Security Directory

B

Black Water Tek

blackwatertek.com

51

Black Water Tek is a specialized diving training company founded by world-record diver Will Goodman, offering CCR and technical diver training primarily in Indonesia and Egypt. The company operates with a strong niche focus, leveraging expert instruction and partnerships with reputable dive centers and liveaboards to provide tailored, high-quality training and expedition experiences. The website reflects a professional and well-branded presence targeting technical divers seeking advanced training and exploration opportunities. Technically, the site is built on WordPress with modern SEO and user engagement tools, delivering good performance and mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and explicit policies are recommended. Privacy compliance is basic with a privacy policy and cookie consent but lacks detailed GDPR indicators or incident response information. Overall, the site is trustworthy, well-maintained, and aligned with the business's market positioning.

B

Brittany Ferries

brittany-ferries.es

65

Brittany Ferries operates as a major ferry transportation service provider connecting Spain, France, and the UK. The company offers passenger and freight ferry routes with an online booking platform, targeting general public travelers and freight customers. The website reflects a professional and consistent brand presence with a focus on user-friendly booking and travel information. Technically, the site is built on modern frameworks such as Angular and uses Contentful as a CMS, hosted on Google Cloud infrastructure. It integrates tracking and analytics tools like Google Tag Manager and Sentry for performance and error monitoring. Security posture is strong with HTTPS enforced and security headers implemented, although no explicit security policy or incident response information is published. Privacy and cookie policies are present and appear GDPR compliant. Overall, the site is well-designed, mobile-optimized, and trustworthy, though WHOIS data is unavailable due to registry query restrictions, limiting domain trust analysis. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance transparency and security maturity.

B

Brittany Ferries

brittany-ferries.ie

68

Brittany Ferries is a well-established ferry operator providing passenger and freight services primarily between Ireland, the UK, France, and Spain. The company targets travelers and freight customers in these regions, offering booking and travel services through a professionally designed and user-friendly website. The business operates in the transportation sector with a large market presence in Western Europe maritime transport. Technically, the website leverages modern web technologies including Angular framework, Google Tag Manager for analytics, and Contentful as a CMS. Hosting is provided via Google Cloud Storage, ensuring reliable content delivery. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be improved. From a security perspective, the website enforces HTTPS with strong SSL configuration and implements security headers such as Content Security Policy and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and indicate GDPR compliance, though no explicit security policy or incident response information is published. Overall, the website is professional, trustworthy, and safe for general audiences. The lack of WHOIS data limits domain registration trust analysis, but the website content and branding strongly suggest legitimacy. Strategic recommendations include publishing a security policy, adding vulnerability disclosure mechanisms, and enhancing accessibility compliance to further strengthen security posture and user trust.

B

Brittany Ferries

brittany-ferries.fr

10

Brittany Ferries is a well-established ferry operator primarily serving maritime routes between France, the UK, Spain, and Ireland. The company offers ferry crossings, holiday packages, and travel guides targeting general travelers and holidaymakers. The website reflects a professional and consistent brand image with a focus on user-friendly navigation and relevant content for its audience. Technically, the site is built on modern frameworks such as Angular and leverages trusted third-party services like Google Tag Manager and Trustpilot for analytics and reviews. Hosting appears to be on Google Cloud infrastructure with content delivery via Contentful CDN, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and use of nonce attributes in scripts; however, there is a lack of visible security headers and explicit security or incident response policies. Privacy compliance is limited due to missing explicit privacy and cookie policies in the analyzed content. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

B

Brittany Ferries

brittany-ferries.co.uk

10

Brittany Ferries is a well-established ferry operator providing passenger and freight services primarily between the UK, France, Spain, and Ireland. The company offers ferry crossings, holiday packages, and related travel services, targeting general travelers and freight customers. The website reflects a professional and consistent brand image with a focus on user experience and accessibility. Technically, the site uses modern frameworks such as Angular, is hosted on Google Cloud infrastructure, and integrates third-party services like Contentful CMS and Google Tag Manager for content delivery and analytics. Security posture is strong with HTTPS enforced and security headers implemented, although there is room for improvement in publishing explicit security policies and incident response contacts. The WHOIS data is unavailable due to a domain naming rules error, which is unusual but does not detract significantly from the overall legitimacy given the professional web presence. Overall, the site is secure, compliant with privacy regulations, and provides a trustworthy platform for its users.

W

Wein Wolf Gruppe

weinwolf.de

10

Wein Wolf Gruppe operates as a premium distributor and wholesaler specializing in wines, champagnes, and spirits, targeting business customers primarily in Germany. The website serves as a B2B webshop facilitating product distribution with a professional and consistent brand presence. The technical infrastructure leverages modern web technologies including Shopware CMS, Matomo analytics, and Usercentrics for cookie consent management, hosted on AWS infrastructure. The site is mobile optimized and provides essential features such as user login and account management with security measures like CSRF tokens. From a security perspective, the website enforces HTTPS and uses consent management platforms, but lacks visible security headers and published security policies or incident response contacts. No critical vulnerabilities or WAF blocking were detected. Privacy compliance is partial, with cookie consent but no visible privacy or terms of service pages in the provided content. The business credibility is strong given the professional presentation and alignment between domain registration and website content. Overall, the website presents a mature digital presence suitable for its B2B wholesale market, with room for improvement in privacy policy publication, security header implementation, and incident response transparency to enhance trust and compliance.

