Security Directory

B

Bundesarbeitsgemeinschaft Evangelische Jugendsozialarbeit

bagejsa.de

50

Bundesarbeitsgemeinschaft Evangelische Jugendsozialarbeit is a German non-profit organization dedicated to youth social work, political advocacy, and integration programs for young people, especially those in precarious situations or with migration backgrounds. The organization operates multiple offices in Germany and provides resources, events, and policy advice to stakeholders in the youth social work sector. The website is built on TYPO3 CMS and employs modern web technologies including a GDPR-compliant consent management platform and Matomo analytics for privacy-respecting user tracking. Accessibility is a strong focus, with features supporting color blindness and keyboard navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission and audience.

J

Jugendmigrationsdienste (JMD)

jmd-respekt-coaches.de

55

The website www.lass-uns-reden.de represents the Bundesprogramm JMD Respekt Coaches, a German government-supported initiative focused on promoting democratic values, respect, and tolerance among youth in schools. The program is implemented by Jugendmigrationsdienste (JMD) and targets young people in general and vocational schools, aiming to prevent extremism, racism, and prejudice through educational group offerings and social-pedagogical support. The site is well-branded, professionally designed, and provides comprehensive content about the program's goals, activities, and partners. Technically, the site runs on TYPO3 CMS with modern web technologies and includes accessibility and mobile optimization features. However, it lacks explicit privacy and terms of service pages, and no direct contact information is provided, which are notable compliance gaps. Security posture is moderate with HTTPS implied but no advanced security headers detected. Overall, the domain and content appear legitimate and consistent with a government/non-profit educational program in Germany.

N

nexxt-change

nexxt-change.org

69

Nexxt-change is Germany's largest online marketplace dedicated to business succession and company transfers, operated under the auspices of the Federal Ministry for Economic Affairs and Climate Action (BMWK). It connects business owners seeking successors with entrepreneurs and investors, providing a comprehensive platform including listings, regional partner support, informational resources, and events. The platform targets small and medium enterprises (SMEs) and entrepreneurs across Germany, facilitating smooth business transitions to sustain economic continuity. Technically, the website is built on a government site builder CMS, leveraging modern JavaScript libraries such as JW Player and eTracker analytics for user insights while maintaining strong privacy controls. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Privacy compliance is robust, featuring a detailed privacy policy, cookie consent mechanisms, and GDPR adherence. From a security perspective, the site enforces HTTPS and employs privacy-respecting analytics. However, explicit security headers and incident response information are not publicly documented, representing an area for improvement. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, the site demonstrates a high level of trustworthiness and professionalism consistent with its government affiliation. Strategically, the platform serves a critical role in Germany's economic ecosystem by supporting business continuity through succession. It benefits from strong partnerships with reputable organizations and government bodies, enhancing its credibility and reach.

E

EuroKurz.cz

eurokurz.cz

44

EuroKurz.cz is a Czech-language website providing daily updated currency exchange rates sourced from the European Central Bank, along with historical data and currency conversion tools. The site targets general users interested in currency rates, including travelers and financial professionals. It operates a niche business model focused on information dissemination supported by advertising revenue. The website is technically modern, using Google Fonts, Google Tag Manager, Google Adsense, and Facebook SDK for analytics and advertising. Hosting is provided by websupport.sk, a known hosting provider. The site is mobile optimized and offers good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enabled and a consent management platform for GDPR compliance, though explicit security headers and detailed privacy policies are lacking. No contact emails or phone numbers are visible, which limits direct user engagement. WHOIS data confirms domain legitimacy with consistent registration since 2012. Overall, the site is professional and trustworthy but could improve transparency and security practices.

A

Agouti

agouti.eu

60

Agouti.eu is a non-profit initiative developed by Wageningen University and the Research Institute for Nature and Forest (INBO) to provide AI-powered solutions for processing wildlife camera trap data. The platform offers tools for uploading, annotating, and exporting standardized camera trap data, targeting academic, non-profit, and commercial users with a focus on wildlife conservation and research. The website is well-structured, informative, and includes instructional videos to facilitate user onboarding. Technically, the site is built using Ember.js and Video.js, hosted on university data centers, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and no visible vulnerabilities, though it lacks explicit security policies and incident response contacts. Privacy compliance is supported by a clear privacy policy and terms of service, but no cookie consent mechanism is present. Overall, the site is trustworthy, professional, and safe for general audiences.

MarineRegions.org is a specialized marine geospatial data platform operated by the Flanders Marine Institute (VLIZ). It provides authoritative marine georeferenced place names, maritime boundaries, and related geographic information to researchers, policymakers, and maritime stakeholders. The platform integrates data from established sources such as the VLIMAR Gazetteer and MARBOUND database, positioning itself as a trusted resource in marine geographic information. The website is professionally designed with clear navigation and regularly updated content, including news and user testimonials, enhancing its credibility within the marine science community. Technically, the site employs standard web technologies including HTML5, CSS3, JavaScript, jQuery, and JWPlayer for media content. It uses Piwik (Matomo) analytics with cookies disabled, reflecting a moderate privacy-conscious approach. However, the site lacks explicit privacy and cookie policies, which is a compliance gap. Security-wise, HTTPS is enabled with no exposed sensitive data, but security headers are absent, and DNSSEC is not enabled, indicating room for improvement in security hardening. Overall, the site is trustworthy and functional but would benefit from enhanced privacy compliance and security best practices.

