Security Directory

I

ISTAF INDOOR

istaf-indoor.de

51

ISTAF INDOOR is a professional athletics event organization operating primarily in Berlin and Düsseldorf, Germany. The website serves as a digital platform to promote world-class indoor track and field events, targeting sports enthusiasts and attendees. The business model revolves around event promotion, ticket sales, and providing information about athletics competitions. The site positions itself as a reputable event organizer with a consistent brand presence and active social media engagement. Technically, the website is built on WordPress using the Divi theme and several well-known plugins such as LayerSlider, Contact Form 7, and Real Cookie Banner for GDPR compliance. The infrastructure is hosted on rzone.de, with modern web technologies including Google Fonts, Font Awesome, and Google reCAPTCHA integrated for enhanced user experience and security. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. While explicit security headers are not fully confirmed, the use of reCAPTCHA and absence of exposed sensitive data indicate a reasonable security posture. However, the site lacks a public security policy or incident response contact, which could be improved to enhance trust and readiness. Overall, ISTAF INDOOR presents a professional and trustworthy online presence with good compliance to privacy regulations and a solid technical foundation. Strategic improvements in security transparency and incident response readiness are recommended to further strengthen its security posture and business credibility.

I

Input interior

inputinterior.no

59

Input interior is a leading independent interior furnishing group in the Nordic region, specializing in tailored solutions for offices, hospitality, education, and healthcare sectors. The company operates multiple showrooms and maintains a strong digital presence with comprehensive content and social media engagement. Their website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, cookie consent management, and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, Input interior presents a trustworthy and credible business front with strong market positioning in the Nordic interior furnishing industry.

H

Hallett Independent Limited

hallettindependent.com

52

Hallett Independent Limited is a specialist insurance brokerage firm focused on private clients and art insurance. The company operates independently from large global insurers, providing expert advice and tailored risk management services to a niche market including artists, art dealers, museums, and private collectors. Their market position is that of a trusted, small-scale expert broker with a strong emphasis on professionalism and client care. The website reflects this with high-quality content, clear navigation, and consistent branding. Technically, the site is built on WordPress with modern libraries and integrations such as Google Analytics and reCAPTCHA, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and Cyber Essentials certification displayed, though some improvements like security headers and cookie consent are recommended. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, but the overall business credibility remains high due to regulatory compliance and professional presentation.

R

Respectzone

respectzone.org

52

Respectzone is a French non-profit organization dedicated to promoting respect and combating online violence, harassment, and hate. The organization provides educational interventions, legal aid, digital tools such as an app and MOOC, and awareness campaigns targeting schools, universities, social centers, local authorities, and companies. The website is professionally designed, multilingual, and actively maintained with clear navigation and calls to action including donation options. Technically, the site is built on WordPress with modern plugins and frameworks, uses HTTPS with good security headers, and implements privacy and cookie consent mechanisms. No critical security vulnerabilities or suspicious indicators were found. WHOIS data is unavailable due to privacy protection or query failure, which is common and justified for non-profit entities. Overall, the website demonstrates a strong security posture, good privacy compliance, and high business credibility.

S

Saint-Louis Agglomération

agglo-saint-louis.fr

55

Saint-Louis Agglomération is a regional governmental entity serving the Alsace region in France, focusing on intercommunal cooperation and public service delivery. The website provides comprehensive information on local governance, community services, environmental initiatives, and economic development. It targets residents, businesses, and public stakeholders within the territory. The digital presence is built on WordPress with a modern tech stack including SEO and social media integration, reflecting a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit policies are recommended. The absence of WHOIS data limits domain trust verification but the overall site content and structure indicate legitimacy. Strategic recommendations include enhancing security policies, updating technical components, and improving transparency around incident response.

Alois Denzel KG operates as one of the largest wood wholesalers in southern Germany, providing a wide range of wood products and services to customers in trade, industry, and craftsmanship. Founded in 1938, the company has grown into a large enterprise with extensive warehousing and a dedicated fleet of trucks, emphasizing sustainability and customer-centric service. Their website reflects a mature digital presence with comprehensive product information, online tools, and certifications that reinforce their market position. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Contact Form 7, ensuring good SEO and user experience. The site is mobile-optimized, accessible, and integrates Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the security posture is strong with no evident vulnerabilities or exposed sensitive data. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, adding explicit security policies, and considering a vulnerability disclosure policy to further strengthen trust. This analysis indicates a professionally managed business website with strong compliance and security awareness, suitable for its industry and customer base.