C

Culligan Deutschland GmbH

culligan.de

11

Culligan Deutschland GmbH operates a professional website offering advanced water dispenser solutions primarily targeting business customers in Germany. The company provides a range of products including piped water dispensers, gallon water dispensers, water fittings, and accessories, supported by comprehensive service and maintenance offerings. The website demonstrates a strong market position with over 20,000 companies using their solutions daily. Technically, the site is built on WordPress with Bootstrap and integrates modern analytics and marketing tools such as Piwik PRO, Google Tag Manager, and Visual Website Optimizer, all managed with GDPR-compliant cookie consent. Security posture is solid with HTTPS enforced and reCAPTCHA implemented on forms, though some security headers could be improved. Overall, the domain registration and WHOIS data align well with the business claims, indicating a trustworthy and legitimate online presence.

P

PFLANZMICH

pflanzmich.de

10

PFLANZMICH operates a well-established e-commerce platform specializing in garden plants, including hedges, perennials, roses, and rare plants. The website targets a broad German-speaking audience interested in gardening products, offering over 15,000 plant varieties with guarantees and fast delivery. The company positions itself as a trusted online garden nursery with a medium-sized market presence in Germany. Technically, the website employs modern JavaScript libraries, asynchronous loading, and integrates Google Tag Manager and Consentmanager.net for analytics and GDPR-compliant cookie consent. Hosting is provided by Anexia, with multiple nameservers indicating stable infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No direct contact emails or phone numbers are published; contact is primarily via a web form. No vulnerability disclosure or security policy is published, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, suitable for its retail business model.

P

Party.Rent

partyrent.com

10

Party.Rent is a leading European rental company specializing in event equipment including furniture, tableware, and catering supplies. The company operates under the parent group Rent.Group and targets event planners, corporate clients, and private individuals across multiple European countries. Their website is professionally designed with a strong focus on user experience, multilingual support, and detailed product offerings. Technically, the site uses modern frameworks such as Bootstrap and integrates Google Tag Manager and reCAPTCHA for analytics and security. Security posture is good with HTTPS and CSRF protections, though explicit security policies and headers could be improved. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

A

APA Brands Events Solutions

apa.de

10

APA Brands Events Solutions is a well-established German company specializing in brand communication, event marketing, and live communication with over 39 years of experience. The company targets corporate clients and event organizers, providing comprehensive services from conception and design to production and branding. Their website reflects a professional and consistent brand image with multilingual support and a portfolio showcasing high-profile events. Technically, the site is built on WordPress with modern plugins and tracking tools, optimized for mobile and SEO. Security posture is good with HTTPS and cookie consent mechanisms, though explicit privacy and security policies are missing. WHOIS data confirms domain legitimacy and consistency with the business claims.

L

Lexus Deutschland

lexus.de

70

Lexus Deutschland operates as a premium automotive brand specializing in luxury and hybrid vehicles within the German market. The website serves as a digital platform for vehicle configuration, dealer location, and customer engagement, reflecting a strong market position in the premium transportation sector. The brand leverages modern digital infrastructure, including Adobe Experience Manager CMS, React frameworks, and advanced analytics tools such as Datadog RUM and Google Tag Manager, indicating a mature digital presence. Security practices include HTTPS enforcement and cookie consent management, though explicit security policies and vulnerability disclosures are absent. Overall, the site demonstrates a professional and trustworthy online presence aligned with Lexus's premium brand image.

B

Betway Limited

betway.de

11

Betway Limited operates a comprehensive online gambling platform focused on sports betting, casino games, and live betting experiences. The company holds official partnerships with prominent football clubs such as Arsenal FC, Manchester City, Chelsea, and Brighton & Hove Albion, reinforcing its strong market position in the European gambling sector. Licensed and regulated under German authorities, Betway targets adult users interested in regulated and responsible gambling services. The website is professionally designed, mobile-optimized, and provides clear navigation and content relevant to its audience. Technically, the website leverages modern web technologies including React and Next.js frameworks, hosted behind Cloudflare for performance and security. Analytics and tracking are implemented via Google Tag Manager and Snowplow, enabling extensive user behavior insights while maintaining GDPR compliance through cookie consent mechanisms. The site demonstrates good accessibility and SEO practices, contributing to a positive user experience. From a security perspective, Betway enforces HTTPS, employs multiple security headers, and avoids exposing sensitive data in its HTML content. However, explicit security policies and incident response details are not publicly available, and no vulnerability disclosure program is evident. The domain registration data aligns well with the business claims, showing transparency and legitimacy. Overall, the security posture is strong but could benefit from enhanced transparency and formalized disclosure processes. The overall risk assessment indicates a mature and trustworthy online gambling platform with robust technical and security foundations. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure channel, and providing data protection officer contact information to further enhance trust and compliance.

