Other security reports

E

Expert:innen für Arbeitsplatzkultur

greatplacetowork.ch

50

The website 'greatplacetowork.ch' represents a Swiss-based organization specializing in workplace culture consulting, employee experience measurement, and certification services under the Great Place To Work® brand. It targets organizations aiming to improve their internal culture and employee satisfaction. The site is multilingual, primarily in German, with French and English support, and uses a modern WordPress-based technical infrastructure with WooCommerce and Elementor for content management and e-commerce capabilities. The presence of structured data and SEO plugins indicates a focus on discoverability and professional presentation. Security-wise, the site uses HTTPS and includes several third-party analytics and marketing scripts, but lacks visible security headers and explicit security or privacy policies. No contact emails or phone numbers were found in the visible content, which may impact user trust and compliance. Overall, the site is professional and functional but could improve in privacy compliance and security transparency.

E

EFRE Karte – EFRE Karte

efre-karte.de

36

EFRE Karte is a website primarily focused on providing mapping services related to EFRE (European Regional Development Fund) projects or data. The site is built on WordPress and leverages modern JavaScript libraries such as Mapbox GL and Turf.js to deliver interactive map functionalities. The website's content is minimal, focusing on the map interface and basic branding with limited textual information. There is no evidence of privacy, cookie, or terms of service policies, nor contact information, which limits user trust and compliance with data protection regulations. Technically, the site uses HTTPS and modern libraries but lacks security headers and advanced SEO or accessibility features. The security posture is moderate but could be improved by implementing standard security headers and policies. Overall, the site appears legitimate but basic in business and security maturity.

C

Creative Meetings

creativemeetings.com

68

Creative Meetings is a well-established Swedish event production agency with a strong focus on personalized and creative event solutions. Operating for over 26 years with a team of 25 employees, they have executed more than 6000 events across 60 countries. Their business model centers on close collaboration with clients and partners to deliver tailored event experiences, supported by a parent company, Unlimited Travel Group, which enhances their market reach and resources. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and CookieTractor for privacy compliance. It is hosted behind Cloudflare, ensuring good performance and security. The site is mobile-optimized and includes standard SEO and accessibility features, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant, with clear user consent mechanisms. Security posture is solid with HTTPS enforced and bot protection via Cloudflare, but the absence of WHOIS data for the domain raises concerns about domain registration transparency. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a mature digital presence with moderate to high security and privacy compliance. Recommendations include enhancing security headers, adding explicit security and incident response policies, and verifying domain registration details to improve trustworthiness and compliance posture.

F

FoodStyles

foodstyles.com

63

FoodStyles is a specialized online platform focused on helping consumers in England find meals tailored to their dietary preferences and eating styles. The service offers a personalized approach by allowing users to create food profiles and search a large database of restaurant dishes. The platform is supported by mobile applications available on iOS and Android, enhancing accessibility and user engagement. The website demonstrates a good level of content quality, clear navigation, and mobile optimization, making it user-friendly for its target audience. Technically, the website employs modern web technologies including jQuery, Google Analytics, Google Tag Manager, and a cookie consent solution from CookieTractor. The site is served over HTTPS, ensuring secure communication. However, there is a lack of visible security headers which could enhance protection against common web vulnerabilities. The website also implements GDPR-compliant privacy and cookie policies, reflecting attention to privacy regulations. From a security perspective, the site shows strengths such as encrypted connections and consent management but lacks explicit security policies, incident response contacts, and terms of service. The absence of WHOIS domain registration data is a notable concern, as it raises questions about domain legitimacy and transparency. No critical vulnerabilities or exposed sensitive data were detected in the content. Overall, FoodStyles presents a professional and functional meal-finding service with good privacy compliance and user experience. The main risks relate to domain registration transparency and security header implementation. Strategic improvements in these areas would enhance trust and security posture.

The domain erasweden.com is currently a parked domain hosted by GoDaddy.com LLC, with no active business content or services presented. The site serves primarily as a placeholder offering the domain for sale. The technical infrastructure is based on GoDaddy's parking platform, utilizing JavaScript and embedded widgets such as Trustpilot for trust signals. The site lacks a CMS and advanced SEO or accessibility features, reflecting its minimal content nature. Security posture is basic with no advanced headers or DNSSEC enabled, but no critical vulnerabilities or malware are detected. Privacy compliance is limited to GoDaddy's standard privacy and cookie policies embedded via consent management scripts. Overall, the site presents low business credibility due to absence of contact or company information and poor content quality. The domain registration is consistent and legitimate, held by GoDaddy since 1999. Strategic recommendations include enabling DNSSEC, improving security headers, and providing clearer business information if the domain is to be developed.

