Security Directory

P

Paprec Group

paprec.com

65

Paprec Group is a leading French company specializing in waste management and recycling services. Established in 1994, it has grown into a major player in the environmental sector, serving both industrial clients and local authorities with a comprehensive range of services including waste collection, sorting, recycling, and energy valorization. The company emphasizes sustainability and circular economy principles, positioning itself as a key contributor to environmental preservation in France. The website reflects a mature digital presence with multilingual support and rich content aimed at educating and engaging its audience. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and Matomo analytics. It demonstrates good performance, mobile optimization, and accessibility features. Security best practices are observed with HTTPS enforcement and security headers, although public security policies and incident response information are not explicitly published. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data for the domain is missing or not publicly available, which raises minor concerns about domain registration transparency but does not detract significantly from the overall legitimacy given the professional website and business presence. Overall, Paprec Group's website is professional, secure, and compliant, supporting its position as a trusted leader in the recycling industry. Strategic recommendations include publishing explicit security and incident response policies and improving domain registration transparency.

A

ARAG SE

arag-karriere.de

64

ARAG SE is a well-established German insurance company specializing in legal protection insurance and related services, with a strong market position as the largest family-owned insurer in Germany and a global leader in its niche. The website serves as a professional career portal targeting job seekers interested in joining ARAG, featuring comprehensive content about company values, culture, and job opportunities. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, Matomo analytics, and a proprietary recruitment platform by talentsconnect, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforcement, cookie consent mechanisms, and privacy compliance, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR, with no signs of blocking or suspicious activity.

K

Startseite - Kunstspaziergang Riehen

kunstspaziergang-riehen.ch

46

The website 'Kunstspaziergang Riehen' serves as an informational platform focused on art walks in the municipality of Riehen, Switzerland. It provides visitors with navigation and cultural insights related to local art installations. The site is built on WordPress and integrates Google Maps API for interactive map features. The design is professional and mobile-optimized, offering a good user experience with clear navigation. However, the site lacks critical privacy and cookie policies, which may impact GDPR compliance. No explicit contact information or security policies are present, limiting direct communication and transparency regarding data protection. Security headers are absent, representing a potential vulnerability. Overall, the website is functional and trustworthy for its cultural purpose but requires improvements in privacy, security, and contact transparency to enhance compliance and user trust.

G

Gilde etablierter Schweizer Gastronomen

gilde.ch

57

Gilde etablierter Schweizer Gastronomen is a Swiss hospitality association focused on promoting high-quality gastronomy across Switzerland. Their website offers a comprehensive restaurant search tool, gourmet guides, recipes, food trends, and event information, targeting both consumers and member restaurants. The platform supports members and partners through digital marketing and event engagement, positioning itself as a reputable player in the Swiss gastronomy sector. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and SEO best practices. The site is mobile-optimized and integrates Google Analytics and social media for marketing and user engagement. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the website demonstrates a professional, trustworthy, and user-friendly digital presence aligned with its business goals.

S

Swiss Olympic

coolandclean.ch

64

The website coolandclean.ch represents a national youth sports prevention program operated under the auspices of Swiss Olympic. It focuses on promoting healthy behaviors, fair play, and substance abuse prevention among young athletes and their leaders. The platform offers educational content, training tips, a material shop, and community support including regional ambassadors and consultation services. The site is well-branded, professionally designed, and targets youth sports organizations and their stakeholders in Switzerland. Technically, the site employs modern web technologies including Google Analytics, Facebook Pixel, and Google Maps API, likely built on a CMS such as Adobe Experience Manager. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not visible. Overall, the domain registration aligns well with the business identity, supporting legitimacy and trustworthiness.

3

3 Mai Avocates

3mai.ch

58

3 Mai Avocates is a small, multilingual law firm based in Geneva, Switzerland, specializing in criminal law, torts and contracts, and public law. The firm is led by founding partners Xenia Rivkin and Sofia Suarez-Blaser and serves clients in French- and German-speaking Switzerland as well as in international disputes. The website is professionally designed with good content quality and clear navigation, supporting multiple languages to cater to a diverse client base. Technically, the site uses modern frameworks such as SvelteKit and integrates Google Maps for location display, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site presents a trustworthy and professional image but would benefit from enhanced compliance and security documentation.

S

Stiftung SanaCERT Suisse

sanacert.ch

44

Stiftung SanaCERT Suisse operates as a Swiss foundation dedicated to certifying quality assurance in the healthcare sector, focusing on hospitals and long-term care facilities. The website sanacert.ch serves as an informational platform targeting healthcare providers and organizations within Switzerland, emphasizing their certification services and quality standards. The business model is non-profit and specialized, positioning the foundation as a trusted entity in healthcare quality certification within the Swiss market. Technically, the website employs a modern but straightforward technology stack including jQuery, Bootstrap, FontAwesome, and Google services such as reCAPTCHA and Maps API. The site is mobile-optimized and presents a professional design with clear navigation, although it lacks advanced SEO and accessibility features. Hosting details are not explicitly identified, but the site uses HTTPS with a strong SSL configuration. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, indicating a baseline security posture. However, it lacks important security headers and does not publish privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is provided, representing gaps in security transparency and readiness. Overall, the website is trustworthy and professionally presented but requires improvements in privacy compliance and security best practices to enhance its risk posture. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, and establishing a vulnerability disclosure process.

