High-risk security reports

The analyzed content corresponds to an internal Chrome browser error page (chrome-error://chromewebdata/) that includes the embedded offline dinosaur game. There is no commercial or business-related content, no privacy or cookie policies, and no contact or security information. The page is designed to provide a user-friendly offline experience within the browser rather than serve as a public website. The technical infrastructure is focused on JavaScript and HTML5 Canvas for game rendering, with no external dependencies or analytics. Security posture is minimal due to the nature of the page, and no vulnerabilities or sensitive data exposure are detected. Overall, this is a safe, internal browser page with limited scope for business or security analysis.

P

Private Selection Hotels & Tours

privateselection.ch

48

Private Selection Hotels & Tours is a Swiss-based hospitality group offering over 50 luxury hotels and more than 30 tours across Switzerland and Europe. The company targets leisure travelers seeking high-quality, personalized experiences with a focus on wellness, adventure, and cultural immersion. Their business model includes direct online booking and a bonus program to incentivize customer loyalty. The website is professionally designed, multilingual, and integrates modern web technologies such as TYPO3 CMS, video content, and interactive booking forms. Sustainability certifications and guest satisfaction ratings reinforce their market position. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

C

Carers UK

carerpositive.org

47

Carer Positive is a Scottish non-profit initiative operated by Carers UK on behalf of the Scottish Government. It supports employers in creating supportive working environments for staff with caring responsibilities, offering awards, resources, and guidance. The website targets employers in Scotland and promotes retention and support of working carers. Technically, the site uses the concrete5 CMS with common web technologies like jQuery, Bootstrap, and Google Tag Manager. It is moderately optimized for mobile and SEO, with good content quality and clear navigation. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks DNSSEC and security headers. Privacy and terms policies are present and comprehensive, though cookie consent is missing. Overall, the site is trustworthy and professional, with a strong business credibility score.

D

Dinas Lingkungan Hidup Kabupaten Sumedang

dlhsumedang.org

42

Dinas Lingkungan Hidup Kabupaten Sumedang operates as the official environmental agency for the Sumedang Regency government in Indonesia. The website serves as a comprehensive portal for public information, environmental programs, news updates, and public service standards. It targets local residents and stakeholders interested in environmental governance and community engagement. The business model is government public service with a focus on transparency and citizen engagement. The site maintains consistent branding and provides relevant content, positioning itself as a trusted regional government resource. Technically, the website employs a modern front-end stack including jQuery, Bootstrap, Flickity, and Slick Carousel for interactive UI elements. Hosting and DNS are managed via Cloudflare, providing CDN and security benefits. The site is mobile-optimized and offers a moderate performance profile. However, no explicit CMS was detected, suggesting a custom or proprietary platform. From a security perspective, the site uses HTTPS and has domain transfer protections enabled. However, DNSSEC is not enabled, and no security headers were detected in the provided data, indicating room for improvement. The WHOIS data shows inconsistencies such as a future domain creation date and lack of registrant details, which slightly undermines trustworthiness. No privacy or cookie policies were found, which is a compliance gap. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website is a functional and professional government portal with good content quality and user experience. Security and privacy compliance can be enhanced by implementing DNSSEC, security headers, and publishing privacy and cookie policies. The WHOIS inconsistencies should be investigated to ensure domain legitimacy and trust.

D

Dinas Lingkungan Hidup Kabupaten Bekasi

dlhkabbekasi.org

43

Dinas Lingkungan Hidup Kabupaten Bekasi operates as the official environmental agency for Bekasi Regency, Indonesia, providing public information, news, and services related to environmental management and public welfare. The website serves residents and stakeholders with updates on programs, announcements, and contact channels. Technically, the site employs modern front-end technologies such as Bootstrap, jQuery, Flickity, and Slick carousel, hosted behind Cloudflare DNS, ensuring moderate performance and mobile responsiveness. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no privacy or cookie policies are present, indicating compliance gaps. The WHOIS data shows a domain creation date in the future relative to some content dates, which may require further verification. Overall, the site is professional and trustworthy as a government resource but would benefit from enhanced security and privacy compliance measures.

