Other security reports

K

kühne wicki GmbH

kuehnewicki.com

57

kühne wicki GmbH is a Swiss-based interdisciplinary futures research and consulting firm specializing in Futures Research, Development, Implementation, and Futures Literacy. Founded in 2017, the company serves organizations and individuals interested in strategic foresight, scenario planning, and transformative future-oriented processes. Their market position is that of a specialized boutique consultancy with a strong focus on innovation and future competencies, supported by a professional team and reputable clients. The website reflects a high level of professionalism, with detailed project case studies and team profiles, indicating a mature business presence. Technically, the website is built using modern JavaScript frameworks (Nuxt.js/Vue.js) and integrates Google Analytics and Tag Manager for tracking. Hosting is provided by Hostpoint AG, a reputable Swiss hosting provider. The site is mobile-optimized and performs moderately well, though some accessibility features could be improved. SEO practices are good with proper meta tags and Open Graph data. From a security perspective, the site uses HTTPS but lacks important security headers and DNSSEC is not enabled. No privacy or cookie policies are present, which is a compliance gap especially under GDPR. No incident response or security contact information is provided. The site does not show signs of vulnerabilities or malicious content but could improve its security posture by implementing recommended headers and policies. Overall, the website is trustworthy and professional with minor gaps in privacy compliance and security hardening. Strategic recommendations include adding privacy and cookie policies, implementing security headers, enabling DNSSEC, and publishing incident response information to enhance trust and compliance.

L

LiveSurface

livesurface.com

64

The website 'LiveSurface' presents a professional front focused on product visualization and design tools, as indicated by the page title and styling. However, the absence of WHOIS registration data raises concerns about the domain's legitimacy or recent registration status. The technical infrastructure includes use of Google Tag Manager for analytics, but lacks visible security headers and privacy compliance documentation. No contact information or business details are provided, limiting trust and transparency. Overall, the site appears functional and visually coherent but lacks critical security and compliance elements.

M

Messen.de

messen.de

53

Messen.de is a well-established online platform providing a comprehensive calendar and overview of trade fairs and exhibitions primarily in Germany, Austria, Switzerland, and the Netherlands. It serves exhibitors, visitors, event organizers, and service providers by offering detailed event information, ratings, and news updates. The platform positions itself as a key resource in the German-speaking trade fair market, leveraging structured data and a user-friendly interface to deliver relevant content without requiring login. Technically, the website employs modern JavaScript frameworks, integrates Google Tag Manager, and uses a consent management platform to comply with GDPR regulations. Advertising and tracking are managed through reputable networks such as Criteo and Sourcepoint. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response details are absent. Overall, the site is professional, trustworthy, and compliant with privacy standards, making it a reliable resource for its target audience.

V

vttrando.fr

vttrando.fr

56

VTTrando.fr is a specialized French website dedicated to mountain biking enthusiasts and event organizers, offering a comprehensive calendar of VTT events and a platform for free event publication. The site is well-positioned in its niche market, providing valuable services such as interactive maps, regional event listings, and a blog with relevant content. Technically, it leverages WordPress CMS with modern libraries like Bootstrap and jQuery, integrates Google Maps and reCAPTCHA for enhanced user experience and security, and uses Matomo for analytics alongside Ezoic for advertising. The website demonstrates good SEO practices and mobile optimization, ensuring accessibility and usability for its audience. Security-wise, the site enforces HTTPS, uses consent management for cookies, and employs reCAPTCHA to protect forms, though it lacks explicit security policy and incident response disclosures. The absence of WHOIS data suggests privacy protection, which is typical for small niche sites and does not detract from its legitimacy. Overall, VTTrando.fr presents a professional, trustworthy, and user-friendly platform with moderate to good security and privacy compliance.

The website www.lionhearts.ch is currently inaccessible beyond a Cloudflare security challenge page, which prevents direct content analysis. The site appears to be protected by Cloudflare's Turnstile captcha, indicating a security posture that includes bot mitigation and access control. Due to this, no business-specific content, contact information, or policies are visible, limiting the ability to assess the company's market position, services, or compliance status. Technically, the site leverages Cloudflare's security infrastructure but lacks visible metadata or structured data for further analysis. Security posture is difficult to evaluate fully; however, the presence of Cloudflare protection suggests some baseline security measures. Overall, the site scores low on content quality, privacy compliance, and business credibility due to the lack of accessible information. Strategic recommendations include reducing access restrictions for legitimate users, publishing clear privacy and cookie policies, and providing transparent business contact details to improve trust and compliance.

