High-risk security reports

A

AVANZINI

avasped.it

46

Avanzini is a well-established Italian logistics and transportation company with over 30 years of experience, primarily serving clients in Italy and across Europe. The company offers comprehensive transport and integrated logistics solutions, including specialized services for wine, beer, and alcoholic products. Their market position is strong in Verona, supported by multiple operational sites and a significant volume of shipments and warehouse space. Technically, the website employs modern JavaScript libraries and frameworks, ensuring a good user experience with mobile optimization and basic accessibility. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism and GDPR-aligned policies. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Overall, the website reflects a professional and trustworthy business with clear contact information and certifications that enhance credibility.

A

Anexa Logística

anexalogistica.com

48

Anexa Logística is a medium-sized Spanish logistics company specializing in omnichannel logistics, global forwarding, and land transport services. With over 20 years of experience, it serves B2B, B2C, and B2B2C clients, offering comprehensive supply chain solutions including customs clearance and value-added services. The website is professionally designed using WordPress and Elementor, featuring modern technologies and GDPR-compliant privacy and cookie policies. Security posture is good with HTTPS and reCAPTCHA protections, though some security headers could be improved. The absence of WHOIS data reduces domain trustworthiness, but the business content and certifications support legitimacy. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

A

Allied Express Cargo S.L.

allied-express.com

45

Allied Express Cargo S.L. is a Spanish logistics and transportation company founded in 2000, providing national and international distribution, customs clearance, and supply chain management services. The company is a member of Grupo ASTRE, which enhances its market position and service network. The website reflects a professional business with clear service offerings targeted at businesses requiring logistics solutions. Technically, the site is built on WordPress with common plugins and uses Google Analytics for tracking. The site is mobile optimized and has good design and navigation, though SEO and accessibility are basic. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit incident response or vulnerability disclosure policies are present. Privacy compliance is basic with privacy and cookie policies present but no consent mechanism. Overall, the domain age and WHOIS data support the legitimacy of the business. Strategic improvements in security and privacy compliance would enhance trust and resilience.

T

Transports Allemand

transports-allemand.fr

46

Transports Allemand is a well-established French transportation and logistics company specializing in road freight, storage, and freight forwarding services. Founded in 1942, it operates primarily in the regional, national, and international transport sectors and is a member of the ASTRE European transport group. The company emphasizes reliability, rapid delivery, and sustainable practices, including a fully Euro 6 compliant vehicle fleet and an ongoing RSE commitment. Their website reflects a professional business presence with clear service offerings and contact information. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted by OVH, and incorporates modern web technologies including Google Tag Manager and Facebook SDK for analytics and marketing. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. The domain registration data aligns well with the company's history and business claims, supporting legitimacy. The site complies with GDPR through cookie consent and privacy policy presence. No WAF or blocking mechanisms were detected, allowing full content access. Strategically, the company should enhance its security transparency by publishing security policies and incident response contacts, improve accessibility, and maintain regular audits of third-party scripts. These steps will strengthen trust and compliance in an increasingly regulated environment.

T

Tempologis

tempologis.fr

42

Tempologis is a French transportation and logistics group comprising subsidiaries Auto Express Moderne (AEM) and Transports Pluviaud Organisation (TPO). The company offers tailored transport and logistics solutions including road freight, specific transport, warehousing, packaging, and related services. It is a member of the ASTRE network, enhancing its market reach and service quality. The website demonstrates a mature digital presence with modern technologies, SEO optimization, and GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. WHOIS data is unavailable, which slightly impacts domain trust but does not detract from the business legitimacy evidenced by certifications and customer testimonials.

I

Inside Groupement Flo

inside-flo.fr

42

Inside Groupement Flo operates a secure login portal likely intended for members or employees, providing controlled access to internal services. The website is minimalistic, focusing on authentication without public-facing content or detailed business descriptions. The technical infrastructure uses the Foundation CSS framework and jQuery library, hosted via OVH, a reputable provider. Mobile optimization and accessibility are basic but functional. Security posture shows some positive practices such as CSRF token implementation in the login form; however, the absence of visible security headers and privacy policies indicates room for improvement. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the site is moderately secure but lacks transparency and compliance documentation.

The website porotech.com is currently inaccessible due to a security challenge page implementing a JavaScript-based proof-of-work CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) or similar security mechanism blocking direct access to the site's content. As a result, no business, contact, or policy information is available for analysis. The visible page is minimal, focused solely on verifying the visitor is not a bot, with no SEO or user engagement content. The technical infrastructure includes modern JavaScript features and uses AWS Cloudfront CDN for content delivery. However, no security headers or SSL configuration details are visible in the provided data. Overall, the site’s security posture cannot be fully assessed due to the blocking mechanism, and the lack of accessible content limits the ability to evaluate privacy compliance or business credibility.

