Security Directory

E

Einhell Hungária Kft.

einhell.hu

63

Einhell Hungária Kft. operates a professional and consumer-focused e-commerce website specializing in high-quality cordless and electric tools, garden equipment, and battery systems. The company targets hobbyists, garden enthusiasts, and professionals in Hungary, offering a broad product range with strong brand positioning. The website demonstrates a mature digital presence with clear navigation, multilingual support, and integrated customer services such as warranty registration and downloadable manuals. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes integrations for analytics, consent management, and remote support tools. Security posture is strong with HTTPS, security headers, CAPTCHA, and GDPR-compliant cookie consent mechanisms in place. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with relevant privacy regulations, supporting a medium-sized retail business in the manufacturing and tools sector.

E

Einhell Germany AG

einhell.cz

65

Einhell.cz is a professionally maintained e-commerce website representing Einhell Germany AG's Czech market presence. The company specializes in high-quality power tools, garden equipment, and professional tools targeting both home DIY enthusiasts and professional users. The website demonstrates a strong market position with official partnerships and a comprehensive product offering. Technically, the site is built on TYPO3 CMS, integrates modern analytics and consent management tools, and employs HTTPS with security best practices. However, WHOIS data is unavailable, likely due to privacy protection, but the website's professionalism and compliance indicate legitimacy. Security posture is good, though the absence of a public security policy and incident response contacts suggests room for improvement. Overall, the site is safe, well-structured, and compliant with GDPR, making it a trustworthy platform for its target audience.

E

Einhell Croatia d.o.o.

einhell.hr

65

Einhell Croatia d.o.o. operates a professional and consumer-focused website offering high-quality power tools, garden equipment, and accessories primarily targeting hobbyists, gardeners, and professionals in Croatia. The company maintains a consistent brand presence with a well-structured website powered by TYPO3 CMS, integrating modern technologies and third-party services for analytics, consent management, and bot protection. The website demonstrates good GDPR compliance with a comprehensive privacy policy and cookie consent mechanism. Security posture is strong with HTTPS enforcement, security headers, and CAPTCHA integration, although explicit security policies and incident response contacts are not published. Overall, the website reflects a mature digital infrastructure suitable for a medium-sized manufacturing and retail business with a strong regional market position.

E

Einhell Bulgaria

einhell.bg

58

Einhell.bg is the Bulgarian e-commerce website for Einhell, a well-known manufacturer and retailer of power tools and garden equipment. The site targets DIY enthusiasts, gardeners, and professionals, offering a wide range of battery-powered and electric tools, stationary machines, and accessories. The website is part of the international Einhell group, reflecting a consistent brand presence and partnerships with high-profile entities such as Mercedes-AMG PETRONAS F1 Team and FC Bayern München. The business model focuses on direct online sales supported by a customer account system and dealer/service locator features. Technically, the website is built on TYPO3 CMS with modern JavaScript frameworks and integrates privacy-friendly analytics (Matomo) and consent management (Usercentrics). The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security is robust with HTTPS, security headers, CAPTCHA protection, and secure authentication via Keycloak. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. WHOIS data confirms the domain's legitimacy and consistency with the business identity. Overall, Einhell.bg is a professional, secure, and trustworthy e-commerce platform with good technical and privacy practices. Strategic enhancements in security transparency and vulnerability disclosure would further strengthen its posture.

E

Einhell Germany AG

einhell.sv

62

Einhell Germany AG operates a professional and well-structured website targeting Spanish-speaking customers in El Salvador, offering high-quality power tools and gardening equipment. The company positions itself as a reputable manufacturer and retailer with a strong international presence, leveraging a modern TYPO3 CMS platform and integrating advanced analytics and privacy compliance tools. The website demonstrates good technical maturity with HTTPS, cookie consent management, and anti-bot measures. Security posture is solid with no evident vulnerabilities or exposed sensitive data, although explicit security headers could be confirmed. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site reflects a trustworthy and professional business with a focus on customer engagement through product highlights and service information.

E

Einhell Germany AG

einhell.gt

62

Einhell Germany AG operates a professional and well-structured website targeting DIY enthusiasts and gardening professionals in Guatemala. The company offers a broad range of power tools, garden equipment, and battery systems, positioning itself as a reputable manufacturer and retailer with a strong international presence. The website is built on TYPO3 CMS and integrates modern technologies such as Matomo analytics, FriendlyCaptcha, and Usercentrics consent management, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement and bot protection, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates good compliance with GDPR and provides a trustworthy user experience.

E

Einhell Germany AG

einhell.cr

60

Einhell Germany AG operates the localized Costa Rica website einhell.cr, providing high-quality power tools, garden equipment, and accessories targeted at DIY enthusiasts and professionals. The company maintains a strong brand presence with consistent branding and multilingual support across many country-specific domains. Technically, the website is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager, Matomo Analytics, and Usercentrics for privacy compliance. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie policies, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS enforced and anti-bot measures like FriendlyCaptcha; however, explicit security headers and vulnerability disclosure mechanisms are absent, representing areas for improvement. The lack of WHOIS data reduces transparency but does not detract significantly from the overall legitimacy, given the professional presentation and infrastructure. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a trustworthy and professional online presence for Einhell in Costa Rica.

