Security Directory

D

dotart.blog

dotart.blog

57

dotart.blog is a small, community-focused blogging platform that serves as a sister site to mastodon.art, targeting users interested in longer form creative writing such as poetry, stories, and blogs. It leverages the WriteFreely platform to provide decentralized, markdown-based blogging capabilities with features like drafts, scheduled posts, and RSS feeds. The website is well-structured and provides clear information about its purpose and how to join the community, although it lacks explicit contact information and formal policies beyond a basic privacy page. Technically, the site uses modern web technologies and is hosted with Namecheap, but lacks advanced security features such as DNSSEC and security headers. The domain registration is recent but consistent with the business age, and privacy protection on WHOIS is justified for this type of small community platform. Overall, the site is functional, trustworthy, and safe for general audiences.

The website www.petcircle.com.au is currently inaccessible due to a Vercel Security Checkpoint blocking content access. This checkpoint indicates a browser verification failure, preventing retrieval of actual website content. Consequently, no business information, contact details, or policies are available for analysis. The domain WHOIS data is unavailable, returning only generic policy text, which limits the ability to assess domain legitimacy or registrant details. Hosting on Vercel suggests a modern infrastructure, but the security checkpoint impedes further technical and security evaluation. Overall, the site cannot be properly assessed in its current state, resulting in a low AI score and limited insights.

Produktgenuss GmbH is a small technology company based in Germany specializing in the development, marketing, and operation of web platforms, with a strong focus on podcast-related services. Their key offerings include LetsCast.fm, a podcast hosting platform; podcasten.de, a podcast production support service; and Speedrank, a website performance auditing tool. The company targets podcasters ranging from hobbyists to power users, providing streamlined solutions to manage and distribute podcast content effectively. The website presents a professional and consistent brand image, emphasizing service quality and user engagement through clear calls to action and project showcases. Technically, the website is built with modern HTML5, CSS, and JavaScript technologies, hosted on variomedia.de servers. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and SEO optimization. No CMS or advanced frameworks are detected, indicating a likely custom or lightweight implementation. Performance is moderate, with deferred scripts and optimized images enhancing load times. From a security perspective, the site uses HTTPS but lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance and overall security posture. No incident response or security policy information is published, and no vulnerability disclosure or security.txt files are found. The WHOIS data shows standard hosting provider name servers without privacy protection, consistent with a small business setup. No suspicious patterns or exposed sensitive data are detected, but security best practices could be enhanced. Overall, Produktgenuss GmbH presents a trustworthy and professional online presence with a clear business focus. Strategic improvements in security policies, privacy compliance, and contact information transparency would strengthen their credibility and reduce risk. The AI score reflects a good but improvable website, with recommendations to address cookie consent, security headers, and expanded contact details to enhance trust and compliance.

S

Soziales Basel

sozialesbasel.ch

65

Soziales Basel operates as a local government/non-profit platform providing comprehensive information and referral services for social institutions and support offers in Basel-Stadt, Switzerland. The website targets residents seeking assistance in areas such as education, work, finance, health, housing, migration, and emergencies. It is positioned as a trusted local resource with partnerships from recognized organizations and government entities. Technically, the site employs modern web technologies including htmx and Sprig components, with responsive design and good accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are lacking. Overall, the site is professional, trustworthy, and well-aligned with its mission, with room for improvement in security policy transparency and technical hardening.

G

GGG Voluntas

ggg-voluntas.ch

51

GGG Voluntas is a Swiss non-profit organization specializing in healthcare consultation services, particularly focusing on patient advance directives, health planning, and accompaniment services for the sick at home. The organization targets elderly individuals, patients, and caregivers primarily in Basel, Switzerland. Their website presents a professional and consistent brand image with clear navigation and relevant content including podcasts and interviews that enhance their community engagement. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Plyr.js for media playback, with hosting of audio content on Amazon S3. Analytics are handled via privacy-focused Plausible Analytics, reflecting a commitment to user privacy. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are not published. Overall, the site is well-structured, mobile-optimized, and trustworthy, though improvements in cookie consent and formal security disclosures are recommended.

M

Merkur Druck AG

merkurdruck.ch

52

Merkur Druck AG operates as a medium-sized Swiss company specializing in sustainable printing products, creative media project design, and innovative digital solutions. The company targets businesses and organizations seeking environmentally conscious and creative media services. Their market position appears established within the regional manufacturing and media sectors, supported by a professional and consistent online presence. Technically, the website is built on WordPress using the Divi theme, enhanced with modern analytics tools such as Matomo and Microsoft Clarity, and SEO optimizations via Rank Math. The site demonstrates good mobile optimization and user experience, though performance is moderate. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies, which should be addressed to meet GDPR standards. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

The website zapalote.com serves as a photography and design portfolio primarily showcasing travel photography, wallpapers, and website design projects. The business appears to be a small-scale creative portfolio operated by an individual or small team, with a focus on visual content and design. The domain has been registered since 2006, indicating a stable presence, but the website content is minimal and lacks comprehensive business or contact information. Technically, the site uses basic HTML, CSS, and JavaScript without any detected CMS or advanced frameworks. The performance and mobile optimization are basic, with no detected accessibility or SEO enhancements beyond standard meta tags. There is no evidence of analytics or tracking technologies, which suggests minimal data collection and user tracking. From a security perspective, the site lacks critical security headers and does not have DNSSEC enabled. There is no visible privacy or cookie policy, nor any incident response or security contact information. The domain registration is consistent and legitimate, but the absence of security best practices and compliance documentation reduces the overall security posture. Overall, the site is low risk due to its limited functionality and content but would benefit from improved security measures, privacy compliance, and enhanced business transparency to increase trust and professionalism.

