwik are employed, but privacy compliance is minimal, with no visible privacy or cookie policies. Security posture is weak due to lack of HTTPS enforcement, absence of security headers, and use of deprecated technologies. WHOIS data is unavailable, limiting domain trust verification. Overall, the site is functional and content-rich but requires significant improvements in security, privacy, and technical modernization to enhance trust and compliance.

R

ReleaseNotes.io

releasenotes.io

67

ReleaseNotes.io is a specialized SaaS platform that automates the creation and distribution of product release notes and changelogs, leveraging AI to streamline update communications for product teams. Positioned as a niche player in the software development tools market, it offers integrations with popular platforms like Jira, GitHub, and Azure DevOps, enhancing workflow efficiency. The website demonstrates a mature digital presence with professional design, clear navigation, and comprehensive content including pricing, features, and support resources. Technically, it employs modern web technologies including Webflow CMS, JavaScript frameworks, and third-party services such as Intercom and Elev.io for customer engagement and support. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response policies are not published. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. Overall, the platform presents a trustworthy and professional image suitable for its target audience of software product teams.

E

Evangelische Mission in Solidarität (EMS)

ems-online.org

55

The Evangelische Mission in Solidarität (EMS) is a well-established non-profit organization based in Germany, focused on fostering global cooperation among churches and mission societies across Asia, Africa, Europe, and the Middle East. Their website reflects a mature digital presence with clear communication of their mission, partnership model, and key services including volunteer programs, educational initiatives, and fundraising. The organization maintains a medium-sized footprint with a network of 25 churches and 5 mission societies, emphasizing solidarity and sustainable development. Technically, the website is built on TYPO3 CMS, hosted by a reputable provider, and incorporates modern consent management and analytics tools, ensuring GDPR compliance and user privacy. Security posture is solid with HTTPS and consent mechanisms, though some security headers and policies could be enhanced. Overall, the site is professional, trustworthy, and accessible, supporting the organization's credibility and outreach efforts.

W

World Wildlife Fund

worldwildlife.org

70

World Wildlife Fund (WWF) is a globally recognized non-profit organization dedicated to wildlife conservation and endangered species protection. The website serves as a comprehensive platform to educate the public, engage supporters, and facilitate donations and advocacy efforts. It positions itself as a leader in environmental sustainability and conservation efforts worldwide. The site targets a broad audience including environmental advocates, donors, educators, and the general public interested in nature preservation. Technically, the website employs modern web technologies including JavaScript, CSS, and HTML5, with integration of Google Tag Manager for analytics and OneTrust for cookie consent management. The site is mobile-optimized, accessible, and demonstrates good SEO practices. The use of HTTPS and security headers indicates a strong security posture, although explicit security policies and incident response information are not publicly disclosed. Security-wise, the site enforces HTTPS, uses a consent management platform to comply with privacy regulations, and avoids exposing sensitive data. However, the absence of a vulnerability disclosure policy or security.txt file and lack of visible Data Protection Officer contact details represent areas for improvement. The WHOIS data is malformed and unavailable, which limits domain trust verification but the website's professional presentation and branding mitigate concerns. Overall, WWF's website is a well-maintained, secure, and privacy-conscious platform that effectively supports its mission. Strategic recommendations include publishing detailed security policies, providing vulnerability disclosure channels, and enhancing transparency around data protection roles to further strengthen trust and compliance.

Gemeindewerke Kahl Versorgungsgesellschaft mbH is a regional utility provider based in Kahl am Main, Germany, offering electricity, gas, and water supply services. The company emphasizes sustainable energy solutions, including 100% certified hydropower electricity and climate-neutral gas options. Their market position is that of a trusted local supplier with a focus on environmental responsibility and customer service. The website targets residential and commercial customers in the region, providing online contract management, energy-saving tips, and services related to electromobility and photovoltaics. Technically, the website is built using modern web technologies including Bootstrap 5 and jQuery, hosted on rzone.de servers. It is mobile-optimized with good accessibility and SEO practices. The site includes interactive elements such as a tariff calculator form and a well-structured navigation menu. However, no CMS or advanced platform is explicitly detected. From a security perspective, the site uses HTTPS and secure form inputs but lacks visible security headers and explicit incident response or vulnerability disclosure policies. No cookie consent mechanism was detected, which may pose GDPR compliance risks. The WHOIS data is consistent with the website content and business legitimacy, with no suspicious patterns. Overall, the website is professional, trustworthy, and well-suited for its business purpose. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance its security posture and regulatory adherence.