E

Einhell Colombia S.A.S

einhell.co

59

Einhell Colombia S.A.S operates a professional and well-structured website targeting Spanish-speaking DIY and gardening enthusiasts in Colombia. The company offers a range of power tools, garden equipment, and battery systems, positioning itself as a reputable brand in manufacturing and retail sectors. The website is built on TYPO3 CMS and integrates modern analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, professional, and compliant with GDPR standards, with no signs of suspicious activity or content blocking.

E

Einhell Germany AG

einhell.pe

60

Einhell.pe is the Peruvian localized website of Einhell Germany AG, a well-established manufacturer and retailer of power tools and garden equipment. The site targets both hobbyists and professionals in the DIY and gardening sectors, offering a wide range of battery-powered tools, accessories, and professional-grade equipment. The website is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager, Matomo Analytics, and Usercentrics for privacy compliance. It features a professional design with good navigation and mobile optimization. Security measures include HTTPS, captcha protection, and consent management, although explicit security policies and incident response information are not published. WHOIS data is incomplete, which slightly reduces domain trustworthiness, but the website's branding and content strongly indicate legitimacy.

E

Einhell Chile S.A.

einhell.cl

64

Einhell Chile S.A. operates a professional and consumer-focused website offering high-quality cordless power tools and garden equipment. The company positions itself as a reputable manufacturer and retailer in Chile, targeting professionals and home users with a broad product range including battery systems and workshop tools. The website is built on TYPO3 CMS and integrates modern technologies such as Matomo for analytics and Usercentrics for privacy compliance, reflecting a mature digital infrastructure. Security measures include HTTPS, CAPTCHA, and consent management, though explicit security policies and incident response information are not publicly detailed. The absence of WHOIS data limits domain trust assessment, but the professional presentation and compliance indicators suggest a legitimate business. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to strengthen trust and security posture.

O

Outillages King Canada Inc.

einhell.ca

60

Einhell.ca is the Canadian website for Outillages King Canada Inc., offering a wide range of power tools, garden tools, and accessories targeted at DIY enthusiasts, gardeners, and professional users. The website showcases a strong brand presence with partnerships such as Mercedes-AMG PETRONAS F1 Team and FC Bayern, indicating a reputable market position. The business model focuses on manufacturing and retail, providing products and services including customer support and dealer location services. Technically, the website is built on TYPO3 CMS and employs modern web technologies including Google Fonts, Friendly Captcha for bot protection, Matomo for analytics, and Usercentrics for consent management. The site is mobile optimized, accessible, and SEO friendly, delivering a good user experience with fast loading times. From a security perspective, the site enforces HTTPS and uses CAPTCHA and consent management to comply with GDPR. However, explicit security headers are not detected, and no public security policy or incident response contacts are provided. The absence of WHOIS data for the domain introduces a minor trust concern, though the website content and branding strongly support legitimacy. Overall, the website presents a professional and trustworthy front with good privacy compliance and technical implementation. Strategic improvements in security header implementation and transparency around security policies would enhance the security posture further.

E

Einhell Germany AG

einhell.ch

65

Einhell Germany AG operates the website einhell.ch, a professional e-commerce platform specializing in high-quality power tools and garden equipment targeted at DIY enthusiasts, gardeners, and professional users primarily in Switzerland and other European markets. The website offers a comprehensive product catalog, customer login, product comparison, and after-sales services, positioning itself as a trusted brand with a strong market presence. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and integrates privacy-friendly analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, CAPTCHA protections, and secure authentication mechanisms. Privacy compliance is robust, with clear GDPR-aligned policies and cookie consent. Overall, the site demonstrates high professionalism, trustworthiness, and user experience quality.

E

Einhell

einhell.at

63

Einhell.at is a professional e-commerce website specializing in high-quality tools and garden equipment targeted primarily at DIY enthusiasts and gardeners in Austria. The site offers a broad range of cordless power tools, stationary machines, garden devices, and accessories, positioning itself as a reputable brand with a strong market presence. The website is well-structured, professionally designed, and optimized for user experience and mobile devices, reflecting a mature digital infrastructure. Technically, the site is built on TYPO3 CMS and integrates modern technologies including Google Tag Manager, Matomo analytics, and a consent management platform, demonstrating a commitment to privacy and compliance. Security posture is solid with HTTPS enforced and bot protection mechanisms in place, although explicit security headers could be improved. The absence of publicly available WHOIS data suggests privacy protection, which is common and justified for commercial entities. Overall, the website presents a trustworthy and professional front with good compliance and security practices.