T

Tennium

tennium.com

10

Tennium is a Spain-based company specializing in tennis-related activities including the management of official ATP/WTA tournaments, player representation, and corporate consulting services. Established in 2015, it has positioned itself as a significant player in the tennis sports management sector, offering a multi-activity platform that supports business growth and player development. The website reflects a professional and consistent brand image with comprehensive content targeting tennis professionals, corporate clients, and fans. Technically, the website is built on WordPress using popular plugins such as LayerSlider and WPBakery Page Builder. It employs modern web technologies and integrates Google Analytics and Tag Manager for tracking. Hosting is provided by Acens Technologies, S.L.U. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in accessibility could be made. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is strong, with clear privacy and cookie policies and an active consent mechanism. No incident response or security policy pages were found, indicating room for improvement in transparency and readiness. Overall, Tennium's website is trustworthy, professional, and well-aligned with its business goals. Strategic recommendations include enabling DNSSEC, implementing security headers, and publishing security policies to further strengthen its security posture and trustworthiness.

V

Vista Musical Instruments

vistamusic.com

10

Vista Musical Instruments is a global collective of music-related brands specializing in the manufacturing, retail, and distribution of musical instruments and accessories. The company manages several historic and well-known brands such as MONO, Teisco, Harmony, Heritage Guitars, Dawsons, Manny's, and Swee Lee. The website reflects a professional and consistent brand image, targeting musicians, retailers, and the broader music community worldwide. The parent company is Caldecott Music Group, which is referenced and linked on the site. Technically, the website is built using modern web technologies including React and Next.js, with optimized images and good mobile responsiveness. Hosting and domain registration are stable and consistent with the business profile. Google Tag Manager is used for analytics and tracking, indicating moderate user tracking levels. However, there is a lack of explicit privacy and cookie policies, which presents compliance gaps. From a security perspective, the site uses HTTPS with a good SSL configuration and domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled and no security headers are detected, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were found. The absence of privacy and cookie policies and consent mechanisms lowers the privacy compliance score. Overall, the website is professional, trustworthy, and technically sound but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing incident response contact information to improve trust and compliance.

B

BandLab Technologies

bandlabtechnologies.com

9

BandLab Technologies is a global collective of music technology companies focused on enabling music creation and sharing without boundaries. The company operates a modern, well-designed website built with Gatsby and React, indicating a mature digital infrastructure. The site is mobile optimized and uses Google Tag Manager for analytics, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain status locks in place; however, DNSSEC is not enabled and security headers are not evident, indicating room for improvement. Privacy compliance is weak due to the absence of visible privacy and cookie policies, and no contact information or incident response channels are provided. Overall, the website presents a professional image but would benefit from enhanced transparency and security practices.

M

MINT Zukunft schaffen!

mintzukunftschaffen.de

63

MINT Zukunft schaffen! is an educational initiative focused on promoting STEM (MINT in German) education in Germany. The website serves as a platform to honor STEM ambassadors and provide resources related to STEM education. It targets students, educators, and STEM enthusiasts, positioning itself as a niche educational platform with a small organizational size. Technically, the website is built on WordPress, hosted on WordPress.com infrastructure, and uses modern tools such as Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and performs moderately well. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Overall, the website is safe, professional, and trustworthy, but could improve privacy and security transparency by publishing privacy policies and incident response information.

B

Babiel GmbH

babiel.com

10

Babiel GmbH, a subsidiary of the CONET group, is a well-established German company specializing in digital communication and digital business experiences. With over 30 years of expertise, Babiel offers strategic consulting and implementation services focused on digital transformation, customer and citizen experience management, and digital touchpoints. Their integration within the CONET group expands their capabilities to include data intelligence, AI, cloud services, and software development, positioning them as a comprehensive digital solutions provider for enterprises and public institutions. Technically, the website is built on Drupal 11, leveraging modern web technologies and consent management tools such as Usercentrics. The site is well-optimized for mobile devices, features clear navigation, and integrates Google Analytics and Google Tag Manager for analytics and marketing purposes. The presence of a cookie consent banner and a detailed privacy policy indicates good GDPR compliance. From a security perspective, the site enforces HTTPS and uses consent management but lacks publicly visible security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which slightly impacts overall trust. Overall, Babiel GmbH presents a professional and trustworthy digital presence with strong business credibility and technical maturity. Addressing the WHOIS data gap and enhancing security transparency would further strengthen their security posture and trustworthiness.

P

PURE

pure.com

53

PURE is a small-scale business focused on offering personalized green juice products optimized for health-conscious consumers. The website serves primarily as a marketing landing page with a waitlist form for interested customers. The business model appears to be direct-to-consumer, leveraging personalization in the health and wellness beverage sector. The market position is niche, targeting individuals seeking customized health drinks. Technically, the website is built on the Webflow platform, utilizing modern web technologies including Google Tag Manager and Google reCAPTCHA for analytics and spam protection. The site is mobile optimized with moderate performance and basic accessibility features. However, there is a lack of comprehensive SEO and security headers which could be improved. From a security perspective, the site benefits from HTTPS and reCAPTCHA but lacks visible security headers and formal privacy or cookie policies. No contact information or incident response details are provided, which limits transparency and trust. The absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Overall, the website presents a professional front but has gaps in privacy compliance, contact transparency, and domain legitimacy. Strategic improvements in these areas would enhance trust and security posture.