D

Dinas Lingkungan Hidup Kota Bogor

dlhkotabogor.org

43

The website represents the official online presence of the Dinas Lingkungan Hidup Kota Bogor, a government environmental agency in Bogor City, Indonesia. It provides comprehensive public information including news, programs, public services, and contact details aimed at residents and stakeholders interested in environmental matters. The site is positioned as a trusted government resource with consistent branding and relevant content for its audience. Technically, the website employs a modern but standard web technology stack including jQuery, Bootstrap, Flickity, and Slick Carousel, hosted behind Cloudflare DNS. The site is mobile responsive and offers a good user experience with clear navigation and relevant content. However, performance is moderate and accessibility features are basic. From a security perspective, the site uses HTTPS and has domain transfer protections, but lacks DNSSEC and visible security headers. There are no published privacy or cookie policies, which impacts compliance posture. The WHOIS data shows inconsistencies in domain creation date relative to content timestamps, which warrants further investigation. No WAF or blocking mechanisms are detected, and the site is fully accessible. Overall, the website is a functional government portal with good content quality and business credibility but requires improvements in privacy compliance and security best practices to enhance trust and protection.

D

Dinas Lingkungan Hidup Kabupaten Serang

dlhserang.org

43

Dinas Lingkungan Hidup Kabupaten Serang operates as the official environmental agency for Serang Regency, Indonesia, providing public information, news, programs, and services related to environmental management. The website serves residents, government officials, and stakeholders with relevant updates and contact channels. Technically, the site employs modern JavaScript libraries and frameworks such as jQuery, Bootstrap, Flickity, and Slick Carousel, hosted behind Cloudflare DNS services. The site is mobile-optimized with a moderate performance profile. Security posture is basic with HTTPS enabled but lacks DNSSEC and advanced security headers. Privacy and cookie policies are absent, indicating compliance gaps. WHOIS data shows an anomalous domain creation date in the future, which raises questions about registration legitimacy. Overall, the site is functional and professional but requires improvements in security and privacy compliance.

D

Dinas Lingkungan Hidup Kabupaten Pandeglang

dlhpandeglang.org

49

The website represents the official government Environmental Agency (Dinas Lingkungan Hidup) of Kabupaten Pandeglang, Indonesia. It serves as a public information portal providing news, programs, public services, and contact details relevant to environmental management in the region. The site targets local residents, government stakeholders, and environmental partners. The business model is focused on government service delivery and public communication. The website is well-branded and consistent with government identity, featuring official logos and structured navigation.

D

Dinas Lingkungan Hidup Kota Cilegon

dlhcilegon.org

43

The website for Dinas Lingkungan Hidup Kota Cilegon serves as the official online presence for the local government environmental agency in Kota Cilegon, Indonesia. It provides public information, news, program details, and contact options for residents and stakeholders. The site is well-structured with clear navigation and updated content, targeting local citizens and government partners. Technically, it employs modern web technologies including Bootstrap, jQuery, and carousel libraries, hosted behind Cloudflare DNS services with HTTPS enabled. However, the absence of DNSSEC and security headers indicates room for security improvements. The WHOIS data presents inconsistencies, notably a domain creation date in the future, which raises legitimacy concerns despite the professional appearance and government branding. No privacy or cookie policies are found, which is a compliance gap. Overall, the site is functional and trustworthy for general users but requires enhancements in security posture and compliance documentation.

D

Dinas Lingkungan Hidup Kota Tangerang

dlhtangerang.org

42

Dinas Lingkungan Hidup Kota Tangerang operates as the official environmental agency for the city of Tangerang, Indonesia. The website serves as a public information portal providing news, programs, public services, and contact information relevant to environmental management and community engagement. The site targets local residents, government officials, and environmental stakeholders, positioning itself as a trusted government resource. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, Flickity, and Slick Carousel, hosted behind Cloudflare DNS services, ensuring moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy and cookie policies are absent, indicating a compliance gap. Overall, the site is professional, content-rich, and trustworthy, though improvements in security and privacy compliance are advised.

I

I am Sanderson

iamsanderson.com

42

I am Sanderson is a professional design portfolio website showcasing the work of Sander Vermeulen, a designer specializing in branding, typeface design, graphic design, and visual identity for cultural institutions, art galleries, and brands. The website presents a rich collection of projects with high-quality images and videos, demonstrating a strong creative portfolio. The technical infrastructure includes modern web technologies such as JavaScript, CSS, and lazy loading of images, with media assets hosted on Amazon S3. The site is responsive and optimized for mobile devices, though SEO and accessibility features are basic. Security posture is limited, with no detected security headers or privacy policies, and no WHOIS data available for the domain, which reduces trustworthiness from a domain registration perspective. Overall, the website is professional and content-rich but lacks formal privacy and security compliance documentation.

