Security Directory

A

Amadeu Antonio Stiftung

swipeaway.de

50

SwipeAway is an educational self-learning tool designed to raise awareness about recognizing hostile narratives on social media platforms and to promote digital civil courage. The project is operated by the Amadeu Antonio Stiftung, a reputable non-profit foundation in Germany, and is supported by Stiftung Mercator. The website targets a general audience interested in social media literacy and digital rights education. The business model is non-commercial, focusing on social impact and education. Technically, the website is built using modern web technologies including Nuxt.js, JavaScript, HTML5, and CSS3. It is hosted on servers associated with agenturserver, with good mobile optimization and moderate performance. The site uses HTTPS with an excellent SSL configuration but lacks some security headers that could enhance protection. The site employs minimal user tracking via the privacy-conscious Umami analytics platform. From a security perspective, the website demonstrates a solid baseline with HTTPS enabled and no exposed sensitive data. However, it lacks security headers and a cookie consent mechanism, which are important for GDPR compliance and security best practices. No incident response or security policy information is provided, and no contact information is readily available on the main page, which could impact user trust and compliance. Overall, the website is professional, trustworthy, and focused on educational content without any adult or questionable material. The domain registration data aligns well with the website's stated purpose and parent organization, indicating legitimacy. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, publishing security and incident response policies, and providing clear contact information to enhance trust and compliance.

The website 'Tajas Welt 2053' offers an interactive exploration experience themed around a futuristic world in the year 2053. It targets a general audience, including children, providing an educational and engaging map-based interface. The site is built using modern web technologies such as Nuxt.js and Leaflet.js, indicating a moderate level of digital maturity. However, the absence of business contact information, privacy policies, and security headers suggests limited compliance and security posture. The WHOIS data is incomplete due to TLD restrictions, which affects domain trustworthiness assessment. Overall, the site is functional and content-rich but lacks critical security and compliance elements.

Cowiki is a non-profit project affiliated with anstiftung and the Verbund offener Werkstätten, providing a structured knowledge base platform aimed at supporting open workshops and collaborative communities in Germany. The website serves as a community resource with links to partner organizations and open source code repositories, reflecting a niche market position focused on knowledge sharing and collaboration. Technically, the site uses modern JavaScript frameworks such as Vue.js and integrates Umami Analytics for minimal user tracking, indicating a moderate level of digital maturity. The website is accessible, mobile-optimized, and presents a consistent brand image aligned with its non-profit mission. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. Privacy compliance is basic, with a privacy policy linked externally but no cookie consent mechanism detected. Overall, the site is trustworthy and safe for general audiences, with no adult or questionable content detected.

N

NDK Wurzen

leerstellen-lkl.de

47

The website leerstellen-lkl.de is a well-structured non-profit project focused on documenting cases of right-wing violence in the Leipzig district. It provides a digital memorial and educational resource through a web documentary, peer networks, and workshops primarily targeting youth and affected communities. The project is funded by reputable organizations and operated by NDK Wurzen, indicating a credible and mission-driven initiative. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, ensuring a responsive and user-friendly experience, though some improvements in accessibility and SEO could be made. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance. Overall, the site is trustworthy, professional, and safe for general audiences.

K

kollygujer

kollygujer.ch

48

kollygujer.ch is a website representing a small creative studio or agency based in Switzerland, focusing on showcasing creative work, offering a shop, and sharing content such as gossip and about pages. The business model appears to be service-oriented with an e-commerce component. The website uses basic web technologies including HTML, CSS, JavaScript, and the p5.js library for interactive graphics. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. Security posture is minimal with no detected security headers or privacy policies, and no evidence of HTTPS was found in the provided data. Contact information is limited to a single email address and an Instagram social media link. The domain WHOIS is privacy protected, which is common and justified for small creative businesses. Overall, the website is functional but basic in design and security.

G

Get a Newsletter: Skapa och skicka snygga nyhetsbrev

getanewsletter.com

62

Get a Newsletter is a Swedish-language focused SaaS platform that enables users to create and send visually appealing newsletters. The website is built on WordPress using Elementor and integrates Cookiebot for cookie consent management and Google Tag Manager for analytics. The domain is well-established since 2007, indicating a mature presence in the newsletter service market. However, the site lacks explicit privacy policies, terms of service, and direct contact information, which are important for trust and compliance. Technically, the site is moderately optimized with good mobile responsiveness and SEO practices but could improve security by enabling DNSSEC and adding security headers.

H

Hochschule für Gestaltung und Kunst FHNW

campusderkuenste.ch

57

Campus der Künste is an educational and cultural platform operated by the Hochschule für Gestaltung und Kunst FHNW, located in Basel, Switzerland. The website serves as a hub for arts and design education, cultural events, and collaboration among various creative institutions. It targets students, artists, and cultural professionals, positioning itself as a regional leader in arts education and cultural engagement. The business model focuses on providing educational services and fostering a vibrant cultural community. Technically, the website is built using modern JavaScript frameworks such as Nuxt.js and includes polyfills for compatibility. It uses Matomo analytics for privacy-conscious user tracking. The site is moderately performant, mobile-optimized, and has a consistent branding approach. However, some accessibility and SEO optimizations could be improved. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide visible security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is professional and trustworthy with a good security posture but could improve privacy compliance and security best practices. Strategic recommendations include implementing security headers, adding cookie consent, publishing security policies, and enhancing accessibility.

