BFSG Compliance in Germany: Why Accessibility Must Go Beyond the Homepage
A11ySolutions
For many organizations, the first reaction is to review the visible parts of the website: the homepage, navigation, headings, images, color contrast and accessibility statement. Those areas matter, but they are only the surface.
The real accessibility risk often appears deeper in the journey: when a customer completes checkout, a guest books a room, a passenger buys a ticket, a user signs in, a patient accesses a portal, a student submits a form, or someone completes a payment or authentication step.
The better question is no longer:
Is our website accessible?
It is:
Can every user complete the journey without barriers?
That distinction matters for companies, institutions and service providers operating in or serving the German market. Accessibility is not only about whether a page passes a scan. It is about whether people can access information, make decisions, complete transactions and use digital services independently.
Why BFSG Readiness Matters
The BFSG is focused on products and services within its legal scope. For digital teams, that means accessibility cannot be treated only as a content or design issue. It affects functional parts of the experience, including identification, authentication, security, payment, account access, forms and service completion. German legal commentary also highlights that covered products and services must be findable, accessible and usable for people with disabilities in a generally usual manner, without particular difficulty and, in principle, without external help.
That has practical implications across sectors.
An e-commerce company may need to test whether users can complete checkout. A hotel group may need to verify whether guests can book a room. A bank may need to review authentication and payment flows. A transport provider may need to assess ticketing, schedules and account areas. A healthcare, education or public-facing institution may need to ensure that users can access portals, forms, documents and service requests, while also considering other applicable accessibility rules beyond BFSG.
The common thread is the journey.
If users cannot search, select, authenticate, pay, book, submit, confirm, modify or contact support, the digital service still creates barriers.
Who Should Pay Attention?
BFSG readiness is especially relevant for organizations offering covered consumer-facing products or services in Germany. It is also useful as a practical accessibility framework for institutions and service providers that manage essential digital journeys.
| Organization type | Critical journeys to review |
|---|---|
| E-commerce and retail | Product search, filters, checkout, payment, account creation, returns and support. |
| Travel, hospitality and mobility | Booking flows, date selection, ticketing, guest or passenger details, cancellations and itinerary management. |
| Banking, insurance and fintech | Login, authentication, payments, account dashboards, document access and support. |
| Healthcare and education | Portals, forms, appointment booking, document downloads, account access and service requests. |
| Public-facing institutions and service providers | Applications, identity verification, forms, information access and digital service portals. |
| SaaS and digital platforms | Onboarding, account management, billing, dashboards, settings and in-product workflows. |
This is why accessibility should not sit only with legal or compliance teams. It also affects product, design, engineering, QA, procurement, content, customer support and leadership.
BFSG, EAA, EN 301 549 and WCAG: The Practical Connection
The BFSG is Germany’s national implementation of the European Accessibility Act. In practice, digital accessibility work in Europe is commonly aligned with EN 301 549, the European standard for ICT accessibility. For web content, EN 301 549 v3.2.1 builds heavily on WCAG 2.1.
This point matters because many teams now reference WCAG 2.2 as a stronger internal benchmark. That can be useful, especially for modern product quality and future-readiness. However, formal compliance mapping should be handled carefully against the applicable BFSG, BFSGV, EN 301 549 and WCAG requirements. In other words, WCAG 2.2 can support stronger accessibility practice, but it should not be presented as the direct legal baseline for BFSG unless specifically mapped by counsel or the applicable standard.
For product and engineering teams, the practical questions are straightforward: Can the interface be used with a keyboard? Are errors announced to screen reader users? Is focus visible and logical? Can users zoom or reflow content without losing functionality? Do custom components expose the right roles, states and names? Can someone complete authentication, payment or booking without assistance?
Those questions turn accessibility from a policy requirement into a product quality standard.
The Real Risk Is in the Journey
A homepage can look accessible while the checkout remains unusable. A booking page can appear clean while the date picker cannot be operated with a keyboard. A login page can pass basic checks while two-factor authentication blocks screen reader users. A form can have labels and still fail because errors are not announced clearly.
This is especially common in modern digital services, where critical flows depend on dynamic components, overlays, modals, filters, calendars, payment fields, authentication providers and third-party tools.
Users do not experience a service as isolated pages. They experience it as a task.
They want to buy a product, reserve a room, book a ticket, access an account, submit a request, download a document, complete a payment or get support. If one step fails, the entire journey fails.
That is why BFSG readiness should include journey-based accessibility testing, not only page-level scans.
Critical Digital Journeys to Test
| Digital journey | Why it matters | Common accessibility risks |
|---|---|---|
| Checkout and payment | These flows directly affect transactions, service completion and trust. | Unclear payment instructions, inaccessible errors, poor focus management, unlabeled fields, timeout issues or confirmation steps that are not announced. |
| Booking flows | Essential for travel, hospitality, mobility, events, healthcare appointments and reservation-based services. | Date pickers, availability results, guest selectors, seat or room options and confirmation steps that do not work well with keyboard or screen readers. |
| Login and authentication | Often required before users can access accounts, services, documents or support. | Inaccessible CAPTCHA, two-factor authentication, password reset errors, timeout warnings or visual-only instructions. |
| Forms and error handling | Central to applications, support, profile updates, requests and service workflows. | Missing programmatic labels, vague error messages, visual-only validation or loss of entered data after errors. |
| Mobile and responsive experiences | Many users access services primarily from mobile devices. | Poor screen reader behavior, small touch targets, broken reflow, inaccessible mobile menus or content that becomes unusable with zoom. |
| Third-party components | External tools often sit inside critical journeys. | Inaccessible payment providers, booking engines, cookie banners, CAPTCHA, chat widgets, maps, embedded forms or authentication tools. |
The goal is not to test everything with the same level of depth. The goal is to identify where an accessibility barrier would prevent a user from completing an essential task.