F

FEBELCEM

febelcem.be

31

FEBELCEM is the Belgian Federation of the Cement Industry, representing major cement manufacturers in Belgium. The organization promotes the use of cement and concrete, provides information and training, and supports sustainability initiatives such as net zero carbon goals. The website is professionally designed using TYPO3 CMS and Bootstrap, with good mobile optimization and clear navigation. It integrates Google Analytics and Tag Manager for user tracking but lacks a cookie consent mechanism. Security posture is moderate with HTTPS usage but missing explicit security headers and published security policies. Contact is available primarily via a contact form, with no direct emails or phone numbers published. Overall, the website reflects a credible and established industry federation with a strong market position in Belgium.

F

Forster Profilsysteme AG

forster-profile.ch

45

Forster Profilsysteme AG is a Swiss-based manufacturer specializing in steel and stainless steel profile systems for doors, windows, and facades. The company emphasizes safety, durability, and energy efficiency, offering products with fire protection, smoke protection, burglary resistance, and bullet resistance. Their market position is that of an established medium-sized manufacturer serving architects, builders, and industrial clients. The website reflects a professional business with clear product offerings and a focus on quality. Technically, the site is built on TYPO3 CMS with modern frontend libraries and includes a comprehensive cookie consent mechanism, indicating a mature digital presence. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the site is trustworthy and compliant with GDPR, with moderate user tracking via Google Analytics and Google Ads cookies managed through Cookiebot consent.

The website a-plus.be currently serves a security CAPTCHA challenge page designed to verify visitor legitimacy before granting access to the actual content. This indicates the presence of a Web Application Firewall (WAF) or anti-bot mechanism, which blocks direct content access. The domain is registered since 2002 with ClearMedia NV, a Belgian registrar, suggesting an established presence. However, no business or contact information, privacy policies, or terms of service are exposed on this page, limiting the ability to assess the company's operations or compliance posture. The technical implementation uses advanced JavaScript with Web Workers to perform a proof-of-work CAPTCHA, reflecting a modern approach to bot mitigation. Despite this, the lack of visible security headers and privacy compliance documentation is a concern. Overall, the site is inaccessible for full analysis due to the security challenge, resulting in a low AI score and limited insights.

D

DE SINGEL

desingel.be

48

DE SINGEL is an established international arts center based in Belgium, specializing in theater, dance, music, and architecture exhibitions. The organization serves a broad audience interested in cultural events and operates a medium-sized business model focused on hosting performances and exhibitions. The website reflects a professional and consistent brand with excellent content quality and user experience. Technically, the site uses modern frameworks such as Angular 11, integrates Google Tag Manager and Cookiebot for analytics and consent management, and employs Salesforce for newsletter subscriptions. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies could be improved. Overall, the site demonstrates good GDPR compliance and business credibility.

Ringier Axel Springer Tech is a technology competence center within the Ringier Axel Springer Media AG group, serving a large user base of 40 million across multiple media brands. The organization employs over 300 IT specialists and performs approximately 1000 deployments daily, indicating a mature and active technology operation. The website reflects a professional corporate presence targeting IT professionals and potential employees, with consistent branding and multiple social media channels. Technically, the site uses modern tracking and consent management tools, though it lacks explicit privacy and terms of service pages. Security posture is good with HTTPS and no visible vulnerabilities, but could be improved with additional security headers and published policies. Overall, the site is trustworthy and well-maintained, though some compliance documentation is missing.

Zingreen is a small Swiss garden construction company based in Gstaad, specializing in landscaping and garden building services. The website is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with a focus on visual presentation. The site is accessible and mobile-optimized but lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but no detected security headers or explicit security policies. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the website presents a legitimate local business but would benefit from enhanced security and compliance measures.

I

idormo AG und GM-Möbel AG

traum-werk.ch

39

Traumwerk is a Swiss-based premium retail brand specializing in sleep products, garden furniture, and stylish living furniture. Operated by idormo AG and GM-Möbel AG, the company maintains a strong market position with multiple physical locations and an integrated e-commerce platform. Their offerings include certified sleep consultations and exclusive designer furniture, targeting discerning customers seeking quality and exclusivity. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive product information. Technically, the site leverages WordPress with WooCommerce and Elementor, supported by modern tracking and marketing tools such as Google Tag Manager and Borlabs Cookie for GDPR compliance. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, Traumwerk demonstrates a trustworthy and professional online presence aligned with its business objectives.

