Other security reports

S

Studio HanLi

hanli.eu

54

Studio HanLi is a small creative business specializing in graphic design and typography, including typeface creation. The website presents a professional and visually appealing design built on WordPress with modern web technologies such as jQuery and Swiper.js. The technical infrastructure is moderate in performance and well optimized for mobile devices. However, the site lacks critical privacy and cookie policies, contact information, and visible security policies, which impacts its compliance and trustworthiness. Security posture is average due to missing security headers and unclear SSL configuration. Overall, the business appears legitimate and niche-focused but would benefit from enhanced privacy compliance and security practices.

Affichage Public is a small Swiss cultural association founded in 2015 dedicated to promoting Swiss graphic design as a cultural heritage through exhibitions and events primarily in the French-speaking region of Switzerland. The website serves as an informational platform highlighting upcoming exhibitions, partner organizations, and the association's mission. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with jQuery, without advanced CMS or analytics integrations. Mobile optimization and accessibility are basic but functional. Security posture is minimal with no visible security headers or policies, and no HTTPS verification data available. Privacy and cookie policies are absent, which impacts compliance and user trust. The WHOIS data is consistent with the association's profile, showing no privacy protection and appropriate domain age. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

A

Arno Mathies

arnomathies.com

43

Arno Mathies operates a website showcasing artistic and design projects primarily focused on furniture, tableware, and accessories crafted from diverse materials such as aluminum, porcelain, cardboard, and HDPE. The site functions as a portfolio and an online shop targeting art and design enthusiasts interested in unique, handcrafted pieces. The business model appears to be direct sales combined with portfolio presentation, positioning itself in a niche artistic design market. The domain has been registered since 2011, indicating a mature presence in its field. Technically, the website uses Bootstrap 4 and common JavaScript libraries served via CDN, indicating a standard modern front-end stack. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. Hosting is managed through kreativmedia.ch based on DNS information. No CMS or advanced platform detected, suggesting a custom or static site. From a security perspective, the site lacks critical security headers and does not enable DNSSEC, which are areas for improvement. There is no visible privacy or cookie policy, and no forms or data collection mechanisms are present, reducing exposure but also indicating limited user interaction. The domain registration is consistent and legitimate, with no suspicious patterns detected. Overall, the website is functional and safe but could benefit from enhanced security practices, privacy compliance, and richer business information to improve trust and professionalism.

The website younesklouche.com serves as a personal portfolio for photographer Younès Klouche, showcasing photographic projects under categories such as 'Personnal' and 'Comissions'. The site targets a general audience interested in photography and artistic commissions. The business model is primarily personal branding and portfolio display, with no direct e-commerce or transactional features evident. The domain is registered since 2017 with OVH sas, a reputable hosting and registrar provider, indicating a stable and legitimate online presence. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Swiper.js for UI elements. Google Analytics is integrated for visitor tracking, but no cookie consent mechanism or privacy policies are present, which is a compliance gap. The site is hosted on OVH infrastructure with basic SSL configuration and no DNSSEC enabled. Performance and mobile optimization are basic but functional. From a security perspective, the site uses HTTPS but lacks security headers such as Content-Security-Policy or X-Frame-Options, which could improve protection against common web attacks. No vulnerability disclosures or incident response contacts are provided. The absence of privacy and cookie policies and lack of GDPR compliance indicators reduce trust and compliance posture. No suspicious or malicious content was detected. Overall, the website is a straightforward personal portfolio with moderate technical implementation and basic security posture. Strategic improvements include adding privacy and cookie policies, implementing security headers, enabling DNSSEC, and enhancing GDPR compliance. These steps will improve trustworthiness, security, and legal compliance, benefiting both the site owner and visitors.

O

Omnitype

omnitype.ch

52

Omnitype is a small Swiss online type foundry based in Lausanne, specializing in the design, production, and distribution of typefaces. The company is run by Leonardo Azzolini and Simon Mager and offers trial versions and custom font projects. The website presents a professional and consistent brand image targeting designers and clients interested in typography. Technically, the site uses standard HTML5 and CSS3 with moderate performance and good mobile optimization but lacks advanced frameworks or CMS. Security posture is basic with no detected security headers or policies, and no HTTPS status was explicitly provided. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is safe with no adult or questionable content and minimal user tracking.

M

Marc Morro

marcmorro.com

61

Marc Morro is a professional furniture designer based in Barcelona, specializing in creative and commissioned/custom furniture design. The website serves as a portfolio showcasing various furniture projects and collections, targeting individuals and galleries interested in unique designer furniture. The site is built using modern web technologies such as SvelteKit, ensuring a fast, mobile-optimized, and accessible user experience. However, the absence of WHOIS data raises concerns about the domain's registration legitimacy, which impacts overall trust. Security posture is moderate with HTTPS implied but lacking security headers and formal privacy or cookie policies. Contact information is clearly provided, enhancing business credibility.