S

Swiss Golf Managers

swissgolfmanagers.ch

64

Swiss Golf Managers (SGM) is a Swiss-based professional network focused on connecting and strengthening golf businesses across Switzerland. The organization aims to foster collaboration, information exchange, and sustainable development of the Swiss golf sport sector. Their website provides information about membership, events, and news relevant to golf club managers and related stakeholders. The site is built on the Webflow CMS platform with multilingual support via Weglot, indicating a modern and flexible technical infrastructure. The website is well-designed, mobile-optimized, and provides a good user experience, though some accessibility and SEO improvements are possible. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the website's Swiss golf focus, supporting legitimacy and trustworthiness.

S

Swiss Golf

swissgolf.ch

50

Swiss Golf is the official umbrella organization for golf sports in Switzerland, providing comprehensive services including player development, tournament organization, and sustainability initiatives. The website is well-structured, professionally designed, and targets golf players and enthusiasts across all levels in Switzerland. It features clear navigation, rich content, and strong branding supported by reputable sponsors such as Rolex and Helsana. Technically, the site uses modern JavaScript frameworks like Vue.js and libraries such as Axios and Chart.js, ensuring a dynamic and interactive user experience. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the website enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and an explicit security policy or incident response contact. The WHOIS data aligns well with the website's claims, indicating a trustworthy domain registration. Overall, the site scores highly on content quality, business credibility, and privacy compliance, with minor technical and security enhancements recommended.

T

Homeland

thisishomeland.com

49

The website 'Homeland' is a small business or brand site created in 2020, built using the Framer platform. It presents minimal content focused on marketing slogans emphasizing customer satisfaction but lacks detailed business descriptions, contact information, or legal policies. The technical infrastructure relies on Framer hosting and content delivery, with basic HTTPS security but missing advanced DNS and HTTP security features. No privacy or cookie policies are present, indicating low compliance with data protection regulations. The absence of contact details and security disclosures limits trust and business credibility. Overall, the site is functional but minimalistic, suitable for a startup or brand awareness but requires enhancements for professional and secure online presence.

The website at js-aa.org is currently inaccessible, returning a 403 Forbidden error page with no additional content or metadata. This prevents any meaningful analysis of the business, services, or user engagement features. The domain is registered with GMO Internet Group, a reputable registrar, and has a reasonable age since 2018, but the lack of accessible content severely limits trust and credibility assessments. Technically, the site lacks DNSSEC and visible security headers, indicating room for security improvements. No privacy, cookie, or terms of service policies are present, and no contact information is available, which further reduces compliance and user trust. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user experience and low security posture.

8

820

820.ch

56

820 is a Zurich-based architecture studio specializing in innovative designs that integrate technology and environmental considerations. Led by Nicolas König and Lewis Horkulak, the studio emphasizes techno-environmental synergies and speculative spatial scenarios to foster deeper environmental integration. Their portfolio showcases a range of projects, competitions, and installations, highlighting a strong presence in the architectural design community with multiple awards and exhibitions. Technically, the website is built on the Cargo Collective platform, utilizing modern web standards including HTML5, CSS3, and JavaScript. The site is well-optimized for mobile devices and presents a professional, visually rich portfolio. However, there is room for improvement in accessibility and SEO practices. From a security perspective, the site uses HTTPS and does not expose sensitive data or forms, reducing attack surface. Nonetheless, it lacks important security headers and does not provide explicit security policies or incident response contacts, which could be enhanced to improve trust and compliance. Overall, the website reflects a credible and professional architecture studio with a strong digital presence but would benefit from enhanced privacy, security, and compliance disclosures to align with best practices and regulatory requirements.

S

S AM Schweizerisches Architekturmuseum

sam-basel.org

49

S AM Schweizerisches Architekturmuseum is a Swiss cultural institution dedicated to architecture, located in Basel. The website provides information about exhibitions, events, educational programs, and a shop, targeting architecture enthusiasts and the general public interested in cultural heritage. The museum maintains a professional online presence with multilingual support and active social media channels. Technically, the site is built on Drupal 7 with modern JavaScript libraries and uses Cookiebot for GDPR-compliant cookie management. Security posture is adequate with HTTPS enforced and no exposed sensitive data, though improvements are recommended in security headers and CMS updates. WHOIS data is unavailable due to privacy or query failure, but the website content and contact details support legitimacy. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations.