E

European Ocean Biodiversity Information System (EurOBIS)

eurobis.org

52

EurOBIS operates as the European node of the Ocean Biodiversity Information System, providing a valuable open-access platform for marine species distribution data within European waters. The website serves primarily researchers, data providers, and policy makers interested in marine biodiversity. It offers dataset downloads, quality control information, and links to related marine data initiatives. The platform is managed by VLIZ, a reputable marine research institute in Belgium, reinforcing its credibility and scientific focus. Technically, the website employs standard web technologies such as HTML, CSS, JavaScript with jQuery, and Font Awesome for icons. The site is moderately optimized for performance and mobile use, with clear navigation and structured content. However, there is room for improvement in accessibility and SEO optimization. Hosting appears to be managed by a research institution, ensuring stable infrastructure but lacking advanced modern CMS or frameworks. From a security perspective, the site lacks visible security headers and DNSSEC is not enabled, which are areas for enhancement. No forms or analytics scripts reduce attack surface and privacy risks, but the absence of privacy and cookie policies indicates incomplete compliance with GDPR best practices. The domain registration is consistent and long-standing, supporting the site's legitimacy. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. Overall, EurOBIS is a credible, scientifically focused data portal with good business credibility and content quality. Strategic improvements in security headers, privacy compliance, and technical modernization would enhance its security posture and user trust.

B

Bundeszentrum für Ernährung (BZfE)

bzfe.de

68

The Bundeszentrum für Ernährung (BZfE) is a German government-affiliated competence and communication center focused on nutrition education and information. The website serves a broad audience including consumers, educators, childcare personnel, and nutrition professionals, providing scientifically grounded, neutral content on food, health, and sustainability. The site is built on TYPO3 CMS and features a modern, accessible design with clear navigation and comprehensive content. It employs GDPR-compliant cookie consent mechanisms and uses etracker analytics with user consent. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence appropriate for a government educational entity.

B

Bundesanstalt für Landwirtschaft und Ernährung

ble-medienservice.de

67

The Bundesanstalt für Landwirtschaft und Ernährung operates the BLE Medienservice website as an official German federal agency media service focused on agriculture, nutrition, and education. The website provides a broad range of publications, educational materials, and subscription services targeting educators, agricultural professionals, and the general public. The site is well-branded, consistent, and trustworthy, reflecting its government affiliation. Technically, the site uses Magento CMS with modern JavaScript libraries and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are absent. Overall, the site is compliant with GDPR and offers a professional user experience with clear navigation and relevant content.

L

Landwirtschaftsverlag Münster

lv-buch.de

42

LV.Buch is a specialized publishing brand under Landwirtschaftsverlag Münster, focusing on books and calendars related to rural life, cooking, gardening, and nature. The website presents a professional and consistent brand image targeting readers interested in these niche topics. The business operates a dedicated online shop and maintains partnerships with related book retailers. Technically, the website uses modern web technologies including Bootstrap and Google Analytics 4, with a strong emphasis on GDPR compliance through Usercentrics consent management. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the site is trustworthy, well-designed, and compliant with privacy regulations, supporting a medium-sized media business in Germany.

The website serves as the official service portal for the Outsourcing Data Center (OSRZ) managed by AKDB, a government IT service provider in Bavaria, Germany. It offers a range of services including user and contact management, password self-service, technical downloads, FAQs, token activation, and user registration. The portal targets authorized personnel and customers requiring access to OSRZ services. The business model focuses on providing specialized IT outsourcing and data center services primarily to governmental entities, positioning AKDB as a trusted regional government IT partner. Technically, the site is built on Microsoft ASP.NET Web Forms technology, hosted on Colt Technology Services infrastructure. The site demonstrates moderate performance and basic mobile optimization. Navigation and content structure are clear and consistent with government service portals. However, the site lacks modern CMS features and advanced SEO or accessibility enhancements. From a security perspective, the site uses HTTPS and standard ASP.NET security features but lacks explicit security headers such as CSP, HSTS, and X-Frame-Options. There is no visible privacy or cookie policy, nor vulnerability disclosure or incident response information, which are important for compliance and trust. No exposed sensitive data or vulnerable libraries were detected in the provided content. Overall, the website is professional and trustworthy for its intended audience but would benefit from enhanced privacy compliance, improved security headers, and clearer contact and incident response information to strengthen its security posture and user trust.

stadtplan.net is a German-language website providing precise city maps, cartography, route planning, and local business directory services. Operated by Verwaltungs-Verlag GmbH & Co. Betriebs OHG, it targets local residents and visitors seeking up-to-date regional information. The website offers user-friendly features such as autocomplete search and a cookie consent mechanism, reflecting a moderate level of digital maturity. Technically, it relies on older but stable JavaScript libraries like jQuery and jQuery UI, with no detected CMS or advanced frameworks. Security posture is adequate with HTTPS enforced and cookie consent implemented, though the absence of explicit security headers and incident response policies suggests room for improvement. The lack of WHOIS data for the domain introduces some trust concerns despite the professional presentation and comprehensive legal pages. Overall, the site is functional, trustworthy, and compliant with GDPR, but would benefit from enhanced transparency and security practices.