The domain jlr-connect.com is registered since 2016 with a reputable registrar (RU-CENTER) and hosted on Selectel infrastructure. However, the website currently returns a 404 Not Found error page served by nginx 1.27.2, indicating that the website content is missing or not deployed. No metadata, business information, or contact details are present, making it impossible to assess the business operations or services. The lack of privacy, cookie, or terms of service policies further reduces the site's compliance posture. Technically, the site uses a basic nginx server but lacks visible security headers or HTTPS information. Overall, the website is non-functional and provides no value to visitors or customers.

The website swisscheese.ch is currently a parked domain offered for sale at 7500 EUR through Sedo, a domain parking and resale service. The site contains minimal content primarily focused on advertising and domain sale information, with no active business operations or services presented. The technical infrastructure relies heavily on Sedo's domain parking platform and Google Ads for monetization. The site lacks HTTPS/SSL indications and does not provide any contact or security-related information, which limits its trustworthiness and professional appearance. Privacy policy and cookie consent mechanisms are present but basic, reflecting standard Sedo parking templates. Overall, the site functions solely as a domain sales landing page without active business presence.

The website raclettemiete.ch represents a Swiss-based rental service specializing in fondue and raclette equipment for events, operated by Schweizer Milchproduzenten SMP. The business targets general consumers and event organizers seeking to rent culinary equipment for private or corporate occasions. The site is professionally designed with clear navigation and consistent branding, supported by social media presence and certification documents, indicating a trustworthy and established business. Technically, the website employs modern front-end technologies including Bootstrap, jQuery, FontAwesome, and integrates payment processing via Payrexx modal. The site is mobile optimized and provides a moderate performance experience. However, there is room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS but lacks visible security headers and privacy/cookie policies, which are important for compliance and user trust. No forms are present on the main page, reducing attack vectors but also limiting user engagement. The WHOIS data aligns well with the business entity, supporting legitimacy. Overall, the website presents a low-risk profile with good business credibility but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

Q

quedlinburger.de

quedlinburger.de

47

The website quedlinburger.de is currently a parked domain hosted on Bodis name servers, displaying placeholder content and advertisements with an offer to sell the domain. There is no active business presence, no contact information, and no meaningful content beyond ads. The technical infrastructure relies on basic HTML, CSS, JavaScript, and Google Adsense/Bodis scripts. Security posture is minimal with no advanced headers or policies implemented, and privacy compliance is lacking. Overall, the site serves as a domain parking page rather than a functional business website.

N

Neudorff

neudorff.de

62

Neudorff is a German company specializing in natural gardening products and advice, targeting environmentally conscious gardeners. The website presents a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern JavaScript frameworks such as Nuxt.js and employs Cloudflare for DNS and likely CDN services, ensuring good performance and security. Advertising is managed through Taboola, and cookie consent is implemented via Cookiebot, indicating some level of privacy compliance. However, explicit privacy policies, terms of service, and direct contact information are not found in the provided content, which limits full compliance and transparency. Security posture is generally good with HTTPS enabled, but additional security headers and incident response information would strengthen it. Overall, the site appears trustworthy and well-maintained but could improve in privacy and security documentation.

B

Bruno Nebelung GmbH

nebelung.de

56

Bruno Nebelung GmbH is a traditional German company established in 1925, specializing in supplying high-quality horticultural products such as seeds, microgreens, lawn and soil treatments, flower bulbs, and merchandising displays. The company operates a B2B e-commerce platform targeting business customers and garden professionals. The website is built on the Shopware CMS platform and incorporates modern technologies including Matomo analytics and Friendly Captcha for bot protection. While the site demonstrates good technical implementation and user experience, it lacks explicit privacy and cookie policies, as well as visible contact information, which are important for compliance and trust. Security posture is solid with HTTPS and captcha usage, but could be improved with additional security headers and published incident response information. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact channels.

The website www.radissonhotels.com/en-us/brand/radisson-blu is currently inaccessible due to an access denied error page, likely caused by a web application firewall or security mechanism. This prevents any meaningful extraction of business, technical, or security information from the site. The WHOIS lookup for the domain also failed to return any registrar or registration details, indicating either privacy protection or data unavailability. Consequently, the domain's legitimacy and trustworthiness cannot be fully assessed. The lack of accessible content and metadata severely limits the ability to evaluate the website's technical infrastructure, security posture, or compliance status.