E

Einhell Germany AG

einhell.com

61

Einhell Germany AG is a well-established manufacturer specializing in state-of-the-art tools and garden equipment, headquartered in Landau/Isar, Bavaria, Germany. The company is recognized as a market leader in cordless tools, particularly through its innovative Power X-Change battery platform, serving a broad international audience with nearly 50 subsidiaries worldwide. The website reflects a professional and comprehensive digital presence, supporting multiple languages and regional assortments, indicating a mature and global business model. The company emphasizes product endurance, performance, and customer service excellence.

AMS Automarkt am Schieferstein GmbH is a small, regionally focused automotive business established in 1990, specializing in the sale and marketing of vehicles including Mitsubishi Jahreswagen, leasing returns, fleet vehicles, and service cars. The company targets both end consumers and business clients within the transportation sector, offering financing and leasing options. The website reflects a professional and consistent brand presence with clear contact information and a comprehensive privacy policy, supporting GDPR compliance. Technically, the site uses a modern tech stack including Bootstrap and Matomo analytics, with moderate performance and good mobile optimization. Security posture is adequate with privacy-conscious analytics and cookie consent, though lacking explicit security headers and incident response details. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

I

ISD Bank, Zweigniederlassung der MCE Bank GmbH

isd-bank.de

60

ISD Bank, a branch of MCE Bank GmbH, specializes in financing, leasing, and insurance services for ISUZU and Mitsubishi vehicles in Germany. The company targets commercial and private customers seeking tailored financial products for automotive needs. The website reflects a niche financial institution with a focused market position and offers key services such as credit, leasing, insurance, dealer search, and identity verification. Technically, the site uses Bootstrap and jQuery, with privacy-conscious analytics via Matomo and a robust cookie consent mechanism. Security posture is moderate, lacking explicit security headers and published incident response policies. Overall, the site is professional, accessible, and compliant with GDPR, though improvements in security transparency and direct contact information are recommended.

E

Einhell Germany AG

einhell.de

63

Einhell Germany AG operates a professional e-commerce platform specializing in power tools and garden equipment targeting DIY enthusiasts and professional users primarily in Germany and Europe. The website is built on TYPO3 CMS and integrates modern technologies including Matomo analytics, Google Tag Manager, and a consent management platform to ensure GDPR compliance. The site offers extensive product information, customer support via chat, and a secure login system. Security posture is strong with HTTPS, security headers, and captcha protections in place. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature and secure digital presence.

S

Stadt Hanau

hanau-corona.de

61

The website 'Corona in Hanau' is an official municipal information portal operated by Stadt Hanau, Germany, providing comprehensive and up-to-date information related to the Coronavirus pandemic. It serves residents and stakeholders by offering resources such as testing locations, vaccination sites, hygiene rules, legal information, and support services. The site is positioned as a trusted government source with consistent branding and clear navigation. Technically, the website is built on the IMPERIA CMS platform and utilizes a modern technology stack including jQuery, Bootstrap, Matomo Analytics, and Google Maps API. The site demonstrates good mobile optimization and SEO practices, although performance is moderate. The cookie consent mechanism is robust, ensuring GDPR compliance with user opt-in for analytics tracking. From a security perspective, the site employs HTTPS and anonymizes user IPs in analytics. However, explicit security headers and incident response information are not evident, suggesting room for improvement in security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the site maintains a good balance between usability, privacy, and security. The risk assessment is low given the official nature of the site and its compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and resilience.

F

Fantom

fantom.foundation

70

Fantom is a well-established blockchain platform specializing in scalable Layer-1 solutions for decentralized finance, crypto applications, and enterprise use cases. The website reflects a professional and modern digital presence, targeting developers and businesses interested in blockchain technology. The platform positions itself as a next-generation solution emphasizing scalability and enterprise readiness. Technically, the site uses modern frameworks such as React and Next.js, with integrations of Google Fonts, Google Analytics, and Matomo for analytics. The design is responsive and user-friendly, with clear navigation and consistent branding. Security posture is solid with HTTPS enforced and bot protection via reCAPTCHA, though explicit security headers and policies are not published. Privacy compliance is limited due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and professional but could improve transparency on privacy and security policies.

G

GONSO ®

gonso.de

63

GONSO® operates a professional e-commerce website specializing in cycling apparel for men and women, emphasizing perfect fit and quality. The company targets cycling enthusiasts seeking high-performance and well-fitting cycling clothing. The website is well-branded, with consistent design and clear navigation, supporting multiple languages and featuring a modern tech stack including Shopware CMS, Google Tag Manager, and UserCentrics for consent management. Social media presence on Instagram, Facebook, and YouTube supports brand engagement. Security posture is strong with HTTPS and CAPTCHA protections, though security headers and explicit privacy policies are missing. No blocking or WAF challenges were detected, allowing full content access.

M

Maier Sports ®

maier-sports.com

65

Maier Sports is a German-based outdoor clothing retailer specializing in apparel for hiking, trekking, and skiing with a focus on perfect fit for men and women. The company operates a professional e-commerce platform powered by Shopware, offering a range of products including pants, jackets, and accessories. The website demonstrates good digital maturity with modern technologies, mobile optimization, and accessibility features. Social media presence on Instagram, Facebook, and YouTube supports brand engagement. However, the absence of WHOIS registration data and lack of explicit privacy and terms of service pages slightly reduce trustworthiness. Security posture is adequate with HTTPS and cookie consent mechanisms but could be improved by adding security headers and a vulnerability disclosure policy.

