Security Directory

M

MSC Cruises International

msccruises.com

77

MSC Cruises International operates a comprehensive online platform offering cruise holidays primarily in the Mediterranean, Caribbean, and other global destinations. The company targets a broad audience including families, luxury travelers, and cruise enthusiasts, providing services such as cruise bookings, deals, loyalty programs, and detailed information on ships and excursions. The website demonstrates a mature digital presence with modern technologies including Vue.js, Adobe DTM, Marketo, and Akamai CDN integration, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant consent mechanisms, although explicit security policies and incident response contacts are not published. The absence of WHOIS data reduces domain trust slightly but the overall branding and technical sophistication indicate a legitimate and professional business. Strategic recommendations include publishing security and incident response policies, vulnerability disclosure information, and enhancing transparency on data protection officer contacts and data retention policies.

F

Fullerton Tool Company

fullertontool.com

68

Fullerton Tool Company is a well-established precision tooling manufacturer and supplier with a strong legacy dating back to 1996. The company offers a broad range of carbide cutting tools and custom tooling services, targeting manufacturing professionals and machinists. Their market position is supported by a consistent brand image, ISO certification, and a comprehensive online presence including e-commerce capabilities. Technically, the website leverages modern frameworks like Vue.js and integrates multiple analytics and marketing tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and domain protections, though DNSSEC is not enabled and incident response contacts are not explicitly published. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences.

S

Skyguide S.A.

skyguide.ch

57

Skyguide S.A. is the leading Swiss air navigation service provider, offering comprehensive air traffic control and related services across Switzerland and delegated airspaces. The company maintains a strong market position with key services including flight information, aeronautical information management, drone flight coordination, and commercial aviation services. The website reflects a professional and well-structured digital presence, targeting aviation professionals, industry stakeholders, and job seekers. Technically, the site leverages modern frameworks such as Nuxt.js and Vue.js, integrates multiple analytics and marketing tools with user consent, and is optimized for mobile and accessibility. Security posture is robust with HTTPS enforcement and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, supporting Skyguide's reputation as a reliable aviation service entity.

D

Dept (formerly Hinderling Volkart)

hinderlingvolkart.com

67

The website represents the rebranding of Hinderling Volkart as part of the global digital agency Dept. It positions itself as a leading full-service digital agency in Switzerland with a broad range of services from strategy to experience design. The site is professionally designed with modern technologies such as Vue.js and Nuxt.js, and integrates analytics and marketing tools like Google Analytics and Google Tag Manager. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and explicit privacy and terms policies. The missing WHOIS data is a concern but the website's professional appearance and parent company affiliation mitigate trust issues. Overall, the site is a credible digital agency landing page with room for improvement in compliance transparency and security hardening.

Z

Zürcher Kantonalbank

zkb.ch

75

Zürcher Kantonalbank is a well-established Swiss universal bank with over 150 years of history, offering a broad range of financial services including private banking, retail banking, mortgages, investment, and digital banking solutions. The website reflects a mature digital presence with comprehensive service information targeting private clients in Switzerland. The bank positions itself as a secure and trusted financial institution with strong local roots. Technically, the site uses Adobe Experience Manager as its CMS, integrates OneTrust for cookie consent, and employs Adobe Analytics for user tracking. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS enforced and consent mechanisms in place, though explicit security policies and incident response contacts are not found. Overall, the domain registration and WHOIS data align well with the bank's identity, supporting legitimacy and trust.

L

Lucerne Tourism

luzern.com

59

The website www.luzern.com serves as the official tourism guide for the city of Lucerne and the Lake Lucerne region in Switzerland. It provides comprehensive information on sightseeing, events, accommodations, excursions, and travel planning, targeting tourists and visitors. The site is well-branded and professionally designed, reflecting its role as a regional tourism authority. Technically, it is built on TYPO3 CMS with modern frontend frameworks such as Vue.js and React, ensuring a fast, mobile-optimized, and accessible user experience. Security best practices are observed with HTTPS and security headers, though explicit security policies and incident response contacts are not published. The absence of WHOIS registration data raises concerns about domain legitimacy, but the website content and structure appear trustworthy and official. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is a reliable resource for tourism information but would benefit from clarifying domain registration and enhancing security transparency.

L

La Biosthétique

labiosthetique.de

67

La Biosthétique is a medium-sized retail brand specializing in beauty and hair care products, targeting consumers interested in high-quality cosmetics. The website is built on a modern Vue.js framework using Vue Storefront, indicating a mature digital infrastructure suitable for e-commerce. The presence of third-party marketing and A/B testing tools like Kameleoon and Styla reflects a focus on user experience optimization and marketing effectiveness. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place; however, the absence of explicit privacy policies, terms of service, and security headers suggests room for improvement in compliance and security best practices. Overall, the website is professional and trustworthy, with moderate risk due to missing compliance documentation and security headers.