E

Eisen Optikergeschäft AG

eisen-optiker.ch

49

Eisen Optikergeschäft AG is a small retail optical business based in Winterthur, Switzerland, specializing in eyewear, contact lenses, and related optical services. The website serves as an informational and promotional platform showcasing their products, team, and services, targeting local customers seeking quality optical solutions. The company maintains a consistent brand presence with clear contact details and social media engagement on Instagram and Facebook. Technically, the site is built on the Zeta Producer CMS platform, utilizing standard web technologies such as HTML5, CSS3, and JavaScript with jQuery and FlexSlider for UI components. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS but lacks several security headers and explicit security policies, indicating room for improvement in security posture and GDPR compliance. No cookie consent mechanism is present, and privacy policy coverage is basic. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

Ö

Öpfelchasper GmbH

oepfelchasper.ch

64

Öpfelchasper GmbH is a small Swiss company specializing in the delivery of organic fruits and vegetables to urban customers, including offices and private homes. Their business model centers on eco-friendly bicycle courier delivery, emphasizing bio-quality and CO2-neutral logistics. The company offers subscription services, gift vouchers, and extras to enhance customer experience. Their market position is that of a niche local provider with a strong sustainability focus. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Tag Manager, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is hosted behind Cloudflare CDN, ensuring good performance and security. The website is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, it lacks some advanced security headers and explicit incident response information. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR indicators. Contact information is transparent and consistent with WHOIS data, supporting business credibility. Overall, the website presents a trustworthy, professional, and user-friendly platform for its target audience. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and adding incident response contacts to further strengthen security posture.

C

Coucou

coucoumagazin.ch

53

Coucoumagazin.ch is an independent cultural and city magazine serving the residents of Winterthur, Switzerland. It provides critical, pointed descriptions and information about local culture, including a comprehensive online event calendar. The website is built on the WebZen CMS platform and uses standard web technologies including Google Analytics and Google Tag Manager for visitor tracking. The site is well-structured with good navigation and mobile optimization, targeting local cultural enthusiasts and residents. However, it lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled but missing some security headers and no visible vulnerability disclosure or security contact information. Overall, the site is a legitimate, small media publication with a focus on local culture and events.

R

Revendo

revendo.ch

78

Revendo is a Swiss-based e-commerce platform specializing in the buying and selling of used and refurbished Apple devices such as iPhones, iPads, MacBooks, and iMacs. The website positions itself as a trusted reseller offering free shipping and warranty services, targeting consumers looking for affordable, quality used electronics. The platform leverages Shopify's robust infrastructure and integrates with trusted third-party services like Trustpilot for reviews and Klaviyo for marketing, indicating a mature digital presence. Technically, the site is well-implemented with modern frameworks, fast performance, and good mobile optimization. Security-wise, the site enforces HTTPS, employs standard security headers, and integrates secure payment options including Apple Pay and Shopify Payments. Privacy compliance is strong with clear policies and cookie consent mechanisms. However, there is room for improvement in publishing explicit security policies and incident response contacts. Overall, Revendo presents a professional, trustworthy, and secure e-commerce experience with a solid market position in Switzerland.

V

Verein Horizonte

horizonte.ch

51

Verein Horizonte is a Swiss non-profit organization founded in 1990, dedicated to providing housing and employment opportunities for people with mental disabilities who face challenges accessing these services in the open market. The website serves as an informational platform primarily targeting individuals in need of social support and their networks. Technically, the site is built on WordPress using the Divi theme and WooCommerce plugin, with moderate performance and good mobile optimization. It employs Google Analytics for visitor tracking and includes a cookie consent mechanism, reflecting basic privacy compliance. Security posture is adequate with HTTPS enabled and some bot detection scripts, but lacks published security policies or incident response contacts. Overall, the domain registration data aligns well with the organization's claims, indicating legitimacy and trustworthiness.

W

Weyell Zipse

weyellzipse.ch

44

Weyell Zipse is a Swiss architecture studio specializing in architectural design, competitions, exhibitions, and academic guest critiques. The firm has a strong presence in Switzerland and Germany, with a portfolio including schools, residential buildings, and public spaces. Their market position is that of an established, award-winning practice engaged in both professional projects and academic discourse. Technically, the website is built on WordPress with modern JavaScript libraries, offering good mobile optimization and accessibility. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in compliance and security transparency.

