Security Directory

V

visitBerlin

visitberlin.de

51

visitBerlin.de is the official tourism portal for Berlin, offering comprehensive information on sightseeing, hotels, events, tickets, and travel offers. The website targets tourists and visitors seeking detailed and reliable travel information about Berlin. It holds a strong market position as an authoritative source for Berlin tourism, providing multilingual content and a user-friendly experience. The business model focuses on tourism promotion and ticket sales, supported by a large-scale digital platform.

Q

Qualtrics

qualtrics.com

76

Qualtrics is a leading enterprise software company specializing in experience management solutions that leverage AI to optimize customer, employee, and market research experiences. The company offers a SaaS platform widely recognized for its comprehensive suite of tools designed to improve business outcomes through actionable insights. The website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding consistency. Technically, the site is built on Drupal 10 with modern JavaScript frameworks and integrates advanced personalization and consent management technologies, ensuring a fast and responsive user experience across devices. Security posture is robust, with HTTPS enforced, multiple security headers, and compliance with major standards such as ISO 27001 and HIPAA. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, Qualtrics demonstrates high business credibility and trustworthiness, supported by certifications and active community engagement.

F

Fundraising Regulator

fundraisingregulator.org.uk

73

The Fundraising Regulator is an independent UK regulatory body overseeing charity fundraising standards across England, Wales, and Northern Ireland. It aims to improve fundraising practices and restore public trust, offering services such as complaint handling, registration, and proactive regulation. The website is professionally designed, well-structured, and targets charitable organizations, fundraisers, and the general public interested in ethical fundraising. Technically, the site is built on Drupal 10, uses Google Tag Manager for analytics, and implements cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though additional security headers and a public security policy could enhance trust. Overall, the site is trustworthy, compliant with privacy regulations, and provides comprehensive information relevant to its sector.

R

Race Forward

raceforward.org

66

Race Forward is a non-profit organization dedicated to advancing racial justice through policies, institutions, and culture. The organization provides training, resources, and advocacy to communities and public institutions, with a strong focus on government partnerships such as the Government Alliance on Race and Equity (GARE) and the Federal Initiative to Govern for Racial Equity (FIRE). Their market position is that of a recognized leader in racial equity advocacy with a medium-sized organizational footprint. The website is built on Drupal 10, leveraging modern web technologies and Google Tag Manager for analytics, indicating a mature digital infrastructure. The site is well-designed, mobile-optimized, and accessible, providing a professional user experience with clear navigation and relevant content. Security posture is good with HTTPS enabled and secure forms, though the absence of security headers and explicit cookie consent mechanisms are areas for improvement. WHOIS data is unavailable due to privacy protection, which is typical for non-profits, and the website content and external partnerships support the legitimacy of the domain. Overall, the site demonstrates a strong commitment to its mission with professional digital presence but could enhance privacy compliance and security best practices.

J

Joseph Rowntree Foundation

jrf.org.uk

52

The Joseph Rowntree Foundation is a well-established UK non-profit organization dedicated to reducing poverty and supporting social justice. Their website reflects a professional and comprehensive digital presence, offering extensive research, reports, and partnership opportunities. The organization targets policymakers, researchers, and the general public interested in poverty alleviation. Technically, the site is built on Drupal 10, employs modern web standards, and is optimized for mobile devices. Security posture is strong with HTTPS and consent management, though explicit security headers should be verified server-side. The WHOIS data query failed due to querying the subdomain instead of the domain, but the website's legitimacy is supported by charity registration numbers and consistent branding. Overall, the site demonstrates a mature digital infrastructure and trustworthy business presence.

D

DNS Operations, Analysis, and Research Center (DNS-OARC)

dns-oarc.net

56

DNS-OARC is a well-established non-profit organization founded in 2004 that serves as a trusted platform for DNS operators, implementors, and researchers to collaborate on DNS operational issues, share data, and coordinate responses to attacks. The organization hosts workshops, provides analysis, and develops tools to support the DNS community. Their website reflects a professional and community-oriented approach with regular event announcements and resources for members. Technically, the site is built on Drupal 10 with good mobile optimization and accessibility, though some security best practices such as DNSSEC and security headers are not fully implemented. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. The domain registration is consistent and legitimate, with a long history and appropriate domain status protections. Overall, DNS-OARC demonstrates strong business credibility and community trust but could improve its security posture and privacy compliance.