D

Deutscher Behindertensportverband – National Paralympic Committee Germany

parasport.de

47

Parasport.de is the official platform of the Deutscher Behindertensportverband, serving as the National Paralympic Committee Germany. The website provides comprehensive information about para sports, including 22 paralympic summer and 6 winter sports, role models, clubs, training, and events. It targets para athletes, enthusiasts, and the general public interested in inclusive sports within Germany. The platform acts as a central hub for para sport promotion and community engagement. Technically, the website is built on Drupal 10, uses modern web technologies including Google Fonts, Google Tag Manager, and Google Maps API, and is optimized for mobile and accessibility. Security posture is strong with HTTPS, multiple security headers, and a cookie consent mechanism, although explicit privacy and terms of service pages are missing. The WHOIS data is minimal but consistent with a legitimate organization. Overall, the site is professional, trustworthy, and well-positioned as a national authority on para sports.

G

Grandes Tables Suisses

lesgrandestablesdesuisse.ch

44

Grandes Tables Suisses is a Swiss association of chefs dedicated to promoting high-quality cuisine and hospitality services nationally and internationally. The organization focuses on culinary excellence, health-conscious food practices, and training future generations. The website reflects a professional and consistent brand image with multilingual support, targeting a general audience interested in Swiss gastronomy and hospitality. Technically, the site is built on WordPress using modern plugins and frameworks such as Elementor and Yoast SEO, with integration of Google Maps and Mailchimp for marketing and user engagement. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of explicit privacy and cookie policies indicates compliance gaps. The domain registration is consistent with the business claims, enhancing trustworthiness. Overall, the site is well-positioned in its niche but should improve privacy compliance and security transparency.

L

Lokalinfo AG

avwa.ch

47

Anzeiger von Wallisellen is a small, independent local newspaper serving the city of Wallisellen, Switzerland. It provides weekly news coverage on political, economic, cultural, and sports events from a local perspective. The business operates under Medienhaus Lokalinfo AG and offers advertising, subscriptions, and special thematic publications. The website reflects a professional local media outlet with clear contact channels and a focus on community engagement. Technically, the site uses legacy JavaScript libraries such as jQuery 1.11 and integrates Google services for fonts, maps, and advertising. While the site is functional and well-structured, it lacks modern security headers and privacy compliance mechanisms such as cookie consent and privacy policies. Security posture is moderate but could be improved by updating libraries and implementing security best practices. Overall, the domain registration is consistent with the business claims, indicating legitimacy and trustworthiness.

S

Sparebankstiftelsen DNB

sparebankstiftelsen.no

59

Sparebankstiftelsen DNB is a well-established philanthropic foundation in Norway, founded in 2002, that supports a wide range of community and cultural initiatives primarily benefiting children and youth. The foundation leverages dividends from its significant shareholding in DNB to fund grants and projects across art, culture, sports, nature, and local community development. The website reflects a mature digital presence with clear navigation, multilingual support, and a focus on transparency through comprehensive privacy and cookie policies. Technically, the site is built on WordPress with modern plugins and frameworks such as React and Matomo Analytics, indicating a commitment to privacy and user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, trustworthy, and aligned with GDPR requirements.

V

v2com newswire

v2com-newswire.com

68

v2com newswire is a specialized media distribution service focused on architecture, design, and lifestyle sectors. It offers press release distribution, media relations, and related services to architects, designers, journalists, and editors worldwide. The company positions itself as a leader with 30 years of experience and a large international media network. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting a niche professional audience. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, reCAPTCHA, and uses Ruby on Rails framework. It integrates multiple marketing and tracking tools, indicating a mature digital infrastructure. Performance and SEO are good, with responsive design and accessibility features. From a security perspective, the site uses HTTPS, CSRF tokens, and reCAPTCHA for form security. However, it lacks explicit security headers, privacy and cookie policies, and incident response information. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or registration issues, which impacts trustworthiness. Overall, the website is functional, professional, and trustworthy in content and design but would benefit from improved transparency in privacy, security policies, and domain registration information to enhance credibility and compliance.

M

Moratti & Söhne AG

morattisoehne.ch

48

Moratti & Söhne AG is a well-established Swiss construction company founded in 1905, offering a comprehensive range of construction and related services including high-rise construction, civil engineering, road construction, excavation, demolition, remodeling, transport, and building materials supply. The company targets private individuals, businesses, and public sector clients primarily in the Gstaad and Saanen regions. Their website reflects a professional and consistent brand image with clear service descriptions and multiple physical office locations, supporting their regional market position. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses performance optimization tools like WP Rocket. It integrates Google Analytics and Google Maps APIs for analytics and location services. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some accessibility features are basic, and there is room for improvement in SEO and security headers. From a security perspective, the site uses HTTPS with good SSL configuration and anonymizes IPs in Google Analytics, indicating some privacy awareness. However, it lacks important security headers and does not provide explicit security policies or incident response contacts. There is no cookie consent mechanism, which may affect GDPR compliance. No vulnerabilities or suspicious patterns were detected in the visible content. Overall, the website is trustworthy and professional with a solid business presence. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance their security posture and regulatory adherence.