L

Legacoop Produzione e Servizi

produzione-servizi.coop

56

Legacoop Produzione e Servizi is an Italian cooperative association representing worker cooperatives across multiple sectors including construction, logistics, manufacturing, and services. The organization promotes cooperative values and supports its members through sector-specific initiatives, news dissemination, and participation in European projects. The website reflects a professional and consistent brand presence with active social media engagement and partner collaborations. The domain registration aligns well with the organization's identity and location, supporting its legitimacy. Technically, the website is built on WordPress using modern plugins such as Yoast SEO, MasterSlider, and Matomo Analytics for tracking. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some security best practices like enabling DNSSEC and security headers are missing, and no explicit privacy or security policies are published. Security posture is moderate with HTTPS enabled and cookie consent implemented, but improvements are recommended to enhance DNS security and publish incident response information. Overall, the website is trustworthy and serves its target audience effectively, though privacy compliance could be improved by adding explicit policies. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing privacy and security policies, and conducting regular security audits to maintain a strong security posture.

D

Documenti-Privacy

documenti-privacy.it

52

Documenti-Privacy is a small Italian business service platform founded in 2019 that provides privacy documentation based on company VAT numbers. The website is designed to serve businesses in Italy seeking privacy information documents. The platform uses modern web technologies including JavaScript and Bootstrap, with payment integration via Stripe. The technical infrastructure is moderate in performance and basic in mobile optimization and accessibility. Security posture is good with HTTPS and DNSSEC enabled, but lacks advanced security headers and policies. Privacy compliance is minimal as no privacy or cookie policies are present. Contact information and incident response details are absent, limiting user trust and compliance. Overall, the site is functional but basic in content and security features.

C

cpress

cpress.ch

43

cpress is a small independent media publisher based in Switzerland, founded in 2014 by Christof Nüssli and Christoph Oeschger. The company focuses on publishing books and films, targeting a general audience interested in niche media content. The website reflects this business model with clear navigation to books and films sections and news updates about upcoming releases and events. The market position appears to be that of a specialized publisher serving a focused community rather than a mass-market player. Technically, the website is built using standard HTML5, CSS3, and JavaScript without reliance on major CMS or frameworks. The site is moderately optimized for performance and mobile use, though accessibility and SEO features are basic. No advanced analytics or advertising technologies are detected, indicating a minimalistic digital footprint. From a security perspective, the site lacks published privacy, cookie, or terms of service policies, and no security headers are detected. There is no visible contact information for security incidents or data protection officers. The domain registration data is consistent with the business claims, showing no privacy protection and a domain age matching the founding year, which supports legitimacy. Overall security posture is moderate but could be improved by implementing standard compliance and security best practices. The overall risk is low given the nature of the business and content, but the lack of privacy and security policies and contact information could impact trust and compliance with regulations such as GDPR. Strategic improvements in these areas would enhance the company's security posture and user trust.

C

Ciao Press

ciaopress.com

54

Ciao Press is a small Swiss-based independent publisher specializing in art, contemporary photography, illustration, and design books. Founded by Nicolas Polli in late 2017, the company focuses on producing limited edition, high-quality printed books that appeal to art enthusiasts and collectors. The website presents detailed information about their publications, including edition sizes, ISBNs, and pricing, reflecting a niche market positioning. Technically, the website uses modern web technologies such as HTML5, CSS3, JavaScript, and the Flickity carousel for image galleries. It is hosted by Infomaniak Network SA, a Swiss hosting provider, and uses HTTPS for secure connections. However, DNSSEC is not enabled, and no security headers were detected, indicating room for improvement in security hardening. The site lacks privacy and cookie policies, which are important for GDPR compliance, and no incident response or vulnerability disclosure information is provided. Contact information is limited to a single email address, with no phone or physical address listed. Overall, the website is professionally designed with good content relevance and user experience but could enhance its security posture and privacy compliance to build greater trust and meet regulatory requirements.

The website arboreditions.com is currently inaccessible beyond a robot challenge CAPTCHA page, indicating the presence of a Web Application Firewall or similar security mechanism blocking direct access. This prevents a full assessment of the site's business content and user-facing features. The domain is registered with Tucows Domains Inc. since 2021 and uses SiteGround hosting, suggesting a legitimate but relatively new online presence. The technical infrastructure includes advanced JavaScript-based CAPTCHA challenge scripts to mitigate automated access. However, no privacy, cookie, or terms of service policies are present on the accessible page, and no contact or business information is visible. This limits the ability to evaluate the company's business model, compliance posture, or customer engagement strategies. Security posture is minimal with no visible security headers or SSL details, but the presence of a WAF challenge indicates some level of protection. Overall, the site appears to be in a protected or restricted state, requiring resolution of the CAPTCHA to access full content.