R

Richter+Frenzel GmbH + Co. KG

richter-frenzel.de

55

Richter+Frenzel GmbH + Co. KG operates as a large-scale wholesaler specializing in sanitary and building technology products, serving private customers, craftsmen, and object business clients primarily in Germany. The company maintains a strong market position with a clear business model focused on wholesale distribution and retail showroom services. Their website reflects a professional and consistent brand image, targeting a broad audience including private consumers and trade professionals. Technically, the website is built on TYPO3 CMS and leverages modern JavaScript libraries and frameworks such as jQuery, Bootstrap, and Usercentrics for consent management. Hosting infrastructure appears reliable, with DNS nameservers linked to Deutsche Telekom, indicating a stable and professional hosting environment. The site is mobile-optimized and demonstrates good SEO practices with comprehensive metadata and structured data. From a security perspective, the website enforces HTTPS and integrates a GDPR-compliant cookie consent mechanism. However, it lacks explicit security headers and does not provide a public security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a low risk profile with strong business credibility and privacy compliance. Strategic enhancements in security policy transparency and header implementation would further strengthen their security posture.

D

Densys pv5

densys-pv5.de

45

Densys pv5 operates as a specialized B2B photovoltaic wholesale supplier based in Germany, focusing on solar modules, inverters, energy storage, mounting systems, and e-mobility charging solutions. The company targets solar installers and businesses, offering a broad product portfolio with manufacturer partnerships and insurance backing from Munich RE, positioning itself as a reliable player in the German solar energy market. The website is professionally designed with good navigation and mobile optimization, leveraging ASP.NET WebForms technology and integrating modern tracking and consent tools such as Google Tag Manager and CookieFirst. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of explicit privacy and terms of service pages and missing security headers suggest areas for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and consistency. The site is free from adult or questionable content, making it safe for general audiences.

S

Sparkasse Aschaffenburg Miltenberg

s-abmil.de

68

Sparkasse Aschaffenburg Miltenberg operates a comprehensive regional banking website offering a wide range of financial services including online banking, loans, investments, insurance, and private banking. The website targets both private and corporate customers in the Aschaffenburg and Miltenberg regions of Germany. It holds a strong market position supported by multiple awards for service quality and advisory excellence. The digital infrastructure is built on Adobe Experience Manager, indicating a mature and professional technical environment. The site is well-structured, mobile-optimized, and provides clear navigation and extensive customer support channels including phone, chat, and email forms. Security measures such as HTTPS, session timeouts, and cookie consent mechanisms are implemented, though explicit security headers could be more transparent. Privacy policies and cookie management comply with GDPR requirements. Overall, the website demonstrates a high level of professionalism, trustworthiness, and digital maturity.

I

Indexa GmbH

pentatech.de

43

Pentatech, operated by Indexa GmbH in Germany, specializes in affordable DIY security products including wireless alarm systems, video surveillance cameras, smoke and gas detectors, and door intercoms. The company targets consumers and small businesses seeking easy-to-install security solutions. The website is built on an outdated Joomla! 1.5 CMS platform, hosted on German servers, and presents content professionally with clear navigation and product information. However, the technical infrastructure shows moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enabled but lacks modern security headers and updated CMS software, which could expose the site to vulnerabilities. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or detailed data protection officer information. Contact options are limited to a web form without direct emails or phone numbers. Overall, the site is trustworthy but would benefit from technical and compliance improvements.

R

Recycling Technologies Group

recyclingtechgroup.com.au

57

Recycling Technologies Group is a specialized Australian business providing European-made machinery and solutions for recycling waste fibre and producing biomass, particularly wood pellets. The company targets Australian businesses seeking sustainable waste management and biomass production technologies. The website is built on the Wix platform, featuring standard Wix technologies and scripts, with moderate performance and good mobile optimization. While the site includes essential metadata and structured data, it lacks comprehensive privacy, cookie, and terms of service policies, as well as clear contact information. Security posture is adequate with HTTPS enabled, but security headers and incident response details are absent. The WHOIS data is incomplete, lacking registrant details and domain age, which slightly reduces trustworthiness. Overall, the website presents a professional business presence but would benefit from enhanced privacy compliance and clearer contact and security information.