A

advertising.com

advertising.com

64

Advertising.com is a mature technology company specializing in programmatic advertising solutions, offering a suite of services including DSP, SSP, engagement platforms, and search solutions. The company targets businesses with large user bases seeking to enhance user engagement and revenue through tailored advertising technologies. The recent acquisition of Underdog Media expands their access to premium publisher inventory, strengthening their market position. Technically, the website is built on WordPress with modern analytics tools such as Google Analytics and Microsoft Clarity, hosted likely on AWS infrastructure. The site is well-designed, mobile-optimized, and SEO-friendly, providing a good user experience. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks DNSSEC and explicit security headers, which are recommended for improvement. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

C

Cooperfidi Italia Soc. Coop

cooperfidiitalia.it

54

Cooperfidi Italia Soc. Coop is a well-established cooperative society founded in 2009, specializing in providing credit guarantee services primarily to cooperative, non-profit, and primary sector businesses in Italy. The organization positions itself as a key partner facilitating accessible and sustainable credit to promote business growth within its target sectors. The website reflects a professional and consistent brand image, with clear navigation and relevant content tailored to its audience. Technically, the site is built on WordPress with modern plugins and technologies, including Yoast SEO and GDPR-compliant cookie management, indicating a mature digital infrastructure. Security posture is strong with HTTPS and DNSSEC enabled, though some improvements in security headers and explicit policies could enhance trust further. Overall, the site demonstrates good privacy compliance and business credibility, supported by clear contact information and social media presence.

O

Opferhilfe beider Basel

bleibnichtallein.ch

51

Bleib nicht allein is a regional non-profit organization providing victim support services primarily in the Basel region of Switzerland. The website offers assistance and resources for children, youth, parents, and professionals dealing with victimization. The organization positions itself as a trusted local support entity with clear contact channels and a focus on accessibility and user support. The website is built on WordPress with common plugins for analytics and contact forms, reflecting a moderate level of digital maturity. The technical infrastructure supports HTTPS with good SSL configuration and basic performance and mobile optimization. Security posture is adequate with encrypted connections and some anti-spam measures, but lacks explicit security headers and incident response information. Privacy compliance is partially met with a GDPR-compliant privacy policy but no cookie consent mechanism. Overall, the site is trustworthy and professional, serving a sensitive and important social function.

M

Macardo-Club 1904

macardo-club.ch

55

Macardo-Club 1904 is a niche hospitality club based in Switzerland, focused on providing an exclusive social and enjoyment experience centered around the Macardo Swiss Distillery brand. The club offers personalized membership cards granting access to a unique honesty bar and cigar lounge, along with events and corporate benefits. The website reflects a professional and consistent brand image with clear contact information and active event promotion. Technically, the site is built on WordPress with WooCommerce and uses modern web technologies and SEO best practices, though performance is moderate. Security posture is good with HTTPS and no obvious vulnerabilities, but lacks explicit security policies and headers. Privacy compliance is partial, with a cookie policy and consent mechanism present but no privacy policy page found. Overall, the domain registration and WHOIS data support legitimacy and consistency with the business claims.

R

Region Leimental Plus

regionleimentalplus.com

58

Region Leimental Plus is a regional governmental association in Switzerland representing a cluster of municipalities in the Basel-Landschaft canton. The website provides information about the association's formation, member municipalities, and regional projects. The site is hosted on WordPress.com and uses standard WordPress technologies and plugins. The technical infrastructure is modern and adequate for the site's purpose, with good mobile optimization and moderate performance. Security posture is acceptable with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but could improve compliance and security practices.

V

Verein Hilfe für Bangladesch

bangladesch.li

47

Verein Hilfe für Bangladesch is a small non-profit organization dedicated to supporting educational and social development projects in Bangladesh. Their website provides information about ongoing and archived projects, encouraging donations and sponsorships. The organization targets donors and supporters interested in charitable aid for Bangladesh. The site is primarily in German and uses WordPress with WooCommerce for donation processing. Technically, the website is built on a modern WordPress platform with common plugins such as WooCommerce, Contact Form 7, and Yoast SEO. It uses HTTPS and external CDNs for performance. The site is moderately optimized for mobile and SEO, with good navigation and content quality. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site enforces HTTPS and restricts ad and personalization tracking in Google Analytics, indicating some privacy awareness. However, it lacks important security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent banner. Overall, the website is legitimate and trustworthy for a small non-profit, with room for improvement in security posture and privacy compliance. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, publishing security policies, and maintaining up-to-date software to enhance trust and compliance.

Schaffer-office is a small Swiss-based service provider specializing in accounting, tax declarations, real estate sales and rentals, administrative support, and payroll services primarily targeting small and medium enterprises (KMU) and private customers in the Wollerau region. The website presents a professional business offering with clear service descriptions and a focus on local clientele including EU citizens relocating to Switzerland. The business appears to be established since 2015, consistent with domain registration data. Technically, the website is built on WordPress using common plugins such as Yoast SEO and Contact Form 7, with a moderate performance and good mobile optimization. However, some technical debt is evident from outdated jQuery usage and visible PHP warnings, which could pose security risks. SEO is adequately addressed with proper meta tags and structured data. From a security perspective, HTTPS is enforced, but there is a lack of security headers and visible privacy or cookie policies, indicating compliance gaps. No incident response or vulnerability disclosure information is provided. The site does not employ tracking or advertising scripts, which reduces privacy concerns but also limits marketing insights. Overall, the website is functional and professional but would benefit from improved security practices, updated technical components, and enhanced privacy compliance to strengthen trust and reduce risk.