D

digris Ltd

digris.uk

39

Digris Ltd is a specialized Anglo-Swiss network operator providing DAB+ broadcasting services primarily in the United Kingdom, Switzerland, and France. The company offers a comprehensive suite of services including service planning, encoding, multiplexing, transmission, and monitoring, targeting radio stations and broadcasters. Their market position is that of a niche player with a strong technical focus and membership in industry bodies such as WorldDAB. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website employs modern web technologies including Vue.js, Google Analytics, and DigitalOcean hosting for media assets. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but no cookie consent mechanism is present. The security posture is good but could be enhanced by implementing additional HTTP security headers, publishing incident response and vulnerability disclosure policies, and improving GDPR cookie consent mechanisms. No critical vulnerabilities or suspicious content were detected. The WHOIS data is unavailable due to domain registration issues with the 'www.digris.uk' domain, which appears to be a subdomain or alias rather than a registered domain, slightly reducing trust but not undermining the legitimacy of the business. Overall, the website and business present a trustworthy and professional front with moderate technical maturity and good security hygiene. Strategic improvements in privacy compliance and security transparency would further strengthen their position.

D

digris AG

digris.fr

41

Digris AG is a specialized company providing comprehensive services in the digital radio broadcasting sector, particularly focusing on DAB+ technology. They offer a full range of services including site studies, installations, supervision, and development of digital radio platforms. The company operates multiple local and national multiplexes primarily in France and Switzerland, positioning itself as a key regional player in digital radio infrastructure. Their website reflects a professional and consistent brand image with clear contact information and active social media presence. From a technical perspective, the website employs modern web technologies such as Vue.js and integrates analytics tools like Google Analytics and Google Tag Manager. Hosting appears to be on DigitalOcean, and the site is mobile-optimized with good user experience. However, there is room for improvement in SEO and accessibility features. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating potential compliance and security posture gaps. The absence of WHOIS data limits the ability to fully verify domain legitimacy and registration details, which slightly reduces trustworthiness. Nonetheless, the professional presentation and detailed contact information support the legitimacy of the business. Overall, the site is safe, with no adult or questionable content detected, and serves a general audience interested in digital radio broadcasting solutions.

A

Adathordozok.hu

adathordozok.hu

45

Adathordozok.hu is a Hungarian company specializing in professional printing and promotional product services, including CD/DVD duplication, custom USB drives, powerbanks, and branded audio products. Established in 2004, the company has a strong market presence with over 15 years of experience, serving multinational corporations, musicians, and SMEs. Their business model focuses on B2B and B2C online sales supported by a proprietary production facility and extensive inventory, enabling fast delivery and competitive pricing. The website reflects a mature digital presence with clear branding and customer trust signals such as testimonials and social media engagement. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Analytics, with a custom or Yii-based CMS platform. The site is mobile-optimized and SEO-friendly, providing a good user experience.

C

Családbarát Magyarország Központ Nonprofit Közhasznú Kft.

csalad.hu

62

csalad.hu is an official Hungarian government-affiliated family support portal operated by Családbarát Magyarország Központ Nonprofit Közhasznú Kft., founded in 2019. The website provides comprehensive information on family support programs, benefits, and calculators tailored for Hungarian families. It serves as a centralized resource to help families understand and access various governmental support schemes. The portal is well-positioned as a trusted source within the government and non-profit sector in Hungary.

W

Wolters Kluwer Hungary Kft.

jogtar.hu

60

Wolters Kluwer Hungary Kft. operates the Jogtár platform, Hungary's leading legal database service providing comprehensive access to Hungarian and EU legal materials, commentaries, case law, and legal documents. The website serves primarily legal professionals and organizations requiring up-to-date legal information through a subscription-based model. The platform is well-branded and consistent with the parent company's identity, Wolters Kluwer.

B

Bitmovin

bitmovin.com

70

Bitmovin is a technology company specializing in video streaming solutions, including video players, encoding services, analytics, and AI-powered video enhancements. Founded in 2013 and headquartered in Austria, Bitmovin serves a global B2B audience, enabling businesses to deliver high-quality live and on-demand video content across a wide range of devices. The company positions itself as a leader in scalable, reliable, and innovative video workflows, leveraging partnerships with major industry players such as Akamai and NVIDIA. The website reflects a mature digital presence with comprehensive content and clear business focus. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Tag Manager for analytics. Security posture is strong with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are not explicitly detected. Privacy compliance is robust, featuring a detailed privacy policy and cookie consent mechanism aligned with GDPR requirements. No critical security or privacy issues were identified, and the site maintains high professionalism and trustworthiness.