K

Kinderhaus St. Johannes der Täufer Uetzing

kinderhaus-uetzing.de

57

Kinderhaus St. Johannes der Täufer Uetzing is a small local childcare and kindergarten provider located in Bad Staffelstein/Uetzing, Germany. The organization offers a range of early childhood education services including nursery, kindergarten, musical early education, children's church, and afternoon workshops. It operates under the Erzbistum Bamberg umbrella, indicating a religious affiliation and non-profit status. The website is well-structured, accessible, and provides comprehensive information for parents and families about enrollment, fees, and pedagogical concepts. Technically, the website is built on the alkacon Mercury CMS platform, leveraging JavaScript and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and includes accessibility features, demonstrating a commitment to inclusive design. Performance is moderate with no major technical issues detected. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers and incident response policies are not published, representing an area for improvement. No vulnerabilities or suspicious content were found, and the WHOIS data shows partial consistency with the business identity, though registrant details are limited. Overall, the website presents a trustworthy, professional, and privacy-aware digital presence for a small educational institution. Strategic enhancements in security policy transparency and technical security headers would further strengthen its posture.

K

Kindertagesstätte St. Michael Ebensfeld

kita-ebensfeld.de

57

Kindertagesstätte St. Michael Ebensfeld is a local childcare and early education provider in Ebensfeld, Germany, operating multiple specialized locations including Krippe, Kindergarten, Waldkindergarten, and others. The website serves parents and families seeking childcare services, offering detailed organizational information, event updates, and contact details. The business appears community-focused with a clear educational mission and local market presence. Technically, the website is built on the Alkacon Mercury CMS platform, leveraging modern JavaScript, Matomo analytics for privacy-conscious tracking, and accessibility enhancements via the Eye-Able plugin. Hosting is provided by internet1.de, with domain nameservers pointing accordingly. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. Privacy compliance is strong with a comprehensive privacy policy and cookie banner. Overall, the website is professional, accessible, and trustworthy, suitable for its target audience. Recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further improve trust and compliance.

R

Rüsthaus GmbH & Co. KG

ruesthaus.de

49

Rüsthaus GmbH & Co. KG operates a specialized e-commerce platform focused on scouting and outdoor equipment, serving primarily the German market. The website offers a broad range of products including scouting uniforms, tents, outdoor gear, and related accessories, targeting scouting groups and outdoor enthusiasts. The company maintains a medium-sized retail operation with a clear brand presence and consistent messaging. Technically, the website is built on the Shopware CMS platform, leveraging modern web technologies and providing a responsive user experience optimized for mobile devices. Security is well-managed with HTTPS enforced and CSRF protections in place, although some standard security headers are missing. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. The site uses Piwik (Matomo) for analytics, reflecting a moderate level of user tracking. Overall, the website is professional, trustworthy, and well-positioned within its niche market.

G

GMK GmbH & Co. KG

gmk.de

55

GMK GmbH & Co. KG is a professional advertising agency based in Bayreuth, Germany, specializing in creative and strategic marketing services including corporate design, content creation, web development, online marketing, and brand building. The company serves a diverse clientele ranging from medium-sized businesses to global players, positioning itself as a full-service agency with a strong regional presence and multiple industry awards. Technically, the website is built on TYPO3 CMS with modern web technologies and integrates advanced analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and privacy compliance mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

M

Mittwald CM Service GmbH & Co. KG

mittwald.de

74

Mittwald CM Service GmbH & Co. KG is a German-based hosting provider specializing in managed hosting solutions tailored for agencies and freelancers. With over 20 years of experience, the company offers a broad portfolio including webhosting, virtual servers, dedicated servers, and a proprietary cloud management platform called mStudio. Their market position is strong within the German hosting industry, supported by high customer satisfaction and certifications such as ISO 27001. The website reflects a professional and user-friendly digital presence, emphasizing performance, security, and customer service. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, integrating modern JavaScript libraries and analytics tools like Google Tag Manager and eTracker. The site is optimized for performance, mobile responsiveness, and accessibility, with clear SEO practices. Hosting is managed in their own TÜV-certified data center in Germany, ensuring data sovereignty and compliance with GDPR. Security posture is robust, with enforced HTTPS, comprehensive security headers, and GDPR-compliant cookie consent mechanisms. The company demonstrates strong trust signals through certifications, customer testimonials, and transparent contact information. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature security environment. Overall, Mittwald presents a low-risk profile with a well-structured business model, solid technical infrastructure, and a strong commitment to security and privacy. Strategic recommendations include enhancing incident response transparency and publishing a vulnerability disclosure policy to further strengthen security maturity.

B

Bürgernetz Dillingen e.V.

dillingen.de

39

Bürgernetz Dillingen e.V. is a German non-profit association focused on communication and information technologies, established in 1995. The website serves primarily its members, offering services such as cloud storage (ownCloud), webmail, and association management tools. The site is built on Joomla! CMS and uses JavaScript libraries including jQuery and MooTools. The content is well-structured, mobile responsive, and presented in German, targeting local members. However, contact information is limited to an email address, with no phone or physical address details visible. Privacy policy is present but cookie consent mechanisms are missing. Security posture is moderate with CSRF tokens implemented but lacking security headers and explicit HTTPS enforcement details. No advertising or tracking technologies are detected, indicating a privacy-conscious approach. WHOIS data is minimal but does not raise suspicion.