Wifotek is a Finnish company specializing in renewable energy heating solutions, including pellet boilers, wood gasification boilers, and solar energy packages. Established in 2006, the company positions itself as a provider of durable, long-lasting heating systems with minimal maintenance needs. Their business model focuses on product sales and expert service, targeting residential customers seeking economical and sustainable heating options. The website is professionally designed using WordPress with modern plugins and SEO tools, providing clear navigation and comprehensive product information. Contact details and privacy compliance mechanisms are well implemented, including cookie consent and privacy policy pages in Finnish. Security posture is good with HTTPS enforced and domain registration stable, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the website reflects a credible and trustworthy business with a solid digital presence.

D

die profilschmiede GmbH & Co. KG

profilschmiede.de

47

die profilschmiede GmbH & Co. KG is a Cologne-based full-service agency specializing in web design, print production, hosting, social media, SEO, and consulting services. Established in 2000, the company targets businesses and associations seeking integrated digital and print solutions. Their market position is that of a trusted regional internet agency with over two decades of experience. Technically, the website employs a traditional tech stack including MooTools, Google Analytics, Hotjar, and eTracker, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA integration, but lacks advanced security headers and explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. Overall, the website is professional, trustworthy, and business-focused with no signs of suspicious activity or adult content.

H

HOME OF LOGISTICS

home-of-intralogistics.de

45

HOME OF LOGISTICS is a German-language industry portal focused on logistics, intralogistics, and autonomous transport. Operated by DVS Media, it provides news, event information, and advertising services targeted at logistics professionals and companies. The website demonstrates a solid market position as a niche media platform with consistent branding and a professional content offering. Technically, the site uses modern web technologies including JavaScript libraries, a consent management system, and Google Analytics 4 for tracking, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and CSRF protections, though security headers and explicit policies could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with no signs of malicious or adult content.

H

HOME OF STEEL

home-of-steel.de

45

HOME OF STEEL is a German-language online portal dedicated to the steel industry, providing free access to specialized information, news, product and company listings, and event details. The platform targets companies, professionals, and interested parties within the steel sector, positioning itself as a reputable media and information hub supported by DVS Media. The website demonstrates a professional design with consistent branding and a clear navigation structure, including integration with partner portals and social media presence on LinkedIn. Technically, the site uses modern web technologies including JavaScript libraries, a consent management system, and Google Analytics 4 for user tracking, ensuring GDPR compliance through explicit cookie consent mechanisms. Security-wise, the site enforces HTTPS, includes CSRF tokens, and uses a consent manager, but lacks explicit security headers and published security policies or incident response contacts. WHOIS data indicates a legitimate and consistent domain registration with no privacy protection, supporting the site's credibility. Overall, the website is well-maintained, secure, and compliant with privacy regulations, serving as a trusted resource for the steel industry.

H

HOME OF WELDING

home-of-welding.com

51

Home of Welding is a specialized media platform serving the welding and manufacturing industries, offering news, product information, and event coverage primarily targeting industry professionals in Germany and internationally. The website demonstrates a professional digital presence with a consistent brand and active social media channels. Technically, the site uses modern web technologies including JavaScript libraries and a consent management system, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and CSRF protections, though the absence of security headers and WHOIS transparency are areas for improvement. Overall, the site is trustworthy and well-positioned in its niche, but domain registration opacity slightly reduces confidence.

W

Westfaelische Wilhelms-Universitaet Muenster

sciebo.de

59

The website hochschulcloud.nrw is an academic cloud storage service operated by Westfaelische Wilhelms-Universitaet Muenster, targeting universities and their staff and students in the NRW region of Germany. It offers secure, non-commercial cloud storage with features such as file sharing, collaboration, and project-specific storage. The service emphasizes data protection under strict German regulations and operates data centers exclusively in NRW. Technically, the site uses Imperia CMS and Bootstrap, with a moderate performance profile and good mobile optimization. Security posture is adequate but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is good with a comprehensive privacy policy, though no cookie consent mechanism was detected. Overall, the site is trustworthy and professionally presented, with no signs of malicious content or vulnerabilities.