K

Knopp & Kniel GmbH

knoppkniel.com

57

Knopp & Kniel GmbH is a Swiss-based company founded in 2020, specializing in collaborative projects that promote positive societal, cultural, and environmental change. Their website reflects a professional and focused business model targeting clients and partners engaged in transformative initiatives. The company maintains a clear and consistent brand presence with accessible contact information and a cookie consent mechanism, demonstrating awareness of privacy compliance. Technically, the website is built on the Cargo Collective platform, leveraging modern web technologies and custom typography, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced, but could be improved by enabling DNSSEC and adding security headers. No advanced security or incident response policies are publicly disclosed. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy business presence.

S

Studio Céline Baumann

studiocelinebaumann.com

46

Studio Céline Baumann is a specialized landscape architecture studio based in Switzerland, active since at least 2018. The website serves as a portfolio and news platform showcasing their projects, awards, publications, and exhibitions. The studio targets professionals and enthusiasts in landscape architecture and urban planning, offering design, consultancy, and academic teaching services. Technically, the website is built on WordPress using the FoundationPress theme, with modern frontend libraries like jQuery and FlexSlider. The site is moderately performant and mobile-optimized but lacks advanced accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. No contact emails or phone numbers are explicitly provided, limiting direct communication. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

B

Bund der Selbständigen Bayern

bds-bayern.de

45

Bund der Selbständigen Bayern is a well-established membership association founded in 1874, representing the interests of self-employed individuals and the independent middle class in Bavaria, Germany. The organization operates as a non-partisan, cross-industry network providing advocacy, legal advice, educational programs, and member services. Their market position is strong regionally with a history of over 150 years and a comprehensive service offering including academies, competence centers, and event organization. The website reflects a professional and consistent brand image targeting self-employed professionals and SMEs in Bavaria.

F

Felix Hampe, Pilzkurse und Kartierung

pilz-wissen.de

57

Felix Hampe operates a specialized educational and consulting business focused on mycology, offering mushroom courses, guided walks, consulting, and mapping services primarily in Hessen, Germany. The website presents a clear market position as a niche expert serving mushroom enthusiasts and nature lovers. The business model centers on direct service provision through seminars and personalized courses. Technically, the website is built on a modern stack with a CMS named MyWebsite, featuring responsive design and good SEO practices. Privacy compliance is well addressed with a GDPR-compliant privacy policy and cookie consent mechanisms. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers are absent and could be improved. Overall, the website is professional, trustworthy, and safe for general audiences.

PilzCoach Badenweiler is a small, specialized business focused on mushroom coaching, education, and related product sales in the Badenweiler region of Germany. The company offers mushroom identification workshops, educational outreach to schools and kindergartens, and sells mushroom-related books and products. Their market position is niche and local, targeting mushroom enthusiasts and nature lovers. The website is built on the One.com Web Editor platform and hosted by One.com, featuring a moderate technical infrastructure with basic SEO and mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is basic but present, with cookie consent and privacy policy pages available. Overall, the website is professional, trustworthy, and content-rich for its niche audience.

Pilzzentrum Hornberg operates as an educational institution specializing in mushroom identification and nature conservation, targeting enthusiasts and learners interested in mycology. The website is built on Joomla CMS version 3.10.11 and incorporates Usercentrics for cookie consent management, reflecting a basic level of GDPR compliance. The site presents good content quality and user experience but lacks explicit privacy policies, terms of service, and contact information, which are critical for trust and compliance. Security posture is moderate with HTTPS enabled but missing important security headers and incident response details. Overall, the domain registration data aligns well with the website's German location and business focus, indicating legitimacy. Strategic improvements in privacy documentation, security headers, and contact transparency are recommended to enhance trust and compliance.

D

Deutsche Gesellschaft für Mykologie e.V.

dgfm-ev.de

58

The Deutsche Gesellschaft für Mykologie e.V. (DGfM) is a well-established German non-profit organization dedicated to the study and promotion of mycology. The website serves as a comprehensive resource for mushroom enthusiasts, researchers, and educators, offering educational content, qualifications, events, and community forums. The organization has a strong market position within its niche, supported by a century-long history and active engagement through social media and publications. Technically, the website is built on Joomla CMS with modern libraries like Bootstrap and jQuery, and it employs Matomo analytics configured for privacy compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for users, with no signs of blocking or WAF interference.

The website www.tutti.ch is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) security challenge page that requires human verification via Turnstile captcha. This prevents access to any actual website content, metadata, or business information. Consequently, no meaningful business overview, technical infrastructure details, or security posture evaluation can be performed. The site appears to be protected by Cloudflare's security services, indicating an intent to mitigate automated threats or abuse. However, the lack of accessible content severely limits the ability to assess compliance, trustworthiness, or operational maturity.