S

SECURTRUCK

securtruck.fr

47

SECURTRUCK is a French company specializing in anti-siphoning technology for fuel tanks, targeting transportation and fleet management sectors. Their flagship product, SECURTANK, uses advanced 3D digital sensors to detect tampering and theft attempts in real-time. The company positions itself as a niche provider with a focus on innovation and ease of installation, emphasizing a non-intrusive, tool-free setup. The website reflects a professional and modern digital presence built on WordPress with Elementor, featuring multimedia content to demonstrate product capabilities. Social media integration and client logos enhance credibility. However, the absence of a privacy policy and explicit security policies indicates room for compliance improvement.

F

Förderverein Landesgartenschau Bad Nenndorf 2026

foerderverein-laga26.de

44

The Förderverein Landesgartenschau Bad Nenndorf 2026 is a small non-profit organization dedicated to supporting the Landesgartenschau 2026 event in Bad Nenndorf, Germany. The website serves as an informational and engagement platform for local citizens, clubs, and businesses to participate in the event's development and related projects. The organization emphasizes sustainable and community-focused development of local parks and infrastructure. Technically, the website is built on WordPress with Elementor and Astra theme, employing modern web technologies and a cookie consent mechanism via Borlabs Cookie. Security posture is moderate, with HTTPS enabled but lacking some recommended security headers and formal privacy documentation. No contact emails or phone numbers are explicitly provided in the accessible content, which limits direct communication channels. Overall, the site is professionally designed, mobile-optimized, and trustworthy for its intended audience, but could improve compliance and security practices.

L

LaGaSaGa

lagasaga.de

35

LaGaSaGa is a German cultural storytelling project centered around the character Nennia, the guardian of the Süntelbuchen forests near Bad Nenndorf. The website promotes stories, podcasts, and cultural events related to the Landesgartenschau 2026 in Bad Nenndorf. The site is built on WordPress with modern SEO and multimedia integration, including podcasts on Spotify and embedded YouTube videos. The technical infrastructure is solid, hosted on kasserver.com with HTTPS enabled and uses popular plugins like Yoast SEO and WPBakery Page Builder. Security posture is good with no obvious vulnerabilities or exposed sensitive data, but lacks some security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Overall, the site is professional, trustworthy, and well-branded but should improve compliance and security documentation.

C

Central Asian Expo Uzbekistan

caexuzbekistan.com

48

CAEx Uzbekistan is a modern international exhibition center located in Tashkent, Uzbekistan, serving as a major business arena in Central Asia. It offers versatile pavilion spaces adaptable for various projects and event formats. The center is a member of prestigious international exhibition associations UFI and IAEE, underscoring its commitment to quality and international standards. The website targets businesses and event organizers seeking exhibition and event hosting services in the region. Technically, the website employs modern web technologies including Swiper.js for interactive galleries, AOS for animations, Google Tag Manager and Yandex Metrika for analytics, and a live chat widget for customer engagement. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. The design is professional, mobile-optimized, and provides clear navigation and relevant content. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and no explicit security headers were detected, which are areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Contact information is clearly provided, but no incident response or vulnerability disclosure policies are available. Overall, the website presents a trustworthy and professional image suitable for its business purpose. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance its security posture and regulatory adherence.

O

O‘zbekiston Avtomobil Biznesi Uyushmasi

abauzbekistan.uz

47

O‘zbekiston Avtomobil Biznesi Uyushmasi is a national non-profit association uniting automotive manufacturers, component producers, distributors, and dealers in Uzbekistan. The organization aims to develop the automotive industry, promote standards, support export and localization, and represent member interests. The website is professionally designed, content-rich, and targets industry stakeholders and partners. Technically, it uses modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and CSRF protections, though some security headers and policies could be improved. Privacy compliance is basic with a cookie consent mechanism and privacy policy present. Overall, the domain registration aligns well with the business founding date, supporting legitimacy.

K

Komtrans Tashkent + Futuroad Expo Tashkent

comtrans.uz

49

Komtrans Tashkent + Futuroad Expo Tashkent is a newly established international exhibition platform focused on cargo and commercial transport in Uzbekistan and Central Asia. The website serves as a B2B platform for showcasing products, technologies, and solutions in the commercial transport sector. The event is positioned as a leading regional exhibition with a professional digital presence built on the Tilda CMS platform. The technical infrastructure includes modern web technologies and integration with Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy and cookie policies, indicating room for improvement in compliance and security maturity. Overall, the website is functional, professionally designed, and trustworthy, with clear contact information and social media presence. Strategic recommendations include enhancing privacy compliance, implementing security headers, and publishing incident response policies to strengthen trust and security posture.