C

ClimatePartner

climate-id.com

75

ClimatePartner operates in the climate protection sector, offering services that enable businesses to calculate and offset their carbon footprint. The company positions itself as a niche leader in sustainability solutions, targeting organizations committed to environmental responsibility. The website uses modern web technologies including React and Next.js, hosted on Amazon AWS infrastructure, indicating a mature and scalable technical foundation. The presence of a detailed cookie consent mechanism and privacy policy reflects a strong commitment to GDPR compliance and user privacy. Security posture is generally good with HTTPS enforced and AWS load balancers in use, though improvements such as enabling DNSSEC and adding security headers are recommended. Overall, the website is professional, trustworthy, and well-aligned with its business objectives, though the absence of contact information and terms of service pages on the analyzed page suggests areas for enhancement.

M

MCE Bank GmbH

mce-bank.eu

65

MCE Bank GmbH is a medium-sized financial services company specializing in automotive financing, leasing, insurance, and IT services for car dealerships in Germany. As a subsidiary of Santander Consumer Bank AG, it holds a strong market position as a trusted financing partner for multiple automotive brands including Mitsubishi, Subaru, GWM, and Isuzu. The website reflects a professional and consistent brand image with clear navigation and relevant content targeting both private and commercial customers as well as automotive dealers. Technically, the site uses established frontend technologies such as Bootstrap and jQuery, and integrates privacy-conscious analytics via Matomo with GDPR-compliant cookie consent mechanisms. However, there is room for improvement in security posture, particularly in implementing HTTP security headers and publishing explicit security policies. Overall, the site is well-positioned to serve its audience with a good balance of content quality, technical implementation, and business credibility.

P

Plan Shop

plan-shop.org

64

Plan Shop GmbH operates a German-based e-commerce platform specializing in fair trade and socially responsible products, including clothing, accessories, home goods, and wellness items. The company targets consumers interested in ethical and sustainable products, positioning itself as a niche leader in the fair trade retail market. The website is built on the Magento platform, leveraging modern JavaScript frameworks and integrations such as Google Tag Manager and Matomo for analytics, and CleverReach for marketing communications. Privacy and cookie policies are clearly presented and comply with GDPR requirements. Security posture is good with HTTPS enforced and secure cookie settings, though some security headers could be improved. WHOIS data is privacy protected, which is typical for retail e-commerce sites, and no suspicious patterns were detected. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

H

HUEHOCO GmbH

huehoco-gmbh.com

50

HUEHOCO GmbH is an established German manufacturing company specializing in coil coating and advanced metal surface treatments with over 100 years of industry experience. The company operates globally with multiple production sites and offers a broad portfolio including adhesion promoters, technical and decorative coatings, rubber coatings, stamping parts, and rubber extrusion. Their business model focuses on B2B industrial clients requiring high-quality metal finishing solutions. The website reflects a mature digital presence with multi-language support, professional design, and comprehensive product and corporate information. Technically, the site is built on WordPress with modern plugins and SEO optimizations, hosted by IONOS SE. Security posture is good with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and CSP headers are recommended. No critical vulnerabilities or suspicious content were detected. Overall, the site demonstrates high business credibility and trustworthiness.

H

HUEHOCO GmbH

huehoco.com

50

HUEHOCO GmbH is an established German manufacturing company specializing in coil coating and metal surface finishing with over 100 years of experience. The company operates globally with multiple production sites and offers a comprehensive range of technical and decorative coatings, adhesion promoters, rubber coatings, and stamping parts. Their business model focuses on B2B industrial clients requiring advanced metal coating solutions. The website reflects a mature digital presence with multilingual support, professional design, and clear navigation tailored to industrial customers. Technically, the site is built on WordPress with modern plugins and analytics tools, hosted by IONOS SE, ensuring reliable performance and good mobile optimization. Security posture is solid with HTTPS, clientTransferProhibited domain status, and cookie consent mechanisms, though DNSSEC is not enabled and explicit security policies are absent. Overall, the domain registration and website content align well, supporting the company's legitimacy and market position.

S

Stiftung Sicherheit im Skisport

stiftung.ski

46

Stiftung Sicherheit im Skisport is a German non-profit foundation dedicated to enhancing safety and sustainability in winter sports. With over 40 years of experience, it offers educational programs, research awards, and safety initiatives targeting winter sports participants, schools, and event organizers. The website is professionally designed using TYPO3 CMS and modern web technologies, providing comprehensive content in German. It includes clear contact information and social media presence, supporting trust and engagement. The technical infrastructure is solid with responsive design and cookie consent mechanisms, though security headers are not explicitly detected. The domain WHOIS data is privacy protected, which is typical for non-profits, but limits direct registrant verification. Overall, the site demonstrates a good security posture and compliance with GDPR, making it a trustworthy resource in its sector.

