High-risk security reports

B

Bundesverband Rind und Schwein e.V.

richtigzuechten.de

48

The website richtigzuechten.de serves as an authoritative information portal for German breeding values and related agricultural data, operated by the Bundesverband Rind und Schwein e.V. It targets farmers, breeding organizations, and agricultural scientists, providing up-to-date breeding value data, news, and service resources. The site is well-structured, professionally designed, and offers content primarily in German with an English option. Technically, the site is built on the Intersolute CMS platform, hosted on Intersolute's infrastructure, and employs modern web standards with responsive design for mobile users. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. No signs of tracking or advertising were detected, supporting a privacy-conscious user experience. Overall, the site is trustworthy, with consistent WHOIS data and no blocking or WAF interference, making it a reliable resource in its domain.

B

Bundesverband Rind und Schwein e.V. (BRS)

erzeugerring.info

46

The website erzeugerring.info is operated by the Bundesverband Rind und Schwein e.V. (BRS), a German non-profit association focused on agricultural producer rings. It provides an interactive online database and news updates relevant to agricultural stakeholders in Germany. The site targets agricultural producers and organizations, offering informational services and fostering community engagement. The business model is non-profit and niche-focused, with a stable market position within the German agricultural sector. The website content is professional, consistent, and well-structured, supporting its credibility and trustworthiness. Technically, the site uses a proprietary CMS (Intersolute CMS) with standard web technologies such as HTML5, CSS3, and JavaScript. The site is moderately optimized for performance and mobile use, with basic accessibility features. SEO practices are good, with proper meta tags and Open Graph data. However, security headers are not explicitly detected, and there is room for improvement in security best practices and mobile optimization. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy compliance. No critical vulnerabilities or exposed sensitive data were found in the analyzed content. The WHOIS data is privacy protected or unavailable, which is typical for many domains and justified for this non-profit entity. The domain appears legitimate and consistent with the business claims. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic recommendations include enhancing security headers, improving mobile and accessibility features, and adding explicit security and incident response policies to strengthen trust and compliance further.

B

Bundesverband Rind und Schwein e.V. (BRS)

faktencheck-schwein.de

47

The Bundesverband Rind und Schwein e.V. (BRS) operates the website dialog-rindundschwein.de as an educational platform focused on providing transparent and researched information about modern cattle and pig farming in Germany. The site aims to counteract negative media narratives by offering factual content, flyers, brochures, and news updates targeted at consumers interested in agriculture and livestock. The organization appears as a small non-profit association with a clear mission to inform and educate the public. Technically, the website is built on the Intersolute CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript with jQuery. The site is mobile optimized and presents a professional design with clear navigation, although accessibility features are basic. Performance is moderate, and SEO practices are basic but adequate for the content provided. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy compliance. However, there is no evidence of advanced security headers or explicit security policies. No forms collecting personal data are present on the main page, reducing attack surface. The WHOIS data is consistent with the website's stated purpose, and no suspicious domain registration patterns are detected. Overall, the website is trustworthy, safe, and professionally maintained, with room for improvement in security hardening and accessibility. The lack of explicit contact emails or phone numbers may limit direct user engagement but aligns with the informational nature of the site.

B

Bundesverband Rind und Schwein e. V.

porkinklusio.de

49

The Bundesverband Rind und Schwein e. V. (BRS) operates the PorkInklusio project website, which provides educational and practical resources to promote cultural inclusivity in school catering, addressing dietary restrictions such as halal and kosher. The website targets schools, educators, and food service providers, offering guidelines, lesson plans, and best-practice examples to foster diversity rather than exclusion in communal meals. The organization positions itself as a niche leader in agricultural and food cultural education within Germany, operating as a small non-profit entity. Technically, the site is built on the Intersolute CMS platform, employs standard web technologies like HTML5, CSS3, and JavaScript, and is hosted by Intersolute. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced and spam protection on forms, though security headers and explicit policies are lacking. Privacy compliance is strong with clear cookie consent and a privacy policy. Overall, the site is trustworthy, professional, and well-aligned with its mission. Strategic improvements include enhancing security headers, publishing incident response contacts, and expanding transparency around security and vulnerability disclosures.

B

Bundesverband Rind und Schwein e.V. (BRS)

dialog-rindundschwein.de

47

The Bundesverband Rind und Schwein e.V. (BRS) operates the website dialog-rindundschwein.de to provide transparent, researched information about modern cattle and pig farming in Germany. The site aims to counteract negative media narratives by educating consumers and stakeholders with factual content, flyers, and brochures. The organization is positioned as a national association advocating for livestock farming standards and practices. Technically, the website is built on the Intersolute CMS platform, uses standard web technologies, and is hosted on Intersolute's infrastructure. The site is mobile-optimized with good navigation and content quality. Security-wise, HTTPS is enforced, and a cookie consent mechanism is implemented, but explicit security headers and incident response contacts are absent. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. Overall, the site is professional, trustworthy, and serves an educational purpose without any adult or questionable content.