H

Hotel Bellavista

hotelbellavista.ch

51

Hotel Bellavista is a small hospitality business located in Vira Gambarogno, Ticino, Switzerland, offering scenic accommodation and leisure services including a restaurant, event hosting, and wellness facilities. The website is professionally designed using WordPress with the Avada theme and integrates modern technologies such as Google Analytics and reCAPTCHA for security and analytics. The site is well-structured, mobile-optimized, and provides clear contact information and business details. Security posture is good with HTTPS enforced and anti-bot measures in place, though it lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

S

SIF - Scuola in fattoria

scuolainfattoria.ch

46

Scuola in fattoria is a Swiss educational organization providing farm-based learning experiences primarily targeting children, families, and educators interested in agriculture and nature. The website is professionally designed using WordPress, featuring modern web technologies such as Flickity for carousels and Google Fonts for typography. The site is mobile optimized and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and secure forms, but lacks advanced security headers and formal privacy or cookie policies. No vulnerability disclosure or incident response information is provided, indicating room for improvement in security transparency. Overall, the website is trustworthy and suitable for its educational purpose, but should enhance privacy compliance and security best practices to improve user trust and regulatory adherence.

L

L’école à la ferme (EàF)

ecolealaferme.ch

49

L’école à la ferme (EàF) is a Swiss educational initiative focused on providing experiential learning opportunities for students at farms. The website presents a niche educational service aimed at schools and educators interested in practical farm-based learning. The business operates primarily in the education sector within Switzerland and appears to be a small-sized organization. Technically, the website is built on WordPress, utilizing standard web technologies such as Google Fonts and Flickity for UI components. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security posture. No blocking or WAF challenges were detected, allowing full content access. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

G

Gemeinde Melchnau

melchnau.ch

52

Gemeinde Melchnau operates as the official municipal government website for the Melchnau community in Switzerland, providing residents and visitors with comprehensive local information, administrative contacts, event agendas, and community news. The website serves as a key communication channel for local governance, public services, and community engagement. Its market position is that of a small local government entity focused on serving its constituency effectively. Technically, the website is built on WordPress 6.8.3 with a modern plugin ecosystem including Yoast SEO for search optimization, SuperPWA for progressive web app capabilities, and Contact Form 7 for user interactions. The site demonstrates good mobile optimization and moderate performance, leveraging common web technologies such as Bootstrap, jQuery, and various JavaScript libraries for enhanced user experience. From a security perspective, the site enforces HTTPS and employs standard security practices, though explicit security headers like Content-Security-Policy and X-Frame-Options are not detected and could be improved. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy compliance is well addressed with clear privacy and cookie policies, including a consent mechanism, aligning with GDPR requirements. Overall, the website presents a low-risk profile with high trustworthiness, clear business legitimacy, and good content quality. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and publishing explicit security and incident response policies to further strengthen the security posture and compliance maturity.

G

Groupe Sarrion

sarrion-transports.fr

51

Groupe Sarrion is a well-established French transport and logistics company with a history dating back to 1947. It operates a large network of 27 agencies and subsidiaries across France, employing approximately 1300 people. The company offers a broad range of specialized transport services including general cargo, container transport, exceptional transport, bulk transport, hydrocarbon transport, waste management, and logistics solutions. Their market position is that of a significant player in the French transportation sector, emphasizing quality service and environmental responsibility. Technically, the website is built on WordPress with modern front-end libraries and plugins, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and GDPR compliance evident through comprehensive privacy and cookie policies, as well as a whistleblower alert system. However, the absence of WHOIS registration data and lack of explicit security headers represent areas for improvement. Overall, the website is professional, trustworthy, and compliant, supporting the company's credibility and operational transparency.

G

Golfclub Wylihof

golfclub.ch

47

Golfclub Wylihof is a well-established Swiss golf club offering a 27-hole championship course, practice facilities, a restaurant, golf school, and shop. The club targets golf enthusiasts, members, and corporate clients in the Swiss Mittelland region. The website is built on WordPress with modern plugins supporting multilingual content, SEO, and user engagement. The club demonstrates commitment to sustainability through recognized certifications. Security posture is adequate with HTTPS and reCAPTCHA implemented, though some security headers and incident response details are missing. Privacy compliance is addressed with a cookie consent banner and privacy policy. Overall, the site is professional, trustworthy, and serves its audience effectively.

H

HUBIT Datenschutz

hubit.de

54

HUBIT Datenschutz is a German-based consultancy specializing in data protection and GDPR compliance services since 2008. The company offers a range of services including external data protection officer roles, audits, training, and a proprietary whistleblower system. Their market position is supported by over 16 years of experience and a client base exceeding 200 companies, primarily targeting medium-sized enterprises and corporate groups. The website reflects a professional and consistent brand image with clear service offerings and a focus on practical, interdisciplinary solutions combining legal and IT expertise. Technically, the site is built on WordPress using the Divi theme, with common plugins such as Contact Form 7 and Honeypot for form security. The site is mobile-optimized and performs moderately well, though some improvements in accessibility and SEO could be made. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and a cookie consent mechanism. Overall, the domain registration data is limited due to DENIC privacy policies but shows no suspicious indicators, and the website content aligns well with the business claims, supporting a high legitimacy score.