Q

queo valueTec

queo-valuetec.com

60

queo valueTec is a German technology company specializing in tailored software solutions aimed at sustainable value creation and business process optimization. The company positions itself as a trusted partner offering services from business analysis through solution architecture, software development, and application management. Their client portfolio includes notable organizations such as VW and Fraunhofer, supported by certifications like TISAX and CPRE, underscoring their commitment to quality and security. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, incorporating modern JavaScript libraries and analytics tools such as Matomo and Facebook Pixel. The site demonstrates good mobile optimization, SEO practices, and a professional design, reflecting a mature digital presence. Cookie consent mechanisms and GDPR-compliant privacy policies are implemented, indicating attention to privacy regulations. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks visible security headers and explicit incident response or vulnerability disclosure information. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data reduces transparency but does not detract significantly from the overall trustworthiness given the professional presentation and certifications. Overall, queo valueTec presents a credible and professional business with a solid technical foundation and reasonable security posture. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and compliance further.

M

Menzel Metallchemie GmbH

menzel-metallchemie.de

45

Menzel Metallchemie GmbH is a German-based medium-sized company specializing in the development and manufacturing of minimum quantity cooling and lubrication technologies using biodegradable high-performance oils. Positioned as a pioneer and market leader, the company serves industrial manufacturers, particularly in metal and plastic processing sectors, offering products such as spray technology systems, cooling lubricants, safety cold bronzing systems, and technical cleaning solutions. The website reflects a professional and consistent brand image with comprehensive product information and multiple contact channels including GDPR-compliant forms. Technically, the website is built on Mae CMS and employs modern web technologies including HTML5, CSS, JavaScript, and jQuery, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized with good SEO practices, though some accessibility features are basic. Performance is moderate, with room for improvement in loading speed and security headers. From a security perspective, the site uses HTTPS with good SSL configuration and secure forms incorporating CSRF tokens and GDPR consent checkboxes. However, explicit security policies and incident response information are absent, and security headers are not detected. No vulnerabilities or suspicious content were found, indicating a generally sound security posture. Overall, the website is trustworthy and professional, with strong business credibility and compliance with privacy regulations. Recommendations include implementing cookie consent mechanisms, enhancing security headers, and publishing security and incident response policies to further strengthen trust and compliance.

A

Akademie des Versicherers im Raum der Kirchen

autobahnkirche.de

60

The website autobahnkirche.de represents a non-profit organization focused on providing spiritual rest stops along German highways, known as Autobahnkirchen. The site is managed by the Akademie des Versicherers im Raum der Kirchen, supported by entities such as HUK-Coburg and Deutsche Telekom. The business model centers on offering travelers places for reflection, rest, and spiritual comfort, with information about locations and events. The website content is well-structured, professionally presented, and targets travelers and visitors interested in spiritual respite. Technically, the site is built using Adobe Experience Manager CMS, with standard web technologies including JavaScript and CSS. Hosting appears to be managed by Deutsche Telekom, inferred from nameservers. Performance is moderate with basic mobile optimization and accessibility features. The site uses Dynatrace for monitoring user experience and performance. SEO and meta tags are basic but sufficient for the site's scope. From a security perspective, the site uses HTTPS and implements a cookie consent banner, indicating awareness of privacy compliance. However, no explicit security headers were detected in the provided data, and no incident response or security policy pages are present. No forms or contact emails are visible on the main page, limiting direct user data collection. The WHOIS data aligns with the website's organizational claims, showing a consistent and legitimate registration. Overall, the website presents a low-risk profile with a good level of professionalism and compliance for a non-profit entity. Recommendations include enhancing security headers, improving mobile and accessibility features, and adding explicit security and incident response policies to strengthen trust and compliance.