S

Sparkasse Hannover

sparkasse-hannover.de

68

Sparkasse Hannover is a prominent regional bank serving Hannover and its surrounding region, offering a broad spectrum of financial services including online banking, investment products, insurance, real estate financing, and personalized advisory services. The website reflects a mature digital presence with comprehensive content tailored to private, corporate, and young customers. The bank holds recognized certifications and awards, underscoring its market leadership and customer service excellence. Technically, the site is built on Adobe Experience Manager, leveraging modern web technologies and providing a responsive, accessible user experience. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be better documented. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

H

Hannoversche Volksbank eG

hannoversche-volksbank.de

63

Hannoversche Volksbank eG is a regional cooperative bank in Germany focused on providing local banking and financial services. The website reflects a professional and consistent brand presence, targeting local customers with a clear business model centered on cooperative banking. The digital infrastructure uses modern web technologies including Angular framework and integrates marketing consent management and analytics tools such as Adobe Launch and OneTrust. Security posture is solid with HTTPS enforced and monitoring scripts in place, though explicit security headers and published security policies are absent. Privacy compliance is partially addressed via cookie consent mechanisms but lacks visible privacy and terms of service documentation. Overall, the website is trustworthy and well-positioned in its market segment, with room for improvement in transparency and security documentation.

R

Roomcard

roomcard.com

64

Roomcard is a UK-based digital hotel gift card platform offering access to over one million hotels worldwide. The service allows users to purchase personalized hotel gift cards that can be delivered digitally at a chosen time, with options for custom greetings and wrapping. Positioned as a sophisticated and global solution, Roomcard targets consumers seeking flexible and unique gifting options in the hospitality sector. The platform is supported by its parent company, HotelMap, and leverages a modern technical infrastructure including AWS hosting and multiple third-party analytics and marketing tools. Security posture is solid with HTTPS and domain transfer protections, though improvements are needed in DNS security and security headers. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is professional, user-friendly, and trustworthy, with extensive content and clear business information.

Radpass Hannover is a small, community-focused organization dedicated to promoting cycling sports and organizing cycling events in Hannover, Germany. The website serves as a hub for event information, registration links, and showcases partner cycling clubs. Technically, the site is built on WordPress with modern plugins for gallery display, GDPR compliance, and lightweight analytics. The site is well-optimized for performance and mobile devices, with good SEO and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or compliance gaps were detected. Overall, the site presents a trustworthy and professional image suitable for its local community audience.

D

DOSB New Media GmbH

sportdeutschland.tv

60

Sport Europe, operated by DOSB New Media GmbH, is a German-based media platform specializing in streaming and broadcasting European sports content. The website targets sports fans primarily in Europe, offering live and on-demand sports media services. The business is relatively young, founded in 2018, and operates with a medium-sized organizational footprint. The domain registration details align well with the company's German origin and media focus, indicating legitimacy and consistency in business operations. Technically, the website employs modern web technologies including HTML5, CSS3, Bootstrap framework, and Font Awesome icons, ensuring a responsive and visually appealing user experience. Hosting is provided by IONOS SE, a reputable provider. Performance is moderate with good mobile optimization, though accessibility features are basic. SEO optimization is present but could be improved with more comprehensive metadata and structured data. From a security perspective, the site uses HTTPS but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. No privacy or cookie policies were detected, which is a compliance gap especially under GDPR regulations. No contact information or incident response details were found, limiting transparency and user trust. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website presents a professional and functional sports media platform with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would improve trustworthiness and regulatory adherence.

The website lsb-nds.net serves as the official portal for the LandesSportBund Niedersachsen, a regional sports association in Germany. It primarily facilitates members in applying for funding and accessing educational and administrative services related to sports. The site targets members of the LandesSportBund Niedersachsen and operates as a non-profit government-related entity. The business model focuses on providing digital access to sports-related funding and educational resources within the Niedersachsen region. Technically, the website employs basic web technologies including HTML5, CSS, and JavaScript, with a custom MD5-based challenge-response login mechanism. The infrastructure is moderate in performance and mobile optimization, with hosting linked to InterNetX GmbH and DNS servers under htp-tel.de. However, the site lacks modern security enhancements such as DNSSEC and security headers, and uses outdated cryptographic methods for authentication. From a security perspective, while the domain registration is consistent and legitimate, the use of MD5 hashing and absence of DNSSEC and security headers present vulnerabilities. No explicit privacy or cookie consent mechanisms are implemented, though a privacy policy is linked externally. The site is accessible without WAF or blocking mechanisms, but improvements in security posture and privacy compliance are recommended. Overall, the website is functional and serves its intended audience but would benefit from modernization of security practices, enhanced privacy compliance, and improved technical implementation to strengthen trust and resilience against threats.