G

Gedtrans

gedtrans.com

60

Gedtrans operates a specialized SaaS platform focused on transport document management, targeting transport subcontractors and orderers primarily in France and Europe. The platform facilitates the collection, verification, and real-time tracking of legal transport documents, helping clients comply with regulatory obligations and streamline their operational processes. With over 12,000 customers annually and a 5-year market presence, Gedtrans positions itself as a leader in its niche. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, integrating essential tools such as Google reCAPTCHA for form security and Matomo for analytics. The site demonstrates good mobile optimization, SEO practices, and GDPR compliance through cookie consent mechanisms and a comprehensive privacy policy. From a security standpoint, the site enforces HTTPS and employs standard best practices, though it lacks explicit HTTP security headers and a published security policy or incident response plan. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain introduces a minor trust concern but does not detract significantly from the overall legitimacy given the professional presentation and business consistency. Overall, Gedtrans presents a secure, compliant, and professionally managed online presence suitable for its business domain, with recommendations to enhance security headers and incident response transparency to further strengthen trust and resilience.

U

UNIFAB - Union des Fabricants

unifab.com

46

UNIFAB - Union des Fabricants is a French non-profit association dedicated to the protection of intellectual property and the fight against counterfeiting. The organization provides consumer awareness campaigns, collaborates with customs and law enforcement, and publishes reports to support its mission. The website is professionally designed, primarily in French, and targets consumers, members, and stakeholders interested in intellectual property protection. The business model is focused on advocacy and education rather than commercial sales. Technically, the website is built on WordPress with WooCommerce, uses modern JavaScript libraries, and integrates analytics tools such as Google Tag Manager and Piwik PRO. The site is mobile-optimized and SEO-friendly, with structured data implemented for enhanced search visibility. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA for forms, but lacks explicit security headers in the HTML source. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain www.unifab.com raises concerns about domain registration transparency, which impacts overall trustworthiness. Privacy policy is present and GDPR compliant, but no cookie consent mechanism was found. Overall, the website is functional, secure, and professional, but domain registration opacity and limited contact information reduce business credibility.

M

Maison européenne de l’architecture - Rhin Supérieur - Europäische Architekturhaus Oberrhein

m-ea.eu

10

The Maison européenne de l’architecture (MEA) is a regional non-profit cultural institution dedicated to promoting architecture in the Upper Rhine region. It organizes events such as the 'Journées de l’architecture' festival and offers educational programs targeting architects, students, and the general public interested in architecture. The website is bilingual (French and German) and serves as an information hub for the association's activities and partnerships. Technically, the site is built on WordPress with a modern plugin stack including Yoast SEO, Contact Form 7, and Google reCAPTCHA, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and anti-bot measures on forms, but lacks advanced security headers and explicit incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and well-branded, serving its cultural mission effectively.

E

Elisabeth Böhni

praxis-boehni.ch

49

Praxis Böhni is a small natural medicine healthcare practice based in Kreuzlingen, Switzerland, specializing in holistic treatments including hormonal dysregulation, allergies, metabolic disorders, musculoskeletal pain, autoimmune diseases, and tumor support. The website is professionally designed using WordPress with Elementor and provides clear contact information and a contact form for patient inquiries. The business targets local patients seeking alternative medical treatments. Technically, the site uses modern WordPress plugins and themes but lacks advanced security headers and cookie consent mechanisms, which are important for compliance and security. The site is served over HTTPS with a valid SSL certificate, ensuring secure communication. Security posture is moderate with room for improvement in headers and incident response transparency. Overall, the website is trustworthy and professional but could enhance privacy compliance and security best practices.

D

Die Urologie

dieurologie.ch

47

Die Urologie is a specialized urology medical center based in the Thurgau region of Switzerland, offering comprehensive urological services including consultation, operative treatments, men's health checks, and second opinions. The website presents a professional image with detailed information about doctors, services, and multiple physical locations, targeting patients in the local German-speaking community. The business is positioned as a leading urology provider in the region with experienced specialists and FMH membership credentials. Technically, the website is built on WordPress with common plugins such as Yoast SEO, WPBakery Page Builder, and Contact Form 7, providing a modern and responsive user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and incident response information. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, suitable for its healthcare audience.