D

Deutsche Diabetes Gesellschaft e.V.

deutsche-diabetes-gesellschaft.de

63

The Deutsche Diabetes Gesellschaft e.V. (DDG) is a prominent medical-scientific society in Germany focused on diabetes research, therapy, and prevention. The organization provides education, certification, and advisory services to medical professionals and stakeholders in healthcare and policy. The website is professionally designed, well-structured, and targets healthcare professionals and policy actors. Technically, the site is built on TYPO3 CMS and uses Matomo analytics configured with privacy in mind. Security posture is good with HTTPS and security headers, though explicit security policies and incident response contacts are not found. WHOIS data is unavailable due to privacy or query issues but the website content and external links indicate legitimacy. Overall, the site demonstrates a mature digital presence with strong privacy compliance and professional credibility.

D

Deutsche Sport Marketing GmbH

dsm-olympia.de

46

Deutsche Sport Marketing GmbH is a specialized sports marketing agency operating in Germany, focusing on the comprehensive marketing and promotion of German sports, including Olympic and Paralympic movements. The company collaborates closely with major sports organizations such as the Deutscher Olympischer Sportbund (DOSB) and the Deutscher Behindertensportverband (DBS), offering services in marketing, concept development, communication, and product innovation. Their market position is strong within the German sports ecosystem, supported by partnerships with leading brands and institutions. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery, ensuring good mobile optimization, accessibility, and SEO. The site uses Matomo for analytics with privacy-conscious configurations such as Do Not Track and cookie disabling. Performance is moderate, with room for optimization. Hosting and DNS are managed via standard providers, with HTTPS enforced and no visible security vulnerabilities. From a security perspective, the site demonstrates good practices such as HTTPS usage and no exposed sensitive data. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerability disclosure or security.txt files are present. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanisms aligned with GDPR requirements. Overall, the website and business present a low-risk profile with professional content, clear contact information, and a trustworthy digital presence. Strategic improvements in security headers and incident response transparency would enhance the security posture further.

M

MKG Bank

mkg-bank.de

62

MKG Bank is a specialized financial institution serving as the official financing partner for Mitsubishi Motors in Germany. The company offers a range of automotive financing products including standard loans, balloon credits, and leasing options tailored for both private and business customers. Additionally, MKG Bank provides insurance services in partnership with established insurance companies, enhancing its value proposition to customers. The website reflects a medium-sized, well-established business with a strong market position in automotive finance, supported by its parent company MCE Bank GmbH. Technically, the website employs modern frameworks such as Bootstrap and jQuery, integrates Matomo analytics with privacy-conscious settings, and uses a comprehensive cookie consent management system. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though it lacks explicit security policy and incident response information.

D

Deutscher Skiverband

dsv-jahrbuch.de

49

The DSV Jahrbuch website is an official digital platform of the Deutscher Skiverband (German Ski Association) that provides comprehensive information about skiing disciplines, athletes, and staff. It serves as a yearbook and directory for members and enthusiasts, positioning itself as a trusted source within the German skiing sports community. The site targets athletes, coaches, and fans interested in detailed sports data and organizational information. Technically, the website employs a moderate technology stack including jQuery, Matomo analytics for privacy-conscious tracking, PureCSS for styling, and service workers for progressive web app capabilities. The site is mobile optimized and offers a good user experience with clear navigation and search functionality. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the site uses HTTPS and registers a service worker, indicating a baseline of modern security practices. However, it lacks important security headers and does not display a cookie consent mechanism, which are important for GDPR compliance and enhanced security posture. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security hardening. Strategic improvements in security headers, cookie consent, and incident response transparency would strengthen its risk profile and user trust.

M

MiCROTEC

microtec.eu

67

MiCROTEC is a Finnish technology company specializing in wood scanning and optimization solutions for the sawmill and wood processing industries. The company positions itself as a global technology partner with a history dating back to 1980, offering a range of products and services including strength grading, production area solutions, and a digital platform called MiCROTEC Connect. The website is professionally designed, mobile-optimized, and uses modern JavaScript frameworks and privacy-conscious analytics tools. However, the absence of WHOIS data raises concerns about domain registration legitimacy. Additionally, the website lacks explicit privacy, cookie, and terms of service policies, as well as clear contact information, which impacts privacy compliance and business credibility scores.

D

Deutscher Skiverband

deutscherskiverband.de

57

The Deutscher Skiverband (DSV) is the official German skiing and winter sports federation, managing multiple disciplines and providing training, events, and partnerships. The website serves a broad audience including athletes, trainers, clubs, fans, and media, positioning itself as the central authority for winter sports in Germany. The site is built on the Liferay DXP platform, leveraging modern web technologies such as jQuery, Swiper.js, and Matomo for analytics, indicating a mature digital infrastructure. The design is professional, mobile-optimized, and content-rich, supporting a positive user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though improvements can be made in cookie consent and published security policies. Overall, the site is trustworthy and well-maintained, reflecting the organization's stature and commitment to compliance and user engagement.