A

active elements GmbH

active-elements.de

57

active elements GmbH is a well-established German agency specializing in web design, print design, SEO, and digital marketing services. With nearly two decades of experience, the company serves businesses and organizations seeking comprehensive digital and print marketing solutions. Their offerings include modern web development using TYPO3 and WordPress, creative print projects, SEO optimization, Google AdWords campaign management, and client training through e-learning and on-site sessions. The company emphasizes personalized service and full support, positioning itself as a trusted partner in the regional market around Hannover and Garbsen. Technically, the website is built on a modern stack including HTML5, CSS3, JavaScript, Bootstrap, and CMS platforms TYPO3 and WordPress. Hosting is provided by Hetzner, a reputable German hosting provider, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, with privacy-conscious analytics via Matomo. Cookie consent and GDPR-compliant privacy policies are implemented, reflecting a mature digital presence. From a security perspective, the site uses HTTPS with strong SSL configuration and secure form handling. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which are recommended for enhanced protection. No vulnerabilities or suspicious elements were detected in the content or scripts. Overall, active elements GmbH presents a professional, trustworthy, and technically sound online presence. The company demonstrates good compliance with privacy regulations and offers a comprehensive suite of services for digital and print marketing. Strategic improvements in security transparency and incident response readiness would further strengthen their security posture.

S

Stafftastic GmbH

ausbildungsradar.de

56

Ausbildungsradar.de is a German educational platform focused on supporting companies and associations in retaining and recommending applicants within regional or association-based training programs. The platform is positioned as a niche service enhancing digital collaboration in apprenticeship and training sectors. The business is likely small-sized and operates primarily in Germany, with Stafftastic GmbH as the associated company. Technically, the website employs modern JavaScript technologies, Cookiebot for GDPR-compliant cookie management, and Plausible Analytics for privacy-friendly traffic analysis. Hosting is via Google Cloud DNS, indicating a reliable infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security policy or incident response contacts are published. Privacy compliance is strong, with a comprehensive privacy policy linked on a partner domain. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

P

PING

ping.com

73

PING is a well-established golf equipment manufacturer and retailer with a mature online presence dating back to 1993. The company offers a broad range of golf clubs, bags, accessories, and apparel, targeting golf enthusiasts and players of all levels. Their business model combines e-commerce retail with custom fitting and trade-in services, positioning them strongly in the golf retail market. The website demonstrates a professional design, clear navigation, and comprehensive product information, supporting a positive user experience. Technically, the site leverages modern JavaScript libraries, analytics tools, and integrates with reputable payment gateways, hosted likely on Microsoft Azure with Kentico CMS. Security posture is solid with HTTPS, domain transfer protections, and consent management via Osano, though DNSSEC is not enabled and explicit security policies are not published. Overall, the site is trustworthy, privacy compliant, and well-optimized for performance and accessibility.

F

Fachagentur Nachwachsende Rohstoffe e.V.

bauerhubert.de

41

Bauer Hubert is an educational website operated by Fachagentur Nachwachsende Rohstoffe e.V., a German non-profit organization focused on renewable raw materials. The site targets children and parents by providing educational stories, games, comics, and audio plays to promote awareness of sustainable resources. The website is well-branded, consistent, and supported by official German government and agency partners, reflecting a strong market position in educational content for renewable energy and sustainability. Technically, the website is built on TYPO3 CMS with Foundation CSS and uses jQuery and Matomo analytics with cookies disabled, indicating a privacy-conscious approach. The site is hosted on servers associated with agenturserver domains, suggesting professional hosting. The website is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. From a security perspective, Bauer Hubert enforces HTTPS and disables cookies in analytics, which is positive. However, it lacks visible security headers, a cookie consent mechanism, and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. WHOIS data is consistent with the website's claims, showing legitimacy and stable domain registration. Overall, the website presents a low-risk profile with good business credibility and technical implementation but could improve privacy compliance and security posture by adding cookie consent, security headers, and formal security policies.

K

kolle.dev

kolle.dev

50

Kolle.dev is a small digital collaboration service based in Germany, focusing on supporting digital projects through project management, design, programming, and long-term support. The website presents a professional and clean design using modern technologies such as Nuxt.js and Tailwind CSS, indicating a good level of digital maturity. The site is fast, mobile-optimized, and provides clear information about its services and partner projects. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and formal privacy or cookie policies, which are important for compliance and trust. Overall, the risk is moderate with recommendations to improve privacy compliance and security headers to enhance trust and regulatory adherence.

S

Single: the music & video app for Shopify

single.xyz

68

Single.xyz is a specialized e-commerce platform integrated with Shopify, enabling musicians and content creators to sell music, videos, and memberships directly to their audience. Founded in 2020, the company positions itself as a niche player in the digital media sales market, leveraging Shopify's infrastructure to provide seamless sales and livestream capabilities. The website demonstrates a good level of technical maturity, utilizing modern JavaScript frameworks, Shopify Liquid templates, and multiple marketing and analytics tools such as HubSpot, Facebook Pixel, and Google Analytics. Hosting is managed via AWS infrastructure with DNS services from Amazon Route 53, ensuring reliable performance and scalability. Security posture is adequate with HTTPS enforced and domain transfer protections in place; however, the absence of DNSSEC and some security headers indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which could expose the company to regulatory risks. Overall, the website is professional and functional but would benefit from enhanced privacy and security transparency.