A

Arts Council England

artscouncil.org.uk

70

Arts Council England is the national development agency for creativity and culture in England, funded by the government and the National Lottery. The organization supports the arts, museums, and libraries by providing funding, research, and strategic guidance to foster cultural growth and accessibility. The website reflects a mature digital presence built on Drupal 10, incorporating modern JavaScript frameworks and consent management tools to ensure compliance and user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-optimized for accessibility and SEO, serving a broad audience including artists, cultural organizations, and the public.

V

Home

vhu.de

44

The website www.vhu.de is a German-language site built on the Contao Open Source CMS platform. It integrates modern consent management tools such as Usercentrics and analytics platforms including Matomo and Google Tag Manager, indicating a moderate level of digital maturity. However, the site lacks visible privacy policies, terms of service, and explicit contact information, which limits its transparency and compliance posture. The technical infrastructure appears standard with no detected WAF or blocking mechanisms, and the site is accessible without security challenges. Security practices are basic, with no security headers detected and no vulnerability disclosure mechanisms in place. Overall, the site presents a moderate risk profile primarily due to missing compliance documentation and limited business information.

B

Bundesarbeitgeberverband Chemie

bavc.de

52

The Bundesarbeitgeberverband Chemie (BAVC) is a leading German employer association representing the chemical, pharmaceutical, rubber, and plastics processing industries. It advocates for tariff and social policy interests of its 10 regional member associations comprising 1,700 companies and 585,000 employees. The website serves as an information hub for members, policymakers, and the public, providing news, publications, and service information. The site is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital presence. Technically, the website is built on Joomla CMS with modern JavaScript libraries such as Awesomplete for autocomplete, Tiny Slider for carousels, and Kick Consent Manager for cookie compliance. It integrates Google Analytics and Google Tag Manager for analytics and marketing. The site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent management, and CSRF token usage in forms. However, explicit security headers are not detected, and no public security policy or incident response contacts are provided. No vulnerabilities or suspicious external links were found. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It effectively supports the organization's business goals and stakeholder engagement. Strategic improvements could include adding security headers, publishing a vulnerability disclosure policy, and enhancing accessibility features.

C

Centigrade GmbH

centigrade.de

48

Centigrade GmbH is a medium-sized German technology company specializing in human-centered IT solutions, focusing on digital product development, UX design, software engineering, and AI integration. The company serves business clients seeking to enhance user experience and digital transformation success. Their website reflects a mature digital presence with comprehensive service descriptions, client references, and industry awards, positioning them as a reputable player in the UX and software engineering consultancy market. Technically, the website employs a modern tech stack including jQuery, lazy loading, Google Analytics with privacy features, and a consent management platform (Usercentrics). The site is mobile-optimized, accessible, and SEO-friendly, though it appears to use a custom or proprietary CMS. Performance is moderate, with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS, uses consent management for GDPR compliance, and implements form validation with required privacy consent. However, it lacks explicit security policies, incident response information, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture but with room for improvement in transparency and security headers. Overall, the website is professional, trustworthy, and compliant with privacy regulations. The risk level is low, but strategic enhancements in security documentation and incident response readiness are recommended to further strengthen trust and compliance.

F

FACT

fact.co.uk

66

FACT Liverpool is a prominent UK-based non-profit organization dedicated to the support and exhibition of art, film, and new media. It operates a multi-functional venue featuring galleries, a cinema, a café, and event spaces, positioning itself as a leading cultural institution in Liverpool and the UK. The organization offers a diverse range of services including exhibitions, film screenings, artist residencies, educational programs, and venue hire, targeting a broad audience interested in contemporary art and digital culture. Technically, the website demonstrates a mature digital infrastructure utilizing modern analytics tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Inspectlet, alongside asynchronous script loading for performance optimization. The site is built on a CMS platform likely powered by SEOmatic and Craft CMS, with good mobile optimization, accessibility, and SEO practices. The presence of cookie consent management and comprehensive privacy policies indicates a strong commitment to privacy compliance. From a security perspective, the site enforces HTTPS and employs standard best practices, though it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data is unavailable due to domain naming rules errors, but other trust indicators such as charity registration numbers and consistent branding support the legitimacy of the domain. Overall, FACT Liverpool presents a professional, secure, and privacy-conscious online presence aligned with its cultural mission. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

H

Haufe Group

rudolf.ai

60

The website rudolf.ai represents an AI initiative by the Haufe Group, a well-established German company specializing in legal and business software solutions. The platform focuses on integrating generative AI technologies to enhance user experience and automate routine tasks for professionals in HR, tax, and sustainability sectors. The site demonstrates a mature digital presence with modern technologies such as Webflow CMS, jQuery, and Google Tag Manager, combined with strong privacy and ethical guidelines around AI use. Security posture is solid with HTTPS, bot protection via FriendlyCaptcha, and exclusion of external crawlers, although some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, reflecting a reputable business entity.

H

Haufe-Lexware GmbH & Co. KG

advolux.de

68

Haufe-Lexware GmbH & Co. KG operates the Advolux website, offering specialized legal practice management software tailored for law firms in Germany. The company is a subsidiary of Haufe Group SE, a well-established entity headquartered in Freiburg im Breisgau. Advolux provides a comprehensive suite of digital tools including document management, deadline tracking, and integration with the German electronic lawyer mailbox (beA), supporting both cloud and on-premises deployments. The website demonstrates a strong market position with professional branding, extensive feature descriptions, and customer testimonials, targeting legal professionals seeking efficient digital solutions.