S

Schweizerische Bundeskanzlei (BK)

ch-info.swiss

60

The website ch-info.swiss is an official Swiss government portal managed by the Schweizerische Bundeskanzlei (Swiss Federal Chancellery). It primarily serves as an information dissemination platform providing editions of magazines about Switzerland's political system and governance. The site targets the general public interested in Swiss government affairs and offers multilingual content in English, German, French, and Italian. The business model is focused on government transparency and public education, positioning itself as a trusted official source within the government sector. Technically, the website employs modern frontend technologies including Vue.js and Vuetify, hosted via Hostpoint with DNS managed by Google Cloud DNS. The site demonstrates good mobile optimization and a moderate performance profile. Analytics are implemented using Matomo, indicating a preference for privacy-conscious tracking. However, the site lacks DNSSEC and security headers, which are recommended for enhanced security. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data or forms, reducing attack surface. Nonetheless, the lack of DNSSEC and security headers, as well as missing privacy and cookie policies, represent areas for improvement. No incident response or vulnerability disclosure information is present, which could be enhanced to improve security posture and compliance. Overall, the website is legitimate, trustworthy, and professionally maintained, but could improve privacy compliance and security hardening. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing privacy and cookie policies, and providing clear contact information for security and general inquiries.

S

Sempachersee Tourismus

sempachersee-tourismus.ch

57

Sempachersee Tourismus operates a regional tourism website focused on promoting the Sempachersee area in Switzerland. The site provides comprehensive information on local events, leisure activities, accommodation options, and regional highlights, targeting tourists and visitors interested in the region. The business model centers on regional tourism promotion and information dissemination, positioning itself as a key regional tourism authority. Technically, the website is built on TYPO3 CMS with modern JavaScript frameworks such as Vue.js and React, integrating analytics tools like Google Analytics, Google Tag Manager, and Piwik PRO. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is adequate with HTTPS enforced but lacks security headers and explicit incident response policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. WHOIS data confirms the domain's legitimacy and consistency with the business focus. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security practices.

H

Hotel Schweizerhof Bern & Spa

schweizerhof-bern.ch

50

Hotel Schweizerhof Bern & Spa is a premium 5-star luxury hotel located centrally in Bern, Switzerland. The hotel offers upscale accommodation, gourmet dining options, a spa and wellness center, and facilities for meetings and events. It targets luxury travelers, business guests, and event organizers, positioning itself as a leading hospitality provider in the Swiss capital. The website reflects a high level of professionalism with rich content, clear navigation, and strong branding consistent with a luxury hospitality business. Technically, the site uses modern web technologies including Vue.js, Google Tag Manager, and Matomo Analytics, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and domain transfer protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic with cookie consent implemented but no explicit privacy or terms of service pages detected. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

Swiper

swiperjs.com

59

Swiper is a leading technology company specializing in a modern mobile touch slider library widely adopted by millions of developers and top global brands. The company offers a modular, high-performance slider solution compatible with popular frameworks such as React, Vue, and Svelte. Their business model includes an open-source core product complemented by premium offerings like Swiper Studio and UI Initiative, targeting developers and businesses seeking efficient UI components. Technically, the website demonstrates a mature infrastructure with modern JavaScript frameworks, fast performance, and mobile optimization. Hosting is managed via Cloudflare, ensuring reliable delivery. Security posture is solid with HTTPS and domain transfer protections, though lacks advanced security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned in the technology market.

N

Nuxt

nuxtjs.org

58

Nuxt is an established open source progressive web framework designed to simplify full-stack development with Vue.js. It holds a strong market position within the web development community, supported by a large GitHub presence and modern technology stack. The website demonstrates excellent design quality, mobile optimization, and user experience, reflecting a mature and professional digital infrastructure. Security posture is good with HTTPS enforced and domain registration consistent with best practices, though improvements such as enabling DNSSEC and publishing security policies are recommended. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the site is trustworthy and well-positioned in the technology sector.

H

Hotel Schweizerhof Bern & Spa

schweizerhofbern.com

50

Hotel Schweizerhof Bern & Spa is a well-established luxury 5-star hotel located in Bern, Switzerland, offering premium accommodation, gourmet dining, spa and wellness services, and event hosting. The website reflects a mature and professional hospitality business with a strong market position and consistent branding. Technically, the site uses modern frameworks like Vue.js and integrates analytics and cookie consent tools effectively, though some improvements in security headers and DNSSEC could be made. Security posture is good with HTTPS and domain transfer protections, but lacks explicit security policies and incident response contacts. Overall, the site is trustworthy and well-optimized for its target audience.

K

Katara Hospitality Switzerland AG

burgenstockcollection.com

50

The Bürgenstock Collection is a prestigious luxury hospitality brand with a rich Swiss heritage dating back to 1859. It operates several iconic hotels and resorts across Switzerland and London, offering premium accommodations, spa and wellness services, culinary experiences, and leisure activities. The brand targets discerning travelers seeking unique and high-end hospitality experiences. Technically, the website employs modern JavaScript frameworks such as Vue.js and integrates analytics and cookie consent tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain registration protections, though some security headers and DNSSEC are absent. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-positioned in the luxury hospitality market.