J

Jeremy Tankard Typography

typography.net

65

Jeremy Tankard Typography is an independent digital type foundry specializing in unique font designs. Established in 1998, the company offers a curated selection of font families targeting design professionals and creative agencies. The website showcases their font collections with rich visual samples and provides navigation to explore, license, and support their products. Technically, the site uses a custom-built platform leveraging jQuery and modern font loading techniques, hosted behind Cloudflare DNS. Security posture is solid with HTTPS enabled and domain management best practices, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is addressed with a cookie consent banner and a basic cookie policy, but lacks a detailed privacy policy or terms of service. Overall, the site is professional, trustworthy, and safe for general audiences.

V

Visualio s.r.o.

visualio.space

46

Visualio s.r.o. is a Czech-based creative studio specializing in brand design, web development, and advertising campaigns. Established in 2015, the company serves businesses seeking to build successful brands, demonstrated by a strong portfolio and client testimonials from reputable companies. The website is professionally designed, multilingual, and optimized for modern devices, reflecting a mature digital presence. Technically, the site employs modern JavaScript frameworks like Alpine.js, integrates Google Analytics, Tag Manager, reCAPTCHA, and Smartlook for analytics and security. Security posture is solid with HTTPS and bot protection, though lacks some advanced security headers and published policies. Privacy compliance is a notable gap, with no visible privacy or cookie policies or consent mechanisms. WHOIS data confirms domain legitimacy and consistency with business claims. Overall, Visualio presents a trustworthy and professional digital footprint with room for improvement in privacy and security transparency.

F

FOCUS

focus-agency.cz

48

FOCUS is a well-established marketing and social research agency operating primarily in the Czech Republic and Slovakia. The company offers a broad range of research services including market research, public opinion polling, internal organizational studies, media research, and sector-specific analyses. With over 20 years of experience and international partnerships such as with Gallup, FOCUS positions itself as a trusted provider of high-quality, customized research solutions. The website reflects a professional and business-focused approach, targeting clients from various sectors including government, media, and private enterprises. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and the Foundation CSS framework. It uses HTTPS for secure communications and integrates New Relic for performance monitoring. The site is moderately optimized for mobile devices and provides a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. The absence of WHOIS data for the domain reduces transparency and trustworthiness, although the website content and business information appear legitimate. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, FOCUS presents a credible and professional online presence with solid business information and technical infrastructure. Enhancements in privacy compliance, security headers, and domain transparency would further strengthen its security posture and trustworthiness.

The website lltrck.com is currently inaccessible, returning a 403 Forbidden error page with no visible content or metadata. This prevents any meaningful analysis of the business, services, or technical infrastructure. The domain is registered with GoDaddy.com, LLC since 2020 and uses Amazon AWS DNS servers, indicating a potentially legitimate hosting setup. However, the lack of accessible content and absence of security or privacy policies significantly limits trust and credibility assessment. No contact information or business details are available on the site, and no security headers or SSL configuration details were provided. Overall, the site appears to be either restricted or improperly configured, resulting in a very low AI score and high risk for users or partners.

W

Wine Industry Network

wineindustryexpo.com

64

Wine Industry Network operates the Wine Industry Expo (WIN Expo), a major annual trade show and conference focused on the North Coast wine industry regions of California. Established in 2012, the event attracts over 3,000 wine professionals and nearly 300 exhibitors, positioning itself as the second largest wine industry show in North America. The business model centers on event organization, industry networking, education, and providing marketing and sponsorship opportunities to wine industry suppliers and professionals. The website reflects a mature digital presence with comprehensive event information, registration, and educational content targeting industry stakeholders. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI plugins, hosted behind Cloudflare DNS and CDN services. The site is mobile optimized with good SEO practices and uses tracking tools such as Google Tag Manager and Facebook Pixel for analytics and marketing. Performance is moderate with good design quality and user experience. From a security perspective, the site enforces HTTPS and domain registration includes multiple client-side prohibitions enhancing domain security. However, DNSSEC is not enabled, and there is no visible cookie consent mechanism or published security/incident response policies, indicating gaps in privacy compliance and security transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in privacy compliance, DNS security, and security policy publication would enhance its security posture and regulatory adherence.

W

Wine Industry Network

wineindustrydata.com

39

Wine Industry Network operates the WIN Data platform, a specialized database service providing comprehensive and up-to-date contact and business data for the North American wine industry. The platform targets wine industry professionals seeking detailed winery and vineyard information to support marketing and sales efforts. The business model includes a free basic search tier and a paid professional subscription offering advanced search, export, and integration capabilities. The website demonstrates a professional and consistent brand presence with clear calls to action and accessible contact information. Technically, the website employs a modern front-end stack including jQuery, Bootstrap, and FontAwesome, with responsive design optimized for mobile devices. While performance is moderate and SEO basics are covered, there is room for improvement in accessibility and security headers. The site uses HTTPS but lacks visible advanced security headers and cookie consent mechanisms, indicating partial privacy compliance. From a security perspective, the site shows strengths in HTTPS usage and absence of visible vulnerabilities or exposed sensitive data. However, the missing WHOIS registration data for the domain is a notable concern, potentially impacting trust and legitimacy perceptions. No incident response or security policy information is published, and cookie consent is absent, which may expose the business to compliance risks. Overall, the website is functional, professional, and serves its niche well but should address WHOIS transparency, enhance security headers, and implement privacy compliance features to improve trust and reduce risk.