S

Snigel

snigel.com

61

Snigel is an established advertising technology company founded in 2003, specializing in native video, header bidding, and ad optimization to help publishers increase ad revenue. In 2025, Snigel merged with Publisher Collective, and its technology now powers the combined entity, enhancing market reach and service offerings. The website reflects this transition with updated branding and links to Publisher Collective resources. Technically, the site is built on WordPress with modern SEO and performance optimizations, including Google Tag Manager and Algolia search integration. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and no explicit security policies are published. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, indicating GDPR awareness. Overall, the site is professional, trustworthy, and well-positioned in the advertising technology sector.

S

SPACEFOOT SAS

golf-and-co.it

63

Golf and co is a specialized e-commerce retailer focused on golf equipment and accessories, targeting primarily the Italian market with a multi-country European presence. The company operates under SPACEFOOT SAS, a French legal entity, providing customer service from France. The website offers a comprehensive catalog of golf products including clubs, balls, bags, carts, shoes, clothing, gloves, and accessories from well-known brands. The business model is retail e-commerce with secure payment options and customer-friendly return policies. Technically, the website is built on a Magento (OpenMage) platform, leveraging modern web technologies and marketing tools such as Google Analytics, Google Ads, and Actito, with a GDPR-compliant consent management platform in place. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though security headers could be improved. WHOIS data shows anomalies with a future creation date, which is suspicious but likely a data error. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

T

Training-Fit : Fitness- und Muskelaufbaugeräte

training-fit.ch

66

Training-Fit.ch is an e-commerce retailer specializing in fitness, muscle building, crossfit, yoga, and martial arts equipment and apparel. The website offers a broad catalog of products from well-known brands, targeting fitness enthusiasts primarily in Switzerland and neighboring regions. The business model focuses on online sales with fast shipping options and secure payment methods. The site demonstrates consistent branding and a professional design, supporting a medium-sized retail operation. Technically, the website is built on the Magento OpenMage platform, utilizing modern web technologies including Google Analytics, Google Ads, and reCAPTCHA for security and marketing. The site is mobile-optimized and features good SEO practices, although accessibility could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, explicit security headers are not clearly present, and there is no published security policy or incident response contact. Privacy compliance is partially addressed with a cookie consent mechanism, but no clear privacy policy or terms of service pages were found. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with good business credibility but some gaps in privacy and security transparency. Strategic improvements in policy publication, security headers, and contact information would enhance trust and compliance.

P

Pet & Garden – Ihre Online-Zoohandlung und Ihr Gartencenter

pet-and-garden.ch

67

Pet & Garden is an established Swiss online retailer specializing in pet supplies, garden products, and agricultural equipment. The website offers a broad catalog of products with a focus on fast shipping and customer service, targeting pet owners, gardeners, and farmers primarily in Switzerland and German-speaking regions. The business model centers on e-commerce retail with a medium-sized market presence and a consistent brand image. Technically, the website is built on a Magento-based platform (OpenMage variant) and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito for marketing automation. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security-wise, the site enforces HTTPS, uses Google reCAPTCHA for bot protection, and implements a consent management platform for GDPR compliance. However, explicit privacy and cookie policies are missing, and no direct contact information or security incident response details are provided, which are areas for improvement. Overall, the website is secure, professional, and trustworthy, but enhancing transparency and compliance documentation would strengthen its security posture and user trust.

P

Pecheur-Store

pecheur-store.ch

66

Pecheur-Store is a German-language e-commerce retailer specializing in fishing equipment, including rods, reels, baits, and accessories for various fishing types such as carp, predator, spinning, and sea fishing. The website targets fishing enthusiasts primarily in Switzerland and German-speaking regions, offering a broad product catalog with fast shipping and secure payment options. The business operates as a small retail entity with a focused niche market position. Technically, the website is built on the Magento (OpenMage) platform, utilizing modern web technologies including Google Tag Manager, Google Analytics, Google Ads conversion tracking, and reCAPTCHA v3 for bot protection. The site demonstrates good mobile optimization and SEO practices, although some accessibility features are basic. Performance is moderate with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and employs reCAPTCHA and a consent management platform for GDPR compliance. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not detected, and no privacy policy or terms of service are present on the homepage, which are areas for improvement. WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website presents a moderate risk profile with good business credibility but requires enhancements in privacy disclosures and security header implementation to improve compliance and security posture.

S

SPACEFOOT SAS

on-fight.ch

67

On-Fight.ch is a professional e-commerce platform specializing in martial arts and fitness equipment, serving primarily the European market with a focus on German and French-speaking customers. The company SPACEFOOT SAS operates the site, providing a wide range of products including gloves, protective gear, clothing, and training equipment for various martial arts disciplines. The website demonstrates a solid market position in the niche retail sector with fast shipping and customer service based in France. Technically, the site is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Tag Manager, and Actito marketing automation. Security measures include HTTPS, invisible reCAPTCHA, and a consent management platform, reflecting good privacy compliance and user data protection. Overall, the site is well-structured, professionally designed, and trustworthy, with no indications of malicious activity or content safety concerns.