G

GRITH AG

vereinonline.org

49

VereinOnline.org is a German-based SaaS provider specializing in online club and association management software. The platform offers comprehensive features including member management, event calendars, newsletters, bookkeeping, and mobile app access, targeting clubs, associations, and similar organizations. The business is operated by GRITH AG, an established company with a domain age since 2009 and recognized with awards such as Best Of Communication 2018. The website content is professional, well-structured, and primarily in German, reflecting a mature and focused business model. Technically, the site uses modern frontend technologies like Bootstrap and jQuery, supports mobile responsiveness, and integrates accessibility features. Hosting is provided by IONOS SE, a reputable registrar and hosting provider. Security posture is moderate with some gaps such as lack of DNSSEC and missing security headers, but no critical vulnerabilities or exposed sensitive data were found. Privacy compliance is good with a comprehensive GDPR privacy policy, though no cookie consent mechanism was detected. Contact is primarily via a web form, with no direct emails or phone numbers visible on the main site. Overall, the website is trustworthy and professionally maintained, suitable for its target audience.

Z

Zukunft Hanau

zukunft-hanau.de

49

Zukunft Hanau is a government-supported urban development and citizen engagement platform focused on the city of Hanau, Germany. It provides information on various projects, events, and initiatives aimed at improving urban life, digital transformation, and sustainability. The website targets local residents, stakeholders, and planners, promoting active citizen participation. Technically, the site is built on WordPress with modern plugins and frameworks such as Bootstrap and Yoast SEO, ensuring good performance, mobile optimization, and SEO compliance. Security posture is strong with HTTPS, cookie consent mechanisms, and security hardening plugins, though some security headers could be improved. Privacy compliance is robust with clear GDPR-aligned policies and cookie management. Overall, the site is professional, trustworthy, and well-aligned with its public sector mission.

S

Städtische Museen Hanau

museen-hanau.de

47

The website www.museen-hanau.de represents the Städtische Museen Hanau, a municipal cultural institution in Germany managing multiple museums and exhibitions focused on art, history, and education. The site provides comprehensive information about museum visits, exhibitions, educational programs, and events, targeting families, school groups, and cultural visitors. The business model is that of a public government entity offering cultural and educational services with a strong regional presence. Technically, the website is built on Joomla CMS with Bootstrap 5 and jQuery, featuring a modern responsive design and a cookie consent mechanism via Cookiefirst. The site is well-structured with good SEO and accessibility basics, though some security headers are missing. HTTPS is enforced, and no security vulnerabilities or exposed sensitive data were detected. From a security perspective, the site demonstrates good practices including encrypted connections and consent management but could improve by adding security headers and a vulnerability disclosure policy. No incident response or security policy pages were found. WHOIS data confirms the domain is legitimately registered and consistent with a public institution. Overall, the website is professional, trustworthy, and suitable for its audience, with minor technical and security improvements recommended to enhance compliance and protection.

M

MyVetiKalender.de

myvetikalender.de

42

The website www.myvetikalender.de appears to be a German-language site focused on veterinary calendar services or products. The site is built on WordPress using the Elementor page builder, indicating a moderate level of digital maturity. The technical infrastructure includes common web fonts and libraries such as Font Awesome and Swiper for UI components. However, the site lacks visible privacy, cookie, or terms of service policies, which are critical for compliance and user trust. No contact information or security policies are explicitly provided, limiting transparency. Security posture is weak due to absence of security headers and unclear SSL configuration. Overall, the site is accessible and functional but requires significant improvements in privacy, security, and business transparency to enhance trustworthiness and compliance.

V

Home - www.vetmab.de

vetmab.de

48

The website www.vetmab.de appears to be a German-based veterinary or medical-related business, utilizing WordPress with WooCommerce and Elementor for its digital presence. The site is accessible without any WAF or security challenge blocking, indicating normal availability. However, the content is basic with no explicit privacy, cookie, or terms of service policies detected, and no clear contact information is provided. Technically, the site uses modern web technologies but lacks visible advanced security headers and explicit SSL/TLS verification in the provided data. The security posture is weak due to missing policies and contact channels for incident response. Overall, the site shows moderate technical maturity but requires improvements in privacy compliance and security transparency.

A

Agrarshop

agrarshop.de

48

Agrarshop.de is a German e-commerce platform specializing in agricultural and livestock-related publications, including magazines, literature, and seminars. The website targets professionals in the agricultural sector such as dairy farmers, pig farmers, and equestrian enthusiasts. It operates on a Magento-based platform with a modern technical infrastructure integrating Google Tag Manager, Usercentrics for cookie consent, and Google reCAPTCHA for form protection. The site demonstrates good digital maturity with responsive design and clear navigation. Security posture is solid with HTTPS enforced and CAPTCHA protections, though explicit security headers and incident response policies are absent. Overall, the site is trustworthy and professional, serving a niche market effectively.

B

Bundesverband Rind und Schwein e.V.

rind-schwein.de

49

The Bundesverband Rind und Schwein e.V. is a German umbrella association representing cattle and pig producers. The website serves as an information hub for members and stakeholders, providing access to news, events, publications, and partner resources. It targets agricultural professionals and livestock producers in Germany, positioning itself as a key national organization in the livestock sector. The business model is non-profit and focused on member services and industry representation. Technically, the site is built on the Intersolute CMS platform, hosted on servers indicated by the nameservers, and uses modern web standards with responsive design. Security posture is adequate with HTTPS and cookie consent implemented, though lacking advanced security headers and explicit incident response contacts. Overall, the site is professional, trustworthy, and well-structured, with clear navigation and relevant content for its audience.