R

Roger Lehner

rogerlehner.com

47

Roger Lehner operates a small, specialized design studio based in Germany, focusing on ambitious projects that emphasize collaboration, creativity, and accessibility. The website showcases a professional portfolio with services including branding, digital and print design, and inclusive design practices. The business targets clients seeking high-quality, dynamic visual communication solutions. Technically, the website employs modern JavaScript libraries such as Swup and Swiper for enhanced user experience and uses Umami Analytics for minimal user tracking. Hosting is provided by hosttech.de, a German hosting provider, aligning with the business location. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not implement cookie consent mechanisms, which are areas for improvement. Overall, the website is professional, trustworthy, and well-designed but could enhance compliance and security practices.

The website 'Tajas Welt 2053' offers an interactive exploration experience themed around a futuristic world in the year 2053. It targets a general audience, including children, providing an educational and engaging map-based interface. The site is built using modern web technologies such as Nuxt.js and Leaflet.js, indicating a moderate level of digital maturity. However, the absence of business contact information, privacy policies, and security headers suggests limited compliance and security posture. The WHOIS data is incomplete due to TLD restrictions, which affects domain trustworthiness assessment. Overall, the site is functional and content-rich but lacks critical security and compliance elements.

K

kollygujer

kollygujer.ch

48

kollygujer.ch is a website representing a small creative studio or agency based in Switzerland, focusing on showcasing creative work, offering a shop, and sharing content such as gossip and about pages. The business model appears to be service-oriented with an e-commerce component. The website uses basic web technologies including HTML, CSS, JavaScript, and the p5.js library for interactive graphics. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. Security posture is minimal with no detected security headers or privacy policies, and no evidence of HTTPS was found in the provided data. Contact information is limited to a single email address and an Instagram social media link. The domain WHOIS is privacy protected, which is common and justified for small creative businesses. Overall, the website is functional but basic in design and security.

HANSEPILZ is a small local business specializing in mushroom consulting and educational mushroom walks primarily serving the Northern Germany region including Hamburg, Schleswig-Holstein, and Niedersachsen. The website also showcases mushroom photography, appealing to enthusiasts and learners interested in mycology. The business maintains a niche market position with a focus on education and community engagement, supported by media appearances and active social media channels on Instagram and Facebook. Technically, the website is built on WordPress using the Twenty Seventeen theme, with standard plugins such as Contact Form 7 and CleanTalk for spam protection. Hosting is provided by 1blu, as indicated by the nameservers. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enabled and anti-spam measures in place, but lacks important security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Overall, the site is trustworthy and professional but could benefit from enhanced security and privacy features to improve compliance and user trust.

K

KMU Werk

kmuwerk.de

66

KMU Werk is a German-based consulting network specializing in providing comprehensive, cross-disciplinary services to small and medium-sized enterprises (SMEs). Their focus is on practical, result-oriented business consulting covering topics from company foundation to succession, addressing challenges such as skilled labor shortages and digital transformation. The website is professionally designed using WordPress and Elementor, featuring clear navigation, contact information, and GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are absent. Overall, the site reflects a trustworthy and credible business presence in the SME consulting sector.

T

trainersuchportal

trainersuchportal.de

66

trainersuchportal.de is a specialized online job board platform focused on the sports sector, connecting trainers, coaches, and sports professionals with employers such as clubs, associations, and fitness studios primarily in Germany. The platform offers job listings, trainer profiles, and integrates partner job boards to expand reach. The website is professionally designed, mobile-optimized, and provides rich content including blogs and testimonials, positioning itself as a niche leader in the sports employment market. Technically, it employs modern web technologies including Google Tag Manager, Google Analytics, and Cloudflare DNS/CDN, ensuring good performance and security. Security posture is solid with HTTPS and error monitoring via Sentry, though explicit security headers and policies could be enhanced. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is trustworthy, user-friendly, and well-positioned in its market niche.

Swiss PGA is the professional golf association in Switzerland, offering education programs, tournaments, and member services for golf professionals and apprentices. The website is well-structured and targets golf professionals and enthusiasts within Switzerland. It provides comprehensive information about education, tournaments, and membership benefits, positioning itself as a key national association in the golf sector. Technically, the website uses a modern tech stack including Contao CMS, jQuery, Bootstrap, and various JavaScript libraries for sliders and UI enhancements. The site is mobile optimized and performs moderately well, with good SEO and accessibility basics. Analytics are implemented via Google Analytics and Google Tag Manager. From a security perspective, the site enforces HTTPS and uses secure forms for login. However, it lacks important security headers and published security policies. Privacy compliance is partial, with a cookie consent banner but no visible privacy policy or terms of service. WHOIS data confirms the legitimacy of the domain and its alignment with the Swiss PGA organization. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security documentation to improve compliance and user trust.