A

Anne Schwalbe

anneschwalbe.de

57

Anne Schwalbe operates a professional photography portfolio website primarily targeting art enthusiasts and potential buyers in Berlin and beyond. The site features a curated gallery of photographic works, an online shop for art sales, and a newsletter subscription to engage visitors with updates on exhibitions and new works. The business is positioned as a niche artist portfolio with a small-scale operation, founded at least since 1995, reflecting a mature presence in the art community. Technically, the website is built with standard HTML, CSS, and JavaScript without reliance on major CMS platforms or advanced frameworks. The site demonstrates good content quality, clear navigation, and basic mobile optimization. However, it lacks modern security headers and cookie consent mechanisms, which are important for compliance and user trust. Hosting is managed via UI-DNS name servers, indicating a stable but modest infrastructure. From a security perspective, the site uses secure form inputs with consent checkboxes for newsletter subscriptions but does not exhibit advanced security policies or incident response information. No blocking or WAF mechanisms are detected, and the domain WHOIS data aligns well with the website's claims, indicating legitimacy and consistent registration history. The absence of exposed sensitive data and minimal tracking enhances privacy compliance, though cookie consent should be improved. Overall, the website scores well in content quality and business credibility but has room for improvement in security posture and privacy compliance. Strategic enhancements in security headers, cookie consent, and incident response transparency would strengthen trust and compliance.

K

Kesselhaus Josephsohn

kesselhaus-josephsohn.ch

50

Kesselhaus Josephsohn is a small cultural institution based in Switzerland that operates as a museum, gallery, and exhibition space dedicated to the works of Hans Josephsohn. The website serves as a digital presence showcasing their exhibitions, artworks, and related events, targeting art enthusiasts and the general public interested in cultural activities. The business model revolves around art exhibition and gallery services, with a niche market position in the cultural sector. Technically, the website employs modern JavaScript frameworks such as Vue.js and uses lazy loading techniques for images to optimize performance. It integrates Matomo analytics for user tracking, indicating a moderate level of digital maturity with some privacy considerations. However, the site lacks comprehensive SEO and accessibility features and shows only basic mobile optimization. From a security perspective, the website is accessible without WAF or blocking mechanisms, but it lacks important security headers and does not display privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response channels are provided, limiting transparency and trust. The SSL configuration could not be verified from the provided data, which is a potential risk. Overall, the website is functional and professionally designed but requires improvements in security posture, privacy compliance, and contact transparency to enhance trustworthiness and regulatory adherence. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, and providing clear contact information for users and security incidents.

Z

Zürcher Hochschule der Künste

zhdk.ch

61

Zürcher Hochschule der Künste (ZHdK) is a large, accredited Swiss art university offering a wide range of Bachelor and Master programs in art education, design, film, fine arts, music, dance, theatre, and transdisciplinary studies. The institution is well positioned as one of Europe's largest art universities, targeting students interested in creative and cultural disciplines. The website reflects a mature digital presence with multilingual support and structured data for SEO. Technically, the site uses modern frameworks such as Astro and integrates Piwik analytics, indicating a commitment to performance and data insights. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is partial, with a comprehensive privacy policy but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and well maintained.

P

Potpuri

potpuri.org

52

Potpuri.org is an independent publishing platform and collaborative initiative focused on experimental research methodologies, investigative journalism, and production, primarily serving the Albanian diaspora and social issues between Kosovo and Switzerland. The website is hosted on the Cargo.site platform and uses modern web technologies including JavaScript frameworks and responsive design. The site is multilingual and includes partner acknowledgments from the European Union and local initiatives. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers. Privacy compliance is good with a cookie consent mechanism and a privacy policy present. However, contact information and terms of service are missing, which impacts business credibility and user trust. Overall, the site is functional, professionally designed, and serves a niche media and research audience.

M

MOULURE MAGAZINE

mouluremagazine.ch

49

MOULURE MAGAZINE is a small interdisciplinary art and design collective based in Switzerland, providing a platform for artists and designers to share their creative processes and works. The website serves as an online magazine and includes an online shop, targeting artists, designers, and art enthusiasts. The platform is hosted on Cargo Collective and integrates Stripe for payment processing. The technical infrastructure is modern and functional, with good mobile optimization and a clean design. Security posture is adequate with HTTPS and secure payment integration, but lacks advanced security headers and formal privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security practices.

F

Flavia Sistiaga

flaviasistiaga.com

40

The website flaviasistiaga.com serves as a professional portfolio for the artist Flavia Sistiaga, showcasing her exhibitions, publications, projects, and commissioned works. The site is hosted on the Cargo Collective platform and presents a clean, well-structured design suitable for art enthusiasts and potential collaborators. The business model focuses on portfolio presentation and artistic promotion, targeting a niche audience interested in contemporary art. The domain is registered since 2018 with a reputable registrar and shows consistency with the website content. From a technical perspective, the site uses standard web technologies including JavaScript, Google Analytics, and WebFont Loader, with hosting likely provided by Cargo Collective. The performance is moderate with basic mobile optimization and accessibility features. SEO optimization is minimal but present through meta tags and Open Graph data. Security posture is adequate with HTTPS enabled and domain transfer protection active. However, the absence of DNSSEC and security headers such as Content-Security-Policy and Strict-Transport-Security represents areas for improvement. Privacy compliance is weak due to the lack of privacy and cookie policies and no visible consent mechanisms. No contact information or incident response details are provided, limiting transparency. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy compliance measures to improve trust and regulatory adherence.