B

Bundesverband BioEnergie e.V. (BBE)

fachverband-holzenergie.de

48

Fachverband Holzenergie is a German industry association dedicated to promoting sustainable wood energy usage. It operates under the umbrella of Bundesverband BioEnergie e.V. (BBE) and provides advocacy, publications, events, and working groups to support the wood energy sector. The website is professionally designed, content-rich, and targets industry stakeholders, policymakers, and environmental advocates. The association holds a solid market position within Germany's renewable energy landscape, focusing on sustainable forestry and climate protection through wood energy. Technically, the website is built on the Concrete5 CMS platform, utilizing modern JavaScript libraries such as jQuery and LayerSlider for interactive content. The site is mobile-optimized with good navigation and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and does not provide visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were found. Analytics are handled via Matomo, emphasizing privacy compliance with cookie opt-in. Overall, the website presents a trustworthy and professional front for the Fachverband Holzenergie association. Strategic improvements in security headers, incident response transparency, and accessibility would enhance its security posture and compliance. The domain WHOIS data is minimal but consistent with the website's German focus, supporting legitimacy. No WAF or blocking mechanisms interfere with content access.

S

Schweizerischer Katholischer Presseverein

skpv.ch

49

The Schweizerischer Katholischer Presseverein (SKPV) is a well-established non-profit organization dedicated to promoting Catholic media work in Switzerland. With a history spanning over a century, the organization offers key services including a media kiosk, educational courses for church media professionals, a comprehensive media list, and a historical chronicle of Catholic media. The website reflects this mission with focused content and a consistent brand presence. Technically, the site is built on a modern WordPress platform using the Kadence theme and blocks, ensuring good mobile optimization and moderate performance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

B

b&s creations

bs-creations.ch

48

b&s creations is a small Swiss-based service provider specializing in design, web design, and text content creation. The website presents basic information about their services and showcases client projects, targeting small to medium businesses or individuals seeking creative digital services. The technical infrastructure is based on CMSimple with older jQuery libraries and includes basic interactive elements such as sliders and cookie consent banners. Security posture is limited with no visible HTTPS confirmation or security headers, and no explicit contact emails or phone numbers are provided, relying on a contact form instead. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page in German. Overall, the website is functional but basic in design and security, with room for modernization and enhanced trust signals.

G

ge-webdesign.de

ge-webdesign.de

39

ge-webdesign.de is a small, local web design service provider based in Berlin, Germany, specializing in affordable and technically sound website creation using the CMSimple platform. The website offers CMSimple templates, plugins, and installation services, targeting small businesses and individuals in the Berlin-Brandenburg region. The business emphasizes over 20 years of experience and provides a general license for its templates and plugins. Technically, the website is built on CMSimple 5.21 with jQuery 1.12.4 and standard HTML/CSS, showing good mobile optimization and SEO practices but lacking modern security headers and cookie consent mechanisms. Security posture is moderate with no visible vulnerabilities but could be improved by updating libraries and enhancing SSL and header configurations. Overall, the site is accessible without WAF or blocking, contains no adult or questionable content, and demonstrates moderate trustworthiness with room for technical and privacy compliance improvements.

M

Mundharmonika Berlin

mundharmonika-berlin.de

39

Mundharmonika Berlin is a small local business specializing in the sale and consultation of Mundharmonika musical instruments, as well as live music performances in Berlin. The website serves as a platform for showcasing the business offerings, including an online shop and detailed information about the proprietor's musical background. The business targets music enthusiasts and players of the harmonica, focusing on a niche market within the Berlin area. Technically, the website is built on the CMSimple CMS platform, utilizing standard web technologies such as HTML5, CSS, and jQuery. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. Hosting appears to be provided by a German hosting provider associated with the domain's nameservers. From a security perspective, the website lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and user protection. No HTTPS or SSL configuration details were provided, which is a critical area for improvement. The site does not disclose any formal security policies or incident response contacts, indicating a low maturity in security governance. Overall, the website is functional and professional for a small business but requires enhancements in security posture, privacy compliance, and technical modernization to improve trust and user experience.

V

Verein Vertrauensstelle Kunst und Kultur

vertrauensstelle.at

48

The Verein Vertrauensstelle Kunst und Kultur operates as an independent trust center providing confidential, professional advice and support for individuals affected by abuse of power, harassment, and violence within the arts and culture sector in Austria. The organization also promotes sustainable cultural change through prevention initiatives. Their market position is that of a specialized non-profit entity serving a niche audience within the cultural sector. The website is well-structured, professionally designed, and fully accessible with clear navigation and mobile optimization. Technically, it is built on WordPress with modern plugins and privacy-conscious analytics (Matomo) implemented. Security posture is strong with HTTPS enforced and privacy policies aligned with GDPR requirements, although some security headers and explicit incident response contacts are missing. Overall, the domain registration and WHOIS data are consistent with the organization's claims, supporting legitimacy and trustworthiness.