A

AMAG

media-corner.ch

55

AMAG Medienportal serves as the official media and press release platform for AMAG, a major automotive group in Switzerland. The portal provides news, press releases, and media resources for AMAG and its associated automotive brands including Volkswagen, Audi, SEAT, ŠKODA, CUPRA, and Volkswagen Nutzfahrzeuge. The website targets media professionals, partners, and customers interested in automotive industry developments and AMAG's corporate activities. The business model focuses on corporate communication and brand promotion within the automotive and sustainable mobility sectors. Technically, the website is built on Drupal 10 CMS, utilizing modern JavaScript libraries such as jQuery and lightGallery, and integrates Google Tag Manager for analytics. The site is mobile-optimized, accessible, and includes a comprehensive cookie consent mechanism powered by OneTrust, reflecting a mature digital infrastructure. Performance is moderate, with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and employs cookie consent controls, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data confirms the domain's legitimacy and consistency with the business claims, reinforcing trustworthiness. Overall, AMAG Medienportal is a professional, secure, and compliant corporate media platform with strong branding consistency and good user experience. Strategic improvements could include enhancing security headers, publishing security policies, and adding incident response contacts to further strengthen trust and compliance.

E

European Union

europa.eu

70

The European Union's official website serves as a comprehensive portal providing detailed information about the EU's functions, principles, priorities, history, and member states. It targets a broad audience including EU citizens, researchers, policymakers, and the general public. The site is authoritative and well-positioned as the primary source of EU-related information, offering multilingual content and extensive contact options. Technically, the website is built on Drupal 10, leveraging modern web technologies and EU-specific webtools services. It demonstrates excellent mobile optimization, accessibility, and SEO practices, ensuring a high-quality user experience. Hosting is likely managed by European Commission infrastructure, ensuring reliability and performance. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, reflecting good privacy compliance aligned with GDPR. While some standard security headers are present, there is room for improvement by adding additional headers like Content-Security-Policy. No vulnerabilities or exposed sensitive data were detected, indicating a strong security posture. Overall, the website is highly trustworthy and professional, with a strong focus on transparency, user privacy, and accessibility. The lack of WHOIS data is typical for EU subdomains and does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure mechanism to further strengthen trust and security.

A

AMAG Press

vwpress.ch

48

The website www.vwpress.ch serves as the official Volkswagen media portal for Switzerland, operated by AMAG Press. It provides comprehensive press releases, event information, and media stories related to Volkswagen vehicles and brand activities targeted primarily at media professionals and Volkswagen enthusiasts in Switzerland. The site is well-branded, consistent, and professionally maintained, reflecting a medium-sized corporate entity within the transportation and media sectors. Technically, the site is built on Drupal 10 CMS, leveraging modern JavaScript libraries and cookie consent mechanisms, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent implemented, though explicit security policies and incident response information are not published. Overall, the site is trustworthy, with no suspicious WHOIS data or blocking mechanisms detected.

H

Hôpitaux Universitaires Genève

hug.ch

65

Hôpitaux Universitaires Genève (HUG) is a prominent university hospital in Geneva, Switzerland, providing a wide range of medical services including surgery, outpatient consultations, and specialized care. It also engages in research and education in close collaboration with the University of Geneva Faculty of Medicine. The website reflects a well-established institution with a strong market position as a national and international reference in healthcare. The target audience includes patients, their families, and healthcare professionals. The business model is public healthcare with academic and research components. Technically, the website is built on Drupal 10, uses modern web technologies, and integrates analytics via Piwik PRO. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS and no obvious vulnerabilities, though it lacks some public security policies and cookie consent mechanisms. WHOIS data confirms legitimacy and consistency with the institution's identity. Overall, the website is professional, trustworthy, and comprehensive, serving its audience effectively.

A

Advanced Sterilization Products, Inc.

sterradsterilityguide.com

63

The STERRAD Sterility Guide website serves as a specialized online tool for healthcare professionals and customers of STERRAD sterilization systems, providing an up-to-date database of devices compatible with STERRAD claims. The site is professionally designed using Drupal 10 CMS, with a clear focus on usability, mobile optimization, and accessibility. It integrates standard privacy and cookie consent mechanisms, reflecting a mature approach to user data protection. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, despite the professional appearance and consistent branding. Security posture is generally good with HTTPS enforced and secure login forms, but the lack of explicit security headers and published security policies suggests room for improvement. Overall, the site is a credible resource within the healthcare sterilization niche but would benefit from enhanced transparency around domain registration and security policies.