U

UBIQ AG

ubiq.swiss

49

UBIQ AG is a Swiss-based small design agency specializing in web design, graphic design, brand design, product design, and webshop development. The company showcases a portfolio of projects for various clients, indicating a focus on regional business customers seeking professional digital and creative services. The website is built on Joomla CMS and employs a modern JavaScript technology stack including jQuery, Swiper, and Matomo analytics, reflecting a moderate level of digital maturity. While the site design and user experience are good, there is room for improvement in accessibility and SEO optimization. Security posture is moderate; HTTPS is used, but no DNSSEC or security headers are detected, and privacy compliance is lacking due to absence of privacy and cookie policies. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website is professional but could enhance trust and compliance by adding privacy policies, security headers, and contact information.

I

i2 Ethics

i2-ethics.com

65

i2 Ethics is a Spanish-based compliance service provider specializing in anonymous whistleblowing channels and compliance with ENS and ISO 27001 standards. The company positions itself as an experienced niche player with over 10 years of expertise, targeting businesses requiring secure and compliant reporting mechanisms. The website is professionally designed using WordPress with modern technologies such as TailwindCSS and Cookiebot for cookie consent management. Hosting and domain registration are managed via Cloudflare, ensuring reliable infrastructure and security. Security posture is strong with HTTPS enforced and security headers present, though DNSSEC is not enabled and no explicit incident response or vulnerability disclosure policies are published. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy or terms of service. Contact is available via a web form but lacks direct emails or phone numbers. Overall, the website is trustworthy, secure, and well-positioned for its market segment but could improve transparency and compliance documentation.

The website opticksprotection.com currently presents minimal content, consisting solely of a placeholder message with no substantive information about the business, services, or contact details. The domain is registered with a reputable registrar, NameSilo, LLC, and is approximately two years old, which aligns with a recently established business. However, the lack of meaningful content and absence of metadata or structured data indicate the site is either under development or inactive. From a technical perspective, the website lacks any detectable technologies, scripts, or frameworks. There are no security headers or advanced SSL configurations observed, and DNSSEC is not enabled, which could be improved to enhance domain security. The site does not implement privacy or cookie policies, nor does it provide any contact or incident response information, limiting its compliance with privacy regulations such as GDPR. Security posture is weak due to the absence of standard security best practices and policies. No vulnerabilities or malicious indicators were detected, but the lack of security features and policies reduces trustworthiness. Overall, the website poses a low risk but also offers minimal assurance or transparency to visitors or customers. Strategic recommendations include enabling DNSSEC, implementing security headers, adding privacy and cookie policies, and providing clear contact and incident response information to improve trust and compliance. Until the website content is developed and these improvements are made, the site remains of limited business and security value.

Studio15 Design srl unipersonale is a small Italian design studio established in 2003, specializing in graphic design, architectural projects, and educational lectures. The company serves a diverse clientele ranging from large enterprises to startups, emphasizing creativity and concrete project realization. The website presents basic content primarily in Italian, with a minimalistic design and limited technical sophistication. The digital infrastructure is simple, relying on static HTML and CSS without advanced frameworks or CMS detected. Security posture is weak due to lack of HTTPS and absence of security headers or policies. No privacy or cookie policies are present, and contact information is limited to a physical address displayed in a tooltip. Overall, the website reflects a small business with modest online presence and limited digital maturity.

Deroma is a well-established Italian company specializing in the manufacturing and sale of gardening pots, with a history spanning over 60 years. The company operates internationally and emphasizes craftsmanship and sustainability in its product offerings. The website reflects a mature business with consistent branding and a clear focus on its target audience of gardeners and retailers. The presence of multiple language options and detailed corporate information supports its international market position. Technically, the website is built on Drupal CMS with standard modern web technologies such as jQuery and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enabled and domain transfer protections in place, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy of the site.

S

Starthaus Bremen

starthaus-bremen.de

58

Starthaus Bremen is a regional consulting and support organization focused on assisting startups and entrepreneurs in Bremen and Bremerhaven. The website provides comprehensive information about consulting services, financing options, mentoring programs, and a rich calendar of events designed to support business founders and growing companies. The platform positions itself as a central hub for startup support in the region, emphasizing free consultations and a strong network of partners. Technically, the website uses a modern tech stack including jQuery, Bootstrap, and FontAwesome, built on the SixCMS content management system. Accessibility features such as text zoom and high contrast modes are implemented, enhancing usability. However, explicit privacy and cookie policies are not found, and no security headers or incident response information are present, indicating areas for improvement in security and compliance. Overall, the website is professional and content-rich, but could benefit from enhanced security posture and privacy compliance to strengthen trust and regulatory adherence.