M

Made In Paradis

madeinparadis.ch

67

Made In Paradis is a Swiss-based e-commerce retailer specializing in women's fashion, including clothing, shoes, sportswear, accessories, and beauty products. The website offers a broad catalog with over 300 brands, targeting female consumers interested in fashion and sportswear. The business operates primarily online with a medium-sized market presence in Switzerland and neighboring European countries. Technically, the website is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Ads, and Actito. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS, reCAPTCHA, and secure payment methods, though some security headers and policies could be improved. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain registration is consistent with the business claims, and no suspicious patterns were detected. The site maintains active social media channels and partners with several related retail domains.

D

Daily Bikers

daily-bikers.ch

67

Daily Bikers is a specialized e-commerce retailer based in Switzerland focusing on motorcycle equipment and parts. The website offers a broad catalog of products including helmets, jackets, gloves, and accessories targeting motorcycle enthusiasts primarily in German-speaking regions. The business model is retail-oriented with an emphasis on fast delivery and secure payment options. The website demonstrates a good level of digital maturity with modern tracking and advertising technologies integrated, including Google Analytics, Google Tag Manager, and reCAPTCHA for bot protection. The platform is built on Magento (OpenMage variant), providing a robust e-commerce infrastructure. Security posture is solid with HTTPS enforced and bot protection mechanisms, though there is room for improvement in security headers and explicit security policies. Privacy compliance is basic, with a consent mechanism present but no explicit privacy or cookie policy pages detected in the provided content. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

T

Tripnbikers

tripnbikers.ch

67

Tripnbikers is a specialized e-commerce retailer focused on motorcycle luggage and accessories, including top cases, saddlebags, and rider backpacks. The website targets motorcycle enthusiasts primarily in Switzerland and German-speaking regions, offering products from well-known brands such as Givi, Shad, and SW-Motech. The business operates a professional online store with a clear product catalog and marketing presence. Technically, the site is built on Magento (OpenMage) with modern frontend technologies and integrates Google Analytics, Google Ads, and reCAPTCHA for security and marketing. The site uses HTTPS and has a cookie consent mechanism, indicating basic GDPR compliance, though explicit privacy and terms of service pages were not detected in the provided content. Security posture is good with no obvious vulnerabilities or exposed sensitive data, but could be improved by adding explicit security headers and publishing security policies. Overall, the website is professional, trustworthy, and safe for general audiences.

H

House of Rugby

house-of-rugby.ch

67

House of Rugby is a specialized e-commerce retailer focused on rugby sportswear, equipment, and official club and national team merchandise. The website targets rugby players and fans primarily in Switzerland and French-speaking regions, offering a wide range of products including jerseys, shoes, and protective gear. The business model centers on online retail with fast shipping and secure payment options, positioning itself as a niche market leader in rugby apparel and accessories. Technically, the website is built on the Magento OpenMage platform, leveraging modern frontend technologies such as Google Tag Manager, Google Analytics, Google Ads, and reCAPTCHA v3 for bot protection. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Performance is moderate, with a well-structured navigation system and consistent branding. From a security perspective, the site enforces HTTPS and uses consent management platforms to comply with privacy regulations. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and no public security or incident response policies are available. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy and cookie policies are not explicitly found, though consent mechanisms are implemented. Overall, the website presents a professional and trustworthy e-commerce platform with a solid security posture but could enhance transparency and compliance by publishing privacy, cookie, and security policies. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness.

H

Handball-Store: Online-Handball-Spezialist

handball-store.ch

66

Handball-Store.ch is a specialized e-commerce retailer focused on handball sports equipment, including shoes, balls, clothing, and accessories. The website targets handball players, teams, and clubs primarily in German-speaking regions, offering a comprehensive product catalog with fast shipping options. The business operates in the retail sector within Switzerland, maintaining a consistent and professional online presence. Technically, the site is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito for marketing automation. The website is mobile-optimized with good navigation and content relevance. Security-wise, the site enforces HTTPS and uses reCAPTCHA for bot protection, but lacks some security headers and explicit security policies. Privacy compliance is partially implemented with a consent mechanism but lacks visible privacy and cookie policies. Overall, the site is legitimate and trustworthy but would benefit from enhanced transparency and security documentation.

S

SPACEFOOT SAS

galopp-store.ch

58

Galopp-Store is a well-established e-commerce retailer specializing in equestrian equipment, pet supplies, and breeding animal products, targeting horse owners, riders, and pet enthusiasts primarily in Switzerland and France. The company operates under SPACEFOOT SAS, with customer service based in France, reflecting a strong European market presence. The website offers a broad product catalog with clear navigation and multiple product categories, supported by a consistent brand identity and trust signals such as secure payment options and customer service contacts. Technically, the site is built on a Magento (OpenMage) platform, leveraging modern marketing and analytics tools including Google Analytics, Google Ads, and Actito marketing automation, with GDPR-compliant consent management implemented via AppConsent CMP. Security posture is strong with HTTPS enforced, reCAPTCHA protection on forms, and visible secure payment logos, although explicit security and incident response policies are not published. Overall, the website is professional, user-friendly, and trustworthy, with moderate to good performance and mobile optimization.