A

Advanced Sterilization Products, Inc.

asp.com

71

Advanced Sterilization Products, Inc. (ASP) is a leading healthcare company specializing in infection prevention and sterilization products. The company offers a broad portfolio including terminal sterilization systems, sterilization monitoring, and high-level disinfection solutions, targeting healthcare professionals and institutions. ASP is positioned as a market leader with strong branding and a comprehensive product offering, supported by its parent company Fortive Corporation. The website reflects a professional and well-structured digital presence with multi-regional support and extensive product information. Technically, the website is built on Drupal 10 with modern web technologies such as jQuery, Bootstrap, and AOS for animations. It demonstrates good performance, mobile optimization, and accessibility features. The site uses HTTPS and integrates tracking tools like Google Tag Manager and Facebook Pixel, with clear privacy and cookie policies indicating GDPR compliance. From a security perspective, the site enforces HTTPS and secure form handling but lacks explicit security headers and a public security policy or incident response page. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data reduces domain trustworthiness, but the strong corporate branding and external references mitigate concerns. Overall, the website is a secure, professional, and compliant digital asset for ASP, with recommendations to enhance security headers and publish a vulnerability disclosure policy to further improve trust and security posture.

T

Trinseo

trinseo.com

76

Trinseo is a specialty material solutions provider focused on partnering with companies to deliver innovative and high-quality materials. The website presents a professional and well-structured digital presence built on Drupal 10, incorporating modern compliance tools such as Cookiebot for GDPR and cookie consent management. The technical infrastructure includes Google Tag Manager and bot detection scripts, indicating a mature digital setup. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response contacts are absent. The lack of WHOIS registration data is a notable anomaly that slightly reduces trust but does not overshadow the overall legitimacy indicated by the website content and compliance features. Strategic recommendations include enhancing security headers, publishing security policies, and improving transparency with contact information for security incidents.

V

Ville de Genève

geneve.ch

72

The website www.geneve.ch is the official digital presence of the City of Geneva, Switzerland. It serves as a comprehensive portal for municipal information, including administrative procedures, city news, cultural events, and public services. The site targets residents, tourists, businesses, and associations, providing clear and accessible content in French with multilingual support via Weglot. The business model is that of a public sector municipal government, focusing on transparency and citizen engagement. Technically, the site is built on Drupal 10, leveraging modern web technologies such as Google Tag Manager for analytics and Weglot for translations. The site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with room for optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms, though some security headers are not explicitly detected. From a security and compliance perspective, the site includes a comprehensive privacy policy and cookie consent banner aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly available. WHOIS data confirms the domain's legitimacy and consistency with the official City of Geneva identity, supporting high trustworthiness. Overall, the website is professional, trustworthy, and well-maintained, serving its public sector role effectively. Strategic improvements could include publishing explicit security policies and enhancing security headers to further strengthen the security posture.

H

Hôpitaux Universitaires Genève

divisionprivee-hug.ch

62

The website represents the Division privée of the Hôpitaux Universitaires Genève (HUG), a premier university hospital in Switzerland. It offers high-end private medical care combining university-level medical expertise with premium hospitality services. The site targets patients seeking personalized and comfortable healthcare services in Geneva. The business model focuses on delivering coordinated expert medical treatments with concierge and hotel-like services, positioning itself as a leader in private healthcare within the Swiss market. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies such as Font Awesome 6 and Google reCAPTCHA for security. Analytics are handled via Piwik PRO, indicating a privacy-conscious approach. The site is mobile-optimized and accessible, with good SEO basics, though some improvements in privacy and cookie policy disclosures are needed. Security posture is solid with HTTPS enforced and secure form handling, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy consistent with the hospital's identity. Overall, the website is professional, trustworthy, and well-maintained, but could enhance compliance by adding privacy and cookie policies and improving security transparency.