D

Digitale Allianz Typ 2

diabetes-stimme.de

61

The website 'Deine Diabetes-Stimme' represents the Digitale Allianz Typ 2, a coalition of diabetes organizations and medical societies in Germany focused on raising awareness, improving care, and advocating for people with diabetes. The site serves as an informational and community platform with campaigns like #SagEsLaut to increase visibility for people with Type 2 diabetes. Technically, the site is built on Drupal 10, uses Matomo for privacy-conscious analytics, and implements Klaro for cookie consent management, reflecting a modern and privacy-aware infrastructure. Security posture is solid with HTTPS and consent mechanisms, though some HTTP security headers and explicit security policies could enhance protection. Overall, the site is professional, trustworthy, and compliant with GDPR, targeting a general audience interested in healthcare advocacy.

W

werk21 GmbH

werk21system.de

58

werk21 GmbH is a specialized technology company based in Berlin, Germany, focusing on delivering digital sovereignty through open source solutions and secure IT infrastructure. Their offerings include Drupal CMS, BigBlueButton videoconferencing, Nextcloud, AI/GenAI services, and dedicated AI servers, targeting government, political organizations, NGOs, and associations. The company positions itself as a niche provider emphasizing data protection, accessibility, and digital sovereignty. Technically, the website is built on Drupal 10 with modern libraries such as Font Awesome and Matomo analytics, complemented by a GDPR-compliant cookie consent manager (Klaro). The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security-wise, the site enforces HTTPS, uses CAPTCHA on forms, and disables cookies in analytics to protect privacy. However, explicit security headers and incident response contacts are not published, representing areas for improvement. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

L

La Française Systematic Asset Management GmbH

la-francaise-systematic-am.com

65

La Française Systematic Asset Management GmbH operates as a specialized asset management firm under the La Française Group umbrella, offering a range of investment funds including equity, bond, and multi-asset allocation products. The company targets institutional and retail investors seeking systematic and ESG-aligned investment solutions. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive product information. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries, and integrates Matomo analytics and Google reCAPTCHA for security and user tracking. Security posture is solid with HTTPS enforcement and basic security headers, though additional headers and a formal security policy would enhance trust. Privacy compliance is well addressed with visible cookie consent and a detailed privacy policy. However, the absence of WHOIS registration data for the domain introduces some uncertainty regarding domain legitimacy, though the website content and branding strongly indicate a legitimate financial services entity. Overall, the site scores well in content quality, technical implementation, and security, with room for improvement in transparency and domain registration clarity.

R

Raaberbahn AG

raaberbahn.at

61

Raaberbahn AG is a regional private railway company operating in Austria's Burgenland region with cross-border services. It provides passenger transportation, ticketing, customer service, and network access services. The company is a subsidiary or closely affiliated with GYSEV Zrt., a larger railway operator. The website is professionally designed using TYPO3 CMS and modern web technologies, offering comprehensive information and services to passengers, partners, and job seekers. Privacy and cookie policies are well implemented with user consent mechanisms. Security posture is good with HTTPS and secure forms, though some security headers could be improved. WHOIS data is not publicly available, which slightly reduces transparency but does not detract from the overall legitimacy given the official contact details and business context. Overall, the site is trustworthy, well-maintained, and serves its audience effectively.

Heinrich-Heine-Universität Düsseldorf (HHU) is a prominent public university in North Rhine-Westphalia, Germany, founded in 1965. The website serves as a comprehensive portal for students, faculty, staff, and the public, offering detailed information about academic programs, research centers, university governance, and services. The site targets a broad audience including prospective and current students, researchers, and administrative personnel. HHU positions itself as a key educational and research institution with a strong regional and national presence. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as Bootstrap for responsive design, jQuery for interactivity, and FontAwesome for icons. The site is mobile-optimized and accessible, with good SEO practices and a moderate performance profile. Analytics are handled via Matomo, indicating a privacy-conscious approach to user tracking. From a security perspective, the site enforces HTTPS and shows evidence of organizational security roles such as an Information Security Officer. However, explicit security headers are not detected, and there is no public vulnerability disclosure or security.txt file. Privacy policies are comprehensive and GDPR compliant, though a cookie consent mechanism is not clearly visible. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The domain WHOIS data aligns well with the university's identity and history, supporting the legitimacy of the site. No suspicious patterns or privacy protections obscure ownership details. The site is trustworthy, professionally maintained, and free from adult or questionable content, making it safe for general audiences.

U

Universitätsklinikum Düsseldorf

uniklinik-duesseldorf.de

59

Universitätsklinikum Düsseldorf is a major university hospital in Germany providing healthcare, medical research, and education services. The website is professionally designed using TYPO3 CMS and includes modern features such as cookie consent management via Cookiebot and analytics tracking with Matomo. The site targets patients, medical professionals, researchers, and students, reflecting its academic and healthcare mission. Technical infrastructure is solid with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage and cookie consent, but lacks visible security headers and published security policies. Privacy compliance is partially met with cookie consent but no explicit privacy policy found in the provided content. Overall, the website is trustworthy and professional, though improvements in security transparency and contact information visibility are recommended.