F

Foot-store

foot-store.ch

65

Foot-store.ch is a specialized e-commerce platform focused on football-related products including shoes, jerseys, and accessories. The website targets football enthusiasts primarily in Switzerland and Europe, offering a wide range of branded sportswear and equipment with fast shipping options. The business model is retail e-commerce with a niche focus on football gear, positioning itself as a trusted provider with customer service in France and secure payment options. Technically, the site is built on Magento OpenMage with a modern frontend, leveraging Google Analytics, Google Ads, and reCAPTCHA for security and marketing. The site demonstrates good digital maturity with responsive design and structured navigation. Security posture is strong with HTTPS, consent management, and no visible vulnerabilities, though explicit privacy and terms pages are missing. Overall, the site is professional and trustworthy with moderate tracking and advertising practices. Recommendations include publishing clear privacy and terms policies, adding contact information, and enhancing accessibility. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trust.

D

Direct-Volley : Nummer 1 Website für Online-Volleyball

direct-volley.ch

67

Direct-Volley.ch is a German-language e-commerce website specializing in volleyball equipment, apparel, and accessories. It positions itself as the leading online volleyball shop, targeting volleyball players and enthusiasts primarily in German-speaking regions such as Switzerland and Germany. The site offers a broad catalog including shoes, clothing, balls, protective gear, and club equipment, supported by a structured navigation and search functionality. The business model is retail-focused, leveraging an online platform to reach its audience efficiently. Technically, the website is built on the Magento OpenMage platform, integrating modern web technologies such as Google Analytics, Google Ads, and reCAPTCHA for security and marketing purposes. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, it lacks explicit security headers like Content-Security-Policy and X-Frame-Options, and no visible privacy policy or terms of service pages were found in the provided content. Contact information for security incidents or data protection officers is also absent, indicating areas for improvement in compliance and transparency. Overall, the website is professional and trustworthy for its retail purpose but would benefit from enhanced privacy disclosures, security header implementation, and clearer contact channels to improve its security posture and compliance with GDPR requirements.

B

Basket-Center

basket-center.ch

67

Basket-Center.ch is a professional e-commerce platform specializing in basketball equipment, apparel, and accessories. It serves primarily the Swiss market with official partnerships with major brands such as Mitchell & Ness, Spalding, Adidas, and Wilson. The website offers a broad catalog including NBA merchandise, basketball shoes, and lifestyle products. The business model focuses on retail sales with an emphasis on fast shipping and secure payment options. Technically, the site is built on Magento (OpenMage) with integration of Google Analytics, Google Tag Manager, and Google Ads for marketing and tracking. The site uses reCAPTCHA v3 to mitigate bot traffic and has implemented a consent management platform for GDPR compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, explicit privacy and terms of service pages are not found in the provided content, which is a compliance gap. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

F

fragdoch.ch

fragdoch.ch

10

fragdoch.ch is a Swiss-based niche online platform focused on providing anonymous question and answer services related to love, sex, and relationships. The website offers users the ability to submit questions anonymously and receive answers, targeting a general adult audience interested in these topics. The business model appears to be a free service platform with potential community engagement. Technically, the site is built on WordPress using modern plugins such as Formidable Forms and Breakdance Builder, with integration of Google Tag Manager for analytics and event tracking. The site is mobile-optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS and uses anti-spam measures in forms but lacks advanced security headers and explicit security policies. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the site is legitimate, well-structured, and serves its niche effectively, though improvements in security and privacy compliance are recommended.

W

World Vision Schweiz und Liechtenstein

myworldvision.ch

47

World Vision Schweiz und Liechtenstein operates as a humanitarian non-profit organization focused on child welfare and development aid. The website myWorldVision.ch serves as a portal for donors and sponsors, providing login access, donation links, and contact information. The organization holds a reputable market position within Switzerland's NGO sector, targeting individuals and entities interested in supporting children and humanitarian causes. Technically, the site is built on TYPO3 CMS with modern web technologies including Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and Visual Website Optimizer. Security measures include HTTPS enforcement and RSA encryption for login forms, though explicit security policies and headers are lacking. Privacy compliance is indicated by cookie consent mechanisms and links to comprehensive privacy policies on the main domain. Overall, the site is professional, trustworthy, and aligned with its non-profit mission.

L

Linehub

linehub.com

10

Linehub is a European marketing collective comprising multiple specialized marketing agencies focused on delivering integrated marketing solutions such as check-out marketing, lead generation, and partnership marketing. The company emphasizes empowering people and driving measurable results, leveraging over 25 years of experience. The website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, and HubSpot, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms, alongside ISO 27001 certification indicating a commitment to information security. However, the absence of WHOIS registration data and lack of explicit incident response contacts present transparency concerns. Overall, the website is professional, secure, and privacy-conscious, serving business clients seeking marketing growth and insights.