S

sports4everybody

kitz-extremechallenge.com

49

The website www.kitz-extremechallenge.com represents the World Extreme Run Challenge (WERC), an extreme sports event organized by the non-profit association sports4everybody. The event is held on the famous Kitzbühel Streif ski slope and aims to challenge participants with an up-and-down mountain run. The business model is non-profit, focusing on community engagement and supporting Austrian sports talents. The website content is professionally presented in German, with clear navigation and relevant event information. The site is supported by multiple reputable partners and sponsors, enhancing its credibility. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and popular libraries such as jQuery and Owl Carousel. It employs Matomo analytics for user tracking with privacy considerations. The site is mobile-optimized and performs moderately well. However, no CMS or hosting provider details are explicitly detected. Security posture is good with HTTPS enforced and secure form handling, but lacks some security headers and incident response information. From a security and compliance perspective, the site includes a privacy policy and cookie consent mechanism compliant with GDPR. Contact information is clearly provided, but no terms of service or security policy documents are found. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional website presence. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is a credible and professional platform for the WERC event but should address WHOIS transparency and enhance security headers and policies to improve trust and compliance.

J

Jublasurium

jublasurium.ch

45

Jublasurium is a Swiss non-profit organization focused on organizing a national Pentecost camp for youth under the Jungwacht Blauring umbrella. The website serves as an informational and community engagement platform, targeting youth members and supporters within Switzerland. It provides event details, media resources, and social media integration, reflecting a well-established niche presence in the non-profit youth sector. Technically, the site is built on a custom CMS framework called Ongoing Base, utilizing modern web technologies such as HTML5, CSS3, and JavaScript with slick carousel for interactive content. The site is mobile-optimized and performs moderately well, with good SEO practices including structured data markup. Security-wise, the website enforces HTTPS and avoids exposing sensitive data but lacks some security headers and explicit incident response or vulnerability disclosure information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professional, though improvements in security headers and privacy mechanisms are recommended.

PŸUR is a German telecommunications provider specializing in internet and TV services, targeting private customers, businesses, and housing industries. The website presents a professional and modern digital presence with clear service offerings and a strong market position as indicated by awards such as 'Testsieger bei connect'. The technical infrastructure leverages modern web technologies including React and Chakra UI, with integrated analytics and tag management tools from Google and Adobe. Security posture is solid with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly detailed. The absence of WHOIS data limits full domain legitimacy verification but the overall business credibility remains high based on website content and branding.

C

Careproof DE

careproof.de

47

Careproof DE is a German-based digital platform focused on the digitalization of healthcare and nursing services. The website serves as an information hub and is developing innovative software solutions aimed at revolutionizing digital care. The platform positions itself as a future leader in the digital care sector, targeting professionals and stakeholders interested in healthcare technology advancements. The site is built on WordPress using the Divi theme, with modern SEO and GDPR compliance tools integrated, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, accessible, and trustworthy, with no signs of malicious activity or content blocking.

V

Veynes

ville-veynes.fr

48

The website www.ville-veynes.fr is a French local news and informational portal branded as 'Veynes - l'actu live'. It provides a variety of content categories including news, auto, business, finance, real estate, leisure, home, fashion & beauty, health, and technology. The site targets a general French-speaking audience interested in current events and lifestyle topics. The business model appears to be content publishing with monetization likely through advertising and affiliate links. The site is small in scale and uses WordPress CMS with popular plugins such as Yoast SEO, WP Rocket, Elementor, and WPBakery Page Builder, indicating a moderate level of digital maturity and technical infrastructure.

I

Institut für ökologische Wirtschaftsforschung

ioew.de

48

The Institut für ökologische Wirtschaftsforschung (IÖW) is a leading German research institute specializing in sustainability and ecological economic research. It provides strategies and actionable insights for sustainable economic practices, targeting academics, policymakers, and civil society. The website reflects a mature digital presence with comprehensive content, including news, publications, and project information. The institute maintains a strong market position in sustainability research with a medium-sized organizational footprint. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries like jQuery and SlickNav for navigation, and uses Matomo for privacy-conscious analytics. Cookie consent mechanisms are implemented in compliance with GDPR, enhancing user privacy. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and session management cookies properly configured. However, explicit security headers and published security policies are absent, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the business, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its audience effectively. Strategic enhancements in security transparency and contact information visibility could further strengthen trust and compliance.

The website barbuck.com is currently inaccessible beyond a robot challenge screen that implements a JavaScript-based proof-of-work CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) or similar security mechanism designed to block automated access and mitigate abuse. Due to this blocking, no substantive business content, contact information, or policy documents are accessible for analysis. The domain is registered since 2011 with a reputable registrar and uses Google Cloud DNS servers, suggesting a legitimate registration. However, the absence of DNSSEC and lack of visible security headers or privacy policies reduces the overall trust and security posture. The technical infrastructure includes advanced client-side cryptographic challenges, but the user experience is minimal and not optimized for content delivery or SEO. Overall, the site is secure from automated abuse but lacks transparency and accessible business information.