F

Fondation privée des HUG

fondationhug.org

63

Fondation privée des HUG is a well-established non-profit foundation linked to the Hôpitaux universitaires de Genève and the University of Geneva Faculty of Medicine. It focuses on funding essential medical research and healthcare quality projects through transparent and rigorous management of donations. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, it uses Drupal 10 CMS and integrates Piwik PRO for analytics, indicating a modern and privacy-conscious infrastructure. Security posture is strong with HTTPS and security headers, though DNSSEC is not enabled and cookie consent mechanisms are missing, representing areas for improvement. The domain registration is consistent and appropriate for the organization's history, enhancing trustworthiness. Overall, the site is professional, trustworthy, and serves its philanthropic mission effectively.

O

ODEC - Schweizerischer Verband der dipl. HF

odec.ch

57

ODEC is a Swiss non-profit umbrella association representing graduates of Higher Vocational Schools (HF) across all disciplines. With over 14,000 members, it provides networking, career services, and promotes recognition of HF diplomas to enhance professional opportunities. The website is well-structured, professionally designed, and targets HF graduates and students in Switzerland. Technically, the site is built on Drupal 10, uses modern analytics tools like Google Analytics and Microsoft Clarity, and implements GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the domain registration aligns well with the organization's identity, indicating legitimacy and trustworthiness.

C

Careerplus

careerplus.ch

63

Careerplus is a leading Swiss personnel consultancy specializing in the recruitment of qualified professionals for permanent and temporary positions across various sectors including finance, healthcare, energy, and manufacturing. The company targets job seekers and employers within Switzerland, offering services such as recruitment, salary consulting, assessments, and interim management. The website is professionally designed, multilingual, and provides a comprehensive job search experience with detailed filtering options. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS and secure forms, though explicit security and privacy policies are not prominently published. Overall, the domain registration aligns well with the business claims, supporting legitimacy and trustworthiness.

T

Travail.Suisse Formation

ts-formation.ch

54

Travail.Suisse Formation is a Swiss non-profit organization focused on improving access to public continuing education for all adults, especially targeting people with disabilities and low qualifications. It operates under a government performance agreement with the Swiss State Secretariat for Education, Research and Innovation (SBFI). The website is professionally designed using Drupal 10, with good mobile optimization and accessibility features. It provides comprehensive information about its projects, partners, and news related to inclusive education. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The WHOIS data aligns well with the website's claims, indicating a legitimate and consistent registration. Overall, the site is trustworthy, compliant with privacy regulations, and serves as a credible resource in the Swiss education sector.

U

Università della Svizzera italiana

innosuisse-training-ticino.ch

65

The website innosuisse-training-ticino.ch represents the Innosuisse Entrepreneurship Training program offered in the Ticino region of Switzerland. It is organized by the Università della Svizzera italiana (USI) on behalf of Innosuisse, the Swiss innovation agency. The program offers entrepreneurship training modules aimed at startups and innovators, coordinated by the USI Startup Centre in collaboration with SUPSI. The site reflects a regional educational initiative with strong institutional backing and clear target audience focus. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies including jQuery, Google Tag Manager, Microsoft Clarity, and Usercentrics for cookie consent management. The site is mobile optimized with good SEO and accessibility basics, though some advanced accessibility features could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks published security policies, incident response contacts, or vulnerability disclosure information. No security headers were detected in the provided data, suggesting room for improvement in hardening. No vulnerabilities or exposed sensitive data were found. Overall, the security posture is adequate but could be enhanced with formal policies and additional technical controls. The domain registration data aligns well with the website's educational and governmental affiliations, indicating high legitimacy and trustworthiness. Contact information is clearly provided, and social media presence is consistent with official university channels. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include publishing security and incident response policies, adding security headers, and maintaining regular security audits to improve trust and compliance.

H

Hôpitaux Universitaires Genève

hug-ge.ch

65

Hôpitaux Universitaires Genève (HUG) is a leading university hospital in Geneva, Switzerland, providing comprehensive medical services including surgery, outpatient consultations, and specialized care. It also serves as a center for research and education in close collaboration with the University of Geneva Faculty of Medicine. The website reflects a mature digital presence with extensive content targeting patients, healthcare professionals, and researchers. It maintains a strong market position as a national and international reference institution in healthcare. Technically, the site is built on Drupal 10, uses modern web fonts and icons, and integrates Piwik PRO for analytics, indicating a modern and privacy-conscious infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant. Contact information is clearly provided, including phone numbers and physical addresses. Social media presence is robust across major platforms. Overall, the website is professional, trustworthy, and well-optimized for users.