Heinrich-Heine-Universität Düsseldorf (HHU) is a well-established public university in Germany, founded in 1965, offering a broad range of educational and research services across multiple faculties. The website serves as a comprehensive portal for students, staff, and the public, providing detailed organizational information, academic resources, and campus services. The university maintains a strong digital presence with official social media channels and a modern, well-structured website built on TYPO3 CMS. Technically, the site uses contemporary web technologies including Bootstrap, jQuery, and FontAwesome, and integrates Matomo for analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though improvements are recommended in security headers and cookie consent compliance. Overall, the site is professional, trustworthy, and well-aligned with the university's public institution status.

D

diabetesDE - Deutsche Diabetes-Hilfe

diabetesde.org

67

diabetesDE - Deutsche Diabetes-Hilfe is a prominent German non-profit organization dedicated to providing expert-reviewed information, support, and advocacy related to diabetes mellitus. The website serves as a comprehensive resource for people with diabetes, their families, healthcare professionals, and the general public. It offers extensive educational content, risk assessments, therapy guidance, and community support services. The organization holds a strong market position in Germany's healthcare sector as a trusted source for diabetes-related knowledge and political representation. Technically, the website is built on Drupal 10, leveraging modern web technologies and privacy-conscious analytics tools such as Matomo and eTracker. It employs a consent management platform (Klaro) to comply with GDPR requirements, demonstrating a mature digital infrastructure. The site is mobile-optimized, accessible, and well-structured, providing an excellent user experience. From a security perspective, the site enforces HTTPS, uses appropriate security headers, and respects user privacy by disabling cookies in analytics and providing clear cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or vulnerability disclosure page suggests room for improvement in transparency and incident response readiness. Overall, diabetesDE exhibits a high level of professionalism, trustworthiness, and compliance with privacy regulations. The lack of WHOIS data due to a malformed response limits domain registration insights, but the website content and external partnerships strongly indicate legitimacy and a well-established presence. Strategic recommendations include publishing explicit security policies, enhancing incident response communication, and maintaining regular security audits to sustain trust and compliance.

U

UPDATE Hämatologie-Onkologie

onko-update.de

56

UPDATE Hämatologie-Onkologie operates a professional event website focused on hematology and oncology congresses scheduled for 2025 in multiple German cities. The site targets medical professionals seeking the latest international research and education in these fields. The business model centers on organizing and facilitating specialized medical congresses with both physical and virtual participation options. The website demonstrates a mature digital presence using WordPress with Elementor and integrates privacy-conscious analytics via Matomo. Cookie consent and GDPR compliance are well implemented, reflecting a strong commitment to privacy and regulatory adherence. Contact information is clearly presented, enhancing trust and accessibility. Security posture is good with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy within its healthcare niche.

G

Gandayo UG (haftungsbeschränkt)

gandayo.de

59

Gandayo UG (haftungsbeschränkt) is a German-based full-service marketing agency specializing in digital marketing, design, and media production. Established in 2010, the company positions itself as a creative and proactive partner for businesses seeking comprehensive marketing solutions. Their market presence is supported by numerous case studies and a strong client rating of 4.9 from over 650 reviews, indicating high customer satisfaction. The agency offers a broad range of services including strategy consulting, online marketing, social media, print, audiovisual media, and web/shop development. Technically, the website is built on TYPO3 CMS, hosted on kasserver.com, and employs modern web technologies with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence.

The website 'Mit Kind und Kegel' is a regional government-operated family portal for the Main-Kinzig-Kreis area in Germany. It provides comprehensive information and resources related to family life, childcare, education, health, and local government services. The portal targets families and citizens in the region, aiming to support them with practical advice and contact points. The site has a stable user base and is positioned as a trusted public service platform. Technically, the site uses a traditional HTML structure with CSS and JavaScript, integrating Matomo analytics hosted on a local domain and Usercentrics for cookie consent management. The technical infrastructure appears basic but functional, with moderate performance and basic mobile optimization. There is no evidence of a modern CMS or advanced frameworks. From a security perspective, the site lacks visible security headers and explicit HTTPS confirmation in the provided data, which suggests room for improvement. However, it employs cookie consent mechanisms and does not expose sensitive data or forms. No vulnerability disclosure or incident response policies are published, indicating a potential gap in security transparency. Overall, the website is trustworthy and safe, with content suitable for general audiences. The main risks relate to technical security hardening and enhanced privacy disclosures. Strategic improvements in these areas would strengthen the portal's security posture and compliance.