C

CoreTrustSeal

coretrustseal.org

46

CoreTrustSeal is a specialized certification organization focused on accrediting trustworthy data repositories to promote sustainable data infrastructures. The website positions the organization as a recognized authority in the data repository certification domain, offering clear information on certification requirements, application processes, and certified repositories. The target audience includes data repository managers, research communities, and data infrastructure stakeholders. Technically, the website is built on WordPress with modern web technologies such as jQuery, Font Awesome, and Swiper.js. It employs HTTPS with a valid SSL certificate and integrates Google reCAPTCHA for form security. The site includes a GDPR-compliant cookie consent mechanism powered by Complianz, indicating a mature approach to privacy compliance. Performance and mobile optimization are good, with accessible navigation and professional design. From a security perspective, the site demonstrates good practices including HTTPS enforcement and spam protection via reCAPTCHA. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. The overall security posture is strong but could be improved with additional transparency on security policies. Overall, CoreTrustSeal's website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its niche market with clear content and functional design. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

B

British Chamber of Commerce Czech Republic

britcham.cz

46

The British Chamber of Commerce Czech Republic is a professional membership organization dedicated to fostering trade and business growth between British, Czech, and international companies. It offers a variety of services including networking events, business support, and specialized programmes such as EduBusiness Lounge and Power Talks. The website reflects a well-established entity with a clear market position and a medium-sized membership base. Technically, the site is built on WordPress with modern plugins and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA usage, though additional security headers could enhance protection. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and serves its target audience effectively.

C

CTS Composite Technologie System GmbH

ctscom.de

42

CTS Composite Technologie System GmbH is a German medium-sized manufacturing company specializing in GRP (glass reinforced polyester) constructions and grating systems for industries such as railway, offshore, architecture, and chemical sectors. The company emphasizes corrosion resistance and durability in its products, serving industrial clients and construction professionals. The website is built on Drupal 7 with a moderate technical infrastructure including jQuery, Bootstrap, and Google Analytics with IP anonymization. The site features cookie consent mechanisms and basic privacy compliance, though the privacy policy is only available in German. Security posture is moderate with some risks due to outdated CMS and libraries. No critical vulnerabilities or malicious content were detected. Overall, the website presents a professional and trustworthy business presence with room for technical and security improvements.

D

DA-ZWISCHEN

netzgemeinde-dazwischen.de

47

DA-ZWISCHEN is a German-language digital Christian community platform focused on fostering faith-based engagement and inspiration. The website offers community chat, monthly impulses via mail and messenger, and digital worship services, currently paused for reorientation. The platform positions itself as a niche non-profit community with a small but engaged audience. Technically, the site is built on WordPress with modern plugins for SEO and GDPR compliance, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. WHOIS data is unavailable due to malformed query responses, which slightly impacts trust but the website content and policies indicate legitimate operation. Overall, the site is professional, privacy-conscious, and safe for general audiences.

Kirchliche Jugendarbeit Diözese Würzburg is a non-profit organization affiliated with the Bistum Würzburg, focusing on youth work, education, and faith formation within the diocese. The website serves as a portal for information on events, services, and contact details aimed at young people and church communities. The organization holds a stable regional position with clear branding and a consistent message aligned with its religious and educational mission. Technically, the website is built on TYPO3 CMS with modern frontend technologies and includes privacy-conscious analytics and consent management tools. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving its audience effectively.

P

Pfarrei Evangelisch unter der Veste

evangelisch-gemeinsam.de

44

The website evangelisch-gemeinsam.de represents a regional non-profit religious community, specifically a parish composed of four evangelical-lutheran congregations in the Coburg area of Germany. It serves as an information portal for church services, events, groups, and community engagement, targeting local members and interested visitors. The site is built on Drupal 10, leveraging modern web technologies and includes a consent management system for GDPR compliance. The technical infrastructure is solid, hosted on a provider indicated by the nameservers kunde24.de, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved and no explicit security policy or incident response information is published. The website does not employ advertising or extensive tracking, enhancing privacy compliance. Overall, the site is trustworthy, professional, and well-aligned with its community-focused mission.

I

IMU Institut GmbH

imu-institut.de

46

IMU Institut GmbH is a German-based independent research and consulting organization specializing in labor-oriented research, business consulting, and training with a focus on economic, organizational, and technological matters. With over 40 years of experience, the institute serves members of works councils, personnel councils, economic committees, supervisory boards, and companies, providing research projects, advisory services, seminars, and publications. The website is professionally designed, well-structured, and targets a German-speaking audience interested in workplace transformation and labor relations. Technically, the website is built on TYPO3 CMS using Bootstrap 5 and modern JavaScript libraries such as jQuery and Photoswipe. It is hosted on servers managed via DomainControl nameservers. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and secure form handling, but lacks explicit security headers and incident response information. The security evaluation shows no critical vulnerabilities or exposed sensitive data. Privacy compliance is strong with a comprehensive privacy policy, but the absence of a cookie consent mechanism and security.txt file are noted gaps. Contact information is clearly presented with multiple channels including email, phone, and a contact form. Social media presence on Facebook and LinkedIn supports trust and outreach. Overall, IMU Institut GmbH's website reflects a credible, professional, and secure online presence suitable for its business domain. Strategic improvements in cookie consent, security headers, and incident response disclosures would enhance compliance and security posture further.

F

FIMCAP - International Federation of Catholic Parochial Youth Movements

fimcap.org

46

FIMCAP is an international non-profit federation uniting Catholic and Christian youth organizations across 28 countries with 31 member organizations. Founded in 1962 and officially recognized by the Holy See, it provides networking, advocacy, and organizes intercontinental and continental youth activities. The website is built on WordPress using modern plugins such as Elementor and Yoast SEO, hosted by GoDaddy. It features good design quality, clear navigation, and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy or terms of service pages. Overall, the site is trustworthy and professional, serving a general audience interested in youth and community development.