S

Sputnik Bikeshop Zweisimmen

sputnik-bikeshop.ch

42

Sputnik Bikeshop Zweisimmen is a specialized local retail business focused on bicycles, e-bikes, and related accessories, offering sales, rental, repair, and personalized consultation services primarily in the Zweisimmen and Gstaad regions of Switzerland. The website reflects a well-structured and content-rich platform that supports the business model with clear product categories, service descriptions, and contact information. Technically, the site uses a combination of Bootstrap 3, jQuery, and various sliders to deliver a responsive and user-friendly experience, though some technologies are slightly dated. Security posture is solid with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and explicit incident response information. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, though no terms of service or vulnerability disclosure policies are present. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

P

Plattenleger R.Brand AG Gstaad

plattenlegergstaad.ch

48

Plattenleger R.Brand AG Gstaad is a small local business specializing in tile laying and floor/wall coverings in the Gstaad and Saanen region of Switzerland. The company offers services for private and industrial clients, including indoor and outdoor floor and wall coverings, wellness installations, and processing of natural and artificial stone products. The website is built on WordPress with common SEO and performance plugins, presenting a professional and consistent brand image. Contact information is clearly provided, though no email addresses or social media links are visible. The site is primarily in German and targets local customers. Technically, the site uses HTTPS and Google Analytics but lacks security headers and privacy/cookie policies, indicating compliance gaps. No forms or incident response information are present, and no suspicious content or domains were detected.

M

Moratti & Söhne AG

morattisoehne.ch

48

Moratti & Söhne AG is a well-established Swiss construction company founded in 1905, offering a comprehensive range of construction and related services including high-rise construction, civil engineering, road construction, excavation, demolition, remodeling, transport, and building materials supply. The company targets private individuals, businesses, and public sector clients primarily in the Gstaad and Saanen regions. Their website reflects a professional and consistent brand image with clear service descriptions and multiple physical office locations, supporting their regional market position. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses performance optimization tools like WP Rocket. It integrates Google Analytics and Google Maps APIs for analytics and location services. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some accessibility features are basic, and there is room for improvement in SEO and security headers. From a security perspective, the site uses HTTPS with good SSL configuration and anonymizes IPs in Google Analytics, indicating some privacy awareness. However, it lacks important security headers and does not provide explicit security policies or incident response contacts. There is no cookie consent mechanism, which may affect GDPR compliance. No vulnerabilities or suspicious patterns were detected in the visible content. Overall, the website is trustworthy and professional with a solid business presence. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance their security posture and regulatory adherence.

Kurztusch Gipsdesign AG is a small Swiss company specializing in plastering, drywall, stucco, facades, monument preservation, and decorative plastering services. The company emphasizes craftsmanship and quality with over 25 years of experience, targeting clients primarily in the Aargau region. Their website is built on TYPO3 CMS and uses a range of JavaScript libraries for UI enhancements. The site is professionally designed with clear navigation and content relevant to their business domain. However, the WHOIS data for the domain www.gipsdesign.com is missing, which raises questions about domain registration legitimacy despite the active and professional website presence. The company provides clear contact information including a Swiss phone number and uses email obfuscation to protect against scraping. Privacy and cookie policies are implemented with GDPR compliance in mind, including a consent mechanism.

Hänni Automobile AG is a Swiss-based automobile business likely engaged in vehicle sales and related services. The website is minimalistic, using outdated HTML frameset technology, with very limited content and no visible contact or policy information. The lack of modern web standards and security features indicates a low level of digital maturity. Security posture is weak due to absence of HTTPS, security headers, and privacy compliance mechanisms. No vulnerabilities or malicious content were detected, but the site lacks essential trust and compliance indicators. Overall, the website presents a low-risk profile but requires significant improvements to meet modern security and privacy standards.