Why Automated Scans Are Not Enough
Automated accessibility tools are useful. They help teams detect issues such as missing alt attributes, some contrast failures, missing form labels, invalid ARIA and certain structural problems.
But automated tools alone cannot prove that a real user can complete a full journey independently.
A scan may detect whether a field has a label, but it may not determine whether a screen reader user understands a payment error. It may flag invalid ARIA, but it may not evaluate whether focus moves correctly after a modal opens. It may identify some form issues, but it may not tell you whether a user can recover from a failed booking without losing progress.
| Automated scans can help detect | Manual journey-based testing validates |
|---|---|
| Missing alt attributes or empty image alternatives. | Whether alternatives are meaningful in the context of the task. |
| Some color contrast failures. | Whether users can perceive and operate states, focus indicators, errors and responsive layouts. |
| Missing or invalid form labels. | Whether users understand instructions, errors and recovery steps with assistive technologies. |
| Invalid ARIA or semantic issues. | Whether custom components behave correctly with keyboard and screen readers. |
| Some button, link and heading issues. | Whether users can move through the journey in a logical order without getting blocked. |
| Certain page-level structural problems. | Whether users can complete checkout, booking, authentication, payment or service submission end to end. |
For BFSG readiness, automation is one input. Manual testing provides the evidence that critical journeys actually work.
A Practical BFSG Readiness Model
BFSG readiness should be treated as a structured process, not a one-time audit.
| Phase | Focus | Outcome |
|---|---|---|
| 1. Scope critical journeys | Identify the flows that matter most to users and to the organization. | A focused testing scope based on real user impact and operational risk. |
| 2. Test with assistive technology | Combine automated scans with keyboard, screen reader, zoom, responsive and mobile testing. | A realistic view of where users may be blocked. |
| 3. Prioritize by impact | Evaluate findings by user impact, service impact, compliance exposure and technical complexity. | A remediation backlog that helps teams fix what matters first. |
| 4. Create developer-ready fixes | Translate findings into clear tickets with evidence, expected behavior, standards mapping and acceptance criteria. | Faster remediation with less ambiguity. |
| 5. Integrate into release cycles | Add accessibility to design, development, QA, procurement, vendor management and documentation. | A sustainable process instead of a one-time compliance effort. |
This model helps organizations move from uncertainty to action. It also makes accessibility easier to manage across teams because it turns broad compliance expectations into practical workstreams.
Documentation Matters
Accessibility documentation is an essential part of governance.
Organizations should be able to show what was tested, which standards were used, what issues were found, what was fixed, what remains open and how accessibility will be monitored over time.
This matters for legal review, procurement, vendor management, executive reporting, internal governance and customer trust. It is also useful for institutions that need to demonstrate responsible digital service management across departments, systems or vendors.
Documentation does not replace accessibility. But it helps show that the organization is managing accessibility systematically.
Accessibility Is a Compliance, Service and Trust Issue
Accessibility is often framed as a legal obligation. That is understandable, especially in the context of the BFSG and the European Accessibility Act.
But the value is broader.
Accessible digital services are easier to use, more resilient, more compatible with assistive technologies and often better structured for usability, search, performance and maintainability. For businesses, this can support conversion, customer trust, retention, procurement readiness and brand reputation. For institutions, it supports equal access, service quality, operational efficiency and inclusion.
The strongest accessibility programs connect three goals: compliance, user experience and service performance.
Accessibility is not only about avoiding penalties.
It is about making sure people can actually use the service.
How A11y Solutions Can Help
A11y Solutions helps organizations move from accessibility uncertainty to practical progress.
Our team combines manual accessibility testing, assistive technology expertise, developer-ready remediation guidance and QA support across web, iOS and Android platforms.
For organizations operating in Germany or serving German users, A11y Solutions can support BFSG and EAA readiness assessments, WCAG and EN 301 549 accessibility audits, checkout and booking flow testing, login and authentication reviews, payment and form testing, screen reader and keyboard testing, mobile accessibility testing, third-party component reviews, prioritized remediation roadmaps, retesting, regression support and accessibility documentation.
The goal is not only to identify issues. The goal is to help teams understand what matters, fix barriers efficiently and build accessibility into the way digital products and services are delivered.
BFSG compliance should not stop at the homepage.
If users cannot search, select, authenticate, pay, book, submit, manage their account or contact support, the experience is still not accessible.
Ready to Assess Your Critical Digital Journeys?
A11y Solutions can help you assess checkout, booking, payment, authentication, mobile and service-critical journeys for accessibility risk.
Talk to our team about a practical accessibility assessment focused on the flows that matter most.