V

Volvo Car Switzerland

volvocars-partner.ch

59

Volvo Car Switzerland operates a comprehensive partner portal serving as the official network for Volvo dealerships across Switzerland. The website provides detailed information on Volvo's vehicle models, offers, and services, targeting current and prospective Volvo customers in the Swiss market. The business model focuses on automotive sales, leasing, servicing, and customer support, positioning itself as a key player in the transportation sector within Switzerland. The site reflects consistent Volvo branding and offers extensive dealer contact information, enhancing customer accessibility and trust. Technically, the website is built on the TYPO3 CMS platform, integrating modern technologies such as Google Tag Manager and Google Maps API for enhanced user experience and analytics. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be improved. Performance is moderate, with asynchronous loading of scripts to optimize speed. From a security perspective, the site employs HTTPS with excellent SSL configuration, ensuring secure data transmission. However, it lacks explicit security headers and does not provide visible security policies or incident response contacts. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap given GDPR requirements. The site uses Google Tag Manager for tracking, indicating moderate user tracking levels. Overall, the website is professional, trustworthy, and well-aligned with the Volvo brand, but it would benefit from enhanced privacy compliance and security transparency. Strategic improvements in these areas would strengthen its security posture and regulatory adherence.

A

Alpine Properties

alpineproperties.ch

66

Alpine Properties is a well-established real estate agency based in Gstaad, Switzerland, specializing in residential property sales, rentals, and concierge services. Founded in 1989, it holds a leading market position in the region, offering a comprehensive range of services including real estate consulting and property administration. The website reflects a professional and consistent brand image targeting clients interested in the Swiss Alps real estate market. Technically, the site is built on the Squarespace platform, leveraging modern web technologies and Google Maps integration, with good mobile optimization and moderate performance. Security posture is strong with HTTPS and HSTS enabled, though the absence of explicit privacy and cookie policies indicates compliance gaps. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security disclosures.

A

axapharm ag

axapharm.ch

54

axapharm ag is a Swiss pharmaceutical company specializing in the distribution and manufacturing of generics, prescription, and over-the-counter medicines. With a unique shareholder structure involving over 700 Swiss pharmacists and druggists, the company positions itself as a reliable partner in the Swiss pharmaceutical market, emphasizing Swiss quality and affordable healthcare products. The website targets healthcare professionals and consumers within Switzerland, offering product information, services, and educational resources. Technically, the website is built on WordPress with modern plugins such as Elementor and LayerSlider, integrating Google Analytics and Maps for enhanced user experience. Security measures include HTTPS enforcement and standard security headers, though there is room for improvement in privacy compliance, particularly regarding cookie consent mechanisms. Overall, the website reflects a professional and trustworthy digital presence aligned with the company's business model and market position.

S

Stade Rochelais

staderochelais.com

64

Stade Rochelais is a professional rugby club based in France, providing comprehensive information about its teams, matches, and club activities through a well-structured and content-rich website. The site targets rugby fans and the local community, offering services such as ticketing, merchandising, and fan engagement. Technically, the website leverages Drupal CMS with AngularJS and Bootstrap frameworks, integrating modern analytics and tracking tools while maintaining good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS and employs standard security headers, though it lacks a publicly available security policy and incident response details. The absence of WHOIS data raises concerns about domain registration legitimacy, but the professional presentation and ecosystem of related domains support the site's credibility. Overall, the website demonstrates a mature digital presence with room for improvement in transparency and security documentation.

Rouillé Bâtiment Environnement (RBE) is a specialized provider of industrial vehicle rental services with qualified pilot drivers, operating primarily in the Occitanie region of France. The company targets professionals in construction, public works, and materials trading sectors, offering flexible rental durations and outsourced transport solutions. The website reflects a professional and regionally focused business with a clear service offering and strong ties to its sister company, Transports Rouillé & Coulon. Technically, the website is built on CMS Made Simple and leverages modern web technologies including Bootstrap, jQuery, Google Fonts, and multimedia integrations such as YouTube and Vimeo. It uses HTTPS with valid SSL certificates and includes Matomo analytics for user tracking. However, some security best practices like HTTP security headers and cookie consent mechanisms are missing or not detected. From a security perspective, the site demonstrates good practices such as secure forms with reCAPTCHA and no visible sensitive data exposure. The absence of WHOIS domain registration data is a concern, reducing trust in domain legitimacy. No WAF or blocking mechanisms are detected, and the site is fully accessible. Overall, the website is professional and trustworthy in content and design but would benefit from improved transparency in domain registration and enhanced privacy compliance features.

G

Gemeinde Altbüron

altbueron.ch

50

The website altbueron.ch serves as the official digital presence of the municipality of Altbüron in Switzerland. It provides comprehensive information about local governance, community events, societal services, education, building and environmental matters, as well as leisure and mobility options. The site targets residents and visitors seeking municipal services and community engagement. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries such as jQuery, Modernizr, and Owl Carousel, and integrates Google Maps API for location services. The design is professional, mobile-optimized, and accessible, with clear navigation and structured content. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and formal policies such as privacy and cookie policies. No incident response or data protection officer contact information is provided, which are areas for improvement. Overall, the website is trustworthy and legitimate, consistent with its governmental role, but could enhance privacy compliance and security posture to better protect users and meet regulatory standards.