J

Jensen + Heitz

jensenheitz.com

57

Jensen + Heitz is a creative media production company based in Switzerland, specializing in motion graphics and video content. Their website showcases various projects and collaborations with notable brands, indicating a niche presence in the creative media industry. The site is professionally designed using the Squarespace platform, offering good mobile responsiveness and a visually appealing user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, despite the active and professional website presence. Security measures such as HTTPS and HSTS are properly implemented, but additional security headers and privacy compliance measures are lacking. Contact information is minimal, limited to an email address and Instagram profile, with no phone or physical address provided. Overall, the website demonstrates a moderate level of digital maturity and security posture but requires improvements in privacy compliance and domain registration transparency.

L

Laurids Jensen Photographer

lauridsjensen.com

48

Laurids Jensen operates a professional photography portfolio website showcasing editorial, commissioned, and moving image works. The business is positioned as a niche creative service provider in the media industry, targeting clients and collaborators in the art and editorial sectors. The website content is well-structured and visually oriented to highlight the photographer's work, with a consistent branding approach and good user experience. Technically, the website is built using standard web technologies including HTML5, CSS, JavaScript, and jQuery, hosted by cyon.ch. It employs Google Analytics and Google Tag Manager for visitor tracking but lacks advanced CMS or frameworks. The site is mobile optimized with moderate performance and basic accessibility features. However, there is room for improvement in SEO and technical modernization. From a security perspective, the site uses HTTPS and has domain transfer protections enabled but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, and no incident response contacts are provided, indicating gaps in compliance and security readiness. The use of tracking scripts without visible consent mechanisms also raises privacy concerns. Overall, the website is a legitimate, small-scale professional portfolio with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security headers, and incident response readiness would enhance trust and reduce risk.

A

Alena Stählin

alenastaehlin.ch

61

Alena Stählin is a Swiss graphic designer operating a small design studio specializing in publications, branding, posters, exhibition design, and web design. The business targets clients primarily in the cultural, educational, and artistic sectors, including museums, schools, institutions, and individual professionals. The website presents a professional portfolio with clear contact information and showcases multiple awards and notable clients, indicating a reputable market position within its niche. Technically, the website is built using modern web technologies, specifically the SvelteKit framework, and demonstrates good mobile optimization and user experience. However, there is a lack of visible security headers, privacy policies, and cookie consent mechanisms, which indicates room for improvement in compliance and security posture. From a security perspective, the site uses HTTPS (implied by the URL), but no additional security policies or incident response contacts are provided. No forms or data collection mechanisms were detected, reducing immediate data protection risks. The absence of privacy and cookie policies, however, may pose compliance risks under GDPR or similar regulations. Overall, the website is professional and trustworthy in terms of business credibility and content quality but requires enhancements in privacy compliance and security best practices to reduce risk and improve user trust.

R

Rocket Ruby

rocketruby.ch

51

Rocket Ruby is a small, established visual communication studio based in Basel and Luzern, Switzerland, operating since 2011. The company specializes in comprehensive design solutions including corporate design, web development, infographics, and book design, targeting businesses and organizations seeking professional visual communication services. The website reflects a consistent and professional brand image with a portfolio of diverse projects demonstrating their expertise. Technically, the site is built on WordPress, utilizing standard web technologies such as HTML5, CSS3, JavaScript, and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is provided via email and physical address, but no phone or social media links are available. Overall, the website is trustworthy and professional, with room for improvement in security and privacy transparency.

P

Prolog AG

prolog.work

62

Prolog AG is a Basel-based digital agency specializing in sustainable web solutions that integrate strategy, design, and technology to deliver lasting digital success. The company serves a diverse clientele, including cultural institutions, startups, and established organizations, offering services ranging from UX/UI design and development to digital strategy and e-commerce solutions. The website reflects a mature digital presence with a professional portfolio showcasing recent projects and collaborations. Technically, the site is built on modern frameworks like Nuxt.js and employs best practices such as responsive design and lazy loading for media assets. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is partial, with a privacy policy present but lacking explicit GDPR compliance statements and no cookie consent mechanism. Overall, the website and domain registration data indicate a trustworthy and credible business with a strong market position in the Swiss digital agency sector.

S

Swiss Golf Bubikon

swissgolfbubikon.ch

10

Swiss Golf Bubikon is a well-established golf club and training facility located in Bubikon, Switzerland, serving golf enthusiasts ranging from beginners to active players and corporate clients. The website highlights their key offerings including a golf school, a 9-hole golf course, a driving range equipped with modern Toptracer technology, event hosting services, and club memberships. The business has a strong regional presence and a history dating back to 1989, positioning itself as a quality provider in the hospitality and sports sector within the Zürcher Oberland region. Technically, the website is built on WordPress with Yoast SEO plugin integration, featuring modern web technologies such as HTML5, CSS, JavaScript, and embedded multimedia content including YouTube videos. The site is mobile-optimized and demonstrates good SEO practices, although some improvements in accessibility and security headers could be made. Analytics are implemented via a custom independent analytics plugin, tracking user interactions moderately. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks advanced security headers and a dedicated security policy or incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Contact information is comprehensive and clearly presented, enhancing business credibility. Overall, the website is professional, trustworthy, and well-suited for its target audience. Strategic recommendations include enhancing security headers, implementing cookie consent for GDPR compliance, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen the site's security posture and user trust.