H

Heissi Schnitte – Catering

heissi-schnitte.ch

51

The website heissi-schnitte.ch appears to represent a small Swiss business, likely in the bakery or food sector, based on the domain and language context. The site is built on WordPress using the Elementor page builder, indicating a moderate level of digital maturity with a focus on visual presentation. The content is primarily in German (Switzerland) and is business-oriented but lacks detailed business information, contact details, and formal policies such as privacy or cookie policies. Technically, the site uses HTTPS, which is a positive security indicator, but lacks important security headers and formal privacy compliance mechanisms. No analytics or tracking scripts were detected, suggesting minimal user tracking. The absence of contact information and security policies reduces the overall trust and compliance posture. The domain WHOIS data is consistent with the website's Swiss origin and shows no privacy protection, supporting legitimacy. Overall, the website is functional and visually adequate but requires improvements in privacy, security, and business transparency to enhance trust and compliance.

S.P.A is a small artisanal wine producer and retailer located in Basel, Switzerland, offering handcrafted wines through an online shop and local presence. The business emphasizes honest and artisanal wine production with a community focus. The website uses modern web technologies including Craft CMS, Snipcart for e-commerce, and Google Tag Manager for analytics. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced and an age verification gate for alcohol sales, but lacks security headers and explicit privacy or cookie policies. No contact emails or phone numbers are explicitly provided, which may impact user trust and compliance. Overall, the website is legitimate and trustworthy but could improve privacy compliance and security practices.

P

Palazzina

palazzina.ch

63

Palazzina is a small cultural venue based in Switzerland specializing in contemporary art exhibitions and cultural events. The website serves as a platform to showcase recent and upcoming exhibitions, book launches, and other artistic activities primarily located in Basel. The target audience includes art enthusiasts, local visitors, and artists. The business model appears to be non-profit or cultural organization focused on community engagement through art. Technically, the website is built with standard HTML, CSS, and JavaScript, likely using a custom CMS. It is mobile optimized with moderate performance and basic SEO and accessibility features. The site uses HTTPS and includes CSRF tokens in forms, indicating some security awareness. However, it lacks security headers and privacy/cookie policies, which are important for compliance and security. From a security perspective, the site has a good SSL configuration and no visible vulnerabilities or exposed sensitive data. The absence of privacy and cookie policies and security headers are notable gaps. No incident response or vulnerability disclosure information is provided. The site does not appear to use analytics or tracking services, minimizing privacy risks. Overall, the website is professional and trustworthy with a moderate security posture. Strategic improvements in privacy compliance, security headers, and incident response readiness would enhance its security and compliance standing.

HUMBUG is a cultural venue based in Basel, Switzerland, focusing on queer, feminist, and alternative cultural events. The website provides a comprehensive program of past and current events, showcasing a vibrant community engagement. Technically, the site uses standard web technologies including Google Analytics and Tag Manager for tracking, but lacks advanced security headers and privacy policies. The absence of WHOIS data limits domain trust assessment, though the content and event listings indicate a legitimate operation. Security posture is moderate with room for improvement in privacy compliance and security best practices.

M

Mixlr Ltd

mixlr.com

60

Mixlr Ltd operates a specialized live audio broadcasting platform that enables users to create, distribute, and host professional-quality live audio streams globally. Founded in 2010, the company has established itself as a trusted provider in the live audio streaming niche, serving diverse audiences including sports teams, podcasters, educators, and faith groups. The platform emphasizes ease of use, reliability, and professional sound quality without the complexity of traditional broadcasting tools. Technically, Mixlr leverages a modern tech stack including Ruby on Rails, Turbo, StimulusJS, and AWS infrastructure with Cloudfront CDN, ensuring fast and scalable performance. The website is well-designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Security posture is solid with HTTPS and domain transfer protections, though improvements such as enabling DNSSEC and publishing explicit security policies could enhance trust further. Privacy compliance is evident through a comprehensive privacy policy and cookie consent mechanisms aligned with GDPR. Overall, Mixlr presents a credible, professional, and secure online presence with moderate user tracking for analytics and marketing purposes.

M

Merkur Druck AG

merkurmedien.ch

52

Merkur Druck AG is a Swiss-based company specializing in sustainable printing products, creative media project design, and innovative digital solutions. Positioned as a regional leader in manufacturing and media services, the company targets businesses seeking environmentally responsible and creative media services. The website reflects a professional and consistent brand image with clear contact information and a focus on sustainability. Technically, the site is built on WordPress using the Divi theme, integrating modern analytics tools such as Microsoft Clarity and Matomo, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and incident response disclosures. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security practices to meet modern compliance standards.

P

ProgrammZeitung Verlags AG

proz.online

70

PROZ.online is a regional cultural media platform operated by ProgrammZeitung Verlags AG, founded in 2022, focusing on providing comprehensive event listings, exhibitions, and magazine content for the Basel area. The website serves a culturally engaged audience interested in arts, theater, music, and literature. It offers subscription services, event submissions, and advertising opportunities, positioning itself as a key local media resource with support from Swiss cultural institutions. Technically, the site uses the open-celements CMS with a modern JavaScript stack including jQuery, Prototype.js, and Matomo analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks DNSSEC and explicit security headers. No incident response or security policy is published, which could be improved. Overall, the domain registration is consistent and transparent, supporting the legitimacy of the business.

S

Stiftung Liste Basel

liste.ch

57

Liste Art Fair Basel is a Swiss-based non-profit foundation organizing a well-established contemporary art fair event in Basel. The website serves as an information portal for visitors, artists, partners, and press, providing event details, application information, and contact channels. The business is positioned as a key cultural event with long-term partnerships, notably with E. Gutzwiller & Cie, Banquiers. Technically, the site is built on Magnolia CMS, uses modern web standards, and integrates Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized and provides a cookie consent mechanism, indicating a basic level of privacy compliance. Security posture is good with HTTPS enforced, but lacks advanced security headers and dedicated security policy disclosures. Overall, the website is professional, trustworthy, and serves its audience effectively.