G

Golfhotel Les Hauts de Gstaad & SPA

golfhotel.ch

45

Golfhotel Les Hauts de Gstaad & SPA is a family-run luxury 4-star superior hotel located in Saanenmöser, Switzerland, offering upscale accommodations, dining, spa, and event services. The hotel targets tourists seeking a relaxing mountain vacation with comprehensive hospitality services. The website reflects a professional digital presence with good content quality and clear navigation, supporting the business model effectively. Technically, the site uses a mix of legacy and modern JavaScript libraries, with standard tracking and marketing tools integrated. Security posture is solid with HTTPS and cookie consent, though it lacks advanced security headers and explicit security policies. Overall, the site is trustworthy and credible, supported by multiple industry awards and transparent contact information.

B

Bach & Perreten

bach-perreten.ch

46

Bach & Perreten is a small Swiss company specializing in wood construction and joinery, combining traditional craftsmanship with modern technology. Their services focus on high-quality interior and exterior woodwork using sustainable materials. The website is built on WordPress using the Enfold theme and includes advanced visual elements like LayerSlider. While the site is professionally designed and mobile-optimized, it lacks critical privacy and security policy disclosures and explicit contact information. HTTPS is enabled, but security headers are missing, and no analytics or tracking scripts are detected, indicating a minimal data collection approach. Overall, the site presents a moderate security posture with room for improvement in compliance and transparency.

R

RIEDER BACH ARCHITEKTUR GSTAAD

riederbach.ch

48

Rieder Bach Architektur Gstaad AG is a well-established architecture firm specializing in high-end residential architecture in Switzerland, particularly in the Gstaad region. The company positions itself as a market leader with a history dating back to 1990. Their website reflects a professional and consistent brand image, targeting affluent clients seeking bespoke architectural services. The business model focuses on delivering architectural design and real estate project expertise, supported by a clear digital presence including social media channels and a contact form with GDPR compliance features. Technically, the website is built on WordPress using Elementor and Yoast SEO, incorporating modern web technologies such as Google reCAPTCHA for form security and Google Analytics for visitor tracking. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect contact forms, but lacks several recommended security headers and does not publish a security policy or incident response contacts. Privacy compliance is partially addressed with a privacy policy and GDPR acceptance on forms, but no cookie consent mechanism is present. Overall, the security posture is solid but could be improved with additional headers and transparency. The domain registration data aligns well with the business claims, showing consistency and legitimacy. No suspicious patterns or privacy protection masking registrant data were found, supporting trustworthiness. The website content is safe for general audiences, with no adult or questionable material detected. Strategic recommendations include enhancing security headers, implementing a cookie consent banner, publishing a security policy, and improving accessibility features to further strengthen the website's security and compliance posture.

UTZ MEDIEN AG is a Swiss digital agency specializing in innovative web design, TYPO3 portal development, AI integration, and SEO services. With over 20 years of experience and a portfolio including notable clients such as SAP and Roche, the company positions itself as a trusted partner for comprehensive digital solutions. The website reflects a professional and modern digital presence, leveraging TYPO3 CMS and integrating analytics tools like Google Analytics and Matomo. Privacy and cookie consent mechanisms are well implemented, indicating a strong commitment to GDPR compliance. However, the absence of WHOIS domain registration data raises questions about domain legitimacy, which should be further investigated. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but the lack of explicit security headers and incident response information suggests room for improvement. Overall, UTZ MEDIEN AG demonstrates a mature digital infrastructure and business model with minor security and compliance gaps.

D

Dinas Lingkungan Hidup Provinsi Sulawesi Selatan

dlhsulawesiselatan.id

42

The website dlhsulawesiselatan.id represents the official online presence of the Dinas Lingkungan Hidup Provinsi Sulawesi Selatan, a government environmental agency in Indonesia. It serves as a platform to disseminate environmental news, public announcements, documents, and photo galleries relevant to the Sulawesi Selatan province. The site targets residents and stakeholders interested in environmental management and public service information. The business model is focused on government public service and information dissemination, positioning itself as an authoritative source within its regional jurisdiction. Technically, the website employs a standard modern web stack including HTML5, CSS3, JavaScript, Bootstrap, and jQuery, hosted behind Cloudflare DNS services. The site is mobile optimized and provides a good user experience with clear navigation and consistent branding. However, it lacks advanced CMS indicators and does not utilize analytics or tracking services, indicating a minimal digital footprint in terms of user data collection. From a security perspective, the site benefits from HTTPS encryption and domain transfer protection status. However, it lacks DNSSEC, security headers, and formal privacy or cookie policies, which are critical for compliance and enhanced security posture. No vulnerability disclosure or incident response contacts are provided, which could limit responsiveness to security incidents. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk assessment suggests a trustworthy government site with low risk of malicious activity but with compliance gaps in privacy and security policy disclosures. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies, and establishing a vulnerability disclosure mechanism to enhance trust and compliance.