S

Safran Helicopter Engines

safran-helicopter-engines.com

66

Safran Helicopter Engines is a leading global manufacturer specializing exclusively in rotorcraft turbines, operating under the Safran Group umbrella. With a workforce of approximately 6,100 employees and a customer base spanning over 2,500 clients in 155 countries, the company maintains a strong market position supported by a comprehensive product range and extensive service network. The website reflects a mature digital presence built on Drupal 10, incorporating modern analytics and consent management tools, ensuring compliance with privacy regulations. Security posture is robust with HTTPS enforcement and standard security headers, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and business credibility, aligning well with the company's industry stature.

K

KV Business School Zürich

kv-business-school.ch

62

KV Business School Zürich is a professional educational institution specializing in continuing education and business training programs. The website targets professionals and students seeking to enhance their business skills. The institution appears to have a solid regional presence in Zurich, Switzerland, with a medium-sized operation. The website is built on Drupal 10, leveraging modern web technologies and third-party services such as Cookiebot for cookie consent, Google Tag Manager, Hotjar, and LogRocket for analytics and user experience monitoring. The design is professional and mobile-optimized, providing a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. Privacy compliance is partial, with no visible privacy policy or terms of service pages, which should be addressed to improve compliance and user trust. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and security documentation.

I

Imagine Canada

imaginecanada.ca

56

Imagine Canada is a well-established Canadian nonprofit organization founded in 2004, dedicated to supporting the charitable sector through advocacy, research, capacity-building, and membership services. The organization positions itself as a leader in the nonprofit space, offering key services such as charity accreditation, social investment networks, funding research platforms, and HR resources. Their target audience includes nonprofit organizations, charities, sector leaders, and supporters across Canada. The website reflects a professional and consistent brand image with comprehensive content tailored to its audience. Technically, the website is built on Drupal 10 with modern web technologies including jQuery and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, and Clearbit. The site is mobile-optimized, accessible, and performs moderately well. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with data protection regulations. From a security perspective, the site uses HTTPS and has domain registration protections in place but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious patterns were detected. The domain registration data is consistent with the organization's identity and history, supporting high legitimacy. Overall, Imagine Canada’s website demonstrates a mature digital presence with strong business credibility, good privacy compliance, and a solid security posture, though improvements could be made in security policy transparency and DNS security enhancements.

W

Web Accessibility Certificate Austria

waca.at

53

The Web Accessibility Certificate Austria (WACA) website provides a specialized certification service for web accessibility compliance based on international standards such as WCAG 2.2 and the European norm EN 301 549. The service is unique in Austria and recognized across Europe, supported by the independent certification body TÜV Austria. The website targets organizations seeking official validation of their digital accessibility efforts, offering tiered certification levels and annual audits. The business model is service-oriented with a focus on quality assurance and legal compliance in digital accessibility. Technically, the site is built on Drupal 10 with modern web technologies, optimized for mobile and accessibility, reflecting the business mission. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

P

Promozione Salute Svizzera

promozionesalute.ch

48

Promozione Salute Svizzera is an official Swiss health promotion organization mandated by the Confederation to coordinate and evaluate health promotion and disease prevention efforts nationwide. The website serves as a comprehensive platform offering information on programs, projects, publications, and campaigns aimed at improving public health in Switzerland. It targets a broad audience including cantonal authorities, health organizations, and the general public. Technically, the site is built on Drupal 10 with modern analytics and cookie consent tools, providing a responsive and accessible user experience. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

P

Promotion Santé Suisse

promotionsante.ch

50

Promotion Santé Suisse is a Swiss national organization mandated by law to initiate, coordinate, and evaluate health promotion and disease prevention measures. The website reflects a mature digital presence with comprehensive content targeting health professionals, organizations, and the general public in Switzerland. The technical infrastructure is modern, leveraging Drupal 10 CMS, Matomo analytics, and Google Tag Manager, with privacy and cookie consent mechanisms in place. Security posture is strong with HTTPS and best practices observed, though explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy, professional, and aligned with its public health mission.