NonProfit-Link.org is a specialized SaaS platform designed to empower non-profit organizations and mission-driven individuals by providing customized link-in-bio pages to centralize their digital presence, fundraising, and supporter engagement. Powered by HeyLink.me, the platform offers tools for easy customization, real-time analytics, and integration with donation and event promotion services. The website demonstrates a professional design and clear messaging targeted at the non-profit sector. Technically, it uses modern frameworks such as Next.js and React, with Google Analytics for user tracking. Security posture is generally good with HTTPS enabled, but lacks visible security headers and privacy compliance documentation. WHOIS data is privacy-protected, which is typical for SaaS providers, and no suspicious patterns were detected. Overall, the site is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

P

fordskladom.sk

prevereneauto.sk

43

Fordskladom.sk is a Slovakian online platform specializing in the sale of used Ford vehicles. Established in 2019, the website targets consumers interested in purchasing pre-owned Ford cars within Slovakia. The business operates a niche retail model focusing on vehicle listings, comparisons, and filtering to facilitate customer decision-making. The website demonstrates consistent branding and a professional design tailored to its target audience. Technically, the site is built on a modern JavaScript framework (likely Vue.js/Nuxt.js) and integrates common marketing and tracking tools such as Google Tag Manager and Facebook Pixel. Cookie consent is managed via Usercentrics, indicating some level of privacy compliance. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit privacy and terms of service documentation. Overall, the site presents a moderate risk profile with room for improvement in compliance and security best practices.

The website www.leteckezazitky.sk offers aviation experience services across Slovakia, including hot air balloon flights, acrobatic flights, and pilot training experiences. It targets a general audience interested in unique aviation activities and gifts. The site uses modern web technologies such as Vue.js and Bootstrap, with Google Tag Manager integrated for analytics and marketing purposes. Hosting assets are served via DigitalOcean Spaces CDN, indicating a cloud-based infrastructure. Security posture is moderate but lacks critical elements such as security headers and explicit privacy and cookie policies. No contact information or incident response details are provided, which may impact user trust and compliance. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

perspektiven-schaffen.de

65

The website perspektiven-schaffen.de is an official German government platform managed by the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend. It focuses on promoting equality in the labor market, providing comprehensive information, tools, and resources for employees, employers, and other stakeholders. The site features various programs such as the GAPS action program, online courses, calculators, and curated content like podcasts and publications. The platform is well-positioned as a trusted government resource with a clear mission to support labor market equality and integration.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

lokale-buendnisse-fuer-familie.de

63

The website lokale-buendnisse-fuer-familie.de represents a German federal government initiative under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend. It serves as a platform to promote and support local family alliances across Germany, aiming to improve family-friendly working and living conditions through networking, project development, and information dissemination. The initiative is well-established since 2004 and targets political actors, civil society, businesses, and families. Technically, the website employs standard web technologies including JavaScript and CSS, with Matomo analytics integrated in a privacy-conscious manner requiring user consent. The site is well-structured, accessible, and optimized for mobile devices, reflecting a mature digital presence. However, no explicit CMS or hosting provider details are evident, and security headers are not explicitly detected. From a security perspective, the site uses HTTPS (implied by the URL), enforces cookie consent, and avoids exposing sensitive data. There is no public security policy or incident response information, and no vulnerability disclosure mechanism is found. The WHOIS data is minimal but consistent with a government entity, supporting legitimacy. Overall, the site is professional, trustworthy, and compliant with GDPR, with good privacy practices. Recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to improve transparency and security posture.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

starkimberuf.de

67

The website represents the official German Federal Ministry for Family Affairs, Senior Citizens, Women and Youth, focusing on programs to support families with migration backgrounds, particularly mothers seeking employment. It provides comprehensive information on integration initiatives, labor market participation, and related studies, positioning itself as a key government resource in this domain. The site is well-structured, professionally designed, and targets families, policymakers, and labor market stakeholders. Technically, the site employs modern web technologies including JavaScript and CSS frameworks, with Matomo analytics integrated for user behavior tracking under strict privacy controls. The site is mobile-optimized and accessible, with good SEO practices. Hosting and CMS details are not explicitly disclosed but the site performs moderately well. Security posture is strong with HTTPS enforced and privacy-compliant cookie consent mechanisms. However, explicit security headers and incident response contacts are not evident, suggesting room for improvement in transparency and security policy communication. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR, serving as a reliable government information portal with low risk exposure.

B

Bundesstiftung Mutter und Kind

bundesstiftung-mutter-und-kind.de

64

The Bundesstiftung Mutter und Kind is a German government-affiliated foundation dedicated to supporting pregnant women in distress through financial aid and counseling services. It operates under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ) and has a longstanding history of over 40 years. The website provides comprehensive information on available aids, application procedures, and educational materials targeting pregnant women, families, and counseling centers. The foundation maintains a strong market position as a trusted social support entity within Germany.