Ricola is a well-established global brand specializing in natural herbal drops made from a unique blend of 13 Swiss Alpine herbs. The website presents a professional and comprehensive digital presence, showcasing their product range including herbal drops, drink cubes, and instant teas. The brand targets a general audience interested in natural wellness products and maintains a consistent and trusted market position in the retail sector. Technically, the website leverages modern frameworks such as Astro, integrates Google Tag Manager and Usercentrics for consent management, and employs HTTPS for secure communications. Privacy compliance is well addressed with clear privacy and cookie policies and active consent mechanisms. Security posture is generally strong with no visible vulnerabilities or exposed sensitive data, though the absence of explicit security headers and incident response information suggests room for improvement. The WHOIS data is unavailable or protected, which slightly reduces trust but does not detract significantly from the overall legitimacy given the professional website and brand recognition. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen trust and compliance.

W

WOMAN.AT

womanbalance.at

65

The website www.woman.at/balance is a professional online magazine focused on mindful lifestyle topics including health, spirituality, and personal development, targeting a primarily female German-speaking audience in Austria. It offers content such as columns, podcasts, guides, and events curated by Kristin Pelzl-Scheruga and others. The site is part of a larger media group, likely VGN Medien Holding GmbH, indicating a strong market position in Austrian women's media. Technically, the site uses modern web technologies including Next.js, React, and integrates advertising and analytics services such as Adition and Fathom Analytics. The site is well-optimized for mobile and SEO, with good design and navigation clarity. Security posture is solid with HTTPS and some security best practices, though explicit security policies and headers could be improved. Privacy compliance is basic with a cookie consent mechanism but lacks visible privacy and terms of service pages. No direct contact information or incident response contacts are found, which could be improved for trust and compliance. Overall, the site is trustworthy, professional, and safe for general audiences.

S

Sofalesungen

sofalesungen.ch

46

Sofalesungen.ch is a small Swiss website focused on cultural readings and events, targeting German-speaking audiences. The site provides event information and media content, embedding third-party services such as YouTube, Vimeo, and Google Maps. The business model appears service-oriented with a niche local market position. Technically, the site uses standard web technologies and Google Analytics with IP anonymization, reflecting moderate digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. Privacy compliance is good, with a comprehensive privacy policy and cookie consent banner in place. Overall, the website is professional and trustworthy but could improve in contact transparency and technical optimizations.

Z

Zürcher Rotpunktverlag

wanderweb.ch

54

Wanderweb is a German-language community forum and publishing platform focused on hiking books by the Zürcher Rotpunktverlag. The website serves hiking enthusiasts by providing updated hiking book information and a forum for feedback and discussion. The platform is built on the Discourse forum software, leveraging modern web technologies such as Ember.js and JavaScript, delivering a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS and security headers properly implemented, although privacy and cookie policies are absent, which is a compliance gap. No contact information or incident response channels are explicitly provided, limiting direct communication avenues. Overall, the website is professional, trustworthy, and focused on a niche market segment in Switzerland.

P

Produktgenuss GmbH

letscast.fm

69

LetsCast.fm is a German-based podcast hosting service operated by Produktgenuss GmbH, founded in 2020. The company provides a comprehensive platform for podcasters of all levels to host, publish, and monetize their podcasts across major platforms such as Spotify, Apple Podcasts, and YouTube. The service emphasizes ease of use, unlimited podcast and episode uploads, and extensive analytics. The website is professionally designed, mobile-optimized, and offers clear pricing tiers with transparent features. Social media and community engagement are active, enhancing brand trust and user support. Technically, LetsCast.fm employs modern web technologies including JavaScript frameworks, Tailwind CSS, and Podlove Web Player integration. Hosting appears to be on AWS infrastructure, with DNS managed via AWS nameservers. Analytics are implemented using Google Tag Manager and Plausible Analytics, balancing tracking needs with privacy considerations. The site enforces HTTPS and includes CSRF protection tokens, indicating good security hygiene. Security posture is solid with HTTPS, clientTransferProhibited domain status, and cookie consent mechanisms. However, DNSSEC is not enabled, and explicit security policies or incident response contacts are not publicly documented. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is strong with comprehensive privacy and cookie policies, and GDPR adherence is evident. Overall, LetsCast.fm presents a trustworthy, professional, and user-friendly podcast hosting platform with a strong market position in the German-speaking podcast ecosystem. Strategic improvements in DNS security and published security policies could further enhance trust and compliance.

V

VentraIP Australia

ventraip.com.au

72

VentraIP Australia is a leading Australian digital service provider specializing in domain registration, web hosting, email hosting, SSL certificates, and website building solutions. Positioned as Australia's largest independent accredited registrar, VentraIP serves a broad audience ranging from individuals and small businesses to professional web developers and enterprises. The company emphasizes local Australian ownership and support, which is a key differentiator in the market. Their website reflects a professional and trustworthy brand with strong customer satisfaction evidenced by high ratings on multiple review platforms. Technically, the website leverages modern web technologies including Next.js and React, supported by a suite of analytics and marketing tools such as Google Analytics, TikTok Pixel, Facebook Pixel, and ContentSquare. The site is well-optimized for performance, mobile responsiveness, and SEO, providing a seamless user experience. Hosting details are not explicitly disclosed but are likely managed by their parent company Nexigen Digital. From a security perspective, VentraIP employs HTTPS with valid SSL certificates and demonstrates good security practices such as domain status protections in WHOIS data. However, there is room for improvement in explicitly publishing security policies, enabling DNSSEC, and implementing cookie consent mechanisms to enhance privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, VentraIP presents a low-risk profile with a strong market position, credible business operations, and a secure, well-maintained digital presence. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security and incident response policies, and enabling DNSSEC to further strengthen domain security.