The website www.jaschwyz.ch is currently inaccessible due to a Cloudflare security challenge page requiring human verification via Turnstile captcha. As a result, no business content, metadata, or contact information is available for analysis. The site appears to be protected by Cloudflare's WAF, which blocks automated access and limits visibility into the site's actual content and services. Without access to the underlying content, it is not possible to assess the company's market position, services, or technical infrastructure in detail. The security posture is difficult to evaluate beyond the presence of Cloudflare protection. Overall, the site is currently in a blocked state, preventing comprehensive analysis.

N

Niedersächsische Lotto-Sport-Stiftung

lotto-sport-stiftung.de

56

The Niedersächsische Lotto-Sport-Stiftung is a regional non-profit foundation focused on promoting sports and the integration of people with migration backgrounds in Lower Saxony, Germany. The website serves as an information and engagement platform, offering news, project details, funding opportunities, and community initiatives. It targets local organizations, sports clubs, and integration stakeholders. The foundation maintains a professional online presence with clear branding and consistent messaging aligned with its mission. Technically, the website employs modern web technologies including Vue.js and Bootstrap, with performance and mobile optimization rated as good. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. However, some technical improvements are possible, such as implementing security headers and a cookie consent mechanism to enhance GDPR compliance. From a security perspective, the site uses HTTPS with a strong SSL configuration and no visible vulnerabilities in the HTML content. The absence of explicit security policies or incident response contacts suggests room for maturity in security governance. Overall, the domain registration data aligns well with the foundation's identity, supporting legitimacy and trustworthiness. The website is safe for general audiences, containing no adult or explicit content. It provides valuable resources and engagement channels for its community. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding cookie consent to improve compliance and user trust.

S

Stadtsportbund Hannover e.V.

ssb-hannover.de

58

Stadtsportbund Hannover e.V. is a well-established non-profit organization dedicated to supporting and promoting club sports in Hannover, Germany. The organization provides advisory, funding, training, and networking services to over 350 sports clubs and related stakeholders. Their website reflects a professional and comprehensive digital presence with clear navigation, rich content, and a focus on community engagement. The target audience includes sports clubs, coaches, volunteers, and sports enthusiasts in the Hannover region. Technically, the website uses modern web technologies including JavaScript, jQuery, Owl Carousel, and SVG graphics, managed via the AmphiCMS platform. Accessibility features such as font size changers and visual assistance tools are implemented, and the site is mobile-optimized with good SEO practices. The presence of a consent management platform ensures compliance with privacy regulations. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or suspicious content were detected. The WHOIS data is limited but does not raise concerns about legitimacy. Overall, the website demonstrates a strong security posture, good privacy compliance, and high business credibility. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further improve trust and security maturity.

W

Wissenschaftsrat

wissenschaftsrat.de

58

The Wissenschaftsrat website represents a German government advisory council focused on science, research, and higher education policy. It provides expert recommendations, evaluations, and accreditation services to universities and research institutions. The site targets academics, policymakers, and the public with comprehensive, well-structured content in German. The business model is non-profit and advisory, positioning the Wissenschaftsrat as a leading authority in its sector within Germany. Technically, the website is built on the Tremonia DXP CMS platform, using modern web technologies including HTML5, CSS3, JavaScript, and Matomo for analytics. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting appears to be via EPAG DNS services, indicating a professional infrastructure. Security posture is strong with HTTPS enforced and cookie consent implemented. However, the site lacks visible security headers and a published security policy or vulnerability disclosure mechanism. No exposed sensitive data or vulnerabilities were detected. Privacy compliance is good, with a comprehensive privacy policy and cookie banner aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, with no signs of malicious content or security risks. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure channel to further strengthen trust and compliance.

P

Promotionsverband BW

promotionsverband-bw.de

60

The Promotionsverband BW website represents an academic consortium focused on managing doctoral promotion rights for applied sciences universities in Baden-Württemberg, Germany. The site provides information about the organization’s role in supervising doctoral projects through its 24 member institutions. The business model is non-profit and education-oriented, targeting academic professionals and institutions. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in transparency and security practices.

R

Rasso Hilber

rassohilber.com

41

Rasso Hilber is a creative web developer based in Germany specializing in building original and accessible websites, primarily for artistic and cultural clients. The website serves as a professional portfolio showcasing a variety of projects developed using WordPress and Kirby CMS, often in collaboration with design partners. The business operates as a small entity with a niche focus on creative web development services. Technically, the website employs modern web technologies including HTTPS, jQuery, and video embedding, with good mobile optimization and SEO practices. However, there is room for improvement in accessibility and security headers implementation. Security posture is solid with HTTPS and domain transfer protection, but lacks DNSSEC and explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional, trustworthy, and well-maintained, with a domain registration consistent with the business history.