RRQ88 operates as an online gambling affiliate site focused on promoting slot games and related services primarily targeting the Indonesian market. The website claims to be a leading and trusted source for slot gaming links and live RTP updates, positioning itself as a top player in the local gambling affiliate niche. The business model revolves around providing access and information to slot game players, leveraging affiliate marketing and VIP access offerings. The site content and branding are basic but moderately consistent, with a strong emphasis on gambling-related keywords and user reviews indicating high engagement.

The website matteovenet.org is a personal portfolio site for an individual named Matteo Venet, primarily showcasing visual projects or artworks. The site is built on WordPress and uses standard web technologies such as JavaScript, CSS, and HTML5. The technical infrastructure is basic but functional, with HTTPS enabled and a moderate performance profile. However, the site lacks key compliance and security features such as privacy and cookie policies, security headers, and contact information. No analytics or tracking tools are present, indicating minimal user data collection. The domain registration is consistent with the website content and shows no suspicious patterns, supporting legitimacy. Overall, the site is suitable for general audiences with safe content but would benefit from improved security and compliance measures.

SIGMASIX is a Geneva-based experimental design studio specializing in scenography, museography, and interactive installations. Founded in 2004 by Swiss artists, it serves a niche market including luxury brands and cultural institutions, offering a blend of artistic and technological services. The website showcases a professional portfolio with detailed project archives and active social media engagement. Technically, the site is built on WordPress with common plugins and uses Piwik/Matomo for analytics, indicating moderate digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and privacy compliance mechanisms such as privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance features.

E

Extraset

extraset.ch

49

Extraset is an independent Swiss type foundry based in Geneva, specializing in publishing professional typefaces designed by graphic designers for graphic designers. The website reflects a focused business model targeting the graphic design community with a professional and consistent brand presence. Technically, the site is built on WordPress using common plugins such as Contact Form 7 and Cookie Law Info, with integration of Mailchimp for marketing and tracking. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and standard security headers present, though explicit security and incident response policies are not published. Privacy compliance is addressed with cookie consent and privacy policies, indicating awareness of GDPR requirements. Overall, the site is trustworthy and legitimate, with WHOIS data consistent with the business claims. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

The domain edgecompute.app currently serves no accessible or meaningful website content. The sole content is a minimal HTML page embedding an iframe pointing to a Fastly developer help page indicating an unknown edge compute domain. This suggests the domain is either inactive, a placeholder, or blocked. No business information, contact details, or policies are present, and the WHOIS data is privacy protected, further indicating a lack of public business presence. Technically, the site is hosted or proxied by Fastly but lacks any detectable technologies, scripts, or security headers. The absence of HTTPS details and security best practices marks a poor security posture. Overall, the site is not operational as a business or service platform at this time.

The website www.namepros.com is currently inaccessible due to a Cloudflare Turnstile human verification challenge page. This security mechanism blocks direct access to the site's content, preventing extraction of business, contact, or policy information. The WHOIS query for the domain returned no match, indicating either privacy protection, a subdomain usage, or a non-registered domain at the registry level. The site is protected and hosted behind Cloudflare, which provides security and performance services. Due to the lack of accessible content and WHOIS data, a comprehensive business and security posture assessment cannot be performed. The site appears to be a legitimate domain but requires removal of access restrictions for full analysis.

The website www.leejaemin.net is a professionally designed portfolio site for Jaemin Lee, showcasing a wide range of creative works including design projects, exhibitions, and writing. The site targets a general audience interested in art and design, primarily in South Korea, and is bilingual in Korean and English. The business model is focused on personal branding and promotion of creative services. Technically, the site is built on WordPress with Elementor and uses modern JavaScript libraries such as jQuery and egjs-jquery-transform. SEO is enhanced by the Yoast SEO plugin, and the site is served over HTTPS, ensuring secure connections. However, there is no evidence of privacy or cookie policies, which impacts compliance and user trust. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the absence of security headers is a gap. The WHOIS data is missing or inaccessible, which raises questions about domain registration legitimacy despite the active and professional website presence. Overall, the site is functional and professional but would benefit from improved privacy compliance and clearer domain registration transparency.

W

Wyss Sebastian

wyssseb.ch

45

Wyss Sebastian's website is a personal WordPress blog hosted on a standard WordPress platform using the Twenty Twenty-Five theme. The site currently contains minimal content, with no published blog posts or business-related information. The technical infrastructure is modern and secure, utilizing HTTPS and standard WordPress technologies, but lacks advanced SEO, accessibility, and security headers. There are no privacy or cookie policies, nor any contact or incident response information, which limits compliance and trustworthiness. Overall, the site is safe and suitable for general audiences but lacks professional business features and security maturity.