G

Government of Ontario

ontario.ca

76

The Government of Ontario's official website serves as a comprehensive portal for residents and businesses to access information on government programs and services. It holds a strong market position as the authoritative source for provincial government information in Ontario, Canada. The website targets a broad audience including citizens, businesses, and stakeholders seeking government resources and contact avenues. Technically, the site is built on Drupal 10, leveraging modern web technologies and integrating Google Tag Manager for analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and employs secure form practices, though it lacks some advanced security headers and explicit security policies. The absence of WHOIS data is due to privacy protection by the Canadian Internet Registration Authority, which is justified for a government domain. Overall, the site is trustworthy, professional, and well-maintained, with minor recommendations to enhance security transparency and cookie consent mechanisms.

G

Gesundheitsförderung Schweiz

gesundheitsfoerderung.ch

52

Gesundheitsförderung Schweiz is a Swiss non-profit organization mandated by law to initiate, coordinate, and evaluate health promotion and disease prevention measures. The organization supports various actors in the health promotion and prevention sector to encourage healthy behaviors and create health-promoting environments across Switzerland. Their website reflects a professional and comprehensive digital presence, leveraging Drupal 10 CMS, with multilingual support and a strong focus on user experience and accessibility. The site includes extensive resources, project funding information, campaigns, and an online shop for printed brochures. Technically, the site uses modern analytics tools such as Matomo and Google Analytics, combined with a GDPR-compliant cookie consent mechanism powered by CookieYes. Security posture is solid with HTTPS enforced and bot protection cookies in use, though some security headers could be explicitly added for enhanced protection. Overall, the website is trustworthy, well-maintained, and aligned with the organization's mission.

C

CO-OPERAID

co-operaid.ch

55

CO-OPERAID is a Swiss non-profit humanitarian organization dedicated since 1981 to providing educational opportunities for children and youth in underprivileged regions of Africa and Asia. The organization focuses on primary and vocational education projects in countries including Uganda, Kenya, Bangladesh, Cambodia, and Laos. Their business model relies on donations, sponsorships, and partnerships, supported by a strong reputation evidenced by ZEWO certification and transparent communication. The website is professionally designed, mobile-optimized, and provides clear navigation and calls to action for donors and supporters. Technically, the website is built on Drupal 10 with modern web technologies and demonstrates good performance and accessibility standards. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data, though some security headers could be improved. Privacy compliance is good with a comprehensive privacy policy and cookie policy present, but lacks an active cookie consent mechanism. Contact information is clearly provided, though no direct contact email was found in the HTML content. Overall, the website and organization present a trustworthy and credible profile with a high level of professionalism and transparency. There are no indications of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, implementing a cookie consent banner, and publishing explicit security and incident response policies to further strengthen trust and compliance.

M

MD Systems GmbH

digital-storytelling.ch

62

MD Systems GmbH operates the website digital-storytelling.ch, promoting Primer, a Drupal 10-based content management system tailored for organizations, products, and campaigns. The company positions itself as a provider of cost-effective, easy-to-use CMS solutions with a focus on online marketing. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options, including a contact form, email, phone, and physical address in Switzerland. The presence of partner logos and client references such as Paul Scherrer Institut and UNICEF enhances credibility. Technically, the site is built on Drupal 10, leveraging modern web technologies including JavaScript and CSS. It employs cookie compliance mechanisms with opt-in consent and integrates Google Analytics for user tracking. Security posture is solid with HTTPS enforced and anti-bot protections on forms, though it lacks explicit security headers and published security policies. No vulnerabilities or suspicious content were detected. Overall, the website demonstrates a mature digital infrastructure suitable for its business goals. The domain registration data aligns well with the business identity, supporting legitimacy. Privacy compliance is well addressed with GDPR-aligned cookie consent and a comprehensive privacy policy. However, the absence of terms of service and incident response information suggests areas for improvement. The risk profile is low with no critical security issues found. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

V

Verein ARC, Bildungsinstitut für Arbeitnehmende

formation-arc.ch

63

Verein ARC is a Swiss non-profit educational institute focused on providing continuing education and training for employees, particularly those affiliated with labor unions such as Travail.Suisse, Syna, transfair, SCIV, and swissPersona. The organization operates under the umbrella of Travail.Suisse and offers courses aimed at enhancing skills in customer handling, member engagement, and organizational effectiveness. The website reflects a professional and consistent brand identity with clear messaging targeted at employees and union members in Switzerland. Technically, the website is built on Drupal 10 with Bootstrap and FontAwesome, ensuring a modern and responsive user experience. The site is well-optimized for mobile devices and accessibility, with good SEO practices and social media integration. Performance is moderate, with no significant technical debt or errors observed. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security headers and a published incident response or vulnerability disclosure policy. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's organizational claims, indicating legitimacy and transparency. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers and incident response transparency would further enhance its security posture.