Mobil Betriebskrankenkasse is a public health insurance provider based in Munich, Germany, operating as a Körperschaft des öffentlichen Rechts with self-administration. The website targets insured persons, offering services such as online processing of sick notes, sickness benefits, bonus programs, preventive health offers, and free health courses. The organization is a member of the BKK Landesverband Bayern, indicating its regional market position within Bavaria. The website presents a professional and consistent brand image with good content quality and accessibility features.

H

Hamburger Verkehrsverbund

hvv.de

68

Hamburger Verkehrsverbund (hvv) operates as the primary public transportation network for Hamburg and its surrounding areas, providing comprehensive services including timetable information, ticket sales, and mobility consulting. The website serves as a digital portal for users to access schedules, purchase tickets, and stay informed about service updates. The platform targets public transit users in the Hamburg region and positions itself as a leading transportation provider with a strong regional presence. Technically, the website employs a modern JavaScript stack with libraries such as jQuery UI, GSAP, and Moment.js to enhance user experience and performance. It features responsive design and accessibility considerations, including keyboard navigation and ARIA roles. The site integrates tracking via etracker for analytics while maintaining GDPR compliance through cookie consent mechanisms and a detailed privacy policy. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, indicating attention to secure data handling. However, explicit security headers and a published security policy or vulnerability disclosure are absent, representing areas for improvement. No signs of WAF or blocking mechanisms were detected, allowing full content access. Overall, the website demonstrates a solid balance of usability, compliance, and security suitable for a public transportation entity. Strategic enhancements in security transparency and incident response readiness would further strengthen its posture.

L

Startseite – #LebeFarbe

lebe-farbe.de

51

The website www.lebe-farbe.de is a German-language site focused on the theme of color and its impact on home environments. It provides content about the effects of colors and how they can transform living spaces, targeting a general audience interested in home decoration and color psychology. The site uses WordPress as its CMS and integrates third-party services such as Cookiebot for cookie consent management, Google Analytics, Facebook Pixel for tracking, and Spotify embeds for audio content. The technical infrastructure is modern with HTTPS enabled, though some security headers are not explicitly detected in the provided content. The cookie consent mechanism is comprehensive and GDPR compliant, but no explicit privacy policy or terms of service pages were found in the analyzed content. Contact information such as emails or phone numbers is not present in the visible HTML content, which limits direct user engagement channels. WHOIS data is minimal but consistent with a German domain, with no privacy protection or suspicious patterns detected. Overall, the website presents a good level of professionalism and compliance but could improve transparency and security posture by publishing privacy and terms documents and enhancing security headers.

K

Knappschaft-Bahn-See

arbeitgeberversicherung.de

63

The website arbeitgeberversicherung.de represents the employer insurance services provided by Knappschaft-Bahn-See, a major German government-related insurance entity. It offers comprehensive insurance coverage for employers regarding employee sickness and maternity benefits through Umlageverfahren U1 and U2. The site targets employers in both commercial and private sectors, including those with Minijobbers and employees insured under the Knappschaft system. With over two million customers and a history dating back to 1969, it holds a strong market position in Germany's social insurance landscape. Technically, the website is built on the Government Site Builder CMS, leveraging modern JavaScript libraries, Matomo analytics, and Usercentrics for cookie consent management. The site is well-optimized for mobile and accessibility, with good SEO practices and a moderate performance profile. It uses HTTPS and encrypted form submissions, ensuring secure data handling. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and consent management but lacks explicit published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-aligned with its government insurance service mission. Strategic improvements could include publishing dedicated security and incident response information and enhancing security headers to further strengthen its security posture.

F

Finest Audience Academy

aflare.de

48

The website aflare.de appears to be a small-scale affiliate marketing or digital marketing related site powered by Finest Audience Academy. The content is minimal and primarily focused on marketing tracking technologies. The technical infrastructure includes common analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and reCAPTCHA, hosted behind Cloudflare nameservers. However, the site lacks critical privacy and cookie policies, contact information, and visible security best practices, which limits its trustworthiness and compliance posture. The WHOIS data is limited but consistent with Cloudflare usage, providing no strong indicators of illegitimacy but also lacking transparency. Overall, the site demonstrates basic digital maturity but requires significant improvements in privacy compliance, security posture, and business transparency to enhance credibility and user trust.