M

Megi Zumstein

megizumstein.ch

51

Megi Zumstein is a graphic designer based in Luzern, Switzerland, presenting a professional portfolio website showcasing various cultural and artistic projects. The website targets a general audience interested in graphic design and cultural collaborations, positioning itself as a niche individual professional service provider. The site features modern frontend technologies such as Alpine.js and SVG graphics, with a responsive design and good navigation clarity. However, it lacks comprehensive privacy and cookie policies, contact information, and security headers, which are important for compliance and trust. Technically, the website is built with modern web standards, uses HTTPS, and loads efficiently, but it could benefit from improved accessibility features and security best practices such as implementing security headers. No analytics or tracking scripts were detected, indicating minimal user tracking and good privacy from that perspective. From a security standpoint, the site has a good SSL configuration but lacks security headers and formal policies related to privacy and incident response. The domain uses privacy protection for WHOIS data, which is reasonable for a small business or individual professional. No suspicious patterns or vulnerabilities were identified in the content or technical setup. Overall, the website is professional and functional but would benefit from enhanced privacy compliance, security hardening, and clearer contact information to improve trust and regulatory adherence.

The website lychkovskiy.com serves as a professional portfolio for Mikhail Lychkovskiy, a contemporary designer and poster artist. The site showcases a comprehensive gallery of poster artworks, emphasizing typographic treatment and a blend of national graphic styles. The business operates primarily as an independent artist, targeting design enthusiasts and art collectors, with sales facilitated through external shop links. The domain is relatively new, registered in 2022, aligning with the artist's career timeline. Technically, the website is built on the Adobe Portfolio platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and Adobe Typekit fonts. Google Tag Manager is employed for analytics and tracking purposes. The site demonstrates good mobile optimization and user experience, with clear navigation and professional design quality. However, accessibility features are basic, and SEO optimization is moderate. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. However, DNSSEC is not enabled, and no security headers were detected, indicating room for improvement in security hardening. Privacy compliance is lacking, with no privacy or cookie policies found, and no GDPR compliance indicators present. Contact information is limited to a single email address, with no phone numbers or physical addresses provided. Overall, the website presents a trustworthy and professional portfolio for an independent artist but would benefit from enhanced privacy policies, security headers, and clearer compliance documentation to improve its security posture and regulatory adherence.

S

Studio Guillaume Ruiz

guillaumeruiz.com

56

Studio Guillaume Ruiz is a small artistic and graphic design studio based in France, operating since 2011. The website serves as a portfolio showcasing a multidisciplinary range of projects including posters, workshops, editions, visual identities, interfaces, and signage. The business targets a general audience interested in creative design services and artistic direction. Technically, the website is built on WordPress and uses common libraries such as jQuery, Masonry, and Plyr, hosted by OVH sas. The site demonstrates good design quality, mobile optimization, and SEO practices, though accessibility is basic. Security posture is moderate with HTTPS enabled and domain protections in place, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, and no contact or incident response information is provided, which impacts compliance and trust. Overall, the website is professional and functional but could improve in privacy and security transparency.

O

Office for Typography

officefortypography.ch

49

Office for Typography is a small, specialized design studio focusing on graphic design, type design, and font engineering with physical offices in Switzerland and Japan. The website presents a clean, minimalistic design that clearly communicates the company's core services and contact information. The business targets clients in need of professional typography and graphic design services, positioning itself as a niche player with an international footprint. Technically, the website is built with standard HTML5 and CSS3, without detectable CMS or advanced frameworks. The site is mobile-optimized and performs moderately well, though lacks advanced SEO and accessibility features. No analytics or tracking technologies are present, indicating a privacy-conscious approach or minimal digital marketing. From a security perspective, the site uses HTTPS (assumed from domain), but no security headers or policies are published. There are no forms or data collection points, reducing attack surface, but also no published privacy or cookie policies, which is a compliance gap. The WHOIS data is consistent with the business claims, supporting legitimacy. Overall, the website is professional and trustworthy but could improve in privacy compliance and security best practices to enhance user trust and regulatory adherence.

Elias Hanzer is a small independent creative studio and typeface designer with a portfolio showcasing various typeface projects and collaborations. The website serves as a professional portfolio and project showcase targeting design professionals and typography enthusiasts. The technical infrastructure is based on WordPress with a modern theme and uses Matomo for analytics, indicating a moderate level of digital maturity. Mobile optimization and user experience are good, though some SEO and accessibility features could be improved. Security posture is adequate with HTTPS enabled and domain transfer lock, but lacks DNSSEC and security headers. Privacy compliance is basic with a privacy policy linked externally but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained but could benefit from enhanced security and privacy features.