B

Bundesamt für Familie und zivilgesellschaftliche Aufgaben

fonds-missbrauch.de

54

The Fonds Sexueller Missbrauch website is an official German government platform managed by the Bundesamt für Familie und zivilgesellschaftliche Aufgaben. It provides critical support services for individuals affected by sexual abuse in familial and institutional contexts, offering financial assistance for therapies and other related costs. The site targets victims, counseling centers, and the general public, positioning itself as a trusted government resource with clear contact channels and comprehensive informational content. Technically, the website is built on TYPO3 CMS and employs Matomo analytics configured for privacy compliance, including IP anonymization and opt-in consent mechanisms. The site demonstrates good mobile optimization, accessibility, and SEO practices, though it lacks some advanced security headers. Hosting appears to be managed by a German provider, ensuring data residency and compliance. From a security perspective, the site enforces HTTPS and respects user privacy with a transparent cookie consent banner. However, it does not publicly disclose a security policy, incident response contacts, or vulnerability disclosure mechanisms, which could be improved to enhance trust and readiness. No vulnerabilities or suspicious indicators were detected, and the WHOIS data aligns with the official government entity, supporting legitimacy. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic improvements in security headers and incident response transparency would further strengthen its posture and user confidence.

D

Deutsch-Französischer Bürgerfonds

buergerfonds.eu

55

The Deutsch-Französischer Bürgerfonds website serves as an informational and funding platform dedicated to promoting Franco-German friendship and European cooperation through cultural and social projects. The organization operates as a non-profit entity, targeting German and French citizens and organizations interested in bilateral relations and European integration. The website content is professionally presented in German, with a French partner site linked, reflecting its bi-national focus. The business model centers on advising, networking, and financing relevant projects, positioning the organization as a niche player in the governmental and non-profit sector. Technically, the website is built on the Drupal CMS platform, utilizing modern front-end technologies such as Bootstrap, jQuery, and Google Tag Manager. Cookie consent is managed via Cookiebot, demonstrating compliance with EU privacy regulations. The site is mobile-optimized and exhibits good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected by EURid, which is typical for EU domains and justified for this type of organization. Overall, the domain and website appear legitimate and trustworthy. The overall risk assessment is low, with recommendations to improve security headers, publish privacy and terms documents, and provide clear contact information for security incidents. These steps would enhance compliance and trustworthiness further.

T

Trivali

trivali.be

46

Trivali is a Belgian digital agency specializing in custom web design, webshop development, and marketing services primarily using Drupal and WordPress platforms. The company positions itself as an expert in tailored web solutions, targeting businesses seeking professional digital presence and marketing support. The website reflects a small-sized agency with a clear focus on quality and client collaboration. Technically, the site is built on WordPress with Elementor, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and standard security headers present, though no explicit security policy or incident response information is published. Privacy compliance is well addressed with GDPR-compliant cookie consent and a comprehensive privacy policy. Overall, the domain WHOIS data is restricted due to .be registry policies but shows no suspicious indicators. The website is professional, trustworthy, and well-optimized for SEO and user experience.

Polska Federacja Producentów Żywności Związek Pracodawców (PFPŻ ZP) is a well-established Polish federation representing food producers and employers. The organization focuses on providing legal information, educational programs, and industry news related to food safety, legislation, and nutrition. The website serves as a resource hub for industry professionals and the general public interested in food-related regulatory matters. The federation has a strong market position in Poland with over 20 years of history and recognized certifications such as 'Teraz Polska'. Technically, the website uses a custom or legacy CMS with JavaScript libraries including jQuery, Prototype.js, and Google Analytics for tracking. The site is hosted by home.pl S.A., a known Polish hosting provider. While the site is functional and content-rich, it shows some outdated technologies and lacks advanced security headers and DNSSEC, which could be improved. Mobile optimization and accessibility are basic but present. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security policies or incident response information. No critical vulnerabilities or malicious content were detected. WHOIS data confirms a consistent and legitimate domain registration with no privacy protection, appropriate for the organization's transparency. Overall, the site is trustworthy but could benefit from modern security enhancements and improved technical infrastructure.

W

Wyższa Szkoła Informatyki i Zarządzania

wsiz.pl

48

Wyższa Szkoła Informatyki i Zarządzania (WSIiZ) is a Polish higher education institution specializing in computer science and management, operating since 2001. The website serves as an informational portal for prospective and current students, offering details about academic programs and institutional information. Technically, the site is built on WordPress with common plugins such as Yoast SEO and MegaMenu Pro, and uses Google Tag Manager for analytics. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and DNSSEC. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Business credibility is strong given the domain age and consistent WHOIS data. Overall, the site is functional and professional but would benefit from enhanced security and privacy practices.

W

wirtschaftswissen Financial Publishing Group

wirtschaftswissen.de

62

wirtschaftswissen.de is a German-language business knowledge and compliance information platform operated by wirtschaftswissen Financial Publishing Group. The website provides legally sound answers to business questions, current court rulings, expert guides, newsletters, webinars, and a shop for business-related products. It targets business professionals, HR managers, employers, and entrepreneurs seeking practical and legal business advice. The platform is positioned as a reputable source of business knowledge in the German market with a medium-sized operation. Technically, the website is hosted on Amazon AWS infrastructure, uses WordPress CMS, and employs modern web technologies including JavaScript, CSS, and FriendlyCaptcha for bot protection on forms. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate with no major issues detected. From a security perspective, the site enforces HTTPS and uses CAPTCHA to protect form submissions. However, it lacks visible security headers and does not publish privacy, cookie, or incident response policies in the analyzed content. No contact information for data protection officers or incident response teams is found. There are no detected vulnerabilities or exposed sensitive data, but privacy compliance is weak due to missing policies. Overall, wirtschaftswissen.de presents a professional and trustworthy business information platform with good content quality and technical implementation. The main risks relate to privacy compliance and security policy transparency. Strategic improvements in these areas would enhance trust and regulatory adherence.