H

Hessisches Landesamt für Naturschutz, Umwelt und Geologie

hlnug.de

58

The Hessisches Landesamt für Naturschutz, Umwelt und Geologie (HLNUG) is a government agency focused on environmental protection, nature conservation, and geology in the German state of Hessen. The website serves as an information hub offering environmental data, educational programs, publications, and tools to support citizens, municipalities, and professionals. It holds a strong market position as an authoritative source for environmental matters in Hessen. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Bootstrap for responsive design and user experience. It integrates Matomo analytics configured with privacy-respecting settings and provides a consent mechanism for social media data sharing. The site is hosted likely on government infrastructure, indicated by the domain's nameservers. From a security perspective, the site enforces HTTPS and employs privacy-conscious analytics and social media consent modals. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly implemented, and no incident response or vulnerability disclosure information is published. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR. It is well-structured, accessible, and serves its public service mission effectively. Strategic improvements in security headers and transparency around security policies could further enhance its security posture.

F

fit GmbH

mum-deo.de

49

fit GmbH operates the MUM brand, specializing in vegan deodorant products marketed primarily in Germany and several international markets. The company emphasizes sustainability with alcohol- and perfume-free deodorants packaged in glass bottles, targeting active individuals seeking effective personal care solutions. The website reflects a well-established brand with a history dating back to 1888, positioning itself as a niche player in the retail personal care sector. The business model combines e-commerce with physical retail availability, supported by a store locator feature and multilingual country-specific domains. Technically, the website uses a modern e-commerce CMS platform (likely Shopware), integrates Matomo analytics with cookie consent mechanisms, and employs responsive design for mobile optimization. While the site performs moderately well, there is room for improvement in SEO and accessibility. Security posture is solid with HTTPS enforced and privacy-aware tracking, but lacks explicit security headers and published security policies. The absence of a terms of service page and incident response contacts suggests areas for legal and security maturity enhancement. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with clear contact information and consistent branding. The security and privacy practices are adequate but could be strengthened by adding formal policies and technical security headers. No critical vulnerabilities or suspicious indicators were found, and the domain registration aligns with the business claims. Strategic improvements in security transparency and legal completeness would further enhance trust and compliance.

G

GARD

gard.de

54

GARD is a German retail brand specializing in natural haircare and styling products, emphasizing formulations free from silicones, microplastics, and parabens. The company targets general consumers seeking uncomplicated, natural haircare solutions, leveraging ingredients like bamboo extract to promote healthy hair. The website serves as a brand presence and gateway to an online shop hosted on a partner domain. Technically, the site is built on TYPO3 CMS with a modern JavaScript stack including jQuery, Modernizr, and Slick Carousel, and integrates Matomo for analytics. The site is mobile-optimized with good SEO and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response information are absent. Privacy compliance is strong with GDPR-aligned policies and cookie management. Overall, the site is professional, trustworthy, and safe for general audiences.

Q

Quadoro Investment GmbH

sustainableenergy.de

53

Quadoro Investment GmbH operates the QEEE fund, an open infrastructure fund focused on renewable energy projects across Europe, targeting private investors interested in sustainable and impact investing. The website clearly communicates the fund's ESG compliance, investment goals, and partnership with EB-SIM, positioning itself as a specialist in the renewable energy investment sector. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics with a GDPR-compliant cookie consent mechanism, and is well-structured with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no exposed sensitive data, though formal security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting a positive business credibility and user experience.

V

Vereinigung der Österreichischen Industrie (Industriellenvereinigung)

iv.at

56

The Vereinigung der Österreichischen Industrie (Industriellenvereinigung) is Austria's largest voluntary and politically independent industrial interest association representing industry and industry-related service providers across the entire value chain. The website serves as a comprehensive platform for industry advocacy, policy positions, research publications, and member services, targeting Austrian industrial companies and policymakers. The organization holds a strong market position as a key industry voice in Austria. Technically, the website is built on a modern stack including JavaScript, jQuery, Bootstrap, and Owl Carousel, managed via Gentics CMS. It employs Matomo Analytics with privacy-respecting configurations and features a cookie consent mechanism. The site is mobile-optimized with good SEO and accessibility basics, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and respects user privacy with cookie consent and Do Not Track settings. However, it lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerabilities or suspicious elements were detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. It demonstrates good privacy compliance and technical maturity, with room for improvement in security transparency and contact information availability.

H

Helmholtz Information & Data Science Academy (HIDA)

helmholtz-hida.de

63

The Helmholtz Information & Data Science Academy (HIDA) is a specialized educational platform within the Helmholtz Association, focusing on data science training and research education for doctoral candidates and postdoctoral researchers. The website serves as a central hub for training offerings, graduate schools, mobility programs, job listings, and events related to data science within the Helmholtz research community. The organization positions itself as a key player in preparing the next generation of data scientists for diverse scientific domains including energy, environment, health, and transportation. Technically, the website is built on TYPO3 CMS, hosted by hosting.de, and employs modern web technologies including responsive design, video content, and Matomo analytics for user tracking. The site demonstrates good digital maturity with comprehensive privacy and cookie consent mechanisms, multilingual support, and integration with social media platforms such as LinkedIn and Twitter. From a security perspective, the site enforces HTTPS and uses cookie consent to comply with GDPR. However, it lacks explicit published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's academic and institutional nature, indicating a legitimate and consistent domain registration. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for HIDA, supporting its mission as an educational and research institution within the Helmholtz Association.