S

Schweizerische Konferenz der kantonalen Erziehungsdirektoren EDK

edk.ch

58

The website www.edk.ch represents the Schweizerische Konferenz der kantonalen Erziehungsdirektoren (EDK), a Swiss governmental body responsible for national coordination in education and cultural policy. The site provides comprehensive information about the Swiss education system, policy updates, and resources for educators and the public. It holds a strong market position as the authoritative source for education coordination in Switzerland, targeting education professionals, policymakers, and citizens interested in education matters. The business model is non-profit and government-funded, focusing on policy coordination and information dissemination. Technically, the website is built using modern frameworks such as Nuxt.js and Vue.js, styled with Tailwind CSS, and integrates Vimeo for video content and Matomo for analytics. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Hosting appears to be Swiss-based, enhancing trust and compliance with local regulations. From a security perspective, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data. However, it lacks a visible cookie consent mechanism and dedicated security or incident response policies, which are areas for improvement to enhance GDPR compliance and user trust. No vulnerabilities or suspicious activities were detected. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security transparency. Strategic recommendations include implementing a cookie consent banner, publishing security policies, and adding vulnerability disclosure information to strengthen the security posture and regulatory adherence.

B

BST Software

bst.software

50

BST Software is a small, established German technology company specializing in custom software development, web development, and web design services primarily serving the Mittelhessen and Rhein Main regions. The company offers a broad range of services including Microsoft .NET software development, modern web technologies such as Laravel, Vue, Angular, and Node.js, as well as CMS-based web design and web hosting. Their market position is supported by longstanding client relationships and certifications such as Microsoft Partner Network membership. Technically, the website is built on WordPress with modern frameworks and libraries, demonstrating good digital maturity. The site is mobile optimized, SEO friendly, and uses SSL encryption, although some security headers are not explicitly detected. No analytics or tracking scripts were found, aligning with their cookiefree zone policy. Security posture is solid with SSL and no visible vulnerabilities, but the absence of explicit security policies and incident response information suggests room for improvement. WHOIS data is unavailable due to TLD restrictions, but the website content and trust indicators support legitimacy. Overall, the site is professional, secure, and compliant with GDPR, though cookie consent mechanisms are not implemented due to their cookiefree stance. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and considering a cookie consent mechanism to improve compliance and user trust.

O

OWNBIT GmbH

ownbit.agency

55

OWNBIT GmbH is a Swiss web agency specializing in creating custom websites and web applications primarily for Swiss small and medium-sized enterprises (KMU). The company emphasizes user-centered digital solutions and has a strong market presence with over 12 years of experience and more than 200 clients. Their key services include bespoke website development, WordPress solutions, and client-specific web portals. The website is professionally designed using modern technologies such as Vue.js and Gridsome, ensuring excellent performance, mobile optimization, and user experience. Security-wise, the site employs HTTPS and cookie consent mechanisms but lacks explicit security policies or incident response information. WHOIS data is privacy-protected, which is typical for small agencies, and no suspicious patterns were detected. Overall, OWNBIT demonstrates a mature digital presence with strong business credibility and trust indicators.

N

n8n GmbH

n8n.io

77

n8n GmbH operates the website n8n.io, offering an AI-powered workflow automation platform that combines no-code speed with code flexibility. The company targets technical teams and businesses seeking to automate processes with AI integration. The platform is positioned as an innovative, source-available tool in the automation market, founded in 2018 and headquartered in Germany. The website demonstrates a high level of digital maturity, employing modern web technologies such as Vue.js and Tailwind CSS, with strong mobile optimization and fast performance. Analytics and marketing tools like Plausible Analytics and Google Tag Manager are used responsibly with a cookie consent mechanism in place. Security posture is strong with HTTPS enforced and domain registration consistent with the business identity. However, explicit privacy, terms of service, and security policies are not prominently found, which slightly impacts compliance and trust scores.

B

Bergpunkt

bergpunkt.ch

66

Bergpunkt is a Swiss-based company specializing in mountain sports education and guided tours, including mountaineering, climbing, ski touring, and snowshoeing. The website presents a professional and well-structured digital presence targeting outdoor enthusiasts interested in mountain activities. The technical infrastructure leverages modern web technologies such as Vue.js and Nuxt.js, with integrations for maps (Leaflet), rich text editing (TinyMCE), and anti-bot protection (Google reCAPTCHA). While the site is well-designed and mobile-optimized, it lacks some critical compliance elements such as a privacy policy and terms of service pages. Security posture is generally good with HTTPS and reCAPTCHA, but the absence of security headers and incident response information indicates room for improvement. Overall, the website is legitimate and trustworthy but would benefit from enhanced compliance and security transparency.