A

Auswärtiges Amt

auswaertiges-amt.de

60

The Auswärtiges Amt website serves as the official digital presence of the German Federal Foreign Office, providing authoritative information on German foreign policy, consular services, travel safety advisories, and career opportunities within the foreign service. It targets a broad audience including travelers, diplomats, and the general public interested in Germany's international relations. The site maintains a strong market position as a trusted government source with consistent branding and comprehensive content.

N

Nadace ČEZ

pomahejpohybem.cz

54

Pomáhej Pohybem is a charitable initiative supported by Nadace ČEZ and Skupina ČEZ, focused on encouraging physical activity through a mobile application that converts user activity into points for charitable projects. The platform targets a broad audience interested in fitness and social good, leveraging a modern React-based web infrastructure and mobile app presence on iOS and Android. The website demonstrates good digital maturity with a comprehensive cookie consent mechanism and integration of analytics tools. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature non-profit operation backed by a major energy group.

S

SCIO

scio.cz

40

SCIO is a well-established Czech education services provider specializing in entrance exams, preparatory courses, and educational testing products for students and schools. With over 30 years of experience, SCIO holds a strong market position in the Czech education sector, offering a broad portfolio of services including national comparative exams for universities and secondary schools, as well as professional tools for educators. The website reflects a professional and user-friendly digital presence with clear navigation and comprehensive content tailored to its target audience of students, parents, and educational institutions. Technically, the site employs modern web technologies, including JavaScript, Google Tag Manager, and CookieHub for privacy compliance, and is optimized for mobile devices with good accessibility and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. The absence of WHOIS data limits domain trust analysis, but the overall digital footprint and professional presentation support legitimacy. Strategic recommendations include enhancing security transparency and incident response readiness to further strengthen trust and compliance.

The website smartbydleni.cz is currently a domain parking and sales landing page with no active business content or services. The domain was registered recently in 2022 and uses parking name servers, indicating it is not currently used for operational business purposes. The site contains minimal content, primarily advertising and a link to contact the domain owner. Technically, the site uses basic JavaScript and is hosted behind a CDN (Cloudfront). There is no evidence of a CMS or advanced frameworks. Security posture is weak due to lack of HTTPS information, absence of security headers, and no privacy or cookie policies. No contact or business information is provided, which limits trust and credibility. Overall, the site is low risk but also low value from a business or security perspective.

C

C O R E 1

core1.agency

54

C O R E 1 is a Czech digital agency specializing in AI and advanced web technologies, operating since 2007. They position themselves as leaders in their field, offering services including AI integration, web design, UI/UX, and digital marketing. Their website reflects a professional and modern digital presence with strong branding and client testimonials, targeting businesses seeking innovative web solutions. Technically, the site uses modern web technologies, including Video.js for media, Google Tag Manager, and various marketing and retargeting tools, with a custom CMS named core1/BasicCMS. The site is well-optimized for performance, mobile responsiveness, and SEO. Security-wise, HTTPS is enforced and cookie consent mechanisms are implemented, but there is a lack of published security policies or incident response information. WHOIS data is unavailable, likely due to privacy protection, which is common and justified for this business type. Overall, the site demonstrates a mature digital infrastructure and credible business presence.

N

Niedersächsischer Landtag

landtag-niedersachsen.de

57

The Niedersächsischer Landtag website serves as the official online presence of the Lower Saxony state parliament in Germany. It provides comprehensive information about parliamentary functions, committees, events, and public participation opportunities. The site targets citizens, youth, and visitors interested in democratic processes and government transparency. The business model is that of a government institution focused on public service and information dissemination. Technically, the website is built on TYPO3 CMS, employs Matomo analytics configured with privacy considerations, and uses modern frontend libraries like Slick Carousel. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses privacy-respecting analytics. However, it lacks visible security headers, a cookie consent mechanism, and published security or incident response policies. No vulnerabilities or suspicious content were detected, indicating a solid security posture but with opportunities for improvement in compliance and transparency. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security best practices. Strategic recommendations include implementing cookie consent, adding security headers, and publishing security policies to enhance user trust and regulatory compliance.

D

DAISEC

daisec.de

62

DAISEC is a European Digital Innovation Hub focused on AI and cybersecurity, supporting SMEs and public sector entities primarily in Niedersachsen, Germany. It offers free services funded by the EU, including training, networking, and technical assessments to facilitate digital technology adoption. The website is built on WordPress with modern plugins and includes security features like HTTPS and Google reCAPTCHA. However, it lacks visible privacy and cookie policies, incident response information, and explicit security headers, which are areas for improvement. Overall, the site is professional, well-branded, and targets a regional audience with a clear mission to foster digital innovation.