E

Employer-Branding-Suite

employer-branding-suite.com

40

Employer-Branding-Suite.com is a German-based small business specializing in comprehensive employer branding solutions targeted at companies seeking to attract and engage talent, particularly SMEs. Their offerings include career websites, recruiting videos, photo impressions, video interviews, and social media packages. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins and frameworks, ensuring a stable and maintainable infrastructure. Security posture is good with HTTPS, cookie consent, and spam protection via Google reCAPTCHA, though some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie management. Overall, the site demonstrates high professionalism and trustworthiness with transparent business information and active customer engagement channels.

L

Domain Default page

lunaweb.org

45

The website lunaweb.org currently serves as a default placeholder page generated by Plesk, indicating that the domain is registered but not actively used for a dedicated business or service. The page primarily promotes Plesk hosting control panel and related tools such as Sitejet Builder and WP Guardian, targeting web professionals and site owners interested in hosting management. The website content is minimal and basic, lacking any direct business information or contact details. From a technical perspective, the site uses standard HTML, CSS, and JavaScript with hosting infrastructure involving Cloudflare DNS and Plesk control panel. The site is mobile responsive with basic accessibility and moderate performance. However, there are no advanced frameworks or CMS detected, and no analytics or tracking technologies are in use. Security posture is limited; no security headers are present, DNSSEC is not enabled, and there is no visible HTTPS enforcement information. The absence of privacy, cookie, and terms of service policies indicates low compliance with privacy regulations. The WHOIS data shows a long-registered domain with a reputable registrar but no privacy protection, consistent with a domain held but not actively developed. Overall, the site scores low to moderate on content quality, technical implementation, security, privacy compliance, and business credibility. It is safe for general audiences but lacks substantive business or security features. Strategic improvements should focus on activating the domain with real content, implementing security best practices, and adding compliance documentation.

W

websiteria

websiteria.ch

48

websiteria.ch is a Swiss-based small technology service provider specializing in website creation, revision, and hosting services, complemented by Joomla! refresher courses and data protection consulting. The website is professionally designed with consistent branding and clear navigation, targeting individuals and businesses seeking reliable web services in Switzerland. The technical infrastructure relies on classic web technologies including jQuery and custom JavaScript, with moderate performance and basic mobile optimization. Security posture is adequate with SSL usage and cookie consent mechanisms, but could be improved by updating outdated libraries and implementing security headers. Overall, the site is trustworthy and compliant with GDPR, though contact information is not explicitly visible on the homepage HTML. Strategic improvements in security and transparency would enhance the business's digital maturity and customer trust.

J

Jubla Plaffeien

jubla-plaffeien.ch

41

Jubla Plaffeien is a small non-profit youth organization based in Switzerland, offering engaging leisure activities and diverse holiday camps for children and adolescents. The website serves as a community hub providing information about upcoming events, camps, and organizational details, targeting local youth and their families. The organization maintains an active presence on social media platforms such as Instagram and Facebook to foster community engagement. Technically, the website is built on the Ongoing CMS platform, utilizing standard web technologies including JavaScript, CSS, and HTML5. The site is mobile-optimized with good navigation and SEO practices, although performance is moderate. Security is enforced via HTTPS, but lacks advanced security headers and explicit privacy compliance mechanisms such as cookie consent banners. The security posture is adequate for a small non-profit, with no evident vulnerabilities or exposed sensitive data. However, improvements are recommended in implementing security headers, privacy policies with GDPR compliance, and incident response contact information to enhance trust and compliance. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent domain registration. Overall, Jubla Plaffeien presents a trustworthy and professionally maintained online presence suitable for its community-focused mission, with room for enhancement in privacy and security practices.

Jubla Bösingen is a small non-profit youth organization based in Switzerland, focused on organizing youth camps, events, and community activities. The website serves as an information hub for upcoming camps, galleries, and organizational details, targeting children, youth, parents, and local community members. The business model is community-driven, emphasizing youth engagement and event management within a local context. Technically, the website is built on WordPress with common plugins for galleries and event management, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

J

Jungwacht Blauring Thun

jublathun.ch

39

Jungwacht Blauring Thun is a local non-profit youth organization based in Thun, Switzerland, offering leisure activities and holiday camps for children and adolescents. The website serves as an information hub for upcoming events, registration, and community engagement, including a WhatsApp channel for timely updates. The organization targets families and youth in the local community, positioning itself as a trusted provider of youth recreational services. Technically, the website is built on Neos CMS using the Ongoing.Base framework, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is limited, with no explicit cookie consent or comprehensive privacy policy found. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

J

Jubla Dreif

jubla.be

40

Jubla Dreif is a small, non-profit youth organization based in Bern, Switzerland, providing free recreational activities and summer camps for children aged 5 to 16. The organization is affiliated with the Dreifaltigkeitskirche but operates independently of any religious denomination. The website serves as an informational and engagement platform for participants and their families, featuring activity schedules, photo galleries, and contact options. Technically, the site is built on WordPress with common plugins for photo galleries and GDPR compliance, and it employs Google reCAPTCHA for form security. While the site uses HTTPS and has basic cookie consent mechanisms, it lacks explicit privacy and terms of service pages, and security headers are not detected, indicating room for improvement in security posture. Overall, the website is functional, trustworthy, and appropriate for its target audience, but could benefit from enhanced privacy and security documentation.