B

Bernd Pfelzer

ra-pfelzer.de

38

Bernd Pfelzer operates a professional legal and notary practice based in Bremen, Germany, offering services primarily in tenancy law, inheritance law, traffic accident law, and debt collection. The website is designed to serve local clients seeking legal counsel and notary services, presenting clear contact information and service descriptions. The business is positioned as a small, specialized legal entity with a focus on personal client service. Technically, the website is built on WordPress using Bootstrap and FontAwesome, hosted on kasserver.com. It demonstrates good mobile optimization and moderate performance. The site uses HTTPS with a valid SSL certificate, ensuring secure communications. However, it lacks some advanced security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. From a security perspective, the site shows a solid baseline with no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contact limits transparency in security governance. No tracking or advertising scripts were detected, indicating minimal user tracking and a privacy-respecting approach. Overall, the site is trustworthy and professional but could improve in privacy compliance and security best practices.

2

Inklusion am Arbeitsplatz: Vielfalt fördern, Barrieren abbauen

27prozentvonuns.de

58

The website 27prozentvonuns.de is a German-language informational blog focused on promoting workplace inclusion, diversity, and barrier-free communication. It provides educational content, guides, and strategies aimed at professionals and organizations interested in fostering inclusive work environments. The site is built on WordPress, leveraging common plugins such as Yoast SEO for optimization and uses Cloudflare for DNS and likely CDN services. The technical infrastructure is modern and supports mobile responsiveness with good SEO practices. Security posture is adequate with HTTPS enabled and Cloudflare DNS, but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service page. Contact is available via a contact form, but no direct emails or phone numbers are published. Overall, the site is safe, professional, and trustworthy for its niche audience.

Vallée de Joux 360° is a regional promotional website dedicated to showcasing the diverse facets of the Vallée de Joux region in Switzerland. It highlights local expertise, traditional talents, innovative activities, and community projects, targeting residents, tourists, and local businesses. The platform offers news, thematic content, a business directory, and newsletters to engage its audience effectively. Technically, the site is built on WordPress using Elementor and WooCommerce, integrating modern web technologies such as jQuery, Google Tag Manager, and OpenStreetMap for interactive features. The website demonstrates good mobile optimization and SEO practices, though accessibility could be further enhanced. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR, but lacks some recommended security headers like Content-Security-Policy and X-Frame-Options, which should be addressed to strengthen protection against common web threats. Overall, the domain registration data aligns well with the website's regional focus, supporting its legitimacy and trustworthiness. Strategic improvements in security headers and accessibility would further enhance the site's robustness and user experience.

I

Intersim AG

fromagesdesuisse.fr

61

Les Fromages de Suisse is a French-language marketing website promoting Swiss cheeses, emphasizing their unique taste, diversity, and quality. The site targets French-speaking consumers interested in Swiss cheese culture, recipes, and events. The business is represented by Intersim AG, a company based in Burgdorf, Switzerland, which appears to manage the website and its content. The website uses TYPO3 CMS and integrates modern technologies such as Vimeo for video content, Usercentrics for cookie consent management, Sentry for error tracking, and Google Tag Manager for analytics and marketing. The site is well-branded, mobile-optimized, and provides a good user experience with clear navigation and relevant content.

S

Switzerland Cheese Marketing

formatgedesuissa.com

62

The website www.formatgedesuissa.com serves as a promotional platform for Swiss cheeses, targeting consumers and culinary enthusiasts in Spain. It emphasizes the artisanal and natural qualities of Swiss cheese, highlighting production methods and quality certifications. The site is branded under Switzerland Cheese Marketing, a recognized entity in cheese promotion. Technically, the site is built on TYPO3 CMS, integrates multimedia content such as Vimeo videos, and uses Usercentrics for cookie consent management. It also employs Sentry for error tracking and Google Tag Manager for analytics. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit privacy and terms of service documentation. The WHOIS data for the domain is missing or not found, which is inconsistent with the active website presence and slightly reduces trust. Overall, the site is professional, well-branded, and provides relevant content, but could improve transparency and security documentation.

S

Switzerland Cheese Marketing AG

cheesesfromswitzerland.com

68

Switzerland Cheese Marketing AG operates the website cheesesfromswitzerland.com to promote Swiss cheeses internationally. The site offers rich content including cheese varieties, production processes, recipes, and sustainability information, positioning itself as a trusted source for Swiss cheese enthusiasts and professionals. The technical infrastructure is based on TYPO3 CMS, with modern integrations such as Usercentrics for consent management, Google Tag Manager for analytics, and Sentry for error tracking, indicating a mature digital presence. Security posture is strong with HTTPS enforcement and consent mechanisms, though explicit security headers and incident response details are not publicly disclosed. The absence of WHOIS data is a notable anomaly but does not detract significantly from the site's legitimacy given the professional presentation and consistent contact information. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a credible and authoritative platform for Swiss cheese promotion.