B

B&B. Markenagentur GmbH

bundb.de

65

B&B. Markenagentur GmbH is a medium-sized branding agency based in Hannover, Germany, specializing in strategic, creative, and communicative brand development. The company integrates human creativity with AI technologies to deliver innovative marketing and branding solutions, targeting businesses and public sector clients. Their service portfolio includes brand management, employer branding, change communication, and AI marketing, positioning them as a forward-thinking agency in the branding industry. Technically, the website demonstrates a modern and performant infrastructure with responsive design, multimedia integration (YouTube, Vimeo videos), and advanced cookie consent mechanisms. The use of Google Tag Manager with a custom domain, A/B testing tools, and lazy loading images reflects a mature digital presence. Hosting is likely provided by kasserver.com, consistent with the domain's nameservers. From a security perspective, the site enforces HTTPS, employs cookie consent compliant with GDPR, and uses CSRF tokens for form protection. However, explicit security headers are not detected, and no public security or incident response policies are found. No vulnerabilities or exposed sensitive data are evident in the content, indicating a solid security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with a high-quality user experience and clear business information. Strategic recommendations include enhancing security headers, publishing security policies, and implementing vulnerability disclosure mechanisms to further strengthen trust and compliance.

M

Mathäser Filmpalast

mathaeser.de

64

Mathäser Filmpalast is a prominent cinema located in Munich, Germany, offering a wide range of film screenings, events, and online ticketing services. The website reflects a mature digital presence with comprehensive content about current and upcoming films, events, and cinema facilities. It targets cinema-goers in Munich and surrounding areas, positioning itself as a leading entertainment venue with premium technologies such as Dolby Cinema and advanced sound and projection systems. The site integrates multiple third-party services for marketing and ticket sales, demonstrating a well-established business model within the hospitality and entertainment sectors. Technically, the site uses modern JavaScript libraries, responsive design, and structured data to enhance user experience and SEO.

T

Troester GmbH & Co. KG

x-compound.ch

57

Troester GmbH & Co. KG is a medium-sized German manufacturing company specializing in the design, development, and production of Continuous Kneaders and compounding technology for rubber and plastics processing. Established since 1997 in this niche, the company holds a worldwide leading market position with a strong focus on quality and innovation. Their website reflects a professional B2B orientation targeting industrial manufacturers requiring advanced compounding solutions. The company offers a broad range of services including spare parts supply, process engineering, electrical equipment, and refurbishment services. The digital presence is supported by structured data and social media integration, enhancing discoverability and trust. Technically, the website is built on WordPress with a custom theme by B&B Markenagentur, employing modern web standards including responsive design and privacy-conscious analytics via Matomo. Hosting is managed through Deutsche Telekom's DNS infrastructure, indicating a stable and reliable environment. Performance and SEO are well addressed, though some improvements in security headers and cookie consent mechanisms could be made. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for maturity in security governance. Privacy compliance is generally good, supported by a comprehensive privacy policy, but lacks a visible cookie consent banner which is important for GDPR adherence. Overall, the website and company demonstrate a high level of professionalism and trustworthiness suitable for their industrial market segment. Strategic enhancements in security transparency and privacy mechanisms would further strengthen their digital risk management and compliance posture.

T

TROESTER GmbH & Co. KG

troester-parts.de

56

TROESTER GmbH & Co. KG operates the TEESIS online platform, a specialized electronic spare parts catalog designed for industrial customers and partners. The website facilitates fast and intuitive identification of spare parts, supporting B2B transactions in the manufacturing sector. The platform includes user login and registration capabilities, enhancing secure access to detailed product information. The business positions itself as a niche supplier with a focus on quality and service in the manufacturing industry, primarily targeting German and European markets. Technically, the website is built on the CATALOGcreator® platform, leveraging modern web technologies such as HTML5, CSS3, and JavaScript. The site demonstrates moderate performance and basic mobile optimization, with a clean and professional design. SEO and accessibility features are present but could be improved. The hosting environment supports HTTPS, ensuring encrypted communications. From a security perspective, the site enforces HTTPS and employs secure login forms. However, it lacks advanced security headers and does not publish explicit security policies or incident response procedures. Privacy compliance is strong, with a comprehensive GDPR-compliant privacy policy accessible via an external link. No cookie consent mechanism or terms of service page was found. No tracking or advertising scripts were detected, indicating a privacy-conscious approach. Overall, the website is trustworthy, professional, and safe for its intended industrial audience. The domain registration data aligns well with the business identity, supporting legitimacy. Strategic improvements in security headers, cookie consent, and mobile optimization would enhance the platform's security posture and user experience.

K

Kath. Seelsorgebereich Coburg Stadt und Land

coburg-stadt-und-land.de

58

The website for Kath. Seelsorgebereich Coburg Stadt und Land serves as the digital presence for a Catholic pastoral care area in Coburg, Germany. It provides community-oriented religious services, event information, and support for families and children, including kindergartens. The site targets local community members and churchgoers, positioning itself as a trusted non-profit religious institution with a consistent brand and good content quality. Technically, the site is built on the alkacon Mercury CMS platform, uses Matomo for analytics, and integrates accessibility features, demonstrating a moderate to good level of digital maturity. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, but could improve by adding formal security policies and incident response contacts.