Jubla Interlaken is a well-established Swiss non-profit youth organization founded in 1946, providing community, recreational, and developmental activities for children and teenagers in the Interlaken region. The website effectively communicates its mission and services, targeting local youth and families with a clear focus on group activities, camps, and social events. The organization maintains a consistent brand presence and offers multimedia content to engage visitors. Technically, the website is built on WordPress using popular plugins and frameworks such as Elementor and Bootstrap, ensuring a modern and responsive design. While performance is moderate and mobile optimization is good, accessibility and SEO could be further improved. The site uses HTTPS and includes a cookie consent mechanism, but lacks advanced security headers and explicit security policies. From a security perspective, the site demonstrates basic good practices such as HTTPS and cookie consent but lacks published security policies, incident response contacts, and security headers that would enhance protection. No critical vulnerabilities or suspicious content were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's profile. Overall, Jubla Interlaken's website is a credible and professional platform for its non-profit activities, with room for improvement in security posture and privacy compliance to better protect users and enhance trust.

J

Jungwacht Therwil

jwtherwil.ch

47

Jungwacht Therwil is a well-established non-profit youth organization based in Switzerland, focused on providing recreational and developmental activities for boys aged 8 to 15. The organization has a long history dating back to 1933 and offers a variety of group meetings, camps, and community events. The website serves as a comprehensive resource for members and interested parties, featuring event calendars, group information, merchandise, and contact details. Technically, the site uses a mix of legacy and modern JavaScript libraries, including multiple versions of jQuery, which may pose security and maintenance challenges. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, there are notable gaps in privacy compliance, as no privacy or cookie policies are present, and security headers are missing. The contact form collects user data but lacks visible advanced security measures. Overall, the site is trustworthy and credible but would benefit from security and compliance improvements.

Blauring Therwil is a small non-profit community organization based in Therwil, Switzerland, focused on youth engagement and local community activities. The website provides information about current events, annual programs, and organizational background, targeting local families and youth. The site uses Kirby CMS and includes social media links to Facebook and Instagram, indicating a modest but active digital presence. The technical infrastructure is basic but functional, with moderate performance and good mobile optimization. However, there is a lack of advanced SEO and accessibility features. Security posture is limited, with no detected security headers or privacy policies, which could expose the organization to compliance risks. No forms or sensitive data collection mechanisms are evident, reducing immediate risk but also limiting user engagement capabilities. Overall, the website is trustworthy but could benefit from enhanced security and privacy compliance measures.

Jubla Shop is an e-commerce platform operated by Jungwacht Blauring Schweiz, a Swiss youth organization. The website offers a range of merchandise, promotional items, tools, and gift cards targeted primarily at members and supporters of the organization. The business operates in a niche retail market within Switzerland, focusing on branded fan articles and related products. The site is well-branded and consistent with the organization's identity, providing clear contact information and social media links to engage its community. Technically, the website is built on the Sylius e-commerce platform with Bootstrap and Font Awesome for UI components. It demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The site uses secure HTTPS connections and includes CSRF tokens in forms, but lacks advanced security headers and privacy compliance mechanisms such as privacy and cookie policies. From a security perspective, the site shows a reasonable posture with no visible vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies and lack of security headers represent compliance and security gaps. The WHOIS data aligns well with the business entity, indicating legitimacy and trustworthiness. Overall, the site is safe, professional, and trustworthy but would benefit from enhanced privacy compliance and security hardening.

FUBIC is a German innovation center focused on transforming a former hospital site into a technology quarter emphasizing life sciences, health economy, and ICT. The project is notable for pioneering an all-electric, 100% renewable energy supply system for the campus, supported by a consortium of universities, startups, and energy companies, funded by the German Federal Ministry for Economic Affairs and Climate Action. The website is well-designed, content-rich, and uses modern web technologies, providing comprehensive information about the project, news updates, and multimedia resources. Security posture is adequate with HTTPS usage but lacks visible security headers and cookie consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, but the website's legitimacy is supported by its institutional affiliations and funding. Overall, the site presents a professional and trustworthy digital presence for a medium-sized research and innovation entity in the energy sector.