P

Paul Jochum

pauljochum.com

59

Paul Jochum's website serves as a professional portfolio showcasing his expertise in designing and developing visual identities for brands, institutions, and cultural projects. The site emphasizes a blend of graphic design, web design, and development to deliver cohesive branding systems with a focus on clarity and narrative. The business operates as a small-scale creative professional targeting niche clients in the cultural and institutional sectors. Technically, the website is built using the Framer platform, leveraging modern JavaScript and SVG technologies, with moderate performance and good mobile optimization. However, the site lacks advanced accessibility features and comprehensive SEO optimizations. Security posture is weak due to missing HTTPS verification, absence of security headers, and no visible privacy or cookie policies, which poses compliance and trust challenges. The WHOIS data is unavailable, raising concerns about domain registration legitimacy, although the website content appears professional and consistent. Overall, the site is functional and visually appealing but requires improvements in security, privacy compliance, and domain transparency to enhance trust and reduce risk.

L

linyouting

linyouting.com

51

The website linyouting.com serves as a personal portfolio for Youting Lin, a multidisciplinary designer specializing in graphic design and motion graphics. The site showcases various creative projects and visual works, targeting a general audience interested in design and multimedia art. The business model is primarily portfolio-based, aimed at personal branding and showcasing creative skills. The market position is niche, focusing on creative professionals and potential clients in the design industry. Technically, the site is built on the Cargo Collective platform, utilizing standard web technologies such as HTML5, CSS3, JavaScript, and jQuery. The site is hosted on Cargo's infrastructure with assets served from freight.cargo.site and static.cargo.site. The site is mobile optimized with good design quality and user experience, though some SEO and accessibility features are basic. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, DNSSEC is not enabled, and no security headers are detected in the HTML content, which are areas for improvement. There are no published privacy, cookie, or terms of service policies, nor any incident response or security contact information, indicating limited compliance and transparency. Overall, the site is a well-designed personal portfolio with moderate technical maturity and security posture. The lack of privacy and security policies, as well as contact information, reduces trust and compliance scores. Strategic improvements in these areas would enhance the site's professionalism and security stance.

L

Lamm & Kirch GbR

lamm-kirch.com

46

Lamm & Kirch GbR is a small, established graphic design studio founded in 2012, specializing in cultural sector projects including book design, visual identities, and exhibitions. Operating from Leipzig and Berlin, the studio collaborates with a network of professionals to deliver comprehensive design services. Their website reflects a professional and well-curated portfolio, demonstrating their market position as a reputable design studio with international recognition and multiple awards. Technically, the website uses standard web technologies with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protections, though improvements such as DNSSEC and enhanced security headers are recommended. Privacy compliance is strong with a detailed GDPR-compliant privacy policy, though cookie consent mechanisms are absent. Overall, the website is trustworthy, professional, and safe for general audiences.

Studio Terhedebrügge Terhedebrügge is a small Berlin-based design studio specializing in graphic and industrial design services. The website serves as a professional portfolio showcasing their projects and design expertise. The business targets a general audience interested in design and creative services within the Berlin region. The market position is niche, focusing on high-quality design work rather than mass-market offerings. Technically, the website is built on WordPress CMS and uses common frontend libraries such as jQuery and Swiper.js. The site demonstrates good mobile optimization and responsive design, with moderate performance characteristics. However, there is room for improvement in accessibility and SEO optimization. Hosting is provided by rzone.de, a German hosting provider consistent with the domain and business location. From a security perspective, the site uses HTTPS with good SSL configuration but lacks important security headers and formal security policies. There are no visible privacy or cookie policies, and no incident response or vulnerability disclosure information is provided. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the security posture is moderate but could be enhanced by implementing standard security headers and compliance documentation. The overall risk assessment is low to moderate, with no critical vulnerabilities or blocking mechanisms detected. Strategic recommendations include adding privacy and cookie policies to comply with GDPR, improving security headers, and providing clear contact information for security incidents. Enhancing SEO and accessibility would also improve the site's technical maturity and user experience.

S

Studio Tillack Knöll

studiotillackknoell.com

48

Studio Tillack Knöll is a small, specialized design practice based in Stuttgart, Germany, focusing on visual communication, spatial design, and graphic design services. Their portfolio includes exhibitions, wayfinding systems, book design, branding, and digital experiences for clients in architecture, art, science, commerce, cultural institutions, and NGOs. The website presents a professional and well-structured portfolio with recent activity and project showcases, indicating an active and reputable studio with international recognition. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and SEO enhancements via Yoast SEO. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Hosting is inferred to be with GoDaddy.com, LLC, consistent with the domain registrar data. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and DNSSEC. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanisms. Contact information is primarily via a contact form and physical address; no direct emails or phone numbers are publicly listed. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and enhanced security headers to strengthen its security posture and regulatory adherence.