C

Clinic Bad Ragaz

clinic-badragaz.ch

50

Clinic Bad Ragaz is a reputable Swiss rehabilitation clinic specializing in inpatient rehabilitation services across multiple medical disciplines. The clinic combines evidence-based medical care with luxury hospitality, positioning itself as a premium healthcare provider within the Grand Resort Bad Ragaz group. The website reflects a professional and user-friendly digital presence built on TYPO3 CMS, featuring comprehensive service descriptions and clear contact information. Technically, the site employs modern analytics and tag management tools, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

D

dailypoint™

dailypoint.com

62

dailypoint™ is a specialized technology company offering advanced CRM and loyalty solutions tailored for the hospitality industry, particularly hotels and hotel groups. Their platform centralizes guest data from multiple sources, leveraging AI and data cleansing to provide actionable guest insights and personalized marketing capabilities. The company positions itself as a leading #abovePMS solution provider, emphasizing enhanced guest experience and operational efficiency. Technically, the website employs modern JavaScript frameworks, integrates Google Tag Manager for analytics, and uses a GDPR-compliant cookie consent mechanism. The site is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content. Security-wise, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and published security policies. The absence of WHOIS domain registration data is a notable concern, though the website's professional presence and trust signals mitigate some risk. Overall, the site demonstrates a mature digital infrastructure with room for improvement in security transparency and domain legitimacy verification.

D

domainname.de

piwikstats.de

58

The website ts.domainname.de/piwikstats.de serves as a professional domain brokerage landing page offering the domain piwikstats.de for sale. It is operated by domainname.de, a known domain marketplace in Germany. The site emphasizes secure payment processing, escrow transaction handling, and fast domain transfer, targeting businesses and individuals seeking premium domains. The business model is focused on domain sales with a strong emphasis on trust and security through verified and premium domain badges and customer reviews. Technically, the site uses modern web technologies including Bootstrap and Google reCAPTCHA to ensure usability and spam protection. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and spam protection, though it lacks some advanced security headers and explicit security policies. Privacy compliance is good with clear links to privacy and terms of service, but no cookie consent mechanism was detected. WHOIS data is limited due to DENIC's privacy policies but aligns with the business's German presence. Overall, the site is trustworthy and professionally maintained, suitable for its domain brokerage purpose.

A

Academy of Art and Design Basel FHNW

masterstudiodesign.ch

59

Masterstudio Design is an academic online magazine affiliated with the Academy of Art and Design Basel FHNW in Switzerland. It serves as a platform to showcase student projects and provide information about various Masterstudio Design programs. The website targets students, academics, and design professionals interested in contemporary design practices. The business model is educational and informational, positioning itself as a niche academic publication within the Swiss education sector. Technically, the website is built using modern web technologies including Svelte and SvelteKit, with a CMS likely provided by Campus der Kuenste. The site demonstrates good mobile optimization, SEO practices, and moderate performance. However, there is room for improvement in accessibility and the implementation of security headers. From a security perspective, the site enforces HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks several security best practices such as security headers, a published security policy, and incident response contact details. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is legitimate, professionally maintained, and trustworthy, with a high business credibility score. Strategic improvements in privacy compliance and security posture would enhance its risk profile and user trust.

The website www.winti-piano.ch is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha, which blocks direct access to the site's content. As a result, no business-specific information, contact details, or policies are available for analysis. The site appears to be protected by Cloudflare's WAF, indicating a focus on security but limiting external visibility. The lack of accessible content prevents a full assessment of the business model, services, or market positioning. Technically, the site uses modern security mechanisms but lacks visible SEO, accessibility, or privacy compliance features due to the block. The security posture is difficult to evaluate fully but benefits from Cloudflare's protection. Overall, the site scores low on content quality and business credibility due to inaccessibility.

B

Bühler Geigenbau

buehler-geigenbau.ch

51

Bühler Geigenbau is a specialized violin making atelier based in Winterthur, Switzerland, offering a range of services including instrument rental, sales, repairs, and restorations focused on string instruments such as violins, violas, cellos, and double basses. The business targets musicians and students seeking quality handcrafted and factory instruments along with accessories. The website is professionally designed using Webflow CMS and modern web technologies, providing clear navigation and relevant content. The technical infrastructure is solid with HTTPS enabled and minimal tracking via Plausible Analytics, reflecting a moderate digital maturity. Security posture is generally good with no visible vulnerabilities or exposed sensitive data; however, the absence of security headers and formal security policies indicates room for improvement. Privacy compliance is basic, lacking cookie consent mechanisms and detailed GDPR compliance indicators. Overall, the website presents a trustworthy and professional image appropriate for a small local business in the musical instrument sector.