P

Printex AG

printex.ch

41

Printex AG is a Swiss-based printing company specializing in high-quality offset and digital printing, finishing, and design services. The company positions itself as a regional partner offering personalized and flexible printing solutions with a strong emphasis on craftsmanship and customer experience. The website reflects a professional and well-branded digital presence, targeting businesses and individuals seeking premium print products. Technically, the site is built on WordPress using the Avada theme and integrates common technologies such as jQuery and Yoast SEO, indicating a modern and maintainable infrastructure. Security-wise, the site benefits from HTTPS but lacks advanced security headers and visible security policies, which could be improved to enhance trust and compliance. Privacy compliance is a notable gap, with no privacy or cookie policies detected, potentially exposing the company to regulatory risks. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

W

Wohnbau Weil

wohnbau-weil.de

47

Wohnbau Weil is a small local real estate company based in Germany, specializing in housing market services, senior living facilities, social management, and tenant support. Their website provides information about available apartments, senior housing, social engagement initiatives, and tenant communications. The site is primarily informational with basic navigation and content structure, targeting residents and tenants in the Weil am Rhein area. Technically, the website is built with basic HTML and CSS without modern CMS or frameworks detected. Hosting appears to be provided by netcup based on DNS nameservers. The site lacks advanced technical features such as mobile optimization, accessibility enhancements, or SEO best practices. No analytics or tracking technologies are present, indicating minimal user data collection. From a security perspective, the website does not show evidence of HTTPS enforcement or security headers, which lowers its security posture. There are no visible privacy or cookie policies beyond a basic imprint/privacy page, and no incident response or vulnerability disclosure information is provided. The WHOIS data is consistent with the website's business profile, indicating legitimacy. Overall, the website is functional for its purpose but would benefit from improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

L

Lofo-Gewerbepark

lofo-gewerbepark.de

41

Lofo-Gewerbepark is a commercial real estate provider specializing in offering industrial and production land and properties in Weil am Rhein, Germany, strategically located in the tri-border area of Germany, France, and Switzerland. The website presents a professional image with clear business focus on attracting handcraft and production companies seeking growth opportunities in a well-connected location. The technical infrastructure is based on the Weblication® CMS platform, with a moderate performance profile and good mobile and accessibility features. Security posture is moderate, with HTTPS likely enabled but lacking explicit security headers and detailed security policies. Privacy compliance is adequate with accessible privacy and cookie policies, though terms of service and incident response information are missing. Overall, the site is trustworthy and suitable for its business purpose but could improve in security and contact transparency.

G

Gemeinde Zell ZH

zell.ch

40

The website www.zell.ch serves as the official digital presence of the Gemeinde Zell ZH, a small Swiss municipality. It provides comprehensive information about the community, including local governance, services, events, and economic activities. The site targets local residents, businesses, and visitors seeking municipal information or services. The business model is centered on public service delivery and community engagement, positioning the municipality as a trusted local authority. Technically, the website employs a modern CMS platform (i-web CMS) with a clean HTML5 and CSS3 implementation, leveraging JavaScript modules and Matomo analytics for visitor insights. The site is mobile-optimized and accessible, with good SEO practices and structured navigation. Performance is moderate, with no critical technical debt observed. From a security perspective, the site enforces HTTPS and uses secure login forms. However, it lacks explicit security headers and does not publish a dedicated security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with a clear privacy and cookie policy, including user consent for analytics. Overall, the website is a well-maintained, trustworthy municipal portal with a strong focus on community service. Strategic improvements in security policy transparency and header implementation could further enhance its security posture and user trust.

G

Gemeinde Wila

wila.ch

46

Gemeinde Wila operates as a local government entity providing administrative and community services to residents of Wila, Switzerland. The website serves as an information hub and service portal, offering access to online administrative functions, news, events, and official communications. The site targets local citizens and stakeholders seeking municipal information and services. Technically, the site is built on the Swiss eGovernment CMS GOViS, leveraging modern JavaScript libraries such as jQuery and Font Awesome for UI elements, and employs Matomo for privacy-conscious analytics tracking. The website demonstrates good mobile responsiveness, accessibility, and SEO practices, ensuring a positive user experience. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR, though it lacks explicit security policies or incident response disclosures. Overall, the site is trustworthy, professionally maintained, and aligned with the expectations for a municipal government portal.

S

Stiftung Leben mit Krebs

stiftung-leben-mit-krebs.de

39

Stiftung Leben mit Krebs is a German non-profit organization dedicated to improving the quality of life for people affected by cancer. The foundation operates multiple funding and charity projects aimed at supporting cancer patients and raising awareness. Their website is professionally designed using WordPress and Elementor, hosted on Cloudpit, and includes comprehensive privacy and cookie policies with consent management, reflecting a strong commitment to GDPR compliance. Contact information and social media presence are clearly provided, enhancing accessibility and trust. Technically, the website employs modern web technologies and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies could be improved. No WAF or blocking mechanisms interfere with content accessibility. Overall, the website presents a trustworthy and professional image suitable for its healthcare and non-profit mission. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date software to further strengthen security and compliance.