M

Macardo Swiss Distillery GmbH

macardo.ch

61

Macardo Swiss Distillery GmbH operates a professional and well-branded website focused on premium spirits production, hospitality services including a bed and breakfast, and event hosting in the Thurgau region of Switzerland. The company positions itself as a premium Swiss distillery with a strong local presence and an e-commerce platform for direct sales. The website demonstrates a mature digital infrastructure built on WordPress with WooCommerce, enhanced by modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, Hotjar, and Facebook Pixel. The site is mobile-optimized and SEO-friendly, providing a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with comprehensive policies and consent mechanisms in place. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration details align well with the business profile, indicating legitimacy and transparency. Overall, the website reflects a trustworthy and credible business with room for enhanced security policies and incident response disclosures.

K

Klingen Gastro GmbH

burghohenklingen.com

66

Restaurant Burg Hohenklingen operates a historic medieval castle venue near Stein am Rhein, Switzerland, offering French cuisine, event hosting including weddings and banquets, and unique cultural experiences. The business targets local residents, tourists, and event organizers seeking a distinctive location. The website is built on WordPress with modern SEO and marketing integrations, including Google Analytics and Mailchimp, reflecting a moderate digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and incident response disclosures. The domain registration is consistent with the business history, enhancing trustworthiness. Overall, the site presents a professional and credible online presence for a small hospitality business.

The website htwsaar-jobportal.de serves as the official student job portal for htw saar and FITT, primarily targeting students seeking internships, practical study phases, thesis opportunities, and part-time jobs. It also provides companies a platform to connect with motivated students and participate in related events such as the Firmenkontaktmesse. The portal is a niche regional platform focused on educational services within Germany, specifically the Saarland region. Technically, the site is built on WordPress with common plugins like Contact Form 7 and WP Job Manager, hosted on a German hosting provider (rzone.de). The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security-wise, the site enforces HTTPS and cookie consent but lacks visible security headers and explicit security policies. The presence of copy protection scripts may affect user accessibility. Overall, the site is trustworthy and professionally maintained but could improve in security and compliance documentation.

C

calendrierdestrails.com

calendrierdestrails.com

63

calendrierdestrails.com is a specialized website launched in late 2023 that provides a comprehensive calendar and publication platform for trail running events primarily in France and abroad. It targets both trail runners looking for upcoming events and organizers wishing to publish their events quickly and for free. The site offers advanced search, regional and departmental categorization, and an interactive map to enhance user experience. Technically, the website is built on WordPress with modern technologies including Bootstrap 5, jQuery, Google Maps API, and uses Matomo for analytics and Google AdSense for monetization. The site is mobile-optimized and SEO-friendly with structured data implemented via JSON-LD. Security-wise, the site uses HTTPS with a clientTransferProhibited domain status but lacks DNSSEC and explicit security headers, which are recommended for improvement. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website is functional, professional, and trustworthy but could enhance security and privacy features to improve compliance and user trust.

AgiL – Sächsische Agentur für Regionale Lebensmittel is a government-backed agency focused on supporting the development and expansion of regional food value chains in Saxony, Germany. It provides free consulting, networking, and informational services to companies in the agricultural and food sectors, including farms, food crafts, wholesalers, retailers, and logistics companies. The agency operates under the Saxon Ministry of Agriculture and the Saxon State Office for Environment, Agriculture and Geology. The website is professionally designed, content-rich, and well-structured, targeting regional businesses and stakeholders in the food industry.

Z

Zürcher Schneesportverband

zsv.ch

47

The Zürcher Schneesportverband (ZSV) is a Swiss non-profit sports association dedicated to promoting youth participation in various winter sports disciplines including Alpine skiing, cross-country skiing, biathlon, ski jumping, snowboarding, and freestyle skiing. The organization operates primarily within the Zurich region and serves as a key regional player in winter sports development. Their website provides event information, educational workshops, and resources to support athletes and enthusiasts. The site is well-structured, professionally designed, and uses modern web technologies to deliver content effectively to its target audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several popular plugins such as Yoast SEO and Contact Form 7. It employs Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized and uses HTTPS with a strong SSL configuration, ensuring secure data transmission. However, it lacks some advanced security headers and a cookie consent mechanism, which are recommended for enhanced compliance and security. From a security perspective, the site demonstrates good practices such as secure forms and no visible exposure of sensitive data. There is no evidence of a published security policy or incident response contacts, which could be improved to enhance trust and readiness. The WHOIS data aligns well with the website's claims, showing consistent registrant information and no privacy protection, supporting the site's legitimacy. Overall, the ZSV website is a credible, well-maintained platform serving its community effectively. Strategic improvements in privacy compliance and security policy transparency would further strengthen its security posture and user trust.