S

Switzerland Cheese Marketing SA

formaggiosvizzero.ch

71

Switzerland Cheese Marketing SA operates the website www.formaggiosvizzero.ch as a non-profit organization dedicated to promoting Swiss cheese. The website is content-rich, professionally designed, and targets a general audience interested in Swiss cheese, recipes, and related events. The technical infrastructure is based on TYPO3 CMS with modern integrations such as Usercentrics for consent management, Google Tag Manager for analytics, and Sentry for error tracking. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security headers and privacy policies are missing. Overall, the website is trustworthy and well-positioned in its niche.

The website misssite.com currently presents a Cloudflare security challenge page that blocks direct access to its content, limiting the ability to perform a full analysis. The domain is registered since 2013 with a reputable registrar and uses Cloudflare DNS services, indicating some level of operational maturity. However, the visible content is minimal and outdated, referencing legacy CMS versions Joomla 1.5 and WordPress 2.5, which are known to have security vulnerabilities. There is no evidence of privacy, cookie, or terms of service policies, nor any contact or business information on the accessible page. The site uses a third-party security service (BitNinja) as indicated by an external link, but no modern security headers or advanced protections are detected. Overall, the website's technical infrastructure is basic, with limited mobile optimization and poor SEO and accessibility compliance.

The website bayes-cid.com is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any substantive content. This prevents any meaningful analysis of the business, services, or compliance posture from the website itself. The domain is relatively new, registered in March 2023, and hosted on SiteGround. No privacy policies, cookie notices, terms of service, or contact information are available on the page. The lack of HTTPS information and security headers further limits the security assessment. Overall, the site appears to be either under development, restricted, or misconfigured, resulting in a poor user experience and low trustworthiness. From a technical perspective, the site uses standard fonts from Google Fonts and is hosted on a reputable provider, but no modern frameworks or CMS are detectable. The absence of analytics or tracking scripts suggests minimal digital marketing or user tracking activity. The security posture is weak due to the lack of visible HTTPS and security headers, and no incident response or vulnerability disclosure information is present. Given the blocked content and minimal data, the risk assessment is elevated due to lack of transparency and accessibility. Strategic recommendations include enabling HTTPS, publishing privacy and cookie policies, providing clear contact and business information, and resolving the 403 access issue to allow proper content delivery and user engagement.

The website at libanswers.com currently returns only a minimal JSON error message indicating the resource is not found, suggesting the site content is inaccessible or blocked. The domain is well-established, registered since 2008 with Tucows Domains Inc., and uses AWS DNS servers, indicating a professional hosting environment. However, no visible website content, metadata, or contact information is available for analysis. Due to the lack of accessible content, a comprehensive assessment of the business, technical infrastructure, and security posture is not feasible. The domain registration data is consistent with a legitimate business, but the absence of DNSSEC and security headers is noted. Overall, the site appears to be down or restricted, limiting the ability to evaluate privacy compliance, security policies, or business credibility.

The domain newjerseyclub.co currently serves a 404 Not Found error page, indicating the website content is inaccessible or not configured. There is no visible business information, metadata, or structured data to analyze. The lack of content and privacy-protected WHOIS data limit the ability to assess the company's market position, services, or target audience. Technically, the site lacks any detectable technologies, scripts, or security headers, and no SSL configuration data is available. Security posture is poor due to the absence of HTTPS and security best practices. Overall, the website is non-functional and does not provide any business or compliance information, resulting in a low trust and legitimacy score.

P

Pratiche.it S.r.l

pratiche.it

70

Pratiche.it S.r.l operates a leading online service platform in Italy specializing in the provision of official documents related to conservatory, land registry (catasto), Public Vehicle Registry (P.R.A.), and registry office (anagrafe) services. The website targets private individuals, professionals, and companies seeking quick and easy access to these documents online. The company positions itself as the number one service in its sector within Italy, offering a streamlined digital experience for document requests. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Tag Manager, and Cookiebot for cookie consent management. Hosting is provided by Aruba S.p.A., a reputable Italian hosting provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in speed and accessibility. From a security perspective, the site enforces HTTPS, implements standard security headers, and uses secure cookies for session management. The cookie consent mechanism is comprehensive and GDPR compliant, reflecting a strong privacy posture. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms indicates areas for enhancement. No critical vulnerabilities or exposed sensitive data were detected. Overall, Pratiche.it presents a professional and trustworthy online presence with a solid foundation in security and privacy compliance. Strategic recommendations include publishing detailed security and incident response policies, improving accessibility, and adding terms of service to enhance legal clarity and user trust.