F

fenaco Genossenschaft

landimelchnau.ch

62

The website landi.swiss/de-CH/cooperative/landi-melchnau-buetzberg represents the LANDI Melchnau-Bützberg, an agricultural cooperative in Switzerland under the parent organization fenaco Genossenschaft. The cooperative supports local farmers and private persons with agricultural supplies, retail goods, and energy services including fuel stations and electric vehicle charging. The website is built on a modern Angular framework with integration of Google Tag Manager and a cookie consent mechanism, indicating a moderate level of digital maturity. However, it lacks explicit privacy policy and terms of service pages, which are important for compliance and user trust. Security posture is generally good with HTTPS and domain transfer protection, but DNSSEC is not enabled, and security headers are not explicitly detected. Overall, the site is professional and trustworthy but could improve privacy compliance and security hardening.

T

The Twentieth Century Society

c20society.org.uk

55

The Twentieth Century Society is a UK-based non-profit organization dedicated to campaigning for the preservation and appreciation of outstanding 20th-century buildings. The website serves as a comprehensive platform offering news, resources, membership services, and event information, positioning the society as a reputable and established entity within the heritage conservation sector. The site demonstrates a consistent brand identity and strong partnerships with notable architectural firms and grant funders, reinforcing its credibility and influence. Technically, the website is built on WordPress and employs a modern technology stack including Google reCAPTCHA, Google Maps API, and social media integrations. The site is moderately performant with good mobile optimization and basic accessibility features. Analytics and tracking are implemented responsibly with Jetpack, Google Analytics, and Hotjar, balanced with privacy compliance measures. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. However, some security headers could be improved to enhance protection. Privacy and cookie policies are present and GDPR compliant, supporting a strong privacy posture. Overall, the website is professional, trustworthy, and well-maintained, with a high legitimacy score based on domain age and registration data. There are no critical security or compliance issues detected, making it a low-risk digital presence for the organization.

S

S2PWeb

letransportrecrute.fr

53

Le transport recrute is a specialized French recruitment platform focusing on the transport and logistics sector, particularly road transport jobs. Founded in 2018 and operated by S2PWeb, it offers job listings, CV submissions, training and internship opportunities, and facilitates connections between candidates and recruiters. The platform is well-positioned in the French transport recruitment market with a professional and consistent brand presence. Technically, the website employs modern web technologies including Google Maps API, jQuery, Bootstrap, and Matomo analytics, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement, CSRF tokens, Google reCAPTCHA, and cookie consent management, though some security headers could be improved. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the site demonstrates a solid security posture and good digital maturity.

Rouillé & Coulon is a well-established family-owned SME specializing in transport, logistics, and vehicle rental services primarily in the Occitanie region of France, with additional sites in Aquitaine and the Paris region. The company boasts over 60 years of experience, a fleet of 230 vehicles, and a workforce of approximately 220 employees, positioning itself as a reliable regional player with national reach. Their services include road transport, combined transport, container transport, logistics, and vehicle rental with qualified drivers. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website is built on CMS Made Simple and leverages modern web technologies such as Bootstrap, jQuery, Google Fonts, and integrates multimedia content from YouTube and Vimeo. It uses Matomo for analytics and Google reCAPTCHA for form security. The site is mobile-optimized and SEO-friendly, though performance is moderate. Security posture is decent with HTTPS and CAPTCHA usage, but lacks visible security headers and DNSSEC, which are recommended for improvement. From a security and compliance perspective, the site includes a comprehensive privacy and terms of service page indicating GDPR compliance, but lacks a visible cookie consent mechanism. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and registration transparency. No critical vulnerabilities or malware indicators were found in the content. Contact information is complete and professional, supporting business credibility. Overall, the website is a good representation of a medium-sized transport and logistics company with solid business and technical foundations. However, the missing WHOIS data and minor security header omissions suggest areas for improvement to enhance trust and security posture.

S

Schweizer Bäuerinnen & Bauern

swiss-farmers.ch

51

Swiss Farmers is a professionally managed website representing Swiss agricultural interests, providing comprehensive information about farming, fresh produce, and farm experiences. The site serves as an authoritative platform for promoting Swiss agriculture and connecting consumers with farm shops and events. The business model focuses on information dissemination, farm experience promotion, and an online shop for related products. Technically, the site is built on WordPress with modern plugins and technologies such as Yoast SEO, Google Tag Manager, and Google Maps integration, ensuring good performance and SEO optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, well-branded, and compliant with GDPR and cookie regulations.

E

expoya

expoya.travel

58

Expoya Travel operates as a digital platform specializing in travel and leisure experiences, offering users access to vouchers, destinations, and activities primarily targeting the German-speaking market. The platform functions as a digital expo, facilitating discovery and planning of travel adventures. Technically, the website is built on modern frameworks such as Next.js and Material-UI, hosted on Vercel, and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent, though explicit security policies and incident response information are absent, representing areas for improvement. Overall, the website is professional and trustworthy, but the lack of WHOIS transparency and direct contact details slightly reduce business credibility.