S

schweizeraktien.net AG

schweizeraktien.net

50

schweizeraktien.net AG operates a specialized online platform providing comprehensive information, analyses, and commentary on Swiss stocks, including small caps, unlisted shares, and the OTC market. The company targets investors and financial market participants interested in Swiss equities, positioning itself as a niche content provider within the finance sector. The website is professionally designed and regularly updated, reflecting a focused business model centered on financial content delivery. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO Premium for search optimization, Wordfence for security, and Real Cookie Banner Pro for privacy compliance. Integration with Google Tag Manager and various Google services indicates a mature digital infrastructure. Performance and mobile optimization are good, though some accessibility features could be enhanced. From a security perspective, the site employs HTTPS and Wordfence firewall protections, alongside Google reCAPTCHA on forms to mitigate spam. Cookie consent mechanisms comply with GDPR and Swiss data protection laws. However, explicit security headers like Content-Security-Policy are not detected and should be implemented to strengthen defenses. No vulnerabilities or exposed sensitive data were found. Overall, the website presents a low-risk profile with strong privacy and security practices, though the absence of WHOIS registration data raises questions about domain legitimacy. Continuous monitoring of domain registration and further security hardening are recommended to maintain trust and compliance.

B

Bündnis StrukturWandeln

struktur-wandeln.de

57

Bündnis StrukturWandeln is a small non-profit civil society alliance focused on structural change in the Central German mining region. The website serves as an informational and advocacy platform targeting regional stakeholders and activists. Technically, the site is built on WordPress using modern block editor technologies and includes Matomo analytics for visitor tracking. The site is accessible, mobile-optimized, and uses HTTPS, but lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. WHOIS data is minimal and domain status is unusual, which reduces trustworthiness. Overall, the site is functional but could improve in privacy compliance and security best practices.

C

CivixX – Werkstatt für Zivilgesellschaft

civinews.de

54

CivixX – Werkstatt für Zivilgesellschaft is a small non-profit organization based in Leipzig, Germany, specializing in consulting and supporting civil society initiatives, sustainable development, and citizen participation projects. The organization collaborates closely with local governments and regional partners, providing services such as coaching, moderation, networking, and educational material development. Their website reflects a professional and consistent brand image, with clear navigation and comprehensive project descriptions tailored to their target audience of local authorities and civil society stakeholders. Technically, the website is built on WordPress with a modern tech stack including jQuery, Owl Carousel, and Matomo for analytics, indicating a privacy-conscious approach. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security practices include HTTPS enforcement and email obfuscation, though some security headers are missing and no explicit security or incident response policies are published. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, featuring a comprehensive privacy and cookie policy with a consent mechanism. The domain registration data aligns well with the website content and business location, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and maintaining regular updates to WordPress and plugins to sustain security and compliance.

I

iEvolution GmbH

ievolution.ch

43

iEvolution GmbH is a Swiss-based web and logo design agency located in Wollerau, offering a range of digital design services including web design, eCommerce solutions, logo creation, and mobile app development. The company targets startups and small to medium-sized businesses primarily in Switzerland and Liechtenstein, providing fixed-price packages to ensure cost transparency. The website reflects a professional market position with clear service offerings and client references. Technically, the site is built on WordPress with common plugins such as Yoast SEO, Contact Form 7, and Mailchimp integration, indicating a mature digital infrastructure. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is well-structured, mobile-optimized, and compliant with basic privacy and cookie consent requirements, though privacy policy documentation is lacking. The domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

S

Sophienklinik GmbH

sophienklinik.de

48

Sophienklinik GmbH operates as a modern private hospital in Hannover, Germany, specializing in multimodal pain therapy and other healthcare services. It is positioned as one of the largest and oldest private hospitals in Germany, offering comprehensive medical care through a network of specialist doctors. The website reflects a professional healthcare provider targeting patients and medical professionals, emphasizing quality management and certifications. Technically, the website is built on WordPress with a robust plugin ecosystem including Yoast SEO, Defend WP Firewall, and Complianz GDPR for privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is strong with HTTPS enforced and firewall protections, though some security headers are not explicitly detected. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. No critical vulnerabilities or suspicious content were found. Overall, the website presents a trustworthy and professional digital presence for the healthcare provider.

C

CITIPOST GmbH

citipost.de

49

CITIPOST GmbH operates as a regional postal and logistics service provider in Germany, serving multiple cities through a network of subsidiaries and partner sites. The company focuses on affordable and punctual delivery services nationwide, targeting both business and private customers. The website reflects a professional presence with clear navigation and a localized branch finder feature, supporting customer engagement. Technically, the site is built on WordPress with common plugins such as LayerSlider and Contact Form 7, and integrates a consent management platform to comply with GDPR requirements. The site is mobile optimized and uses HTTPS, but lacks some advanced security headers and explicit incident response information. Overall, the security posture is moderate with room for improvement in formal security policies and header implementation. The domain WHOIS data is minimal but consistent with German hosting infrastructure, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences.

G

Goldgelb Zeit und Raum GmbH

goldgelb.ch

51

Goldgelb Zeit und Raum GmbH is a Swiss-based marketing and media production agency specializing in advertising photography, videoproduction, virtual reality, drone aerial photography, web design, SEO, and AI-generated artwork. The company targets businesses and professionals seeking high-quality visual communication services to enhance their brand presence across web and print media. Their market position is that of a niche regional agency with a strong focus on creative and technological solutions for visual marketing. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder, Yoast SEO, and Slider Revolution. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized with good SEO practices and moderate performance. Some minor issues with lazy loading images were noted but do not significantly impact user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating good privacy compliance. However, security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and should be added to enhance security posture. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data confirms the legitimacy of the domain with consistent registrant information matching the business identity. Overall, the website presents a professional and trustworthy digital presence with good content quality and compliance. Strategic recommendations include enhancing security headers, fixing minor technical issues, and publishing explicit security and incident response policies to further strengthen trust and security culture.