The website at ileu.org is currently inaccessible to the public, returning a 403 Forbidden error page. This indicates that access is restricted or blocked, preventing any meaningful content or business information from being displayed. The domain is registered since 2000 with Tucows Domains Inc. and uses SiteGround nameservers for hosting. However, no privacy policies, cookie notices, terms of service, contact information, or business descriptions are available on the site. The lack of accessible content and security policies limits the ability to assess the company's market position or services. Technically, the site lacks visible security headers and DNSSEC is not enabled, which are areas for improvement. Overall, the site appears to be either under maintenance, restricted, or improperly configured for public access.

The website nenda.com currently returns a 403 Forbidden error page, indicating that access to the site content is blocked or restricted. There is no accessible content, metadata, or business information available on the site. The domain is registered with GoDaddy.com, LLC since 2002, showing a long registration history, but the lack of accessible content severely limits the ability to assess the business or its services. Technically, the site uses Cloudflare DNS but does not have DNSSEC enabled, and no security headers or privacy policies are present. Overall, the site is inaccessible and lacks transparency, which negatively impacts trust and credibility.

The website pintrk.com is currently inaccessible, serving only a standard 404 Not Found error page with no visible content, metadata, or business information. The domain WHOIS data is suspicious, showing a future creation date and the registrant listed as a registrar company rather than an end-user business. No privacy, cookie, or terms of service policies are present, and no contact or security information is available. The technical infrastructure appears minimal, with nginx serving the error page and no detected security headers or HTTPS information. Overall, the site lacks any meaningful presence or trust indicators, resulting in a very low legitimacy and security posture score.

The website at mappresspro.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. Due to this restriction, no business information, contact details, or policies are available for review. The domain is registered since 2018 with Tucows Domains Inc. and uses SiteGround hosting, indicating a legitimate registration and hosting setup. However, the lack of accessible content and absence of privacy, cookie, or terms of service policies severely limit the ability to assess the company's business model, services, or compliance posture. Technically, the site uses Google Fonts but no other detectable technologies or analytics. Security posture cannot be fully evaluated due to the blocked content, but no security headers or HTTPS details were found in the provided data. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user and security experience.

S

Grands Sites du Gout – Entrez dans l'univers des Grands Sites du Goût

swisstastes.ch

50

The website 'swisstastes.ch' presents itself as a culinary and gourmet portal focused on Swiss tastes and culture, targeting a general audience interested in food and travel. The site uses WordPress CMS with the Enfold theme and integrates plugins such as MapPress for Google Maps and Google Tag Manager for analytics. The technical infrastructure is moderately modern, with basic mobile optimization and SEO features. However, the site lacks visible privacy and cookie policies, contact information, and security best practices such as security headers and vulnerability disclosures. This indicates a low maturity in security and privacy compliance. Overall, the website is functional but requires improvements in security posture and compliance to enhance trust and professionalism.

S

Grands Sites du Gout – Entrez dans l'univers des Grands Sites du Goût

sites-du-gout.ch

40

The website 'swisstastes.ch' presents itself as a platform dedicated to the 'Grands Sites du Goût', likely focusing on Swiss gastronomy and culinary heritage. The site targets a general audience interested in food culture and regional specialties. The technical infrastructure is based on WordPress using the Enfold theme, with integrations such as MapPress for Google Maps and FontAwesome for icons. Google Tag Manager is employed for analytics, indicating some level of user tracking and data collection. However, the site lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture appears weak due to the absence of security headers and explicit security policies. No contact information or forms were detected, limiting user engagement and support options. Overall, the site is functional but requires improvements in privacy, security, and business transparency to enhance trust and compliance.

I

AdFest | Executive Advertising Summit | Dorado, Puerto Rico

islandadfest.com

54

The website www.islandadfest.com appears to be inactive or unregistered based on the WHOIS data which returned no match for the domain. The website content is minimal and primarily consists of Wix platform default scripts and styles without any meaningful business or service information. There are no privacy policies, cookie consent mechanisms, contact details, or security policies present. The technical infrastructure is based on Wix CMS with standard JavaScript libraries and polyfills but lacks any advanced frameworks or analytics integrations. Security posture is weak due to absence of HTTPS confirmation, security headers, or incident response information. Overall, the site lacks legitimacy and trust indicators, suggesting it is either a placeholder or an abandoned domain. Strategic recommendations include registering the domain properly, implementing HTTPS, adding privacy and cookie policies, and providing clear business and contact information to improve trust and compliance.