S

StudiumPlus

studiumplus.de

62

StudiumPlus is a prominent educational provider specializing in dual study programs in Hessen, Germany. It offers integrated Bachelor and Master degree programs in partnership with over 1000 companies, combining academic study at Technische Hochschule Mittelhessen with practical work experience. The website is professionally designed, well-structured, and optimized for SEO and accessibility, targeting prospective students and partner companies. The technical infrastructure is based on WordPress with modern plugins for multilingual support, cookie consent, and interactive maps. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and provides comprehensive educational content.

G

Gemeinde Ermatingen

ermatingen.ch

48

Gemeinde Ermatingen operates as the official municipal government website for the community of Ermatingen in Switzerland. It provides residents and visitors with comprehensive information about local government services, community events, public notices, and administrative contacts. The website targets local citizens and stakeholders, serving as a central hub for municipal communication and service delivery. The business model is typical of a government entity, focusing on transparency, accessibility, and community engagement. From a technical perspective, the website employs a modern technology stack including jQuery, Bootstrap, Isotope, Fancybox, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile optimized and features interactive elements such as digital tours and event calendars. The CMS appears to be a custom or specialized system (Simpli CMS), supporting structured content management. Security posture is adequate with HTTPS enforced and no visible exposure of sensitive data. However, the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and defense-in-depth strategies. The use of Matomo analytics reflects a privacy-conscious approach to user tracking, though GDPR compliance could be enhanced by adding explicit cookie consent and privacy notices. Overall, the website is trustworthy and professional, with clear contact information and consistent branding. The risk level is low, but strategic enhancements in security policies, privacy compliance, and technical hardening are recommended to maintain and improve trust and regulatory adherence.

K

Klingen Gastro GmbH

burghohenklingen.com

66

Restaurant Burg Hohenklingen operates a historic medieval castle venue near Stein am Rhein, Switzerland, offering French cuisine, event hosting including weddings and banquets, and unique cultural experiences. The business targets local residents, tourists, and event organizers seeking a distinctive location. The website is built on WordPress with modern SEO and marketing integrations, including Google Analytics and Mailchimp, reflecting a moderate digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response disclosures. The domain registration is consistent with the business history, enhancing trustworthiness. Overall, the site presents a professional and credible online presence for a small hospitality business.

IdéeSport is a Swiss non-profit foundation dedicated to promoting physical and mental health through sports and community programs targeting youth, children, and families. The organization offers a variety of structured programs such as CoachProgramm, MiniMove, OpenSunday, MidnightSports, and others, operating across multiple cantons in Switzerland. The website reflects a well-established entity with consistent branding and a clear mission to foster health and social inclusion through sports activities. Technically, the website employs modern web technologies including Google Tag Manager and Google Maps API, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and explicit privacy/cookie policies indicates room for improvement. WHOIS data confirms the legitimacy and transparency of the domain registration, aligning with the organization's non-profit status. Overall, the website is professional, trustworthy, and serves its target audience effectively, but could enhance compliance and security transparency.

T

Techfactory

techfactory.de

63

Techfactory is a German-based innovation hub focused on deep tech projects, offering co-working spaces and campus facilities primarily targeting startups and innovators in the technology sector. The website presents a professional and consistent brand image with a clear focus on fostering innovation in Hannover, Germany. The business model revolves around providing infrastructure and community support for deep tech innovation, positioning itself as a regional hotspot in this niche. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations such as Matomo for privacy-conscious analytics and Google Maps and YouTube embeds controlled via user consent mechanisms. Hosting appears to be managed through DomainDiscount24, and the site demonstrates moderate performance with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism with granular user controls, reflecting good privacy compliance aligned with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not evident, representing areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and professionally maintained, with a solid privacy posture and a clear business focus. Strategic enhancements in transparency around security policies and contact information would further strengthen its credibility and user trust.

P

PTTC

pttc.be

67

PTTC is a Belgian non-profit organization specializing in professional training for the transport sector, focusing on continuous education and ADR certification for transport companies and drivers. Established in 2009, it holds a stable market position as a reference training center in Belgium. The website is built on WordPress with modern optimization and compliance tools, providing a user-friendly and informative platform. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Overall, PTTC demonstrates a mature digital presence aligned with its business goals and regulatory requirements.

Studierendenwerk Thüringen is a public law institution dedicated to supporting students in Thuringia, Germany, by providing essential services such as student housing, university dining facilities, financial aid administration, counseling, and cultural programs. The organization serves multiple universities in the region and is a key player in the local education support ecosystem. The website reflects a well-structured and professional digital presence with clear navigation and comprehensive service information tailored to its student audience. Technically, the site employs modern web technologies including Bootstrap, jQuery, and ConsentFriend for cookie management, hosted on Robhost servers. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a detailed privacy policy and cookie consent banner adhering to GDPR requirements. Overall, the site is trustworthy, accessible, and professionally maintained, supporting the organization's mission effectively.