A

Agrola Ladelösungen

ladeloesungen.ch

36

Agrola Ladelösungen is a Swiss-based company specializing in providing comprehensive charging solutions for electric vehicles. Their business model focuses on renting, operating, and monitoring charging stations, targeting tenants, property professionals, and fleet managers. The company positions itself as a niche provider in the energy and transportation sectors, offering tailored services for residential and commercial clients. The website reflects a professional and consistent brand image with clear navigation and relevant content, supporting their market presence since 2021. Technically, the website is built on WordPress using Elementor and several modern JavaScript libraries and plugins, indicating a mature digital infrastructure. The site is mobile-optimized and employs standard SEO practices, though performance is moderate. Analytics tools such as Google Analytics and LinkedIn Insight are integrated for user tracking and marketing purposes. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and explicit security policies. No forms or sensitive data exposures were detected, but the absence of privacy and cookie policies represents a compliance gap, especially under GDPR. The WHOIS data aligns well with the business claims, supporting the domain's legitimacy. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

The website moranduzzo.com is currently inaccessible beyond a security challenge page implementing a client-side proof-of-work CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) or similar security mechanism designed to block automated access and bots. Due to this, no substantive business content, contact information, or policies are available for analysis. The domain is long-established, registered since 1997, with stable registrar status but lacks DNSSEC and visible security headers. The technical infrastructure includes advanced JavaScript cryptographic functions and uses AWS Cloudfront CDN for content delivery. The security posture is moderate given the CAPTCHA protection but lacks transparency in policies and contact channels. Overall, the site is low in content quality and business credibility due to the blocking mechanism and absence of public information.

The website www.holyart.it is currently inaccessible, returning a 403 Forbidden error page with minimal HTML content. Due to this access restriction, no meaningful business, technical, or security information could be extracted or analyzed. The lack of accessible content prevents assessment of the company's market position, services, or compliance posture. Technically, the site shows no metadata, scripts, or security headers, indicating a lack of publicly available infrastructure details. Security posture cannot be evaluated beyond the fact that access is blocked, which may be intentional or due to misconfiguration. Overall, the site presents a high risk of being non-operational or improperly configured, and no trust or credibility indicators are visible.

M

mediaspects Beratungsgesellschaft für neue Medien mbH

mediaspects.com

47

Mediaspects Beratungsgesellschaft für neue Medien mbH is a German technology company specializing in software development, telemedicine, online competence, consulting, and OEM development services. Established in 2005, the company targets business clients seeking digital media and healthcare technology solutions. The website is built on TYPO3 CMS with Bootstrap and jQuery, reflecting a moderate level of digital maturity with basic mobile optimization and SEO practices. Security posture is adequate with HTTPS usage and no visible vulnerabilities, but lacks advanced security headers and cookie consent mechanisms. Privacy compliance is minimal with a basic privacy policy and no cookie banner. Overall, the website presents a professional image with clear contact information and consistent branding, but could improve in privacy and security transparency.

W

websiteria GmbH

supcura.ch

48

Supcura, operated by websiteria GmbH, is a Swiss-based small technology company specializing in developing and customizing software applications for the healthcare sector. Their product suite includes several apps designed to optimize healthcare workflows such as rental management, scheduling, notifications, locating assets, and barcode scanning. The company targets healthcare providers seeking digital transformation solutions. The website presents a professional and consistent brand image with clear contact information and client references, positioning itself as a niche player in healthcare technology solutions. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses common plugins such as Yoast SEO and Tidio chat for marketing and customer engagement. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, there is room for improvement in security headers and explicit security policies. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and well-maintained with no signs of malicious content or blocking mechanisms.

A

ASKÖ Burgenland

wirbewegenburgenland.at

42

ASKÖ Burgenland is a regional non-profit sports association based in Austria, focused on promoting diverse sports activities and supporting local sports clubs. The organization offers a variety of services including training, event organization, funding facilitation, and health programs. It operates under the umbrella of the ASKÖ Bundesorganisation, indicating a structured and established presence in the Austrian sports sector. The website reflects a professional and consistent brand image, targeting sports clubs, athletes, and the general public interested in sports within the Burgenland region. Technically, the website is built on the Internetkonzepte.at CMS and utilizes modern JavaScript libraries such as jQuery, Font Awesome, and Owl Carousel to provide a responsive and user-friendly experience. The site is mobile optimized and includes SEO best practices, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses trusted external libraries but lacks explicit security headers and publicly available security policies or incident response information. Privacy compliance is strong, with a clear GDPR-compliant privacy policy and cookie consent mechanism. Contact information is transparent and professionally presented, enhancing trustworthiness. Overall, ASKÖ Burgenland's website is a well-maintained digital presence that supports its mission effectively. Strategic improvements in security headers and incident response transparency could further enhance its security posture and stakeholder confidence.