M

MASH

mashmb.ca

58

MASH is a specialized safety program provider focused on healthcare workers in Manitoba, Canada. The company offers comprehensive safety training, consulting services, and certification programs tailored to the healthcare sector. Positioned as a leading safety program in the region, MASH targets healthcare professionals seeking to improve workplace safety and compliance. The website reflects a professional and consistent brand image with a clear focus on its niche market. Technically, the site leverages modern web technologies including Vue.js, Google Tag Manager, and international telephone input libraries, hosted by Rebel.ca Corp. The site is mobile optimized and performs moderately well, though accessibility features could be enhanced. Security posture is strong with HTTPS enforcement and appropriate domain transfer protections, but DNSSEC is not enabled. Privacy compliance is a notable gap, with no visible privacy or cookie policies and no consent mechanisms, which could expose the business to regulatory risks. Contact information is limited to a contact form without explicit emails or phone numbers, reducing direct communication channels. Overall, the website is trustworthy and professional but would benefit from improved privacy and compliance disclosures.

E

EnableMe Foundation

safe-space.io

61

SafeSpace is a digital B2B tool developed by the EnableMe Foundation in collaboration with the University of St. Gallen's Competence Center for Diversity, Disability and Inclusion. It supports employees with non-visible health impairments in making informed decisions about disclosing their conditions at the workplace, aiming to foster inclusion and improve employee satisfaction and productivity. The service is positioned as a niche non-profit offering with strong academic backing and a clear social mission. Technically, the website leverages modern frontend technologies such as Vue.js and PrimeVue, hosted on Hetzner infrastructure, with good mobile optimization and accessibility. Security posture is solid with HTTPS and privacy-conscious analytics, though some security headers and policies could be improved. Privacy and cookie policies are present with consent mechanisms, but no terms of service or explicit security policies were found. WHOIS data shows privacy protection typical for non-profit projects, with no suspicious indicators. Overall, the website is professional, trustworthy, and well-aligned with its mission.

S

Swiss Healthcare Startups

swisshealthcarestartups.com

64

Swiss Healthcare Startups is a prominent networking organization dedicated to fostering collaboration within the Swiss healthcare ecosystem. It connects startups with investors, healthcare providers, and industry partners through events, a digital directory (SHS Cortex), and targeted networking. The organization is well-positioned as a leading entity in Swiss healthcare innovation and startup support. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with a responsive design and moderate performance. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is professional and trustworthy, though improvements in privacy and security documentation are recommended.

S

SWISS TXT AG

swisstxt.ch

55

SWISS TXT AG operates as a competence center within the SRG SSR group, specializing in ICT and accessibility services tailored for media companies and public institutions in Switzerland. The company offers a broad range of services including live transcription, sign language translation, subtitling, audio description, and barrier-free live streaming, positioning itself as a key player in media accessibility and technology innovation. Their market position is strengthened by decades of experience and affiliation with the national public broadcaster SRG SSR. Technically, the website leverages modern web technologies such as Vue.js and integrates Google Tag Manager and Usercentrics for analytics and consent management, respectively. The site is built on the Statamic CMS platform, optimized for mobile devices, and demonstrates good SEO and accessibility practices. Performance is moderate with room for improvement in loading speed. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA for bot protection, and implements a consent management platform, reflecting a mature security posture. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present and should be added to enhance security. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with GDPR, providing clear contact information and comprehensive privacy and cookie policies. The domain registration data aligns well with the business identity, supporting legitimacy. There are no indications of suspicious activity or content safety concerns.

K

kv pro

kvpro.ch

63

kv pro is a Swiss-based educational institution specializing in part-time professional continuing education and training programs. The website positions the company as a reputable provider of career advancement opportunities through various courses, seminars, and personalized consultation services. Their market presence is supported by partnerships with regional educational organizations and a consistent brand identity. Technically, the website employs modern frameworks such as Nuxt.js and Vue.js, integrates analytics and live chat tools, and maintains a good performance and mobile optimization level. Security-wise, the site enforces HTTPS, uses standard security headers, and avoids exposing sensitive data, reflecting a mature security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates a high level of professionalism and trustworthiness, suitable for its target audience of professionals seeking career development.

Crypto-control.org is a Russian-language online platform specializing in monitoring currency exchange rates, particularly for cryptocurrencies and fiat currencies. The service provides users with up-to-date information on exchange offers from verified and reliable exchangers, enabling quick and safe currency conversions. The website targets users interested in finding the best exchange rates and operates primarily in the finance and technology sectors. The business is relatively new, founded in 2024, and is hosted with reputable DNS services such as Cloudflare, with domain registration managed by 1API GmbH. The company is based in Dubai, UAE, as indicated by the contact address.

A

Archiui

archiui.com

69

Archiui is a specialized software platform focused on the digitalization, cataloging, management, and valorization of historical and cultural archives for institutions, companies, and public entities primarily in Italy. The platform offers modular, customizable solutions with integrated services including digital preservation, online publication, and advanced search capabilities. It is supported by Promemoria Group, a recognized partner in cultural heritage digital services. The website demonstrates a mature digital presence with modern technologies such as Nuxt.js and Vue.js, and strong SEO and accessibility features. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, but the professional content and association with Promemoria mitigate immediate trust issues. Overall, Archiui presents as a credible and professional service provider in the archival technology sector.