O

Onlineshop Musik Haag AG

blaswerkhaag.ch

10

Onlineshop Musik Haag AG operates the Blaswerkshop website, a specialized e-commerce platform focused on brass and woodwind musical instruments, accessories, and related services such as instrument rental, mouthpiece analysis, and repairs. The company targets musicians and music enthusiasts primarily in Switzerland, offering a niche product range supported by workshops and events. The website is built on the Shopware CMS platform, leveraging modern JavaScript libraries and Google Tag Manager for analytics and marketing. The site is well designed, mobile optimized, and provides a good user experience with clear navigation and professional branding. However, it lacks explicit privacy and terms of service policies, which are important for compliance and user trust. Security posture is good with HTTPS and standard security headers, but no published security or incident response policies were found.

A

Andys Musicshop

andys-musicshop.ch

49

Andys Musicshop is a small retail business based in Uster, Switzerland, specializing in the sale of musical instruments and related equipment such as PA systems, studio recording gear, and keyboard instruments. The company operates both a physical store and an e-commerce platform, targeting musicians and music enthusiasts primarily within Switzerland. The website is professionally designed with consistent branding and clear navigation, providing essential business information including contact details and terms of service. Technical infrastructure indicates use of Shopware CMS and integration of Google Analytics with IP anonymization, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and basic privacy compliance, though improvements are needed in security headers and cookie consent mechanisms. Overall, the website is trustworthy and safe for general audiences, with no adult or questionable content detected.

R

RESIGN. Grafikstudio

resign.ch

49

RESIGN. Grafikstudio is a well-established small design and web agency based in Winterthur, Switzerland, specializing in WordPress website design, branding, and SEO services. With over 25 years of experience, the company targets businesses and startups seeking modern and professional digital presence solutions. The website reflects a mature digital infrastructure using modern technologies such as Bootstrap, jQuery, and Google Tag Manager, indicating a good level of digital maturity and SEO awareness. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of explicit cookie consent and security policies suggests room for compliance improvement. Overall, the site is professional, trustworthy, and well-structured, supporting the company's market position as a reliable local web agency.

The website www.vszgb-handbuch.ch serves as an informational handbook for municipalities within the canton of Schwyz, Switzerland. It provides comprehensive guidance on municipal law, social services, finance, security, and environmental topics relevant to local government officials and administrative staff. The site is positioned as a niche government-related resource, targeting municipal employees and local authorities. The business model centers on providing updated, non-binding reference material to support municipal governance. The website is small-scale, consistent in branding, and maintains a professional tone with clear contact details and legal notices.

D

Deutsche Sportjugend

dsj.de

65

The website www.dsj.de represents Deutsche Sportjugend, a well-established German non-profit organization dedicated to youth sports and social engagement. The site is professionally designed using TYPO3 CMS, featuring rich content, accessibility tools like ReadSpeaker, and a clear navigation structure. The organization is positioned as a leading umbrella body for youth sports in Germany, with a history dating back to 1950. Technically, the site uses modern web technologies and hosts static content on Amazon S3, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though some security headers could be improved. Privacy compliance is lacking explicit privacy and cookie policies, which is a notable gap. Overall, the site is trustworthy, safe, and serves a general audience with no adult or questionable content.

S

Sparkasse Hildesheim Goslar Peine

sparkasse-hgp.de

67

Sparkasse Hildesheim Goslar Peine is a regional financial institution in Germany providing comprehensive banking and financial services to private and corporate customers. The website serves as a secure online banking portal offering a wide range of products including accounts, loans, insurance, investments, and real estate services. The institution holds a strong market position as part of the Sparkassen-Finanzgruppe, a well-known banking group in Germany. The site is professionally designed with clear navigation, accessibility features, and multiple customer support channels including chat and callback services. Technical infrastructure is modern, leveraging Adobe Experience Manager CMS and JavaScript frameworks, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement, session management, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. Overall, the website reflects a trustworthy and mature digital presence aligned with regulatory compliance and customer service excellence.

V

VGH Versicherungen

vgh.de

56

VGH Versicherungen is a well-established insurance provider based in Niedersachsen, Germany, with a history dating back to 1750. The company offers a broad range of insurance products for private individuals, businesses, and farmers, including vehicle, property, liability, health, and retirement insurances. Their market position is strong regionally, supported by a comprehensive digital presence and customer service infrastructure. The website reflects a professional and trustworthy brand with clear navigation and extensive product information. Technically, the website employs modern web technologies including JavaScript frameworks, Pimcore CMS, and integrates consent management via Usercentrics. It uses Google Tag Manager for analytics and marketing, and the site is mobile-optimized with good accessibility and SEO practices. The technical infrastructure appears robust, though hosting provider details are not explicitly identified. From a security perspective, the site enforces HTTPS, implements key security headers, and manages cookie consent properly. No critical vulnerabilities or exposed sensitive data were detected. However, explicit incident response contacts and vulnerability disclosure mechanisms are not publicly available, which could be improved to enhance security transparency. Overall, the site is secure, professional, and compliant with GDPR, making it a low-risk platform for users. Strategic recommendations include publishing incident response contacts, adding a security.txt file, and potentially showcasing security certifications to further build trust.