R

Trouvez ou Publiez une randonnée Rapidement et Gratuitement ! | randopedestre.com

randopedestre.com

61

randopedestre.com is a niche French website dedicated to the dissemination and discovery of hiking events both in France and internationally. It provides a free platform for hiking event organizers to publish their events and for hikers to find upcoming hikes via a calendar, search tools, and an interactive map. The website is relatively new, launched in late 2023, and targets hiking enthusiasts and event organizers. Technically, it is built on WordPress using Bootstrap 5 and jQuery, with integrations including Google Maps API, Matomo analytics, and Google AdSense for monetization. SEO is well implemented with Yoast SEO plugin and structured data. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking and advertising. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site is functional, professional, and trustworthy for its niche but could improve in security and privacy transparency.

C

calendrierdestrails.com

calendrierdestrails.com

63

calendrierdestrails.com is a specialized website launched in late 2023 that provides a comprehensive calendar and publication platform for trail running events primarily in France and abroad. It targets both trail runners looking for upcoming events and organizers wishing to publish their events quickly and for free. The site offers advanced search, regional and departmental categorization, and an interactive map to enhance user experience. Technically, the website is built on WordPress with modern technologies including Bootstrap 5, jQuery, Google Maps API, and uses Matomo for analytics and Google AdSense for monetization. The site is mobile-optimized and SEO-friendly with structured data implemented via JSON-LD. Security-wise, the site uses HTTPS with a clientTransferProhibited domain status but lacks DNSSEC and explicit security headers, which are recommended for improvement. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website is functional, professional, and trustworthy but could enhance security and privacy features to improve compliance and user trust.

D

Duesenberg

duesenbergusa.com

61

Duesenberg is a specialized manufacturer and retailer of premium musical instruments, primarily guitars, basses, lapsteels, amplifiers, and effect pedals. The company emphasizes German craftsmanship and collaborates with renowned artists to create signature instrument series. The website is professionally designed with excellent content quality, clear navigation, and mobile optimization, targeting musicians and guitar enthusiasts globally. Technically, the site uses modern frameworks such as Bootstrap and integrates Google Tag Manager for analytics, with a cookie consent mechanism ensuring privacy compliance. Security posture is good with HTTPS enforced, though some security headers are missing and no explicit security policies are published. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional appearance of the site. Overall, the website presents a trustworthy and high-quality brand experience but would benefit from improved transparency in domain registration and contact information.

S

Stiftung Habitat

aktienmuehle.ch

57

Stiftung Habitat is a Swiss non-profit organization focused on revitalizing historic industrial properties in Basel, such as the Aktienmühle, into vibrant creative workspaces and social hubs. Their website presents detailed information about their properties, including the Werkstatthaus and Pförtnerhaus, emphasizing community engagement and support for small businesses and social initiatives. The organization targets creative professionals, social enterprises, and the local community, positioning itself as a niche player in real estate with a social mission. Technically, the website employs modern analytics and tracking tools including Google Analytics, Microsoft Clarity, Facebook Pixel, and LinkedIn Insight Tag, integrated via Google Tag Manager. The site is well-structured, mobile-optimized, and uses HTTPS with good SSL configuration. However, it lacks visible cookie consent mechanisms and security headers, which are areas for improvement. From a security perspective, the site shows good practices such as HTTPS enforcement and no exposed sensitive data. There is no evidence of vulnerability disclosure or incident response contacts, which could be enhanced to improve trust and compliance. Overall, the domain registration aligns well with the organization's claims, supporting legitimacy. The website is safe for general audiences, with no adult or questionable content detected. The overall risk is low, but strategic improvements in privacy compliance and security headers are recommended to strengthen the security posture and regulatory adherence.

D

Duesenberg

duesenberg.de

60

Duesenberg is a German manufacturer and retailer of premium guitars and related musical instruments, known for combining traditional craftsmanship with modern design and artist collaborations. The website positions the brand as a niche player targeting musicians and guitar enthusiasts globally, with a strong emphasis on quality and innovation. The digital infrastructure is built on modern web technologies including Bootstrap, jQuery, and Google Tag Manager, with good mobile optimization and user experience. Privacy compliance is well addressed through a comprehensive privacy policy and cookie consent mechanism. Security posture is solid with HTTPS and privacy-enhanced video embeds, though some security headers and incident response details are missing. Overall, the website is professional, trustworthy, and well-suited for its business purpose.

M

Meier AG

meier.ch

54

Meier AG is a specialized communication and web development agency based in Schaffhausen, Switzerland, with a history rooted in the predecessor agency SOBAG since 1999 and formally established as Meier AG in 2019. The company offers a comprehensive suite of services including consulting, web development, web design, communication and PR, social media management, and ongoing support. Positioned as a reliable and innovative partner, Meier AG targets a broad range of clients from startups to large enterprises within Switzerland. The website reflects a professional and consistent brand image with clear navigation and rich content, supporting its market position effectively. Technically, the website is built on TYPO3 CMS with Bootstrap 4 and integrates modern technologies such as Google Analytics, Google Tag Manager, and Google Maps API. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. Privacy compliance is well addressed with a comprehensive privacy policy and an explicit cookie consent mechanism. From a security perspective, the site uses HTTPS and implements cookie consent but lacks explicit security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The domain registration details are consistent with the business claims, showing transparency and legitimacy. Overall, Meier AG presents a trustworthy and professional digital presence with solid technical infrastructure and privacy compliance. Strategic improvements in security policy publication and enhanced accessibility could further strengthen its posture.