D

Danesco Trading Ltd.

multirates.org

50

MultiRates is an online platform specializing in monitoring currency exchangers to provide users with the best exchange rates from various exchange points. The service primarily targets Russian-speaking users interested in electronic money and cryptocurrency exchanges. The platform leverages modern web technologies such as Nuxt.js and integrates analytics tools like Yandex Metrika and Google Analytics to track user interactions and improve service quality. The website is professionally designed with good navigation and mobile optimization, offering a positive user experience. Security measures include HTTPS enforcement and domain registration protections, although there is room for improvement in DNS security and security headers. Privacy and cookie policies are absent, which may impact compliance and user trust. Overall, the website presents a moderate risk profile with a solid foundation but requires enhancements in privacy compliance and security best practices.

A

Allchange

allchange.org

64

Allchange.org is a Russian-language online platform specializing in monitoring currency exchangers, including cryptocurrency and fiat currency exchange services. The website provides users with up-to-date exchange rates, user reviews, and ratings for over 400 exchangers, positioning itself as a niche leader in the currency exchange monitoring market. Founded in 2019, the platform targets users seeking reliable and current information on currency exchange services. Technically, the website is built using modern JavaScript frameworks such as Vue.js and Nuxt.js, hosted with Cloudflare DNS services, and demonstrates moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and has domain transfer protections enabled, but lacks DNSSEC and some advanced security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Contact information is limited to contact forms and a Telegram support link, with no explicit company emails or phone numbers published. Overall, the website is professional and trustworthy within its niche but could improve in privacy compliance and security practices.

D

Datatrans AG

datatrans.ch

61

Datatrans AG is a Swiss-based company specializing in advanced payment solutions tailored for companies demanding high-performance and flexible payment platforms. Their service model emphasizes integration freedom with various financial partners, positioning them as a key player in the payment processing sector within Switzerland and potentially neighboring regions. The website reflects a professional and consistent brand image, targeting business clients seeking reliable payment infrastructure. Technically, the site employs modern JavaScript frameworks such as Vue.js, integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, and Ahrefs, and uses Cookiebot for GDPR-compliant cookie management. The site is well-optimized for mobile and SEO, with good performance metrics and accessibility features. Security-wise, the site enforces HTTPS, uses CSRF protection cookies, and provides a comprehensive cookie consent mechanism, though it lacks explicit security policy or incident response pages. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the site demonstrates a mature digital presence with good privacy compliance and security posture, suitable for its business domain.

E

ExchangeRates.Pro

exchangerates.pro

60

ExchangeRates.Pro is a specialized online platform offering real-time price comparison for Bitcoin and 50 other cryptocurrencies, aggregating offers from a wide range of exchanges, brokers, and P2P marketplaces globally. The platform supports 204 currencies and 571 payment systems, targeting cryptocurrency traders and investors seeking optimal exchange rates. Technically, the website employs modern frontend technologies such as Vue.js and Element UI, with integration of Google Analytics and ShareThis for tracking and social sharing. The site is well-designed with good navigation and mobile optimization, though accessibility could be improved. Security-wise, the site uses HTTPS with good SSL configuration and basic security headers, but lacks published security policies, vulnerability disclosure, and contact information for incident response. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is legitimate and functional but would benefit from enhanced privacy and security transparency.

M

Metka

metka.cc

68

Metka is a Russian-based online service specializing in electronic currency and cryptocurrency wallet top-ups. The platform supports over 50 types of cryptocurrencies and multiple fiat currencies, offering users a convenient and secure way to fund their wallets around the clock. The website is built using modern frontend technologies such as Vue.js and Nuxt.js, with integrated analytics via Yandex Metrika and customer support through JivoSite chat. The business targets crypto users and investors seeking reliable exchange and wallet funding services. Security measures include HTTPS enforcement and standard security headers, though explicit incident response and vulnerability disclosure policies are absent. Privacy and cookie policies exist but are basic in scope. Overall, the site presents a professional and trustworthy front for a small finance-focused business.

K

KoenigTech Ltd

koenigfinance.com

64

KoenigTech Ltd operates the KoenigFinance platform, providing comprehensive software solutions tailored for the financial services sector including banks, payment service providers, electronic money institutions, crypto exchanges, and corporate treasuries. The company positions itself as a flexible and secure technology provider with a strong focus on customizable financial systems and business consulting services. Their market presence is supported by client testimonials from regulated entities and an ISO 9001:2015 certification, indicating a commitment to quality standards. Technically, the website leverages modern web technologies including Vue.js, jQuery, and Google reCAPTCHA for security. The platform offers a rich user experience with responsive design and multiple interactive forms for contact, demo requests, support, and recruitment. While the site uses HTTPS and encryption best practices, it lacks visible security headers and formal privacy or cookie policies, which are important for compliance and trust. Security posture is generally strong with encrypted connections and bot protection on forms, but the absence of WHOIS domain registration data raises concerns about domain legitimacy and transparency. No incident response or vulnerability disclosure policies are published, which could be improved to enhance security readiness. Overall, KoenigFinance presents as a credible and professional financial software provider with solid technical infrastructure but should address compliance gaps and domain registration transparency to strengthen trust and security assurance.