The website kolping-europa.eu is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any substantive content. Due to this restriction, no business information, contact details, or policies are available for review. The domain is registered through Tucows.com Co., a reputable registrar, but the lack of accessible content limits the ability to assess the company's market position or services. Technically, the site shows minimal optimization and lacks visible security headers or scripts, indicating a basic or placeholder setup. The security posture cannot be fully evaluated due to the blocked content, but the absence of HTTPS confirmation and security policies suggests potential gaps. Overall, the site presents a high risk for users due to lack of transparency and accessibility, and strategic recommendations include restoring access, implementing security best practices, and publishing compliance documentation.

S

Stiftung Pfadfinderinnen

stiftung-pfadfinderinnen.de

48

Stiftung Pfadfinderinnen is a German non-profit foundation dedicated to supporting innovative and traditional scouting projects within the Pfadfinderinnenschaft St. Georg community. The website serves as an informational and donation platform, providing project news, funding opportunities, and ways to support the foundation. The organization maintains a niche position in the non-profit sector focused on youth and scouting activities in Germany. Technically, the website is built on the Contao Open Source CMS and uses legacy JavaScript libraries such as jQuery 1.9.1 and the older Google Analytics ga.js script, indicating some modernization opportunities. Hosting is provided by Alfahosting, a German hosting provider, and the site uses HTTPS with a cookie consent mechanism, reflecting basic GDPR compliance. Security posture is moderate but could be improved by updating libraries and implementing security headers. Overall, the site is professional, trustworthy, and well-structured, with clear navigation and relevant content for its target audience.

B

Bundesverband Deutscher Stiftungen

stiftungssuche.de

49

Stiftungssuche.de is a comprehensive online platform operated by the Bundesverband Deutscher Stiftungen, providing an extensive database and search capabilities for foundations in Germany. It offers both free and subscription-based services with detailed foundation profiles, targeting foundations, applicants, and service providers within the German non-profit sector. The website is well-positioned as a leading resource in its niche, supported by a reputable parent organization. Technically, the site is built on WordPress with WooCommerce and uses modern tools such as Matomo for analytics and Borlabs Cookie for GDPR-compliant cookie management. The site demonstrates good digital maturity with responsive design and structured data for SEO. Security posture is solid with HTTPS enforced and privacy-respecting analytics, though it lacks explicit security policies and incident response contacts. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, making it a reliable resource for its audience.

B

Bundesverband Deutscher Stiftungen

stiftungswelt.de

48

The website 'Stiftungswelt' serves as the official online magazine for the Bundesverband Deutscher Stiftungen, providing news, insights, and resources related to foundations and the nonprofit sector in Germany. It targets foundation professionals, donors, and stakeholders interested in foundation management, law, finance, and societal impact. The platform is well-positioned as a leading information source within its niche, offering high-quality, relevant content with a professional presentation. Technically, the site is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Parsley for form validation. It integrates multiple analytics platforms including Google Analytics and Matomo, and employs Google Tag Manager for marketing tag management. The site is hosted on UI-DNS nameservers, uses HTTPS with a Content Security Policy, and implements a comprehensive cookie consent mechanism compliant with GDPR. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent management. However, the Content Security Policy is permissive with 'unsafe-inline' and 'unsafe-eval', which could be hardened to reduce XSS risks. There is no visible security policy or incident response information, nor a vulnerability disclosure mechanism like security.txt. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, secure, and compliant with privacy regulations, making it a trustworthy resource for its audience. Strategic improvements in security headers and transparency around security policies could further enhance its posture.

The website casinia1.fr currently displays only a minimal 'Service Unavailable' message, indicating that the site content is inaccessible or blocked, likely due to Cloudflare's security mechanisms. The domain is newly registered in September 2024 and uses Cloudflare nameservers, suggesting the site is either under development or temporarily offline. Due to the lack of accessible content, no business description, contact information, or policies are available for analysis. The technical infrastructure appears to rely on Cloudflare for hosting and security, but no further technical details can be extracted. Security posture evaluation is limited; while SSL is presumably enabled given Cloudflare usage, no security headers or best practices can be confirmed. Overall, the site presents a low trust profile due to its inaccessibility and lack of content.

The website shinywildss.fr is currently inaccessible, displaying only a minimal 'Service Unavailable' message. The domain WHOIS data indicates a creation date in the future (February 12, 2025), which is inconsistent and suspicious. The site uses Cloudflare nameservers, suggesting it is behind Cloudflare's infrastructure, likely with a Web Application Firewall (WAF) or other security mechanisms blocking access. Due to the lack of accessible content, no business information, policies, or contact details can be extracted or analyzed. The technical infrastructure appears minimal with no detectable technologies or frameworks. Security posture cannot be properly assessed due to lack of data, but the absence of HTTPS and security headers is inferred. Overall, the site presents a high risk due to inaccessibility and suspicious WHOIS data.

B

Betandreas

theconstructioncompany.org

48

Betandreas operates as an online casino and betting platform targeting Azerbaijani users, offering casino games, deposit bonuses, cashback, and mobile app downloads. The website is professionally designed with consistent branding and good content quality in Azerbaijani language. Technically, the site uses modern web technologies including Cloudflare DNS and CDN, Google Fonts, and JSON-LD structured data, but lacks explicit security headers and privacy policies. The security posture is moderate with HTTPS enabled and domain transfer protection, but missing key headers and documented policies. The domain registration is consistent with the business age and shows no suspicious patterns. Overall, the site is functional and moderately trustworthy but lacks transparency in privacy and contact information.