Zürich liest is a well-established non-profit cultural festival focused on literature, hosting over 100 events annually in Zurich and surrounding regions. The website serves as an information hub for festival programming, author events, workshops, and community engagement, targeting literature enthusiasts and the general public interested in cultural activities. The festival has a strong regional presence with a 15-year history and partnerships with reputable cultural and governmental organizations. Technically, the website uses a straightforward tech stack including jQuery and standard web technologies, with moderate performance and good mobile optimization. The site features a newsletter subscription integrated via CreateSend, but lacks advanced SEO structured data and visible security headers. Accessibility and navigation are well implemented, providing a good user experience. From a security perspective, the site enforces HTTPS and uses secure form submission for newsletter signups. However, it lacks visible security policies, incident response information, and cookie consent mechanisms, which are important for GDPR compliance and user trust. No critical vulnerabilities or exposed sensitive data were detected. The domain registration aligns well with the festival's history and location, supporting legitimacy. Overall, the website is professional and trustworthy but could improve its privacy compliance and security posture by adding cookie consent, security headers, and publishing security policies.

B

Bundesministerium für Bildung, Wissenschaft und Forschung

erwachsenenbildung.at

62

erwachsenenbildung.at is an official Austrian government portal dedicated to adult education, providing comprehensive information, services, and learning opportunities for trainers, coaches, and educational managers. The site is managed by the Bundesministerium für Bildung, Wissenschaft und Forschung and supported by partners such as CONEDU and the Bundesinstitut für Erwachsenenbildung. It serves as a national and international hub for networking and professional development in the adult education sector. Technically, the website employs modern web standards, including HTML5, CSS3, JavaScript, and integrates Cookiebot for consent management and Google Tag Manager for analytics. The site is well-optimized for mobile devices and accessibility, with good SEO practices in place. Security-wise, the site enforces HTTPS, uses appropriate security headers, and provides a robust cookie consent mechanism, although explicit security and incident response policies are not publicly available. Overall, the domain registration aligns perfectly with the official government entity, reinforcing the site's legitimacy and trustworthiness.

F

Falter Verlagsgesellschaft m.b.H.

falterverlag.at

62

Falter Verlagsgesellschaft m.b.H. operates as a regional Austrian book publisher with a focus on providing books, promotional materials, and direct ordering services to the book trade and readers. The website falterverlag.at serves as an information and ordering platform, offering detailed book catalogs, special offers, and contact points for sales, press, and editorial teams. The company maintains a clear presence in the Austrian media sector with a small-sized business profile and consistent branding. Technically, the website employs modern web technologies including JavaScript, jQuery, and a GDPR-compliant consent management platform (Didomi). The site is mobile-optimized with good SEO practices and accessible navigation, although accessibility features could be enhanced. Performance is moderate, and the site uses HTTPS with a good SSL configuration, but lacks some advanced security headers. From a security perspective, the site demonstrates a solid baseline with encrypted connections and cookie consent mechanisms. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or suspicious content were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent banner. Overall, the website presents a trustworthy and professional digital presence for a small media publishing company. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance the security posture and user trust.

D

Deutscher Gewerkschaftsbund

dgb.de

56

The Deutscher Gewerkschaftsbund (DGB) is a major German trade union confederation representing 5.7 million members across eight unions. The website serves as an information hub for labor rights, political advocacy, campaigns, and union services. It targets workers, union members, and political stakeholders in Germany, positioning itself as a leading non-profit organization in the labor sector. Technically, the site is built on TYPO3 CMS and uses Matomo for analytics, reflecting a modern and privacy-aware infrastructure. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enabled and asynchronous script loading, but lacks visible security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy disclosures and security transparency.

E

Edkimo

edkimo.com

58

Edkimo is an education technology company founded in 2014, providing a SaaS platform that enables educators and schools to create surveys and collect anonymous feedback to improve lessons and school development. The platform emphasizes GDPR compliance and data privacy, hosting servers in Germany and offering a user-friendly, device-agnostic experience. Technically, the website is built using modern frameworks like SvelteKit, delivering fast performance and excellent mobile optimization. Security posture is solid with HTTPS and domain transfer protections, though some improvements are recommended such as enabling DNSSEC and publishing explicit security policies. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

D

Der Beauftragte der Bundesregierung für Kultur und Medien

kulturstaatsministerin.de

67

The website kulturstaatsminister.de is the official online presence of the German Federal Government's Commissioner for Culture and Media. It serves as a comprehensive information portal about cultural policies, funding, media support, and historical remembrance initiatives in Germany. The site targets citizens, cultural institutions, artists, and media professionals, providing authoritative content and resources. Technically, the site is built on TYPO3 CMS, hosted by ITZBund, and employs Matomo analytics with a strong focus on privacy and consent management. The security posture is robust with HTTPS enforcement and consent-based cookie usage, though some security headers could be explicitly confirmed. Overall, the site demonstrates a high level of professionalism, accessibility, and compliance with GDPR regulations, reflecting its governmental nature and public trust requirements.