iEXExchanger FZCO offers a professional and comprehensive software solution for launching automated cryptocurrency and electronic currency exchange platforms. The company positions itself as a trusted provider with over 300 active exchange services using its platform, targeting businesses and operators in the cryptocurrency exchange market. Their offerings include premium licenses, Telegram-based exchange bots, and additional services such as company registration and SEO support. Technically, the website is built on modern frameworks including Vue.js, Nuxt.js, and Laravel, with Cloudflare DNS and a focus on performance and mobile optimization. Security is a key focus, with multiple layers of protection including 2FA, CAPTCHA, and protections against common web vulnerabilities. However, the site lacks explicit privacy and cookie policies, and incident response information is not publicly available. Overall, the platform demonstrates a mature security posture and a professional digital presence, though improvements in privacy compliance and transparency are recommended.

H

hep Verlag

hep-verlag.ch

66

hep Verlag is a Swiss-based educational publishing company specializing in academic and professional training materials. The website presents a professional and modern design, targeting students and educators primarily within Switzerland. The business operates in the education sector with a medium-sized market presence. Technically, the site uses modern JavaScript frameworks such as Vue.js and Nuxt.js, along with Google Tag Manager for analytics and Adobe Typekit for fonts, indicating a contemporary digital infrastructure. However, there is a lack of visible privacy and cookie policies, and no explicit contact information was found in the provided HTML content. Security posture appears minimal with no detected security headers or incident response policies. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security best practices.

P

Proton AG

simplelogin.io

74

SimpleLogin is a privacy-focused, open source email aliasing service operated by Proton AG, a Swiss company. It enables users to create and manage email aliases to protect their real email addresses from spam, phishing, and tracking. The service offers browser extensions, mobile apps, and supports custom domains, positioning itself as a niche leader in privacy-enhancing email solutions. The website is professionally designed, content-rich, and highly accessible, reflecting a mature digital presence. Technically, it uses modern web technologies including Hugo, Vue.js, and Bootstrap, and is hosted on reputable infrastructure with Cloudflare DNS and Proton/UpCloud servers. Security posture is strong with HTTPS, open source transparency, and advanced features like PGP encryption and 2FA, though DNSSEC and security headers could be improved. Privacy compliance is good with a comprehensive privacy policy and GDPR adherence, but lacks a cookie consent mechanism. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

G

GMR Sports

gmrsports.in

68

GMR Sports operates as a sports management and promotion entity primarily focused on Indian sports teams such as the U.P. Yoddha Pro Kabaddi team and the Telugu Yoddhas Ultimate Kho Kho team. The website serves as the official platform for disseminating news, updates, and information about these teams and related sports activities. The business is positioned as a medium-sized sports organization under the larger GMR Group umbrella, targeting sports fans and enthusiasts in India and globally. Technically, the website employs modern web technologies including Vue.js and integrates Google Tag Manager and Google Analytics for tracking and marketing purposes. The site is well-designed with consistent branding and good mobile optimization, although accessibility features could be improved. Security-wise, the site uses HTTPS and implements several security headers, indicating a good security posture. However, the absence of explicit privacy, cookie, and terms of service policies, as well as lack of contact information, reduces privacy compliance and user trust. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and compliance disclosures.

B

Fast Cryptocurrency Exchange at www.btcchange24.com - BTCChange24

btcchange24.com

60

BTCChange24 is a cryptocurrency exchange platform offering instant and secure trading services for Bitcoin, Ethereum, and other cryptocurrencies. The website presents a professional and modern interface built with Nuxt.js and Vue.js technologies, targeting cryptocurrency traders and users seeking competitive exchange rates. However, the absence of WHOIS registration data and lack of visible privacy, cookie, or terms of service policies raise concerns about transparency and regulatory compliance. The technical infrastructure is modern but lacks visible security headers and explicit security policies, which could expose the platform to potential risks. Overall, while the platform appears functional and user-friendly, the lack of critical business and security information suggests a moderate risk profile requiring further due diligence.

C

Cotton Bureau

cottonbureau.com

67

Cotton Bureau operates a curated e-commerce marketplace specializing in high-quality graphic apparel and merchandise. The platform empowers designers, illustrators, creative communities, and brands to sell their designs through on-demand printing, pre-order campaigns, and stock products. The company has established a strong market position with notable partners and a reputation for quality and customer service. Technically, the website is built on modern frameworks such as Vue.js, integrates secure payment processing via Stripe, and employs tracking and analytics tools like Google Analytics and Facebook Pixel. Security posture is strong with HTTPS, CSRF protection, and reCAPTCHA, though improvements can be made in cookie consent and vulnerability disclosure. Overall, Cotton Bureau presents a professional, trustworthy, and technically sound online presence.