P

Polskie Stowarzyszenie Osób z Celiakią i na Diecie Bezglutenowej

przekreslonyklos.pl

31

The website www.przekreslonyklos.pl represents the Polish Association of People with Celiac Disease and on a Gluten-Free Diet, a non-profit organization dedicated to certifying gluten-free products and supporting the gluten-free community in Poland. The site serves as the official platform for licensing the Przekreślony Kłos trademark, a recognized symbol for safe gluten-free food. It also provides educational resources, events, and partnerships with European organizations. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and reCAPTCHA for security and analytics. The site is well-structured, mobile-optimized, and SEO-friendly, though it lacks a dedicated privacy policy page and some security headers. Security posture is strong with HTTPS and no visible vulnerabilities. WHOIS data is unavailable, which reduces transparency but the site's content and external references support its legitimacy. Overall, the site is a credible, professional resource for gluten-free certification and community support in Poland.

C

Consulting Service Sp. z o.o.

menubezglutenu.pl

36

Menu Bez Glutenu is a Polish niche directory and certification platform dedicated to listing restaurants, cafes, bakeries, caterings, hotels, and other food establishments that are friendly to persons on a gluten-free diet. The website provides a searchable database of certified gluten-free locations across Poland, targeting individuals who require or prefer gluten-free dining options. The business is operated by Consulting Service Sp. z o.o., established in 2011, and appears to hold a reputable position within this specialized market segment. The website content is primarily in Polish and is designed to serve the Polish market.

O

onlineshops-finden.de

onlineshops-finden.de

46

onlineshops-finden.de is a German online marketplace and directory portal specializing in listing over 8000 online shops across diverse categories. The platform serves both consumers and B2B users by providing thematic sorting, shop search, and marketing opportunities. It is positioned as a niche leader in the German e-commerce directory space with a medium-sized operation and a focus on comprehensive shop listings and related press content. Technically, the site is built on Drupal CMS with modern JavaScript libraries and includes privacy-conscious analytics via Matomo. The site implements cookie consent mechanisms and uses HTTPS, reflecting a moderate level of digital maturity. Security posture is adequate but could be improved with additional headers and published policies. The site includes mature content categories such as vape and cannabis lifestyle products, requiring age-appropriate content warnings. WHOIS data is minimal, with generic name servers, which slightly reduces trust but no direct red flags are present. Overall, the site is functional, professional, and trustworthy with room for security and compliance enhancements.

R

RegistryGate GmbH

praxisdrucksachen.shop

48

Praxisdrucksachen.shop is a specialized German e-commerce platform providing printing supplies and forms tailored for medical professionals such as doctors, pharmacists, and alternative practitioners. The company positions itself as a market leader in this niche, offering a wide range of products including prescription blocks, medical forms, and office supplies. The business model focuses on B2B sales with a clear target audience in the healthcare sector and related professional fields. The website content is professionally presented in German, with trust signals such as customer reviews and third-party verification enhancing credibility. Technically, the site runs on the modified eCommerce Shopsoftware platform with integrations for Google Analytics and Stetic tracking. While the site is functional and moderately optimized for performance and mobile use, some technical debt is evident, such as the use of an outdated jQuery version and lack of DNSSEC. Security posture is generally good with HTTPS enforced and anonymized analytics, but could be improved by adding security headers and explicit security policies. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy and professionally managed, with minor technical and security improvements recommended.

The KPK-Akademie website serves as an educational platform focused on providing advanced training and seminars for physics teachers, primarily in Germany. It offers a variety of physics-related modules and seminars, including topics such as relativity theory and quantum physics, targeting physics educators and academic professionals. The site is affiliated with the Karlsruhe Institute of Technology (KIT), enhancing its credibility and academic standing. Technically, the website is built using sitely.app CMS and hosted on netcup servers, with a moderate performance profile and good mobile optimization. However, it lacks advanced security headers and privacy compliance features such as privacy and cookie policies. No explicit contact emails or phone numbers are published, but a contact form is available for communication. The absence of incident response information and vulnerability disclosure mechanisms indicates room for improvement in security posture. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance measures.

F

Forschungsstelle Kaiserpfalz

saeulen-der-macht-ingelheim.de

37

The website 'Säulen der Macht - Säulen der Macht Ingelheim' is an educational and cultural platform managed by the Forschungsstelle Kaiserpfalz, focusing on medieval palaces and the travel routes of emperors in the German region between the Rhine, Main, and Neckar rivers. It serves a niche audience interested in historical research and museum exhibitions, providing detailed content about seven significant medieval sites. The site promotes related publications and digital exhibitions, positioning itself as a specialized resource in cultural heritage education. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, hosted on servers associated with rzone.de. The site is moderately optimized for performance and mobile devices, with good SEO practices and basic accessibility features. It uses HTTPS with a valid SSL certificate, but lacks some advanced security headers and has an unconfigured reCAPTCHA, indicating room for security improvements. From a security perspective, the site demonstrates a reasonable posture with encrypted connections and no exposed sensitive data. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests limited formal security governance. Privacy compliance is supported by a GDPR-compliant privacy policy, though no cookie consent mechanism is present. The site does not collect extensive user data or employ tracking analytics, minimizing privacy risks. Overall, the website is trustworthy, professionally designed, and content-rich for its domain. It lacks direct business contact information and advanced security disclosures, which could be enhanced to improve user trust and compliance. There are no indications of malicious activity or adult content, making it safe for general audiences.