G

GoAesthetic by Dr. Herndlhofer

goaesthetic.at

62

GoAesthetic by Dr. Herndlhofer is a specialized medical aesthetic practice based in Vienna, Austria, offering a range of cosmetic treatments including Botox, hyaluronic acid injections, HIFU, and laser hair removal. The business targets adults seeking natural and harmonious anti-aging solutions, positioning itself as a trusted local provider with a strong reputation evidenced by numerous positive customer reviews. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site runs on WordPress with modern plugins and frameworks, ensuring good performance and accessibility. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

A

AME International

ame.eu

53

AME International is an Austrian healthcare company specializing in turnkey tertiary care hospitals, medical equipment packages, and digital healthcare solutions. The company positions itself as a provider of comprehensive healthcare infrastructure projects on a global scale, targeting healthcare providers and government agencies. The website reflects a professional and modern digital presence built on WordPress, featuring multimedia content and clear navigation. The technical infrastructure is well-implemented with modern libraries and performance optimizations. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the website demonstrates a mature digital footprint with strong compliance to GDPR and privacy standards, supporting the company's credibility in the healthcare sector.

P

Pilates Babes GmbH

pilatesbabes.com

67

Pilates Babes GmbH operates a professionally designed e-commerce website focused on Pilates fitness classes, events, retreats, and merchandise primarily targeting the Austrian and German markets. The company leverages the Shopify platform to deliver a mobile-optimized, fast-loading website with integrated social media presence and customer testimonials, positioning itself as a niche wellness brand. Technically, the site uses modern web technologies including Shopify's Dawn theme, JavaScript, CSS, and hCaptcha for form security. The security posture is solid with HTTPS enforced and domain locking, though explicit security policies and incident response contacts are absent. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but could improve transparency and compliance documentation.

R

Rozet & Fischmeister

rozetundfischmeister.at

64

Rozet & Fischmeister is a traditional Austrian jewelry retailer established in 1770, currently operated by the sixth generation of the Fischmeister family. The company offers a wide range of jewelry products including rings, earrings, bracelets, and silverware, targeting consumers seeking high-quality and traditionally crafted jewelry. The website serves as both a brand showcase and an e-commerce platform, leveraging WooCommerce on WordPress to facilitate online sales. The site is professionally designed with good navigation and mobile optimization, reflecting a mature digital presence. Technically, the website employs a modern technology stack including WordPress, WooCommerce, and various marketing and tracking tools such as Facebook Pixel and Google Tag Manager. The site uses HTTPS with good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, some security headers are not explicitly detected, and no dedicated security or incident response policies are published on the site. From a security perspective, the website demonstrates a solid baseline with HTTPS enforcement and no visible critical vulnerabilities. The use of third-party tracking scripts is managed with user consent, aligning with privacy regulations. The WHOIS data confirms domain legitimacy with consistent registrant information and domain age appropriate to the company's long history. Overall, Rozet & Fischmeister presents a trustworthy and professional online presence with good compliance and security posture. Strategic improvements could include enhancing security headers, publishing explicit security policies, and providing direct contact information for security incidents to further strengthen trust and resilience.

R

Report Antisemitism

report-antisemitism.de

51

The website 'Report Antisemitism' serves as a platform dedicated to reporting and raising awareness about antisemitism incidents, primarily focused on Germany. It targets the general public, victims, researchers, and policymakers interested in antisemitism data and reporting. The business model appears non-commercial and informational, with no evident monetization or advertising. The website uses a modern static site generator (Gatsby) and is hosted on Hetzner, a reputable German hosting provider, indicating a solid technical infrastructure. The site is mobile-optimized and has a good design quality, but lacks comprehensive privacy and cookie policies, which is a compliance gap. Security posture is strong with a strict Content-Security-Policy, but additional security headers could enhance protection. No contact information or social media links were found, limiting direct communication channels. Overall, the site is safe, professional, and trustworthy but would benefit from improved privacy compliance and contact transparency.

D

German TV in Thailand - streaming, download, Apps

deutsches-fernsehen-weltweit.de

49

The website deutsches-fernsehen-weltweit.de offers a subscription-based streaming and cloud DVR service providing access to 44 German TV channels worldwide, targeting German expatriates and German-speaking audiences, especially in Thailand. The business model centers on providing easy access to German TV content without hardware requirements, leveraging cloud recording technology. The site is well-branded and consistent, with clear service descriptions and pricing, positioning itself as a niche media provider in the German expatriate market. Technically, the site uses modern web technologies including Google Analytics, Google Tag Manager, and Google Fonts, hosted on AWS infrastructure. The site is mobile-optimized and SEO-friendly, with moderate performance and basic accessibility features. However, no CMS or advanced frameworks are detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not publish privacy, cookie, or security policies, which reduces its privacy compliance posture. No incident response or vulnerability disclosure information is provided, limiting transparency. The WHOIS data aligns with the website content and hosting, indicating a legitimate domain. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures to improve trust and compliance. There are no indications of malicious or adult content, making it safe for general audiences.