S

Swiss Greenkeepers Association

greenkeeper.ch

50

The Swiss Greenkeepers Association website serves as an informational platform for a niche professional association in Switzerland. It provides basic content welcoming visitors and likely offers resources and news relevant to greenkeepers. The website uses a traditional tech stack including jQuery, Bootstrap, and the Contrexx CMS platform, indicating a moderate level of digital maturity. However, the site lacks modern enhancements such as comprehensive privacy policies, cookie consent mechanisms, and advanced SEO or accessibility features. Security posture is minimal with no evident security headers or incident response information, and the use of outdated JavaScript libraries may expose the site to vulnerabilities. Overall, the site is functional but would benefit from modernization and enhanced security and privacy compliance.

A

Association Suisse des Golfeurs Indépendants

asgi.ch

70

The Association Suisse des Golfeurs Indépendants (ASGI) operates a well-established website serving the Swiss golf community with membership services, official handicap management via the Swiss Golf Card, and a comprehensive calendar of golf events and training courses. The site targets golf enthusiasts in Switzerland and maintains a consistent brand presence with over 25 years of history. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and Google services, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and privacy policy pages indicates room for improvement in compliance and security best practices. Overall, the domain registration aligns well with the business claims, supporting the site's legitimacy.

P

Umleitung

pccaddie.net

49

The domain pccaddie.net currently serves as a simple redirect to https://www.pccaddie.de/, providing no direct content or business information on its own. The domain is well-established, having been registered since 2002, which suggests a mature business presence. However, the lack of content, metadata, or security and privacy policies on this domain limits the ability to assess its direct security posture or compliance. Technically, the site is minimal with no scripts or tracking detected, indicating a low digital footprint on this domain itself. Security posture cannot be fully evaluated due to the absence of content and security headers. Overall, the domain appears legitimate but functions solely as a redirect, pushing users to the main business site.

BHEND DESIGN STUDIO GMBH is a small Swiss-based design studio specializing in product and furniture design. The website reflects a professional and focused business with clear contact information and a privacy policy, targeting design professionals and manufacturers. The technical infrastructure is built on WordPress with modern plugins and Google Tag Manager for analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled, but lacks some security headers and cookie consent mechanisms, which are recommended for improved compliance and protection. Overall, the website is trustworthy and well-maintained, with room for enhancements in security and privacy compliance.

N

Nouvelle Noire Type Foundry

nouvellenoire.ch

57

Nouvelle Noire Type Foundry is a Swiss-based company specializing in the design, publication, and distribution of high-quality retail and custom typefaces. The company targets designers and corporate clients across various sectors, offering bespoke font solutions and logo refinement services. Their market position is that of a niche, high-quality Swiss type foundry with a focus on elevating design projects through typography. Technically, the website is built on a modern WordPress CMS platform with WooCommerce integration, utilizing common industry tools such as Google Analytics, Google Tag Manager, and Mailchimp for marketing and analytics. The site demonstrates good mobile optimization and SEO practices, supported by the Yoast SEO plugin and structured data markup. Security-wise, the site benefits from HTTPS encryption and a cookie consent mechanism, but lacks published privacy policies, terms of service, and incident response information, which are important for compliance and trust. Overall, the website is professional and functional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

A

Alena Stählin

alenastaehlin.ch

61

Alena Stählin is a Swiss graphic designer operating a small design studio specializing in publications, branding, posters, exhibition design, and web design. The business targets clients primarily in the cultural, educational, and artistic sectors, including museums, schools, institutions, and individual professionals. The website presents a professional portfolio with clear contact information and showcases multiple awards and notable clients, indicating a reputable market position within its niche. Technically, the website is built using modern web technologies, specifically the SvelteKit framework, and demonstrates good mobile optimization and user experience. However, there is a lack of visible security headers, privacy policies, and cookie consent mechanisms, which indicates room for improvement in compliance and security posture. From a security perspective, the site uses HTTPS (implied by the URL), but no additional security policies or incident response contacts are provided. No forms or data collection mechanisms were detected, reducing immediate data protection risks. The absence of privacy and cookie policies, however, may pose compliance risks under GDPR or similar regulations. Overall, the website is professional and trustworthy in terms of business credibility and content quality but requires enhancements in privacy compliance and security best practices to reduce risk and improve user trust.