M

Monetory

monetory.io

66

Monetory.io is a specialized online platform launched in 2020 that provides live monitoring and comparison of cryptocurrency exchange offers, focusing on P2P and private crypto deals. The service targets cryptocurrency traders and investors seeking fast and easy ways to buy, sell, or swap cryptocurrencies. The platform leverages modern web technologies including Vue.js and integrates popular analytics and marketing tools such as Google Tag Manager, Yandex Metrika, and Facebook Pixel. The domain is privacy protected but registered with a reputable registrar and uses Cloudflare DNS, indicating a legitimate operation within the crypto sector. However, the lack of visible privacy and cookie policies, as well as absence of direct contact information, limits transparency and compliance visibility.

M

Mokveza LTD

1xbet.com

52

1XBET Finland is an established online gambling and betting platform offering a wide range of services including sports betting, live betting, casino games, and other gaming options. The website targets adult users interested in online betting, providing localized content and multiple language support. The business operates under Mokveza LTD, a Cyprus-registered company, which is common in the gambling industry for regulatory and operational reasons. The domain has been active since 2018, indicating a mature presence in the market. Technically, the website employs modern JavaScript frameworks such as Vue.js and Nuxt.js, leveraging CDN services for content delivery and performance optimization. The site is mobile-optimized and demonstrates good SEO practices. Security measures include HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not prominently available. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is indicated by the presence of privacy and cookie policies, though contact information for privacy or security concerns is limited. The site is not blocked by WAF or security challenges, allowing full content access for users. Overall, the platform presents a moderate to high trust level for users seeking online betting services, with recommendations to enhance transparency around security and privacy contacts to further improve trust and compliance.

O

Obmify

obmify.com

56

Obmify is a small UK-based fintech startup specializing in cryptocurrency exchange services targeted primarily at Ukrainian users. The platform aggregates and verifies crypto exchange services, offering users a trusted environment to buy and sell cryptocurrencies with local currency support. The website is built on modern technologies such as Vue.js and Nuxt.js, providing a responsive and user-friendly experience. While the technical infrastructure is solid and the site is well-optimized for SEO and mobile use, there is a lack of explicit privacy, cookie, and terms of service policies, which impacts compliance and trust. Security posture is good with HTTPS and domain transfer protections, but DNSSEC is not enabled and no vulnerability disclosure policy is published. Contact information is available via structured data, and the company maintains an active social media presence. Overall, Obmify presents as a legitimate and professional service with room for improvement in privacy and security transparency.

Linkmanager.ai is a technology-focused SaaS platform specializing in link management, tracking, and optimization for marketing purposes. The platform targets marketers, content creators, and businesses seeking to enhance their link performance through smart targeting, real-time analytics, and custom domain branding. The website demonstrates a modern technical infrastructure built on Vue.js and hosted with Cloudflare DNS, offering a responsive and user-friendly experience. Security posture is adequate with HTTPS enabled and domain transfer protection, though improvements are needed in DNSSEC and security headers. Privacy compliance is currently lacking, with no visible privacy or cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

ShareInvestor Thailand is a specialized service provider offering investor relations and tailored web design services primarily targeted at corporate clients and investors in Thailand. The website presents a professional but basic digital presence focused on promoting their IR services, annual reports, and web design expertise. Technically, the site leverages modern JavaScript frameworks such as Nuxt.js and Vue.js, integrates cloud storage via AWS S3, and employs Google Analytics and Tag Manager for analytics and tracking. Security measures include HTTPS enforcement and a strict Content Security Policy, along with reCAPTCHA v3 for bot mitigation. However, the absence of explicit privacy, cookie, and terms of service policies, as well as missing contact information, limits the site's compliance and trustworthiness. The WHOIS data is unavailable, which raises concerns about domain registration transparency and legitimacy. Overall, the site is functional and moderately secure but requires improvements in privacy compliance and business transparency to enhance trust and regulatory adherence.

C

Creative Tim

creative-tim.com

69

Creative Tim is a well-established technology company specializing in UI kits, templates, dashboards, and AI-powered web development tools. With a large user base exceeding 2.7 million registered users and millions of downloads, the company holds a strong market position in the web development ecosystem. Their offerings span popular frameworks such as React, Vue.js, Angular, Laravel, and Tailwind CSS, catering to developers and designers seeking to accelerate website and application development. The business model includes product sales, subscription-based access to premium content via the Creative Tim Club, and AI automation tools, reflecting a diversified revenue stream.

L

Lotus Cars

lotuscars.com

62

Lotus Cars is a premium automotive manufacturer specializing in high-performance sports cars and hypercars with a rich heritage dating back to 1948. The company emphasizes revolutionary automotive technology and racing pedigree, targeting automotive enthusiasts and luxury car buyers globally. The website serves as an official brand portal offering detailed model information, vehicle configurators, and community engagement features. Technically, the site is built on a modern stack including Vue.js and Sitecore CMS, delivering fast performance, excellent mobile optimization, and good accessibility. Security posture is strong with HTTPS enforcement and security headers, though some advanced security policies and incident response information are not publicly disclosed. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the website content and external references.