I

Intersim AG

schweizerkaese.ch

69

The website www.schweizerkaese.ch serves as a comprehensive promotional platform for Swiss cheese, highlighting its unique taste, variety, and quality. It is operated by Intersim AG and is closely linked with Switzerland Cheese Marketing, indicating an official or semi-official role in promoting Swiss cheese culture. The site targets a broad audience including consumers interested in cheese, recipes, and Swiss culinary traditions. Technically, the site is built on TYPO3 CMS, uses modern multimedia content such as videos hosted on Vimeo, and integrates Usercentrics for cookie consent management and Google Tag Manager for analytics. Security posture is solid with HTTPS and error monitoring via Sentry, though it lacks explicit security headers and published privacy or terms documents. Overall, the site is professional, well-branded, and trustworthy, with a strong social media presence and good user experience.

Algarve 2020 is a travel-focused website providing content about the Algarve region in Portugal and other travel destinations. The site offers travel articles, guides, and tourism information targeting travel enthusiasts and tourists interested in this region. The business model is content publishing through a WordPress platform, with a niche focus on travel and tourism. The website demonstrates good content quality and consistent branding but lacks formal business contact information and privacy-related policies. Technically, the site is built on WordPress using the Blocksy theme and Yoast SEO plugin, with lazy loading for images to improve performance. The site is mobile optimized and uses HTTPS with good SSL configuration. However, it lacks advanced security headers and formal privacy and cookie policies, which are important for compliance and trust. From a security perspective, the site has a solid foundation with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of security policies, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in security maturity. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website is a legitimate travel content platform with moderate technical and security posture. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and compliance.

P

Prandina Srl

prandina.it

62

Prandina Srl is an established Italian lighting design company with over 40 years of experience, specializing in the design and manufacture of high-quality lighting products for residential and contract markets. The company emphasizes simplicity, formal rigor, functionality, and durable quality, leveraging glass as a key material in its contemporary lighting solutions. Their market position is that of a recognized niche brand with a consistent and professional online presence targeting both professionals and consumers interested in design lighting. Technically, the website employs a traditional but functional technology stack including jQuery, SVG conversion, and Cookiebot for consent management, alongside Matomo for privacy-respecting analytics. The site is mobile-optimized with good SEO practices and clear navigation, though some technologies like jQuery are outdated, suggesting room for modernization. From a security perspective, the site enforces HTTPS and integrates cookie consent mechanisms properly, with analytics loading only after user consent. However, it lacks explicit security policies, incident response contacts, and modern security headers, which are recommended for enhanced security posture. No vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with a strong business credibility score. Strategic improvements in security policy transparency and technology updates would further strengthen its security and compliance stance.

O

Oligo

oligo.de

56

Oligo is a German company specializing in modular lighting systems and elegant individual lamps, offering LED and halogen lighting solutions primarily for private customers. The website presents a professional and consistent brand image with good content quality and clear navigation. The technical infrastructure includes modern web technologies, Cookiebot for consent management, and Google Analytics for visitor insights, indicating a mature digital presence. Security posture is solid with HTTPS enforced and CSRF protections in place, though explicit security policies and incident response contacts are not published. Privacy compliance is strong, leveraging Cookiebot's comprehensive cookie declaration and consent mechanisms, aligning with GDPR requirements. Overall, the site is trustworthy and safe for general audiences, with no adult or questionable content detected.

The domain holtkoetter.com is currently a parked domain with no active website content beyond a Sedo parking iframe and advertising scripts. The website lacks any business-related information, contact details, or policies, indicating it is not currently used for an operational business. The domain is registered with Network Solutions, LLC since 1998, which suggests it has been held for a long time but is not actively developed or maintained as a business site. Technically, the site uses basic HTML and JavaScript to display the parking page and ads, with no modern frameworks or CMS detected. Security posture is weak due to lack of HTTPS enforcement, absence of security headers, and no privacy or cookie policies. There are no forms or data collection mechanisms, and no analytics services are detected beyond advertising scripts. Overall, the site presents a low trust profile and minimal business credibility.

The Fachverband Raumbegrünung und Hydrokultur im Zentralverband Gartenbau (ZVG) e.V. is a small German industry association focused on promoting indoor greening and hydroponics to improve human wellbeing in indoor environments. The website serves as an informational platform offering educational content, quality certifications, and industry networking opportunities. It targets professionals and enthusiasts in the indoor plant cultivation sector. Technically, the site is built on the Contao CMS platform and uses common JavaScript libraries for UI enhancements. While the site is functional and well-structured with good content relevance and navigation, it lacks advanced SEO optimization and mobile responsiveness is basic. Security posture is moderate with HTTPS enabled but missing important security headers and no cookie consent mechanism, which impacts GDPR compliance. No explicit contact emails or phone numbers are present on the homepage, but a contact form and privacy policy page exist. Overall, the site is trustworthy but could improve in security and privacy compliance to better serve its audience and meet regulatory requirements.