S

Stadt Coburg

coburg.de

54

The website www.coburg.de serves as the official online portal for the city of Coburg, Germany, providing a wide range of municipal information and services to residents and visitors. It offers access to online services, event information, local news, and administrative resources, positioning itself as a comprehensive digital gateway for the city's public administration and community engagement. The site targets citizens, tourists, and local businesses, emphasizing accessibility and service convenience. Technically, the website is built on the Sitepark CMS platform, utilizing modern web technologies including responsive design, SVG icons, and Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience and efficient content delivery. From a security perspective, the site enforces HTTPS and employs a cookie consent mechanism compliant with GDPR standards. While explicit security headers and incident response policies are not clearly published, no critical vulnerabilities or suspicious activities were detected. The use of Matomo analytics reflects a commitment to privacy and data protection. Overall, the website presents a professional, trustworthy, and user-friendly interface for municipal services. Strategic recommendations include enhancing security header implementation, publishing clear security and incident response policies, and considering a vulnerability disclosure program to further strengthen trust and compliance.

T

Tobit Laboratories AG

tobit.com

72

Tobit Laboratories AG is a medium-sized German technology company specializing in the development and marketing of standard software solutions for digitalization, primarily through its chayns® cloud-based operating system. Established in 1986 and headquartered in Ahaus, Germany, Tobit serves a broad audience including enterprises, organizations, and municipalities. The company has a strong market position in Germany with a comprehensive portfolio of software products and services, supported by a large partner network. Technically, the website is built on modern web technologies including React and is hosted with Cloudflare services, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforcement and standard security headers, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is partially addressed with a privacy and terms of service page but lacks a visible cookie consent mechanism. Overall, the domain registration data aligns well with the company's identity, supporting legitimacy and trustworthiness.

P

Plusnet GmbH

plusnet.de

61

Plusnet GmbH is a leading telecommunications partner in Germany, specializing in providing modular and scalable internet, telephony, and networking solutions tailored for medium to large businesses, including municipalities. The company positions itself as a driver for the digital future, serving over 40,000 customers with a strong partner network and approximately 500 employees. Their offerings include fiber optic internet, DSL, radio links, mobile access, SIP trunks, cloud telephony, VPN, and security services compliant with KRITIS standards. The website reflects a mature digital presence built on the Neos CMS and Flow PHP framework, with modern web technologies and a focus on user experience and accessibility.

M

Museen der Stadt Aschaffenburg

stiftsschatz.de

38

The website represents the Stiftsschatz exhibition of the Museen der Stadt Aschaffenburg, a cultural institution showcasing medieval treasures. It serves a local/regional audience interested in historical and religious artifacts. The site provides basic information and navigation in multiple languages but lacks comprehensive contact and policy information. Technically, the site uses standard web technologies including HTML, CSS, JavaScript, and jQuery, with Google Analytics for visitor tracking. The security posture is moderate with IP anonymization in analytics but lacks visible security headers and privacy compliance documentation. Overall, the site is functional but would benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

M

Museen der Stadt Aschaffenburg

christian-schad-museum.de

41

The website represents the Museen der Stadt Aschaffenburg, a municipal cultural institution in Germany offering a range of museums including the Christian Schad Museum. It provides comprehensive cultural and educational services with a strong focus on art history and local heritage. The museum is uniquely positioned as the only location worldwide presenting all periods of Christian Schad's work. The site targets a broad audience including local visitors, tourists, and art enthusiasts. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript with jQuery and Modernizr, and includes accessibility and SEO best practices. The site is multilingual and includes a newsletter subscription service. Security posture is moderate with HTTPS implied, but lacks explicit security headers and incident response information. Privacy compliance is good with clear privacy and cookie policies, though no active cookie consent mechanism is present. Overall, the site is professional, trustworthy, and well-maintained, with room for security and privacy enhancements.

S

significa GmbH

significa.de

46

significa GmbH is a German full-service marketing agency specializing in digital and classical marketing solutions primarily for medium-sized companies in the technology and industrial sectors. With over 20 years of experience, the company offers a broad range of services including design, digital marketing, classic advertising, content creation, consulting, and innovative marketing on demand. The website reflects a professional and consistent brand image supported by client testimonials and a diverse portfolio of reputable clients. Technically, the site is built on a modern stack including HTML5, CSS3, JavaScript, jQuery, and uses REDAXO CMS with Matomo for privacy-conscious analytics. The site is well-optimized for SEO, accessibility, and mobile devices, providing a positive user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not publicly disclosed. Overall, the site demonstrates high professionalism and trustworthiness with no signs of malicious content or blocking mechanisms.

S

Stiftung Kunst und Natur

stiftung-nantesbuch.de

63

Stiftung Kunst und Natur is a German non-profit foundation dedicated to fostering engagement with art, culture, and nature through interdisciplinary programs and conservation efforts. The foundation operates at two main locations, Nantesbuch and Museum Sinclair-Haus, offering cultural events, workshops, and nature preservation activities. The website reflects a professional and consistent brand image, targeting a general audience interested in cultural and environmental topics. Technically, the site employs modern JavaScript libraries, Google Analytics for visitor insights, and Cookiebot for GDPR-compliant cookie management. Security measures include HTTPS enforcement and Rollbar error monitoring with anonymized IPs, though explicit security headers and policies are not publicly detailed. Privacy compliance is strong with a comprehensive privacy policy linked externally and an active cookie consent mechanism. No contact emails or phone numbers are explicitly provided on the site, which may limit direct user engagement. Overall, the website is well-structured, accessible, and trustworthy, with moderate technical performance and good privacy practices.