I

it’s mee

its-mee.com

53

it’s mee is a small visual communication agency based in Basel, Switzerland, specializing in conceptualizing and designing visual identities, exhibitions, websites, and publications. The website serves as a professional portfolio showcasing their projects primarily in the cultural and publication sectors. The company appears to be well-established with a domain age consistent with its founding date in 2017. The business targets clients seeking high-quality visual communication services in the local region. Technically, the website is built on WordPress using common libraries such as jQuery, Masonry.js, and MediaElement.js, with SEO optimization via the All in One SEO plugin. Hosting is provided by a German hosting provider. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Analytics are handled by Matomo, indicating some privacy-conscious tracking. From a security perspective, HTTPS is enabled, but DNSSEC is not configured, and no security headers are detected, which are areas for improvement. There is no visible privacy or cookie policy, nor any incident response or security policy pages, indicating compliance gaps especially regarding GDPR. Contact information is clearly provided, but no forms are present on the homepage. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening to improve its risk posture and user trust.

R

Rocket Ruby

rocketruby.ch

51

Rocket Ruby is a small, established visual communication studio based in Basel and Luzern, Switzerland, operating since 2011. The company specializes in comprehensive design solutions including corporate design, web development, infographics, and book design, targeting businesses and organizations seeking professional visual communication services. The website reflects a consistent and professional brand image with a portfolio of diverse projects demonstrating their expertise. Technically, the site is built on WordPress, utilizing standard web technologies such as HTML5, CSS3, JavaScript, and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is provided via email and physical address, but no phone or social media links are available. Overall, the website is trustworthy and professional, with room for improvement in security and privacy transparency.

The website www.jaschwyz.ch is currently inaccessible due to a Cloudflare security challenge page requiring human verification via Turnstile captcha. As a result, no business content, metadata, or contact information is available for analysis. The site appears to be protected by Cloudflare's WAF, which blocks automated access and limits visibility into the site's actual content and services. Without access to the underlying content, it is not possible to assess the company's market position, services, or technical infrastructure in detail. The security posture is difficult to evaluate beyond the presence of Cloudflare protection. Overall, the site is currently in a blocked state, preventing comprehensive analysis.

Typical Organization for Standards & Order is a creative entity showcasing a broad portfolio of design and publication projects including visual identity, exhibitions, packaging, films, and typeface design. The website serves primarily as a portfolio platform targeting creative professionals and clients interested in design services. The business appears to be a small-sized organization founded in 2014, with a consistent brand presence and a well-structured website built on WordPress CMS. Technically, the site uses modern web technologies including jQuery, WooCommerce, and Google Analytics, with good mobile optimization and SEO practices. However, the security posture is moderate with basic SSL but lacking DNSSEC and security headers, and no visible privacy or cookie policies, which impacts compliance and trust. Overall, the domain registration is consistent and legitimate, supporting the business claims. Strategic improvements in security and privacy compliance would enhance the organization's trustworthiness and risk profile.

The website eye-able.org is currently inaccessible due to a Cloudflare error 525 indicating an SSL handshake failure between Cloudflare and the origin server. This prevents any meaningful content from being delivered to visitors, resulting in a minimal error page with no business or contact information. The domain is very new, registered in March 2024, and hosted via IONOS SE with Cloudflare DNS. The lack of DNSSEC and SSL misconfiguration reduces the trustworthiness and security posture of the site. No privacy, cookie, or terms of service policies are present, and no forms or tracking technologies are detected. Overall, the website is effectively blocked from analysis due to the WAF error page.

The website bet-pmi.in is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) blocking access with a 403 Forbidden error. This prevents any meaningful content analysis or business information extraction. The site uses HTTPS with modern TLS 1.3 and HTTP/2 protocols, indicating a secure hosting environment, but no visible security headers or policies are present on the blocked page. The lack of accessible content and privacy-protected WHOIS data limits the ability to verify the legitimacy or business details of the domain. Overall, the site appears to be either under strict security controls or potentially inactive, resulting in a low trust and credibility score.

A

Atelier Mondial

ateliermondial.com

50

Atelier Mondial is a small, regionally focused non-profit arts organization based in Switzerland that supports artists through scholarships and residencies abroad. The website reflects a professional and consistent brand presence, targeting artists and cultural professionals primarily in the Basel and surrounding regions. The organization collaborates with multiple cultural partners and provides detailed information about events, artists, and programs. Technically, the website uses a mix of older and modern JavaScript libraries and is hosted on a provider associated with the domain's nameservers. While the site is mobile-optimized and offers a good user experience, some technical debt is evident in the use of outdated libraries and lack of advanced security headers. Security posture is moderate with HTTPS enabled and domain transfer protection, but DNSSEC is not enabled and no incident response or vulnerability disclosure policies are published. Privacy compliance is strong with a clear cookie consent mechanism and a privacy policy in German. Overall, the website is trustworthy and safe, with no adult or questionable content detected.