T

Travail.Suisse

swype.swiss

46

Swype is a Swiss educational project operated by Travail.Suisse and its member associations, offering vocational experience and language courses abroad, primarily targeting young professionals. The website is built on Drupal 10 and hosted with Cloudflare DNS services, featuring a clean, professional design with good mobile optimization and accessibility. Security posture is adequate with HTTPS and domain transfer protections, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong with a cookie consent banner and a linked privacy policy hosted on the parent organization's site. No direct contact information or security policies are published on the main site, which could be improved. Overall, the site is trustworthy, well-branded, and serves a niche educational market in Switzerland.

F

France Éducation International

lefilplurilingue.org

55

Le fil plurilingue is an educational platform operated under the auspices of France Éducation International, providing resources and support for bilingual French education worldwide. The website targets educators, coordinators, and directors involved in bilingual francophone sections, offering a variety of teaching materials, methodological guidance, and country-specific information. The platform positions itself as a niche resource provider within the education sector, leveraging its affiliation with a reputable French educational institution. Technically, the website is built on Drupal 10, utilizing modern web technologies including jQuery and Google Fonts. It employs Matomo for analytics, indicating a preference for privacy-conscious tracking. The site demonstrates good mobile optimization and a professional design, though accessibility features are basic and SEO optimization is moderate. Hosting details are not explicitly disclosed. From a security perspective, the domain is registered consistently with no privacy protection, and the registrar status clientTransferProhibited adds a layer of domain security. However, the absence of DNSSEC and security headers, along with missing explicit privacy and cookie policies, indicates room for improvement in security posture and compliance. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. Overall, the website presents a trustworthy and professional educational resource with moderate technical maturity and some compliance gaps. Strategic improvements in privacy policy publication, cookie consent mechanisms, and security header implementation would enhance its security and compliance standing.

TV5MONDE is a prominent international francophone television network offering a wide range of programming including news, cultural content, sports, and educational resources. The website serves a global French-speaking audience with regional subdomains catering to different geographic areas. The digital platform is built on Drupal 10 and integrates modern video streaming and advertising technologies, ensuring a rich user experience. Privacy and cookie consent are managed effectively through Didomi, reflecting compliance with GDPR standards. However, the absence of publicly available WHOIS data raises questions about domain registration transparency, though the website's content and branding strongly support its legitimacy. Security posture is solid with HTTPS and consent management, but could be enhanced by adding advanced security headers and publishing a security policy. Overall, the site demonstrates a mature digital presence with good technical and privacy practices, suitable for a large media organization.

C

Cned

cned.fr

59

Cned is a prominent public operator specializing in distance education and professional training in France. The website serves a broad audience including students, parents, employees, public servants, and job seekers, offering a wide range of educational programs from primary school to professional certifications. The platform is well-structured, professionally designed, and optimized for mobile use, reflecting a mature digital presence. Technically, the site is built on Drupal 10 and integrates modern marketing and analytics tools such as Google Tag Manager, Algolia, and Abtasty. It employs secure HTTPS connections and implements cookie consent mechanisms, demonstrating compliance with privacy regulations. The presence of Qualiopi certification and government logos further reinforces its credibility. Security posture is strong with HTTPS and secure form handling, though explicit security headers could be more visible. The absence of WHOIS data is typical for .fr domains managed by AFNIC and does not detract from the site's legitimacy given its public affiliation. Overall, the site presents a trustworthy, professional, and user-friendly platform for distance learning.

F

France Éducation international

france-education-international.fr

65

France Éducation international is a French public institution dedicated to promoting education and the French language worldwide. It offers a broad range of services including language certifications (DELF, DALF, TCF), training, diploma recognition, international mobility programs, and cooperation projects. The organization is well-positioned as a leading authority in French language education and international educational cooperation, supported by official French government affiliations and partnerships such as Alliance Sorbonne Université. Technically, the website is built on Drupal 10, employs privacy-respecting Matomo analytics, and uses modern web technologies including responsive images and cookie consent management via tarteaucitron.js. The site is mobile-optimized, well-structured, and provides multilingual support in French, English, and Spanish. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the organization's public mission. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable resource for its target audience of educators, students, and institutional partners.