Wesp is a Norwegian company specializing in the representation and distribution of outdoor and indoor furniture from six distinct producers. Their market position is niche-focused, targeting both large and small projects in public and private sectors. The website reflects a professional business model with clear service offerings including benches, planters, tables, and bicycle parking solutions. The company is a part of Wallax AS and has been operating since 2015, supported by a domain age consistent with this timeline. Technically, the website is built on WordPress using the Enfold theme and Avia framework, incorporating modern web technologies such as Google Analytics, Facebook Pixel, and Hotjar for analytics and marketing. The site is mobile-optimized with good SEO practices including structured data and meta tags. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA on forms, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, Wesp's website demonstrates a solid digital presence with good business credibility and moderate security posture. Strategic improvements in security headers, incident response policies, and enhanced privacy transparency would further strengthen their risk profile and trustworthiness.

A

AARHSE

aarhse.com

43

AARHSE is a French academic association dedicated to historical and sociological research in the energy sector. The website serves as an informational platform presenting the association's activities, including competitions, bibliographies, and a museum dedicated to the heritage of electricity and gas. The site targets academics, researchers, and professionals interested in energy history and sociology. Technically, the website is built on WordPress with Elementor and uses modern JavaScript libraries and Matomo analytics for privacy-conscious tracking. Security posture is adequate with HTTPS enabled, but lacks some security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the website is professional, content-rich, and trustworthy for its niche audience.

E

Euromontana

euromontana.org

48

Euromontana is a European multi-stakeholder network dedicated to sustainable development and improving quality of life in mountain areas. It serves as a recognized voice for European mountain communities, providing policy advocacy, networking, research promotion, and event organization. The website reflects a professional and consistent brand image targeting policymakers, researchers, and local stakeholders in mountain regions. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile optimization and user experience. Security posture is solid with HTTPS and reCAPTCHA usage, though it lacks some security headers and formal security policies. Privacy compliance is partially met with a privacy policy but no cookie consent mechanism. WHOIS data is unavailable, limiting domain trust analysis, but the site content and presentation suggest legitimacy. Overall, the site is well-maintained, informative, and trustworthy for its audience.

C

Cluster e.V.

cluster-verein.de

50

Cluster e.V. is a small, non-profit organization based in Hildesheim, Germany, focused on youth support, culture, and community projects. The organization operates various innovative projects aimed at youth empowerment and social engagement, often collaborating with local municipalities and other stakeholders. Their website reflects a professional and consistent brand presence with clear messaging and community testimonials that enhance trustworthiness. Technically, the website is built on WordPress with a modern plugin stack including Yoast SEO, Contact Form 7, and cookie consent tools. Hosting is provided by Contabo, and the site uses HTTPS with good SSL configuration. The site is moderately performant and mobile-optimized, though some improvements in accessibility and security headers could be made. From a security perspective, the site employs HTTPS and hCaptcha for form protection, but lacks explicit security headers and a published security policy or incident response contacts. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism, indicating GDPR awareness. Overall, the website presents a trustworthy and professional image suitable for its non-profit mission. Strategic improvements in security headers, incident response transparency, and contact information visibility would further enhance its security posture and user trust.

C

Canal9

canal9.ch

61

Canal9 is a regional public service media broadcaster serving the Valais canton in Switzerland, offering bilingual French and German programming. The website provides news, magazine shows, live streaming, and replay services, supported by advertising and sponsorship. The company maintains a clear contact presence and social media engagement, positioning itself as a trusted regional media outlet. Technically, the site is built on WordPress with common plugins for ads, forms, and social integration, hosted by Infomaniak, a reputable Swiss provider. Security measures include HTTPS, Google reCAPTCHA, and GDPR cookie consent, though formal security and incident response policies are not published. Overall, the site is professional, content-rich, and trustworthy with moderate technical maturity and good privacy compliance.

G

graubünden Bike

graubuendenbike.org

47

Graubünden Bike is a regional project initiative focused on advancing bike tourism and sustainable mobility in the Graubünden region of Switzerland. The project is positioned as a pioneer in the bike tourism sector, aiming to enhance the region's attractiveness through development of bike offerings, training, and community engagement. The website serves as an information hub with event calendars, news, and project documentation, targeting cyclists, local stakeholders, and tourists. Technically, the site is built on WordPress with a modern tech stack including jQuery, Bootstrap, and Matomo analytics, providing a good user experience with mobile optimization and SEO best practices. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not implement cookie consent mechanisms. The domain registration is recent but consistent with the project timeline and shows no suspicious patterns. Overall, the site is professional and trustworthy but could improve privacy compliance and security hardening.