S

SECURVITA

securvita.de

49

SECURVITA is a well-established German health insurance provider offering a broad range of statutory and private insurance products with a strong emphasis on natural healing methods and family services. The company is recognized as one of Germany's best health insurers, supported by awards and a comprehensive service portfolio including modular insurance options, bonus programs, and financial products. The website is professionally designed, content-rich, and targets German-speaking customers seeking health insurance solutions. Technically, the site is built on TYPO3 CMS, hosted on plusserver.com, and incorporates modern accessibility and cookie consent technologies. Security posture is solid with HTTPS and cookie consent mechanisms, though the absence of explicit security policies and incident response contacts suggests room for improvement. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact channels primarily via phone and contact forms.

Mobil Betriebskrankenkasse is a public health insurance provider based in Munich, Germany, operating as a Körperschaft des öffentlichen Rechts with self-administration. The company serves insured persons primarily in Bavaria and offers services such as online processing of sick notes, sickness benefits, bonus programs, preventive health offers, and free health courses. It is a member of the BKK Landesverband Bayern, indicating a solid regional market position within the German healthcare sector. The website is professionally designed with good content quality and clear navigation, targeting insured individuals seeking health insurance services. Technically, the site employs modern web technologies including Cookiebot for consent management and Matomo for analytics, ensuring GDPR compliance and user privacy. The site is mobile-optimized and accessible, with structured data enhancing SEO and user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly documented. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

G

Gasp!

gasp.agency

67

Gasp! is a small, award-winning marketing and communications agency based in Reading, Berkshire near London. The company focuses on brand and strategy-first marketing services, targeting businesses seeking creative and media-neutral marketing solutions. The website reflects a professional and consistent brand image with clear service offerings and a focus on creativity and strategy. Technically, the site uses modern web technologies including Cookiebot for cookie consent management, Google Tag Manager, and LinkedIn Insight Tag for analytics and marketing. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is moderate with HTTPS in use and cookie consent implemented, but lacks explicit security headers and published privacy or security policies. WHOIS data is privacy protected, which is typical for this business type, but limits transparency. Overall, the website is safe, professional, and trustworthy with room for improvement in privacy disclosures and security best practices.

R

Rüffert Werbung GmbH

rueffert.de

52

Rüffert Werbung GmbH is a small German manufacturer and installer specializing in high-quality advertising technology and outdoor advertising solutions. Their offerings include illuminated advertising pylons, light advertising, LED letters, advertising towers, and building lighting, serving a broad range of business customers from single enterprises to large chains. The company emphasizes comprehensive service from planning through installation, ensuring product quality and customer satisfaction. Technically, the website employs modern web technologies including jQuery and Siema slider, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and cookie consent mechanisms are absent. Overall, the site reflects a professional and trustworthy business with active customer engagement and social media presence.

B

Billionairespin Official Site ᐉ Billionairespin Casino Login

billionairespin.com

59

The website 52billionairespin51.com operates as an online casino platform branded as Billionairespin, offering a variety of casino games including slots, live casino, and instant win games. The platform targets adult users interested in online gambling and provides bonuses and promotions to attract players. The site features games from well-known providers such as Evolution, Pragmatic, Novomatic, and Playson, indicating a broad game portfolio. The domain is relatively new, registered in 2025, which aligns with a startup or recently launched online casino business. From a technical perspective, the website uses modern web technologies including Vue.js, Google Fonts, and Cloudflare DNS services. The site appears to be mobile-optimized with good design quality and user experience. However, SEO optimization is limited, and accessibility features are basic. The site uses Google Tag Manager for analytics and marketing purposes, indicating some level of digital maturity. Security posture shows room for improvement. While the domain status clientTransferProhibited and use of Cloudflare DNS are positive indicators, the absence of DNSSEC, lack of security headers, and missing privacy and cookie policies are notable gaps. No contact information or incident response channels are provided, which reduces transparency and trust. The site is served over HTTPS (implied by canonical URL), but SSL configuration details are not visible. Overall, the security score is moderate but could be enhanced by implementing best practices. The website content is gambling-related, intended strictly for adults, and no adult explicit content beyond gambling is detected. The lack of privacy and cookie policies and terms of service is a compliance risk, especially under GDPR and other data protection regulations. The domain WHOIS data shows an unusual future creation date, which may be a data anomaly but warrants attention. No registrant details are publicly available, which is common but reduces trust. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, publishing terms of service, and providing clear contact and incident response information. Enhancing SEO and accessibility would improve user reach and compliance. Overall, the site is functional and professionally designed but requires improvements in security and compliance to increase trust and reduce risk.