E

Eventfactory

valley-eventfactory.ch

48

Eventfactory operates an exclusive event and conference location known as The Valley, situated in the historic Maggi-Areal in Kemptthal, Switzerland. The company targets corporate, private, and public event organizers, offering a range of event spaces with an industrial-modern ambiance. The website reflects a professional and consistent brand image with strong visual content and customer testimonials, positioning the business as a reputable venue provider in the hospitality sector. Technically, the website leverages modern marketing and analytics tools including Google Tag Manager, Google Analytics, HubSpot, and Google reCAPTCHA v3 for bot protection. It is built on the CMSBox 3.0 platform and integrates Google Maps for location display. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and includes bot mitigation measures but lacks visible security headers and published security policies. Privacy compliance is limited due to the absence of explicit privacy and cookie policies or consent mechanisms, which poses a compliance risk under GDPR. Contact information is clearly provided, but no contact forms or incident response contacts are found. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy disclosures, security hardening, and accessibility improvements to reduce risk and improve compliance.

T

Thurgau 360 Grad

thurgau360.ch

37

Thurgau 360 Grad is a small regional business specializing in providing virtual 360-degree tours and interactive digital marketing solutions for the tourism sector and local businesses in the Thurgau region of Switzerland. The website is professionally designed using WordPress and integrates various plugins to deliver rich multimedia content and interactive experiences. The company positions itself as a niche player offering innovative destination marketing tools to municipalities, hospitality providers, and tourist attractions. Technically, the site employs modern web technologies including Google Maps API, reCAPTCHA, and SEO plugins, ensuring a good user experience and moderate performance. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but lacks comprehensive security headers and explicit incident response policies. Privacy compliance is partially addressed with a privacy policy page but no visible cookie consent mechanism. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness.

L

Landkreis Leipzig

landkreisleipzig.de

50

Landkreis Leipzig operates as the official regional government authority providing a wide range of public services and information to its citizens. The website serves as a comprehensive portal for residents to access services such as vehicle registration, job center information, and local news. It is well-positioned as a trusted regional administration entity with a focus on accessibility and citizen engagement. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and accessibility tools like ReadSpeaker, ensuring a good user experience across devices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response policies are not publicly documented. Overall, the site demonstrates a mature digital presence aligned with public sector standards.

Headspin AS is a Norwegian creative agency based in Trondheim, specializing in integrated communication services including strategy, campaign development, design, text production, 3D visualization, website and app development, and film production. The company targets businesses and organizations seeking comprehensive communication and branding solutions. The website reflects a professional and consistent brand image with a medium-sized team and a solid client portfolio. Technically, the site is built on WordPress with modern technologies such as Google Fonts, Google Maps API, and multiple analytics platforms including Matomo and Plausible, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. Overall, the site is trustworthy and well-maintained, with clear business information and certifications such as Miljøfyrtårn enhancing credibility.

N

Natur-Netz-Niedersachsen e.V.

natur-netz-niedersachsen.de

43

Natur-Netz-Niedersachsen e.V. is a non-profit environmental network based in Niedersachsen, Germany, focused on strengthening nature conservation through collaboration among local foundations and organizations. Established as a registered association in 2013, it serves as a unique statewide network that shares best practices, supports small foundations, and promotes environmental projects. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to environmental stakeholders and the general public interested in nature conservation. Technically, the site uses modern frontend libraries such as Bootstrap, jQuery, and Google Maps API, hosted on rzone.de servers, and is mobile-optimized with moderate performance. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit incident response information. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the site is trustworthy and well-suited for its target audience, though improvements in security headers and accessibility could enhance its posture.

S

Stiftung Kinderhilfe Sternschnuppe

sternschnuppe.ch

53

Stiftung Kinderhilfe Sternschnuppe is a Swiss non-profit foundation established in 1993 dedicated to supporting children with illnesses or disabilities by fulfilling their wishes, providing leisure activities, and supporting related projects. The foundation operates primarily through donations and fundraising, with clear mechanisms for donors including IBAN and QR code payment options. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a functional and secure user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the site lacks explicit security policies or incident response contacts. Overall, the domain registration data aligns well with the foundation's identity, indicating high legitimacy and trustworthiness.