L

likumuizsekotajs.lv

likumuizsekotajs.lv

53

Likumu izsekotājs is a Latvian-focused legal technology service that automates the tracking of legislative changes, specifically targeting decisions made by the Cabinet of Ministers and Saeima sessions. The platform leverages artificial intelligence to match user-defined topics with relevant government decisions, streamlining the monitoring process for organizations such as banks, law firms, and municipalities. The service is currently in a pilot phase, inviting large organizations to participate and provide feedback before public release. Technically, the website employs modern frontend technologies including Vue.js and ES modules, delivering a responsive and user-friendly experience. While the site demonstrates good design and content quality, there is room for improvement in security posture, particularly in implementing security headers and cookie consent mechanisms. The absence of explicit contact emails and phone numbers limits direct communication channels, relying instead on a contact form. From a security perspective, the site is accessible without WAF or blocking mechanisms, but lacks several best practices such as security headers and vulnerability disclosure information. The WHOIS data indicates a Latvian natural person as registrant, consistent with the website's regional focus, though detailed organizational information is not provided. Overall, the website presents a moderate risk profile with no critical vulnerabilities detected but with opportunities to enhance trust and compliance. Strategically, the company should prioritize strengthening its security framework, enhancing privacy compliance, and expanding contact options to build greater trust with its target enterprise audience. These improvements will support its positioning as a reliable legal-tech solution in the Latvian market.

S

S-Communication Services GmbH

sparkassen-shop.de

62

The Sparkassen-Shop website is an e-commerce platform operated by S-Communication Services GmbH, offering financial products and services primarily related to the Sparkasse banking group. The site targets Sparkasse customers and financial service users in Germany, providing products such as TAN generators, chip card readers, financial software, and industry reports. The business model focuses on retailing specialized financial hardware and software through an online storefront. The website demonstrates consistent branding aligned with Sparkasse and maintains a professional presentation with clear navigation and relevant content. Technically, the site employs modern web technologies including jQuery, Bootstrap, Vue.js, and Google Tag Manager, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices in place. Security posture is solid with enforced HTTPS, secure form validation, and cookie consent mechanisms, although explicit security headers are not detected and no incident response contacts are published. Privacy compliance is strong, with comprehensive privacy and cookie policies in German and GDPR-aligned consent management. Overall, the website is trustworthy and professionally managed, with no signs of blocking or malicious activity.

S

SCGJWD Logistics

scgjwd.com

71

SCGJWD Logistics is a leading logistics and supply chain company operating primarily in the ASEAN region, with a strong presence in Thailand. The company offers a comprehensive range of services including integrated logistics for B2B and B2C clients, international logistics, logistics infrastructure, and industry-specific solutions. Their website reflects a mature business with detailed service offerings, sustainability initiatives, and investor relations information, positioning them as a major player in the transportation sector. Technically, the website is built on modern frameworks such as Vue.js, incorporates performance optimizations like lazy loading, and uses trusted third-party services including OneTrust for privacy compliance and Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional presentation and business transparency. Strategic recommendations include enhancing security headers, publishing incident response contacts, and maintaining regular audits of third-party scripts to further strengthen security and compliance.

S

SouthXChange

southxchange.com

56

SouthXChange operates as a cryptocurrency exchange platform offering real-time trading services for bitcoin and other digital currencies. The website positions itself as a fast and secure platform targeting cryptocurrency traders and investors. However, the content is minimal and primarily serves as a gateway to the main exchange platform hosted on a related domain. The business model focuses on providing exchange services with additional features like crypto games, though details are sparse. Technically, the site uses modern frontend technologies including Vue.js and Vuetify, indicating a contemporary web development approach. The site loads moderate content with basic mobile optimization and accessibility features. However, there is a lack of comprehensive SEO and performance optimization indicators. No CMS or hosting provider information is discernible from the provided data. From a security perspective, the site lacks visible security headers and does not provide privacy, cookie, or terms of service policies, which are critical for compliance and user trust. No contact or incident response information is available, limiting transparency. The WHOIS data for the subdomain is unavailable, which is typical for subdomains but reduces domain registration transparency. No WAF or blocking mechanisms are detected, and the site is accessible. Overall, the website presents a basic but functional front for a cryptocurrency exchange service. Key improvements are needed in privacy compliance, security best practices, and business transparency to enhance trust and regulatory adherence.

V

Vino Global Limited

coinex.com

71

CoinEx is a global cryptocurrency exchange operated by Vino Global Limited, founded in 2016. The platform offers a professional trading environment supporting major cryptocurrencies such as BTC, ETH, DOGE, LTC, and XRP, featuring a high-speed matching engine and fast deposit and withdrawal processes. The website targets global crypto traders and investors, providing multi-language support and a broad range of crypto assets. Technically, the site leverages modern web technologies including Vue.js and Element UI, with good SEO and mobile optimization, though accessibility features are basic. Security posture is solid with HTTPS enforcement and standard security headers, but lacks publicly available detailed security policies or incident response information. WHOIS data is missing, which raises some legitimacy concerns, but the professional branding and active social media presence support trust. Overall, CoinEx presents as a credible and professional crypto exchange platform with room for improvement in transparency and security disclosures.