D

DLH Provinsi Sulawesi Barat

dlhprovinsisulawesibarat.id

49

DLH Provinsi Sulawesi Barat operates as the official environmental agency for the West Sulawesi Province government in Indonesia, providing public information, news, announcements, and environmental documentation. The website serves residents and stakeholders with environmental management content and contact channels. Technically, the site uses standard web technologies including Bootstrap, jQuery, and Font Awesome, hosted behind Cloudflare DNS but lacks advanced CMS or modern frameworks. Security posture is moderate with HTTPS implied but no visible security headers or DNSSEC, and WHOIS data is inconsistent with suspicious domain registration dates. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is accessible and functional but requires improvements in security, privacy, and domain legitimacy to enhance trust and compliance.

D

Dinas Lingkungan Hidup Provinsi Papua

dlhpapuabarat.id

49

Dinas Lingkungan Hidup Provinsi Papua operates as a government agency focused on environmental management within Papua Province, Indonesia. The website serves as an official portal providing information about the agency's profile, programs, announcements, and public services. The site targets residents and stakeholders interested in environmental issues and government transparency. Technically, the website employs modern web technologies including Bootstrap, jQuery, OpenLayers, and Cloudflare DNS services, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC, and no formal privacy or cookie policies are present. WHOIS data reveals inconsistencies such as a future domain creation date and a registrant organization that does not directly match the government entity, suggesting registration via a third-party provider. Overall, the website is professional, trustworthy, and safe for general audiences, but improvements in privacy compliance and security practices are recommended.

D

Dinas Lingkungan Hidup Provinsi Lampung

dlhlampung.id

42

Dinas Lingkungan Hidup Provinsi Lampung operates as a government environmental agency providing public information and services related to environmental management in Lampung province, Indonesia. The website serves as an official portal for transparency, announcements, and public engagement. The technical infrastructure includes modern web technologies such as jQuery, Bootstrap, OpenLayers, and Cloudflare DNS, supporting a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and domain transfer protection, though improvements are needed in DNSSEC and security headers. Privacy compliance is minimal with no visible privacy or cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security policies.

S

SIF - Scuola in fattoria

scuolainfattoria.ch

46

Scuola in fattoria is a Swiss educational organization providing farm-based learning experiences primarily targeting children, families, and educators interested in agriculture and nature. The website is professionally designed using WordPress, featuring modern web technologies such as Flickity for carousels and Google Fonts for typography. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and secure forms, but lacks advanced security headers and formal privacy or cookie policies. No vulnerability disclosure or incident response information is provided, indicating room for improvement in security transparency. Overall, the website is trustworthy and suitable for its educational purpose, but should enhance privacy compliance and security best practices to improve user trust and regulatory adherence.

L

L’école à la ferme (EàF)

ecolealaferme.ch

49

L’école à la ferme (EàF) is a Swiss educational initiative focused on providing experiential learning opportunities for students at farms. The website presents a niche educational service aimed at schools and educators interested in practical farm-based learning. The business operates primarily in the education sector within Switzerland and appears to be a small-sized organization. Technically, the website is built on WordPress, utilizing standard web technologies such as Google Fonts and Flickity for UI components. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security posture. No blocking or WAF challenges were detected, allowing full content access. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

D

Dr.Dünner – Naturpräparate & Arzneimittel aus der Schweiz

drduenner.com

49

Dr.Dünner is a Swiss-based company specializing in natural supplements and pharmaceutical products, combining traditional herbal knowledge with modern scientific research. The company positions itself as a trusted expert in natural health products, targeting consumers seeking high-quality, scientifically founded wellness solutions. The website reflects a medium-sized business with consistent branding and a professional online presence, including social media engagement. Technically, the site is built on WordPress using popular themes and plugins, optimized for SEO and mobile devices, with moderate performance. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks some security headers and explicit privacy policies. WHOIS data is missing or unavailable, which slightly impacts trust but does not negate the professional appearance and content quality. Overall, the site is safe, well-designed, and credible for its industry.