F

Fräser24

fraeser24.shop

65

Fräser24 is a German-based small e-commerce business specializing in milling and engraving tools and accessories. The website offers product categories such as Fräsen (milling), Gravieren (engraving), and Zubehör (accessories). Although the site is currently under construction, it provides basic navigation and contact options including a phone hotline and contact form. The business targets manufacturing professionals and hobbyists requiring specialized tools. Technically, the site is built on the Shopware platform with a ThemeWare theme, featuring responsive design and basic SEO elements. Security posture is moderate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and advanced security headers. Privacy compliance is good with a cookie consent mechanism and privacy policy present. Overall, the website is functional but could improve in security and content depth to enhance trust and user experience.

Q

queo

queo.de

58

queo is a German technology company founded in 2004 specializing in agency business and software development. With over 180 employees across six locations, it operates multiple group brands including queo valueTec, queonext, intolight, Procunia, Social Web macht Schule, and admoderate. The company targets business clients seeking integrated communication, technology, and software solutions. The website is professionally designed, well-structured, and optimized for mobile, reflecting a mature digital presence. The technical infrastructure is based on the Neos CMS and Flow PHP framework, utilizing modern JavaScript libraries and analytics tools such as Matomo and Facebook Pixel. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, alongside references to TISAX certification indicating adherence to automotive industry security standards. However, explicit security headers and incident response contacts are not evident, suggesting areas for improvement. Overall, queo presents a credible and trustworthy business with a good balance of technical sophistication and compliance.

Z

zur Mühlen Gruppe

zurmuehlengruppe.de

38

The zur Mühlen Gruppe is a large German manufacturing company specializing in the production and distribution of meat and sausage products. With approximately 4,000 employees across 12 locations, the company produces over 2 billion consumer packages annually and holds multiple prestigious awards such as 'Marke des Jahrhunderts' and 'Top Marke 2020'. Their business model focuses on high-quality food production, supported by rigorous quality assurance processes including 50,000 laboratory tests annually. The company also operates internationally through its subsidiary zur Mühlen International (ZMI), marketing products in over 40 countries. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries like jQuery and Swiper.js for interactive content. The site demonstrates good mobile optimization, clear navigation, and professional design, although some accessibility features are basic. Performance is moderate, with no critical errors or broken elements detected. However, there is no visible cookie consent mechanism, and security headers are not explicitly present in the provided data. From a security perspective, the site uses HTTPS as indicated by canonical URLs, but lacks explicit security headers and incident response information. No forms or contact emails are visible on the main page, limiting direct user communication channels. There is no security.txt or vulnerability disclosure policy found. Overall, the security posture is moderate but could be improved by implementing standard security headers, cookie consent, and incident response contacts. The overall risk assessment is low to moderate. The site is legitimate, professionally maintained, and focused on a well-established business sector. Strategic recommendations include enhancing privacy compliance with cookie consent, adding security headers, publishing incident response policies, and improving contact information visibility to strengthen trust and security culture.

K

Konzept fünf

konzept-fuenf.de

40

Konzept fünf is a creative full-service advertising agency based in Offenbach, Germany, specializing in consulting, design, concept development, and production for marketing campaigns. The website presents a professional image with good content quality and consistent branding, targeting businesses in the Rhein-Main region seeking creative marketing solutions. Technically, the site uses Bootstrap 4.3.1 and integrates Microsoft Clarity for analytics, hosted on servers associated with kasserver.com. The site is mobile optimized and SEO friendly with structured data enhancing search engine visibility. Security posture is moderate with HTTPS enabled but lacking security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is provided, indicating room for improvement in compliance and security transparency. Overall, the website is safe, professional, and trustworthy for its business domain.