I

Image Format

imageformat.fr

43

Image Format is a French creative design portfolio website showcasing various visual and typographic projects. The site targets design professionals and enthusiasts, presenting a curated collection of creative works. The business model appears to be service or portfolio-based, emphasizing artistic and typographic design. The website is built on WordPress and uses common JavaScript libraries such as jQuery and Splide.js, hosted via Scaleway with DNS managed by o2switch.net. The technical infrastructure is moderate in performance with good mobile optimization but basic accessibility and SEO features. Security posture is average with HTTPS likely enabled but lacking visible security headers and formal security policies. Privacy compliance is low due to absence of privacy and cookie policies. Contact information is limited to an email address, with no phone or physical address provided. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy measures.

M

Mykola Kovalenko Studio

mykolakovalenko.eu

53

Mykola Kovalenko Studio is a small creative design studio specializing in graphic design services such as posters, logos, brand identity, advertising, and packaging. The website serves primarily as a portfolio showcasing a wide range of projects with visual examples and categorization. The studio targets clients seeking professional graphic design and branding solutions. The business has been active since at least 2003, as indicated by copyright information. Technically, the website uses common JavaScript libraries including jQuery, FancyBox, Masonry, and LazyLoad to enhance user experience and image presentation. The site is moderately optimized for mobile devices and has a clear navigation structure. However, there is no evidence of a CMS or advanced frameworks. Performance is moderate with room for improvement in SEO and accessibility. From a security perspective, the website lacks visible security headers and privacy-related policies. HTTPS status is unknown from the provided data but is recommended. No forms or sensitive data collection points are present in the analyzed HTML, reducing immediate risk exposure. Social media links provide additional trust signals but no direct contact emails or phone numbers are listed on the main page. Overall, the website is a professional portfolio with moderate technical maturity and limited security and privacy compliance. Strategic improvements in security headers, privacy policies, and contact information would enhance trust and compliance.

babyinktwice is a specialized graphic design and letterpress print studio founded in 2009 by Dafi Kühne, operating from Zürich and Glarus, Switzerland. The studio focuses on artisanal poster printing and design services for cultural, architectural, and artistic projects, complemented by educational workshops and university teaching engagements in Europe and the United States. The website serves as a portfolio and e-commerce platform showcasing a rich collection of letterpress posters and projects, many of which have received prestigious awards and nominations. Technically, the website is built on WordPress 6.2.8, utilizing common libraries such as jQuery and D3.js, and styled with Bootstrap CSS. The site is moderately performant and mobile-optimized, with good SEO practices but basic accessibility features. Security-wise, the site enforces HTTPS but lacks important security headers and published security policies, which could be improved to enhance protection and compliance. The security posture is adequate but could benefit from implementing security headers, publishing privacy and cookie policies, and establishing incident response contacts. No vulnerabilities or malicious content were detected. Overall, the site is trustworthy and professional but has room for improvement in privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and cookie policies, adding security headers, establishing a vulnerability disclosure process, and enhancing incident response readiness to strengthen trust and compliance.

F

Fons Hickmann M23

m23.de

38

Fons Hickmann M23 is a Berlin-based design studio specializing in complex communication systems and graphic design projects. The website showcases a professional portfolio with diverse projects including posters, campaigns, animations, and editorial designs, targeting cultural institutions and design professionals. The business is well-established with a domain age dating back to 2002, indicating a mature presence in the design industry. Technically, the website is built on WordPress with modern JavaScript libraries such as Flickity and Plyr, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers which could enhance protection. Privacy compliance is weak due to absence of privacy and cookie policies, representing a compliance risk. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and content-rich but would benefit from improved privacy and security practices.

Eilean Friis-Lund's website serves as a personal graphic design portfolio showcasing a gallery of images. The site targets individuals or businesses interested in graphic design services or artistic inspiration. The business model appears to be a personal brand portfolio aimed at attracting clients or commissions within a niche market. The website is small-scale with basic content quality and consistent branding. Technically, the site is built with standard HTML5, CSS3, and JavaScript without any detected frameworks or CMS. It features a responsive design optimized for mobile devices and moderate performance. However, there is a lack of advanced SEO and accessibility features, and no hosting or platform details are evident. From a security perspective, the site lacks essential security headers and published policies such as privacy or cookie policies. The absence of HTTPS information and incident response contacts indicates a low security posture. No vulnerabilities or tracking technologies were detected, but improvements are needed to enhance compliance and trust. Overall, the website presents a moderate risk profile primarily due to missing privacy and security policies and limited business information. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, enforcing HTTPS, and adding incident response contacts to improve trust and compliance.

E

Eddy Terki

eddyterki.fr

38

Eddy Terki's website is a professional portfolio showcasing a graphic design atelier based in France, specializing in editorial design, visual identity, signage, and website creation. The site is built on Drupal 8 and hosted by OVH, reflecting a moderate level of technical maturity. The content is rich and well-structured, targeting clients and collaborators in the creative and educational sectors. However, the site lacks critical privacy and cookie policies, which impacts GDPR compliance and overall privacy posture. Security measures such as HTTP security headers are absent, and no explicit contact information or incident response channels are provided, which could affect trust and responsiveness. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistency.