S

Stadt Ingelheim am Rhein, Forschungsstelle Kaiserpfalz Ingelheim

karolinger-route.de

43

The website karolinger-route.de serves as a digital guide to the Karolinger-Route, a cultural and historical trail highlighting the Carolingian heritage in Ingelheim, Germany. Operated by the Stadt Ingelheim am Rhein's Forschungsstelle Kaiserpfalz, it targets tourists and history enthusiasts interested in the legacy of Charlemagne and the Kaiserpfalz site. The site provides multimedia content including audio guides, interactive maps, and detailed descriptions of historical stations along the route. The business model is informational and cultural tourism-focused, with a regional government affiliation. Technically, the website is built using the Stacks plugin ecosystem, likely on the RapidWeaver CMS platform, incorporating JavaScript libraries such as jQuery 1.8 and Font Awesome icons. It uses Google Fonts and is hosted on webgo.de servers. The site is moderately optimized for mobile devices and offers a good user experience with clear navigation and relevant content. However, the technology stack includes somewhat outdated libraries, and no advanced analytics or marketing tools are detected. From a security perspective, the site lacks visible HTTPS enforcement details and security headers, which lowers its security posture. There are no privacy or cookie policies present, indicating non-compliance with GDPR requirements. No contact forms or incident response contacts are provided, limiting user engagement and security communication. The WHOIS data is minimal but consistent with the municipal nature of the site, and no suspicious patterns are detected. Overall, the site is a well-structured cultural information portal with good content quality and business credibility but requires improvements in security, privacy compliance, and modern technical practices to enhance trust and user protection.

P

Polskie Stowarzyszenie Osób z Celiakią i na Diecie Bezglutenowej

celiakia.pl

37

Polskie Stowarzyszenie Osób z Celiakią i na Diecie Bezglutenowej is a well-established Polish non-profit organization dedicated to supporting individuals with celiac disease and promoting gluten-free diets. The organization operates certification programs such as Przekreślony Kłos for gluten-free products and MENU BEZ GLUTENU for gluten-free friendly dining establishments. Their website serves as an educational and community hub, offering resources, events, and collaboration opportunities for patients, healthcare professionals, and businesses. The site is professionally designed, well-structured, and optimized for SEO and mobile use, reflecting a mature digital presence. Technically, it is built on WordPress with modern libraries and integrates Google Analytics for user insights. Security posture is good with HTTPS enabled, though additional security headers and DNSSEC could enhance protection. Privacy compliance is adequate with visible privacy and cookie policies, though no explicit consent mechanism is detected. Overall, the website is trustworthy, content-rich, and serves its community effectively.

G

grandcastle.sk

grandcastle.sk

44

Chateau GrandCastle is a hospitality business operating a historic castle hotel located in Liptovský Hrádok, Slovakia. The website presents a luxury accommodation experience with a focus on historic ambiance, wellness, dining, and event hosting services. The business targets tourists and guests seeking unique lodging in a castle setting, offering various room types, packages, and amenities. The company has an established online presence with booking capabilities and multilingual support. Technically, the website is built on WordPress with WooCommerce and integrates several third-party services for analytics, marketing, and booking management. Security posture is good with HTTPS and standard protections, though some improvements in security headers and incident response transparency are recommended. Privacy compliance is mostly met with a clear privacy policy but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

H

Hrdo a srdcom #praveslovenske

hrdoasrdcom.sk

44

Hrdo a srdcom #praveslovenske is a Slovak-based e-commerce website specializing in retailing culturally themed products such as mugs, socks, and clothing featuring Slovak folk motifs and regional designs. The site targets Slovak consumers and enthusiasts of Slovak culture, offering a niche product range with custom options and bundled collections. The business operates primarily online with a focus on Slovak heritage and tourism promotion. Technically, the website is built on WordPress with WooCommerce and WPBakery Page Builder, leveraging common web technologies like jQuery and Bootstrap. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. Security-wise, the website uses HTTPS and implements several security headers, indicating a good security posture, though it lacks a dedicated security policy or incident response page. Privacy compliance is well addressed with GDPR and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business goals, though there is room for improvement in security transparency and accessibility.

M

Müttergenesungswerk

muettergenesungswerk.de

45

Müttergenesungswerk is a well-established German non-profit organization focused on providing high-quality health and rehabilitation services primarily for mothers, but also for fathers and caregiving relatives. The website reflects a mature digital presence with a clear focus on supporting its target audience through information, consulting, and access to clinics. The organization leverages donations and partnerships to sustain its operations and has a strong brand presence supported by endorsements and media coverage. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and integrates consent management and analytics tools responsibly. Security posture is solid with HTTPS and reCAPTCHA integration, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

E

Enovis Corporation

enovis-medtech.eu

46

Enovis International operates as a global leader in medical technology, specializing in orthopedic, rehabilitation, and surgical devices outside the US. The company offers a comprehensive product portfolio including bracing, vascular, recovery sciences, and surgical solutions, supported by medical education and webinars. Their market position is strong with a focus on healthcare professionals and international markets. Technically, the website employs modern frameworks such as Bootstrap, jQuery, and Tailwind CSS, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response disclosures are recommended. Overall, the site reflects a professional and trustworthy business presence with moderate to high digital maturity.