A

ats Elektronik GmbH

atsonline.de

48

ats Elektronik GmbH is a German technology company specializing in secure communication and safety technology solutions. Their website presents a professional image with detailed service offerings in areas such as 5G, TETRA, MOTOTRBO/DMR radio technology, security systems, system solutions for energy, transport, public safety, and military sectors, as well as research projects and training. The company targets security professionals and enterprises requiring advanced communication and safety solutions. The website is well-structured, multilingual (German and English), and includes comprehensive contact information and policies, reflecting a mature digital presence. Technically, the website uses a proprietary CMS (sethora.de Synapsis CMS), integrates modern JavaScript libraries including jQuery and MediaElement.js, and leverages Google Maps API for location services. Hosting is provided by Hetzner Online GmbH, a reputable German hosting provider. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequate with proper meta tags and structured navigation. Security posture is decent with HTTPS enforced and cookie consent implemented. However, no explicit security policy or incident response information is published, and security headers are absent. The WHOIS data shows an anomalous future domain creation date, which is likely an error but reduces trustworthiness. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional and trustworthy with minor security and compliance gaps. Strategic improvements in security transparency and WHOIS data accuracy are recommended to enhance credibility and risk posture.

D

Deutscher Olympischer Sportbund (DOSB)

bewegungslandkarte.de

53

Bewegungslandkarte.de is a German non-profit sports platform operated by the Deutscher Olympischer Sportbund (DOSB). It provides a searchable directory of sports and movement offers across Germany, targeting both sports enthusiasts and non-profit sports providers. The website is well-branded, consistent, and supported by a broad network of reputable sports organizations and government bodies. Technically, it is built on TYPO3 CMS, hosted by Hetzner, and integrates modern analytics and marketing tools such as Matomo and Adition. The site is mobile-optimized and SEO-friendly, offering a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced and cookie consent is implemented with granular controls, though explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates a strong legitimacy and trustworthiness profile with no suspicious content or vulnerabilities detected.

T

Tarifverbund OSTWIND

steigensieum.ch

51

The website steigensieum.ch serves as a promotional and informational portal for OSTWIND, a major public transport tariff association in Eastern Switzerland and Liechtenstein. It provides detailed information about monthly and yearly subscriptions, corporate offers, ticket comparisons, and alternatives to car commuting such as P+Rail. The site integrates with official OSTWIND and Swiss public transport services, offering users direct links to purchase tickets and subscriptions. The target audience includes commuters, seasonal travelers, and corporate employees seeking efficient public transport options. The website is professionally designed, content-rich, and well-branded, reflecting a strong market position in the regional transportation sector. Technically, the site is built on TYPO3 CMS and leverages modern JavaScript libraries such as jQuery and Swiper.js for interactive elements. It uses Google Maps API for mapping features and employs Matomo and Google Analytics for user tracking. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some security headers and a cookie consent mechanism, which are recommended for GDPR compliance. Overall, the security posture is solid with no critical vulnerabilities detected. However, improvements in privacy compliance and explicit security policies would enhance trust. The domain uses privacy-protected WHOIS, which is justified for this business type. The website demonstrates high professionalism and trustworthiness, supported by official partner links and social media presence. Strategic recommendations include implementing a cookie consent banner, publishing a security policy and incident response contacts, enhancing security headers, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

I

IN4OUT AG

in4out.ch

58

IN4OUT AG is a Swiss-based IT services company specializing in digital transformation, IT outsourcing, managed services, and security solutions. Positioned as a regional expert and Microsoft Gold Partner, the company targets businesses seeking comprehensive IT support and cloud services. Their website reflects a professional and consistent brand image with clear service offerings and customer engagement channels. Technically, the site is built on Orchard CMS and leverages common analytics tools such as Google Analytics and Piwik/Matomo, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and avoids exposing sensitive data but lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. WHOIS data confirms the legitimacy and transparency of the business, matching the website's claims and location. Overall, the website presents a trustworthy and professional front for IN4OUT AG, with moderate tracking and good business credibility.

L

Loxton Walk

loxtonwalk.com

47

Loxton Walk is a newly developed commercial real estate destination located in Marylebone, London, offering flexible retail and restaurant spaces across multiple units. The website presents a professional and modern digital presence, leveraging contemporary web technologies such as SvelteKit and Google Maps API to enhance user experience. However, the absence of WHOIS registration data raises concerns about the domain's legitimacy or registration status. The site lacks critical compliance documents such as privacy and cookie policies, and no direct contact information is provided, which may impact user trust and regulatory compliance. Security posture is moderate with HTTPS implied but no explicit security headers detected. Overall, the site appears to be in a development or pre-launch phase, requiring improvements in transparency and security to fully establish credibility.

M

Metropolitan Workshop

metwork.co.uk

47

Metropolitan Workshop is a well-established architectural and urban planning practice founded in 2005, with offices in London and Dublin. The company offers professional services in architecture, urbanism, and design, targeting clients interested in these sectors. Their website reflects a professional and consistent brand image, with clear navigation and relevant content tailored to their audience. The business operates primarily within the real estate sector and maintains a small company size with a focused market position. Technically, the website is built on WordPress and leverages modern web technologies including Google Analytics, Google Tag Manager, Vimeo embeds, and Google Maps API. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Hosting is provided by GoDaddy, consistent with the domain registrar information. From a security perspective, the website uses HTTPS with an excellent SSL configuration but lacks several recommended security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy and cookie policy present but no explicit cookie consent mechanism. Contact information is comprehensive, but no dedicated security policy or incident response details are available. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security headers, privacy consent mechanisms, and incident response transparency would enhance the security posture and compliance standing.