T

The Set

thesetcollection.com

68

The Set is a curated collection of luxury hotels and resorts, targeting affluent travelers seeking exceptional independent properties worldwide. The website presents a professional and visually appealing interface built on WordPress, leveraging popular plugins for SEO and user management. The technical infrastructure is modern and includes GDPR-compliant cookie consent mechanisms. Security posture is adequate with HTTPS enforced and no obvious vulnerabilities detected, though additional security headers could enhance protection. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, warranting further verification. Overall, the site demonstrates a good balance of business professionalism and technical maturity, but lacks visible privacy and terms of service documentation, which are important for compliance and trust.

HANSEPILZ is a small local business specializing in mushroom consulting and educational mushroom walks primarily serving the Northern Germany region including Hamburg, Schleswig-Holstein, and Niedersachsen. The website also showcases mushroom photography, appealing to enthusiasts and learners interested in mycology. The business maintains a niche market position with a focus on education and community engagement, supported by media appearances and active social media channels on Instagram and Facebook. Technically, the website is built on WordPress using the Twenty Seventeen theme, with standard plugins such as Contact Form 7 and CleanTalk for spam protection. Hosting is provided by 1blu, as indicated by the nameservers. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enabled and anti-spam measures in place, but lacks important security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Overall, the site is trustworthy and professional but could benefit from enhanced security and privacy features to improve compliance and user trust.

B

BOTAX Steuerberatungsgesellschaft mbH

botax.de

49

BOTAX Steuerberatungsgesellschaft mbH is a German tax consulting firm offering a range of services including corporate, private individual, employee, association, and testament-related tax consulting. The company positions itself as a trusted advisor with certifications and memberships in professional organizations, targeting businesses and private clients in Germany. The website is built on WordPress using the Themify Ultra theme and employs common plugins such as Contact Form 7 and GDPR Cookie Compliance, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

W

Wilhelm Hirte Stiftung

wilhelm-hirte-stiftung.de

42

The Wilhelm Hirte Stiftung is a small non-profit foundation based in Hannover, Germany, focused on supporting projects in youth aid, sports, and social sectors. The website clearly communicates its mission and provides donation information, targeting a general audience interested in charitable activities. The foundation appears to have a stable market position within its local/regional context, with a business model centered on funding and supporting community projects. Technically, the website is built on WordPress, utilizing common plugins such as Yoast SEO and Contact Form 7, with additional anti-spam measures like Honeypot. The hosting provider is inferred to be netcup based on DNS data. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and good SEO practices. However, some technical improvements could enhance security and privacy compliance. From a security perspective, the site uses HTTPS and implements basic anti-spam protections. However, it lacks important security headers and does not provide explicit security policies or incident response contacts. The absence of a cookie consent mechanism despite using Google Analytics indicates a gap in privacy compliance. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the website's claims, supporting legitimacy. Overall, the website presents a trustworthy and professional image for a non-profit foundation but would benefit from enhanced security headers, privacy compliance improvements, and clearer security policies to strengthen its security posture and user trust.

S

Spreewaldverein e.V.

spreewaldverein.de

40

Spreewaldverein e.V. is a regional non-profit organization dedicated to the sustainable development and preservation of the natural and cultural heritage of the Spreewald region in Germany. The organization manages the regional brand 'Spreewald' and acts as the Local Action Group (LAG) for regional funding in the LEADER region 'Spreewald-PLUS'. Their services include project coordination, regional branding, and community engagement aimed at improving living conditions and supporting local economic and cultural initiatives. The website targets local residents, businesses, and visitors interested in regional development and cultural heritage. Technically, the website is built on WordPress 6.8.3, utilizing modern plugins such as Yoast SEO for search optimization, Leaflet.js for interactive maps, Contact Form 7 with Google reCAPTCHA for secure form submissions, and a cookie consent mechanism compliant with GDPR. Hosting is provided by kasserver.com, and the site employs HTTPS with a strong SSL configuration. The site demonstrates good mobile optimization and accessibility, though some improvements in security headers and accessibility could be made. From a security perspective, the site enforces HTTPS, uses reCAPTCHA to protect forms, and implements cookie consent banners. No critical vulnerabilities or exposed sensitive data were detected in the provided content. However, the absence of explicit security policies or incident response contacts suggests room for improvement in security transparency and readiness. Overall, the website presents a trustworthy and professional digital presence for a small regional non-profit. It effectively communicates its mission and services while maintaining compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility to further strengthen the site's security posture and user experience.

K

Klimaschule

klimaschule.ch

54

Klimaschule is a Swiss-based educational initiative dedicated to climate, energy, and sustainability education primarily targeting schools and students. The organization offers a structured four-year program to embed sustainability into school life, alongside individual educational offers and solar system construction services. The website reflects a well-established program with active partnerships and a strong presence in multiple Swiss cantons. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and cookie consent, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, although explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for its audience.