The Jugend- und Kulturzentrum | Yellow website serves as the digital presence for a local youth and cultural center in Ingelheim, Germany. It offers a variety of programs and activities targeted at children and teenagers, including youth cafés, holiday programs, political participation projects, and cultural events. The organization appears to be a small non-profit entity, likely supported by local government or public funds, focusing on community engagement and youth development. Technically, the website is built on WordPress 6.4.7 with standard plugins such as a cookie notice and PDF embedder. The site is hosted on servers associated with 'agenturserver' and uses HTTPS with a valid SSL configuration. The site demonstrates good mobile optimization, accessibility, and SEO practices, though it lacks advanced security headers and incident response documentation. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, indicating GDPR awareness. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of security headers and a formal security or incident response policy suggests room for improvement in security maturity. Overall, the website is trustworthy, professionally maintained, and compliant with basic privacy regulations. It effectively serves its community-focused mission with clear content and navigation. Strategic enhancements in security policies and technical headers would further strengthen its posture.

W

Wohnungsbaugesellschaft Ingelheim am Rhein GmbH

wbi-wohn.de

43

Wohnungsbaugesellschaft Ingelheim am Rhein GmbH (wbi) is a regional real estate company focused on providing affordable housing, sustainable building projects, and innovative mobility solutions such as E-Carsharing and Coworking spaces in Ingelheim, Germany. The website presents a professional and consistent brand image with detailed service offerings targeting local residents and businesses. Technically, the site uses modern web technologies and is mobile-optimized with good accessibility and SEO practices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

F

Fachkräfte für Mittelfranken

fachkraefte-mittelfranken.de

41

Fachkräfte für Mittelfranken is a regional information portal supported by the IHK Nürnberg für Mittelfranken, focusing on workforce development and HR topics relevant to the Mittelfranken region in Germany. The portal provides companies and HR professionals with practical examples, tools, events, and services to address challenges such as digital transformation, demographic changes, and international workforce integration. The website is well-branded, consistent, and leverages structured data and social media to enhance trust and visibility. Technically, the site is built on WordPress with a modern plugin ecosystem including Fusion Builder and Events Manager. It uses Matomo for privacy-respecting analytics and implements HTTPS with good SSL configuration. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented. From a security perspective, the site enforces HTTPS and uses privacy-friendly embedded content. However, it lacks explicit security headers and a public security policy or incident response contact. No vulnerabilities or suspicious domains were detected. WHOIS data aligns well with the website's organizational claims, showing a consistent and legitimate registration history. Overall, the website presents a professional, trustworthy, and secure platform for its target audience. Strategic improvements could include enhanced security headers, explicit incident response information, and more visible contact details to further strengthen trust and compliance.

M

MPohlig

pohlig.de

43

The website pohlig.de serves as an informational platform primarily focused on academic and cultural activities, including a physics seminar at KIT and a Schubertiade music event. It targets an academic audience and cultural event attendees, providing project details, publication references, and contact options. The business model appears to be centered on education and cultural event promotion within a niche market in Germany. Technically, the site is built using sitely.app CMS, hosted on netcup.net servers, and employs standard web technologies such as HTML5, CSS3, and JavaScript. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. Security-wise, the site uses HTTPS with a good SSL configuration but lacks security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the site is trustworthy and professional but could improve privacy compliance and security posture.

F

Fachzeitungen.de

fachzeitungen.de

35

Fachzeitungen.de operates as an independent German-language portal specializing in the aggregation and presentation of specialist magazines, Fachpublikationen, and eBooks across a wide range of professional and hobbyist categories. The platform offers categorized listings, search functionality, advertising opportunities, and a press release portal, targeting professionals and enthusiasts seeking specialized publications. The website is well-structured with clear navigation and a consistent brand presence, serving a niche media market in Germany. Technically, the site is built on Drupal CMS, employs Matomo for privacy-respecting analytics, and uses modern JavaScript libraries such as Owl Carousel and Tarteaucitron.js for cookie consent management. The site is mobile-optimized and implements HTTPS, but lacks some advanced security headers and explicit security policies. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. However, no direct contact information or incident response channels are publicly visible, which could be improved for trust and compliance. WHOIS data is minimal, limiting full domain trust assessment but no suspicious patterns are evident. Overall, Fachzeitungen.de presents a professional and trustworthy media portal with room for enhanced security and transparency.

music-job.com operates as a specialized online job marketplace focused on the music industry, particularly orchestra musicians. Established in 2000, it positions itself as the world's largest job market for orchestra musicians, offering job listings across orchestras, music schools, universities, and music management sectors. The website targets music professionals seeking employment and organizations looking to hire within the music domain. Technically, the site is built on WordPress with WooCommerce and WPBakery Page Builder, enhanced by multilingual support via WPML and accessibility features through the digiaccess plugin. Hosting is provided by IONOS SE, a reputable provider, and the site uses HTTPS with a valid SSL certificate, ensuring secure communications. However, the site lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security measures include Google reCAPTCHA and accessibility compliance, but security headers are not detected, suggesting room for improvement. Overall, the site is professional and trustworthy but would benefit from enhanced privacy disclosures and security hardening.