The domain www.airbnb.cat is currently inaccessible and blocked by a security mechanism, presenting an Access Denied page. No website content, metadata, or business information is available for analysis. WHOIS data query returned no registration information, indicating the domain may not be registered or is inactive. This severely limits the ability to assess the business, technical infrastructure, or security posture. The lack of accessible content and registration data raises significant legitimacy concerns and suggests the domain is not operational or is being protected by a web application firewall (WAF).

The website www.gulfair.com is currently inaccessible, returning a CloudFront 403 error indicating that the request is blocked due to either traffic volume or configuration issues. This prevents any meaningful content or metadata extraction. The WHOIS query for the domain returned no match, indicating that the domain may not be registered or that WHOIS data is protected or unavailable. Consequently, no business, contact, or security policy information could be retrieved. The technical infrastructure appears to be hosted behind Amazon CloudFront, which is enforcing access restrictions. Due to the lack of accessible content and registration data, the security posture cannot be properly assessed, and the overall trustworthiness of the domain is low. The site does not expose any content that would raise content safety concerns.

The website at fdp-plr.ch currently serves only a 404 error page indicating that the requested content is not available or does not exist. There is no accessible business information, contact details, or policy documentation on the site. The site is built on the TYPO3 CMS platform as evidenced by the error page branding. Due to the lack of content, the website's market position, business model, and services cannot be determined. Technically, the site shows minimal implementation with no visible security headers or analytics, and no evidence of HTTPS from the provided data. The security posture is weak due to lack of visible security best practices and absence of privacy or cookie policies. Overall, the site is not currently functional for end users or business purposes, resulting in a low trust and credibility score.

The website observatoriodemedios.org is currently inaccessible, returning a 403 Forbidden error page. This prevents access to any meaningful content or business information. The domain is registered with Nominalia Internet SL since December 2022 and is hosted on SiteGround servers. Due to the lack of accessible content, no privacy, cookie, or terms of service policies are found, nor any contact or security-related information. The technical infrastructure cannot be fully assessed, but the absence of security headers and SSL details is concerning. Overall, the website's security posture is weak, and the business credibility cannot be established from the available data.

S

Switzerland Cheese Marketing AG

switzerlandcheesemarketing.ch

66

Switzerland Cheese Marketing AG is the central organization representing the Swiss cheese industry, dedicated to promoting Swiss cheese both domestically and internationally. The website serves as a comprehensive platform for industry stakeholders, media professionals, and consumers interested in Swiss cheese, offering educational resources, marketing information, and event details. The organization holds a strong market position as the leading promoter of Swiss cheese, supported by a professional and consistent brand presence. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies including JavaScript, CSS, and integrations with Google Tag Manager and Sentry for analytics and error monitoring. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS, employs multiple security headers, and uses a consent management platform to comply with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy and incident response information, which could enhance its security posture. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable source for Swiss cheese marketing and industry information. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and vulnerability disclosure information to further strengthen trust and security readiness.

S

Swiss Safety Center AG

safetycenter-shop.ch

56

Swiss Safety Center AG operates the SafetyCenter-Shop, an e-commerce platform specializing in safety, health protection, and certification materials for businesses. The company offers a comprehensive range of products including handbooks, checklists, e-learnings, and guidelines to support compliance with safety standards and legal requirements. The website targets organizations seeking to improve workplace safety and certification readiness, positioning itself as a trusted partner in the safety sector within Switzerland. Technically, the website is built on the ePages storefront platform, utilizing modern JavaScript libraries such as jQuery, RequireJS, and integrates multiple analytics and marketing tools including Google Analytics, Google Tag Manager, HubSpot, and LinkedIn Insight. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and employs privacy-conscious analytics settings such as IP anonymization. A cookie consent banner is present, supporting GDPR compliance. However, the site lacks explicit security headers and a public security policy or incident response contact, which are recommended for enhanced security posture. Overall, the website is professional, trustworthy, and compliant with relevant privacy regulations. It effectively serves its niche market with quality content and a solid technical foundation. Strategic improvements in security policy transparency and header implementation would further strengthen its security stance.

S

SVTI Schweizerischer Verein für technische Inspektionen

svti-gruppe.ch

56

The SVTI-Gruppe website presents a professional and comprehensive portal focused on careers and services in the technical safety and risk management sector in Switzerland. The organization operates as a Swiss competence center offering inspection, monitoring, risk management support, and training services. The website is well-structured, multilingual, and targets job seekers and professionals in the safety industry. Technically, the site is built on Drupal 10 with modern libraries and integrates marketing and analytics tools such as Google Tag Manager and HubSpot. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate business presence.