The website serverdrift.com currently presents no accessible content, with an empty HTML body and no metadata, scripts, or visible business information. The domain is registered since 2002 with a long expiry date, indicating a potentially established business, but the lack of website content suggests the site is either down, under maintenance, or blocked by security mechanisms. No privacy, cookie, or terms of service policies are present, nor any contact or security-related information. The technical infrastructure cannot be assessed due to the absence of content and metadata. Security posture is poor with no visible HTTPS or security headers. Overall, the site is not currently usable or trustworthy for visitors or customers.

H

House of Winterthur

winterthur.com

61

House of Winterthur operates as a regional promotional entity focusing on tourism, culture, and business development in Winterthur, Switzerland. The website serves as a comprehensive portal for visitors and locals to explore cultural events, city tours, and business opportunities. The organization positions itself as a key regional player with a strong digital presence and partnerships with notable regional and national tourism bodies. Technically, the website is built on the Contao CMS platform, leveraging modern web technologies and third-party marketing and analytics tools such as Google Analytics and HubSpot. The site is mobile optimized and provides a good user experience with clear navigation and rich content. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements such as enabling DNSSEC and adding security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear policies and consent mechanisms in place. Overall, the website reflects a professional and trustworthy regional promotion platform with moderate technical sophistication and good compliance practices.

J

JUNGKUNST

jungkunst.ch

47

JUNGKUNST is a cultural event organizer hosting an art and music festival in Winterthur, Switzerland, scheduled for October 2025. The website serves as an information portal for the event, providing details about dates, location, participating artists, and opportunities for sponsorship and support. The target audience is the general public interested in arts and culture within the region. The business model revolves around event organization, sponsorships, and community engagement. Technically, the website uses standard web technologies including jQuery and integrates Facebook Pixel for tracking. The site is served over HTTPS with good SSL configuration, and performance is moderate with good mobile optimization. However, there is no detected CMS or advanced frameworks, suggesting a custom or lightweight platform. SEO and accessibility are basic but adequate for the site’s purpose. From a security perspective, the site employs HTTPS and secure form submission via Mailchimp for newsletter subscriptions. However, it lacks security headers and explicit security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. User tracking is moderate due to Facebook Pixel usage. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional and trustworthy, with a moderate security posture and good business credibility. Recommendations include implementing security headers, adding cookie consent, publishing security policies, and enhancing privacy compliance to improve trust and security posture.

D

DESIGNGUT

designgut.ch

47

DESIGNGUT is a Swiss-based platform organizing an annual design exhibition focused on sustainable products including fashion, accessories, jewelry, ceramics, and furniture. It serves as a marketplace and showcase for approximately 80 sustainable Swiss designers, positioning itself as a niche leader in sustainable Swiss design exhibitions. The website content is rich and well-structured, targeting consumers interested in sustainable and Swiss-made design products. Technically, the website uses standard web technologies such as HTML5, CSS3, jQuery, and Fancybox, with a custom CMS inferred from URL patterns. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Social media presence is strong, with multiple Facebook and Instagram links for exhibitors and the event itself. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

The website www.winti-piano.ch is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks direct access to the site's content. As a result, no business-specific information, contact details, or policies are available for analysis. The site appears to be protected by Cloudflare's WAF, indicating a focus on security but limiting external visibility. The lack of accessible content prevents a full assessment of the business model, services, or market positioning. Technically, the site uses modern security mechanisms but lacks visible SEO, accessibility, or privacy compliance features due to the block. The security posture is difficult to evaluate fully but benefits from Cloudflare's protection. Overall, the site scores low on content quality and business credibility due to inaccessibility.

R

Rast Geigenbauer GmbH

rast-violins.ch

52

Rast Geigenbauer GmbH is a well-established master violin maker workshop located in Zurich, Switzerland, with a history dating back to 1969. The company specializes in the rental, repair, restoration, new construction, and sale of string instruments such as violins, violas, cellos, and double basses. Their market position is that of a trusted local expert with a strong reputation in craftsmanship and personalized service. The website reflects a professional and consistent brand image targeting musicians and enthusiasts in the region. Technically, the website is built on WordPress using the Elementor framework, incorporating modern web technologies such as jQuery and Google Maps embeds. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Accessibility features are enhanced by the OneTap plugin, indicating a commitment to inclusive design. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes several security headers. There are no visible vulnerabilities or exposed sensitive data. However, the absence of a cookie consent mechanism and published security or incident response policies indicates room for improvement in compliance and transparency. Overall, the website presents a low-risk profile with strong business credibility and technical implementation. Strategic enhancements in privacy compliance and security policy publication would further strengthen trust and regulatory adherence.