The website kuenstlerhaus-edenkoben.de currently serves a 404 error page indicating no site configuration found, rendering it inaccessible for meaningful content or business information extraction. The site is built on TYPO3 CMS as evidenced by the branded error page. There is no metadata, structured data, or contact information available, and no privacy or cookie policies are present. The domain uses German-based animate.de name servers and shows a domain status of 'connect' in WHOIS data, suggesting it is registered and active but the website content is not deployed or misconfigured. From a technical perspective, the site lacks visible security headers, HTTPS status is unknown, and no analytics or advertising technologies are detected. The absence of accessible content and policies results in a poor user experience and low trustworthiness. No business or security policies are found, and no contact or incident response information is available. Security posture is weak due to lack of HTTPS confirmation and missing security best practices. The domain registration appears consistent and legitimate, but the lack of content and configuration severely limits the website's credibility and operational readiness. Overall, the site is currently non-functional from a visitor perspective and requires immediate remediation to deploy content and security controls. Recommendations include implementing HTTPS, deploying a valid website configuration, adding privacy and cookie policies, providing contact and security incident response information, and applying standard security headers to improve trust and compliance.

S

Stiftung der Metallindustrie im Nord-Westen (SMNW)

stiftung-nordwest.de

44

The Stiftung der Metallindustrie im Nord-Westen (SMNW) is a well-established non-profit foundation founded in 2007, focused on promoting education, science, culture, and social initiatives in the northwestern region of Germany. With a significant capital base, it plays an important role in supporting regional development and the metallurgical and electrical industries indirectly through its funding and projects. The website reflects a professional and consistent brand presence, targeting regional institutions and stakeholders with clear, relevant content and regular updates. Technically, the website is built on WordPress using common plugins such as Contact Form 7 and Autoptimize, with jQuery and jQuery UI libraries. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Hosting is managed via domaincontrol.com DNS, a common provider. The site uses HTTPS with strong SSL configuration but lacks some advanced security headers and cookie consent mechanisms. From a security perspective, the site demonstrates good baseline practices including HTTPS enforcement and no visible sensitive data exposure. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No WAF or blocking mechanisms are detected, and no suspicious or malicious content is present. Privacy compliance is basic with a privacy policy present but no cookie consent banner. Overall, the site is trustworthy and professional with a solid business credibility score. Recommendations include implementing cookie consent for GDPR compliance, adding security headers, publishing a security.txt file, and enhancing incident response transparency to improve security posture and compliance.

L

Landesverband Niedersachsen und Bremen der holz- und kunststoffverarbeitenden Industrie e. V.

hknb.de

47

The Landesverband Niedersachsen und Bremen der holz- und kunststoffverarbeitenden Industrie e. V. is a regional industry association representing employers in the wood and plastics processing sectors within the German states of Niedersachsen and Bremen. The organization provides specialized legal, economic, and PR support services tailored to the needs of its members, focusing on labor, social, and tariff law, as well as offering process representation in legal disputes. The website reflects a professional and focused business model aimed at supporting industry employers through advisory and networking services. Technically, the website is built on WordPress with a modern theme and plugins such as Yoast SEO and Borlabs Cookie for SEO and privacy compliance. The site is mobile-optimized, uses HTTPS with strong SSL configuration, and includes cookie consent mechanisms, indicating a mature digital infrastructure. Performance is moderate, with good navigation and accessibility features. From a security perspective, the site enforces HTTPS and cookie consent but lacks explicit security headers and incident response contact information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but does not raise suspicion. Overall, the security posture is solid but could be improved with additional headers and formal incident response details. The overall risk assessment is low, with no blocking or WAF detected, no adult or questionable content, and clear contact information. Strategic recommendations include enhancing security headers, adding incident response contacts, and maintaining up-to-date software to ensure continued compliance and security.

D

Diakonisches Werk Coburg e.V.

diakonie-coburg.de

45

Diakonisches Werk Coburg e.V. is a regional non-profit social service organization affiliated with the evangelical church, providing counseling and support services for vulnerable populations including the elderly, disabled, families, and individuals with mental health challenges in Coburg, Germany. The website presents a clear and professional digital presence with good content quality and consistent branding. The technical infrastructure is based on WordPress with modern plugins and themes, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and serves its community-focused mission effectively.

EdgeCDNPlus.com is a small technology-focused website offering a CDN library service that provides developers with direct links to popular frontend libraries such as Bootstrap, React, Font Awesome, Material UI, Chart.js, and Animate.css. The site targets developers seeking easy access to these resources via a simple interface. The business model appears to be centered on content delivery for web development assets, although no explicit commercial or enterprise positioning is evident. The website content is basic but relevant to its developer audience. From a technical perspective, the site uses standard web technologies including Bootstrap 4.3.1 and jQuery 3.3.1 slim, hosted on Cloudflare infrastructure as indicated by the nameservers. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. There is no evidence of a CMS or complex backend platform. The site is straightforward with minimal interactive elements. Security posture is limited; no security headers or HTTPS enforcement details are visible in the provided data. DNSSEC is not enabled despite Cloudflare DNS usage. The WHOIS data is suspicious due to a domain creation date set in the future (2025), which undermines trust and raises questions about legitimacy. No privacy, cookie, or terms of service policies are present, and no contact or incident response information is provided, indicating low maturity in compliance and security transparency. Overall, the site is safe for general audiences with no adult or questionable content. However, the lack of business transparency, privacy compliance, and suspicious WHOIS data reduce trustworthiness. Strategic improvements in security policies, compliance documentation, and domain registration transparency are recommended to enhance credibility and security posture.