The website radzie.de represents a small personal graphic design portfolio operated by Robert Radziejewski based in Berlin. The site primarily showcases the designer's identity and contact information, targeting clients seeking graphic design services. The business model is service-oriented, likely freelance or small studio, with a niche local market position. The website uses WordPress CMS with the Lay theme and jQuery, hosted on a German hosting provider (rzone.de). The technical infrastructure is moderate with good mobile optimization but basic SEO and accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the site is functional but basic in content and technical sophistication.

C

Chloé Pannatier

chloepannatier.ch

55

Chloé Pannatier's website is a professional graphic design portfolio showcasing a wide range of projects including poster designs, visual identities, and artworks for various clients and exhibitions. The site targets clients and collaborators in the creative industry, emphasizing detailed project descriptions and high-quality visuals. Technically, the site is built on WordPress with modern web technologies, featuring lazy loading and responsive design, providing a good user experience across devices. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal security policies. Privacy compliance is minimal, with no visible privacy or cookie policies. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

P

Principal

principal.studio

54

Principal is a small design and strategy studio presenting a professional website primarily in French. The site showcases various projects and uses modern web technologies including Webflow CMS, Splide.js for slideshows, Howler.js for audio, and Vimeo for video embedding. The technical infrastructure is modern and the site is hosted on Webflow's CDN, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. No contact information or business certifications are publicly available, which limits trust signals. Overall, the website is professional and functional but could improve compliance and transparency.

Atelier Choque Le Goff is an independent graphic design studio based in Paris, founded in 2016. The website serves as a portfolio showcasing a variety of creative projects including book design, poster design, editorial work, identity creation, and typography. The studio targets clients interested in high-quality graphic design and art direction services. The business model is centered on creative service delivery with a focus on visual arts and design. The website content is well-structured and visually appealing, reflecting the studio's professional branding and consistent design language. Technically, the website is built on GravCMS, a flat-file CMS, and uses jQuery 2.x along with custom CSS and JavaScript. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO optimization is present but minimal. Hosting appears to be managed via the registrar Nuxit with modns.fr nameservers. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site lacks several best practices such as security headers and DNSSEC. The domain uses HTTPS (assumed from URL) but no explicit security headers were detected in the provided data. No privacy or cookie policies are present, which is a compliance gap especially under GDPR. No contact or incident response information is provided, limiting transparency and trust. The WHOIS data is consistent and legitimate, with a domain age appropriate for the business history. Overall, the website is a good representation of a small creative studio with a professional portfolio. However, it lacks important privacy and security features that could improve trust and compliance. Strategic recommendations include adding privacy and cookie policies, implementing security headers, enabling DNSSEC, and providing clear contact information to enhance credibility and security posture.

G

Graphic Design Festival Scotland / INTL

graphicdesignfestivalscotland.com

33

Graphic Design Festival Scotland is an established creative festival that has evolved into INTL, a broader international creative organisation focusing on multiple creative disciplines and global engagement through festivals, awards, and competitions. The website presents a professional and consistent brand message targeting creative professionals and enthusiasts worldwide. Technically, the site uses modern web technologies including Google Analytics and jQuery, hosted via GoDaddy, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks security headers and formal privacy or cookie policies, which are critical for compliance and trust. Overall, the site is safe, professional, and legitimate but would benefit from enhanced privacy compliance and security hardening.

Wine Industry Network is a leading B2B platform serving the North American wine industry, offering a comprehensive suite of services including news, events, job listings, products, and video content. The website positions itself as a central resource for wine industry professionals, facilitating connections and information sharing. Technically, the site employs established front-end technologies such as jQuery, Bootstrap, and Font Awesome, and integrates New Relic for performance monitoring, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and reCAPTCHA but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data reduces domain trust verification, though the site content and external partnerships suggest legitimacy. Overall, the site is professional and functional but would benefit from enhanced privacy compliance and security transparency.

Mom's Choice Awards is a well-established organization founded in 2005 that specializes in recognizing and awarding quality products and services for families, parents, and educators. The website serves as a platform for award applications, showcases recent award winners, and offers an online store for award-winning products. The company targets parents, educators, and product applicants, positioning itself as a trusted authority in the family and parenting niche. Technically, the website is built on WordPress using the X Theme and Gravity Forms, with integrations for anti-spam and analytics. The infrastructure includes Cloudflare DNS and NameCheap as registrar, indicating a stable and reputable hosting environment. Security posture is solid with HTTPS enforced and anti-spam measures, though there is room for improvement in DNS security and security headers. Privacy compliance is basic, lacking explicit privacy and cookie policies or consent mechanisms. Overall, the site is professional, user-friendly, and trustworthy, with moderate tracking and marketing tools in use.