Jugendmusik Glattal is a small, community-focused youth music organization based in Switzerland's Glattal region. The website serves as an informational and engagement platform for youth musical education, orchestras, and community concerts. It is supported by local sponsors and maintains an active presence on social media platforms such as Facebook and Instagram. The technical infrastructure is built on a modern stack including jQuery, Owl Carousel, and Clubdesk CMS, providing a responsive and user-friendly experience. Security measures include HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not evident. Overall, the website is well-structured and trustworthy, with no signs of malicious content or vulnerabilities. Strategic improvements could focus on enhancing security headers, publishing clear security and incident response policies, and providing more direct contact information to improve user trust and compliance.

B

Bühler Geigenbau

buehler-geigenbau.ch

51

Bühler Geigenbau is a specialized violin making atelier based in Winterthur, Switzerland, offering a range of services including instrument rental, sales, repairs, and restorations focused on string instruments such as violins, violas, cellos, and double basses. The business targets musicians and students seeking quality handcrafted and factory instruments along with accessories. The website is professionally designed using Webflow CMS and modern web technologies, providing clear navigation and relevant content. The technical infrastructure is solid with HTTPS enabled and minimal tracking via Plausible Analytics, reflecting a moderate digital maturity. Security posture is generally good with no visible vulnerabilities or exposed sensitive data; however, the absence of security headers and formal security policies indicates room for improvement. Privacy compliance is basic, lacking cookie consent mechanisms and detailed GDPR compliance indicators. Overall, the website presents a trustworthy and professional image appropriate for a small local business in the musical instrument sector.

S

SPOT Agency

spotwerbung.ch

66

SPOT Agency is a creative digital agency based in St. Moritz, Switzerland, specializing in brand development, digital products, and e-commerce solutions with a focus on tourism, sport, and lifestyle sectors. Established in 1990, the agency combines strategic thinking, creative design, and technological expertise to serve its clients effectively. The company is part of the SPOT Group, indicating a broader organizational structure and resources. Their website reflects a professional and modern digital presence, showcasing their portfolio and services clearly to their target audience of tourism and lifestyle businesses. Technically, the website is built using modern frameworks such as Next.js and React, with media handled via Mux Player and content managed through DatoCMS. The site is well-optimized for performance, mobile responsiveness, and accessibility, indicating a mature digital infrastructure. SEO and metadata are properly implemented, enhancing discoverability and user experience. From a security perspective, the website enforces HTTPS, includes standard security headers, and does not expose sensitive information. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not published, representing areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, SPOT Agency presents a trustworthy and professional digital footprint with strong business credibility and technical maturity. Strategic recommendations include enhancing security transparency, publishing incident response and vulnerability disclosure information, and potentially obtaining recognized security certifications to further boost trust and compliance.

N

Niedersächsischer Fußballverband e. V. (NFV)

nfv-fussballschule.de

46

The Niedersächsischer Fußballverband e. V. (NFV) operates the Matthäi-Fußballschule, a well-established football training school for youth aged 7 to 14, located in Barsinghausen, Germany. The school has a strong regional presence with over 22,000 participants since its founding in 2005 and benefits from partnerships with reputable brands such as adidas, Volkswagen, and AOK. The website effectively communicates its services, schedules, and news, targeting young football enthusiasts and their families. Technically, the site is built on TYPO3 CMS, employs modern web technologies, and is mobile-optimized with good SEO practices. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms, and integrates Google Analytics with privacy considerations, though it lacks some advanced security headers and explicit security policies. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting the organization's credibility and user trust.

D

Deutscher Fußball-Bund

dfb.de

62

The Deutscher Fußball-Bund (DFB) website serves as the official digital presence of Germany's football governing body, providing comprehensive information about the national teams, ticket sales, news updates, and merchandise. The site targets football fans, sports enthusiasts, and stakeholders within the football community. It holds a strong market position as the authoritative source for German football-related content and services. Technically, the website leverages modern frameworks such as React and Gatsby, hosted on AWS infrastructure, ensuring fast performance, mobile optimization, and good accessibility. The integration of privacy consent management and self-hosted analytics reflects a mature digital infrastructure. Security-wise, the site enforces HTTPS and employs multiple security best practices, though explicit security and incident response policies are not publicly visible in the provided content. Overall, the website is professional, trustworthy, and well-maintained, with room for improvement in publishing explicit privacy and security policies.