W

Walzwerk

walzwerk.ch

52

Walzwerk is a mixed-use commercial real estate area located in Münchenstein and Arlesheim, Switzerland, offering a vibrant environment combining business, education, culture, gastronomy, and leisure. The website presents the property as a regional hub for diverse activities, targeting local businesses, cultural participants, and visitors seeking educational and recreational experiences. The business model centers on leasing commercial and cultural spaces and hosting events, supported by a parent company, SF Urban. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript with jQuery and GSAP, and integrates Google Analytics for user tracking. The site is well-structured, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. No critical vulnerabilities or suspicious elements were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though contact information is not explicitly provided in the HTML content.

O

Opportunus s.r.o.

ecpaper.cz

42

EcPaper, operated by Opportunus s.r.o., provides a digital solution for converting traditional printed catalogs and flyers into interactive online formats. Their service targets businesses seeking to enhance customer engagement through responsive, SEO-optimized digital catalogs accessible on multiple devices. The company positions itself as a niche technology provider within the Czech Republic, offering tools for catalog management, analytics integration, and online sales channel enhancement. The website reflects a professional and consistent brand image with clear contact information and client references, supporting its credibility in the market. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and jQuery, with responsive design facilitated by Bootstrap. Integration with Google Fonts and Google Maps API enhances user experience. The site is powered by dmpCMS, indicating a managed content platform. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are evident through meta tags and structured content. Security posture is adequate with HTTPS usage and secure form handling, but lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. No WHOIS data was retrievable, which raises concerns about domain registration transparency. No signs of malicious content or vulnerabilities were detected in the visible content. Overall, the website presents a trustworthy business front with room for improvement in security best practices and privacy compliance. Strategic recommendations include implementing security headers, cookie consent, and publishing terms of service to enhance user trust and regulatory adherence.

The Studer/Ganz Stiftung website represents a small Swiss non-profit foundation focused on promoting literature and cultural initiatives, as evidenced by the mention of the CHRYSALIDE Binding Förderpreis für Literatur. The site is multilingual, targeting German, French, and Italian speakers, reflecting Switzerland's linguistic diversity. The business model centers on cultural sponsorship and foundation activities, positioning it as a niche player within the Swiss cultural sector. Technically, the website employs basic web technologies including HTML5, CSS, JavaScript, and jQuery. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. There is no evidence of a CMS or modern frameworks, indicating a simple, possibly static site architecture. From a security perspective, the site lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and user trust. No forms or direct contact information are present on the homepage, limiting user engagement and transparency. The WHOIS data aligns well with the website's claims, showing consistent registration details without privacy protection, appropriate for a non-profit entity. Overall, the website is functional but basic, with room for improvement in privacy compliance, security posture, and user engagement. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

Z

Zisterzienserabtei Wettingen-Mehrerau

mehrerau.at

66

Kloster Mehrerau is a religious institution operating as the Zisterzienserabtei Wettingen-Mehrerau located in Bregenz, Austria. The website serves as a comprehensive portal for visitors and community members, offering information about monastic life, guest accommodations, events, and spiritual services. The institution positions itself as a vibrant community hub with a focus on faith, hospitality, and cultural engagement. The site features detailed event calendars, news updates, and opportunities for donations, reflecting an active and engaged organization. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, Google Tag Manager, and CookieHub for privacy compliance. The site is served over HTTPS with good security practices such as IP anonymization in analytics and a cookie consent mechanism. The design is professional, mobile-optimized, and accessible, providing a positive user experience. However, some security headers are not explicitly detected, and no dedicated security policy or incident response information is published. From a security perspective, the site demonstrates a solid baseline with HTTPS and privacy compliance but could improve by publishing explicit security policies and vulnerability disclosure information. No vulnerabilities or suspicious content were detected. The WHOIS data is unavailable due to quota limits, but the website content and contact details strongly support legitimacy and trustworthiness. Overall, Kloster Mehrerau presents a trustworthy, well-maintained online presence suitable for its non-profit religious mission. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and continuing to maintain privacy compliance and transparency.

F

Outlook

fmp-berlin.de

45

The website fmp-berlin.de hosts a Microsoft Outlook Web Access (OWA) login portal, providing email access services to authorized users, likely employees or members of an organization based in Germany. The site is focused on secure email access and does not provide public-facing business information or marketing content. The technical infrastructure is based on Microsoft OWA technology with standard web technologies such as JavaScript, HTML, and CSS. The site shows moderate digital maturity with basic mobile optimization and accessibility features but lacks advanced SEO and modern web frameworks. Security posture is moderate; HTTPS is used, and the login form uses POST with autocomplete disabled, but there is an absence of explicit security headers and privacy policies. No contact or business information is provided on the page, limiting transparency and trust signals. Overall, the site is functional for its purpose but could improve in security best practices and compliance documentation.

B

BGO

findalternative.co.uk

43

Findalternative.co.uk is a website promoting a real estate development project named '105 Victoria Street' in London, managed by the developer BGO. The site focuses on showcasing the workspace and commercial property offerings with a target completion date in Q3 2026. The business model centers on real estate development and leasing, targeting commercial tenants and businesses seeking workspace in a prime London location. The website is professionally designed with modern web technologies, including SVG graphics and Google Analytics integration, indicating a moderate level of digital maturity. However, the site lacks critical compliance elements such as privacy and cookie policies, and no forms or extensive contact details are provided, limiting user engagement and transparency. Security posture is moderate with HTTPS usage but no visible security headers or explicit security policies. The domain registration is consistent with the business timeline and registered through a reputable registrar, supporting legitimacy. Overall, the site presents a professional front for a niche real estate project but requires improvements in privacy compliance, security best practices, and richer contact information to enhance trust and regulatory adherence.