The website bigdataconference.eu is currently inaccessible due to a security challenge page that blocks direct content access. This page is likely implemented by a Web Application Firewall (WAF) or similar security mechanism to prevent automated access or attacks. As a result, no business, contact, or policy information is available for analysis. The domain is registered through Realtime Register B.V., a known registrar, but no further registrant details or business legitimacy indicators are present in the accessible data. The lack of accessible content and metadata severely limits the ability to assess the website's business model, technical infrastructure, or security posture. The site does not expose any forms, external links, or scripts beyond the challenge mechanism, indicating a protective posture but also limiting transparency. Overall, the website's security posture cannot be fully evaluated, and the absence of privacy or cookie policies suggests compliance gaps if the site were accessible.

The website at https://www.t-systems.com/de/en is currently inaccessible, returning a 403 Forbidden error page with no visible content or metadata. This indicates that the site is either restricted by server permissions or protected by a firewall, preventing public access. The lack of accessible content precludes any meaningful analysis of the company's services, policies, or technical infrastructure. WHOIS data for the domain www.t-systems.com is unavailable, with the query returning no match, suggesting the domain may not be registered or the data is withheld. This raises concerns about the domain's legitimacy or current operational status. Due to the absence of accessible content, no information on privacy policies, cookie consent, contact details, or security practices can be extracted. The technical posture is poor, with no evidence of HTTPS enforcement or security headers. The website's security score is low, reflecting the lack of accessible content and missing security best practices. Overall, the site appears blocked or non-operational, limiting any further security or business analysis. Strategic recommendations include verifying domain registration status, ensuring proper server configuration to allow legitimate access, implementing HTTPS with valid SSL certificates, and publishing essential compliance documents such as privacy and cookie policies. Improving accessibility and transparency will enhance trust and enable comprehensive security and business assessments.

The website www.thisisthewanderlust.com currently serves a private site placeholder page hosted on Squarespace, requiring login for access. No public content or business information is available, and the domain WHOIS query returned no registration data, indicating the domain may be unregistered or expired. The technical infrastructure is based on Squarespace with standard JavaScript libraries but lacks any visible analytics, advertising, or security headers. The security posture is minimal with no HTTPS or security policies detected. Overall, the site is inaccessible to the public and provides no business or compliance information.

B

Welcome. Please log in.

button2024.com

58

The website www.button2024.com serves as a login portal for attendees of an event named Button 2024. The site is built using Webflow and Memberstack, indicating a modern membership-based platform for event access. The content is minimal and restricted behind a login form, with no public-facing business information or marketing content. The domain WHOIS data is missing, suggesting the domain may be unregistered, expired, or privacy-protected, which raises trust concerns. Technically, the site uses common web technologies and scripts but lacks visible security headers and privacy policies, indicating a basic security posture. Overall, the site appears to be a small-scale event login portal with limited public information and moderate technical implementation.

Samarskaya & Partners is a small boutique design and branding firm specializing in visual communications, brand strategy, identity design, and typographic layout. The company has been established since 2005, consistent with the domain registration date. The website presents a professional and focused description of services targeting creative professionals and businesses seeking branding expertise. The digital infrastructure uses standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Google Analytics for tracking. Hosting appears to be via sureserver.com with domain registration through eNom, LLC. The website is accessible without WAF or security challenges and includes social media presence on major platforms.

Alliance Graphique Internationale (AGI) is a well-established professional association dedicated to the world's leading graphic designers. The website serves as a digital archive and showcase for design history and member projects, targeting design professionals and enthusiasts globally. The organization is based in Switzerland and has maintained its domain since 2001, reflecting a stable and credible presence in the design community. The business model focuses on member networking and promoting graphic design excellence rather than commercial sales. Technically, the website employs a moderate technology stack including jQuery, Modernizr, Handlebars.js, and Fuse.js for search functionality, hosted with a reputable registrar and DNS provider. The site is mobile optimized with good SEO practices but lacks some modern security headers and privacy compliance features. Performance is moderate with room for improvement in accessibility and security hardening. From a security perspective, the site uses HTTPS and avoids exposing sensitive data but does not implement key security headers or privacy policies, which are important for GDPR compliance and user trust. No WAF or blocking mechanisms are detected, and no vulnerabilities or suspicious content were found. The WHOIS data aligns well with the website's purpose and history, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security headers, and incident response information to improve its security posture and regulatory adherence.

I

International Creative Awards

creativeawards.international

61

International Creative Awards operates an online platform for creative professionals and organizations to submit projects for international awards. The website is built on WordPress, utilizing Gravity Forms for user registration and Google reCAPTCHA for bot protection. Cookie consent mechanisms are implemented to comply with GDPR regulations. The site demonstrates good SEO practices and a professional design, targeting a niche market in the creative industry. Security posture is solid with HTTPS enforced and CAPTCHA usage, though it lacks some security headers and explicit privacy policy documentation. Overall, the platform appears legitimate and professionally managed, with room for improvement in privacy transparency and security hardening.