S

Scuola universitaria federale per la formazione professionale SUFFP

suffp.swiss

69

The website www.suffp.swiss represents the Scuola universitaria federale per la formazione professionale SUFFP, a Swiss federal institution specializing in vocational education and training. It serves as a national center of expertise offering bachelor and master degree programs, professional school teaching, continuing education, research, and international cooperation. The site targets students, educators, and professionals involved in vocational education. The business model is that of a public educational institution with a strong national presence in Switzerland's education sector. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies including SVG graphics and Matomo analytics for user tracking. The site is mobile-optimized, accessible, and SEO-friendly with structured navigation and multilingual support. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS with excellent SSL configuration and employs basic bot protection. However, it lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and user trust. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected by the Swiss Registry, which is typical for government-related domains, and no suspicious patterns were found. Overall, the website is professional, trustworthy, and well-maintained, but could improve privacy compliance and security posture by adding explicit policies and security headers.

H

Haute école fédérale en formation professionnelle HEFP

hefp.swiss

69

The Haute école fédérale en formation professionnelle HEFP is a Swiss federal institution specializing in vocational education and training. It offers a wide range of educational programs including Bachelor and Master degrees, professional teacher training, continuing education certifications, and conducts research and development in vocational education. The institution serves professionals, educators, and students involved in vocational training across Switzerland, positioning itself as an authoritative expert in the field. The website reflects a mature digital presence with multilingual support and comprehensive content tailored to its audience. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrating Matomo analytics hosted on a Swiss domain, indicating a focus on data privacy. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Security is well-implemented with HTTPS, security headers, and no visible vulnerabilities, although explicit privacy and cookie policies are not clearly presented. From a security perspective, the site demonstrates a strong posture with encrypted communications and best practices in place. However, the absence of explicit privacy and cookie consent mechanisms and lack of visible contact information for security incidents represent areas for improvement. The WHOIS data is privacy protected, which is justified given the nature of the institution and the .swiss domain usage. Overall, the website is professional, trustworthy, and safe for general audiences, with recommendations to enhance privacy compliance and transparency to further strengthen user trust and regulatory adherence.

S

Swiss Federal University for Vocational Education and Training SFUVET

sfuvet.swiss

68

The Swiss Federal University for Vocational Education and Training SFUVET is a reputable Swiss federal institution specializing in vocational education and training. It offers a broad range of educational programs including basic and continuing training, bachelor's and master's degrees, and conducts extensive research and development in vocational education. The institution also supports international cooperation and the development of occupations, with campuses in key Swiss regions. The website reflects a professional and comprehensive digital presence aligned with its educational mission. Technically, the website is built on Drupal 10, leveraging modern web technologies and Matomo for analytics, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security measures such as HTTPS and security headers are properly implemented, though there is room for improvement in privacy compliance with the addition of a cookie consent mechanism. From a security perspective, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. However, the absence of a public security policy and incident response contact details suggests an opportunity to enhance transparency and preparedness. The WHOIS data is privacy protected, which is justified given the institutional nature of the domain, though it limits direct verification of registrant details. Overall, the website is trustworthy, professional, and well-maintained, serving its audience effectively. Strategic recommendations include implementing cookie consent, publishing a security policy, and establishing a vulnerability disclosure channel to further strengthen compliance and security posture.

M

MD Systems GmbH

md-systems.ch

65

MD Systems GmbH is a well-established Swiss technology company specializing in Drupal-based open source web development solutions. With 25 years of experience, they offer a range of products and services including custom Drupal distributions, SaaS integrations, and campaign websites. Their market position is strong within the Drupal ecosystem, supported by a consistent brand and professional online presence. Technically, the website is built on Drupal 10 with modern web standards, providing good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the company demonstrates high business credibility and compliance with privacy regulations.

I

Interkantonale Hochschule für Heilpädagogik (HfH)

hfh.ch

62

The Interkantonale Hochschule für Heilpädagogik (HfH) is a Swiss inter-cantonal higher education institution specializing in special education and therapeutic pedagogy. The website reflects a well-established educational institution with a strong focus on inclusivity, research, and professional training. It serves a broad audience including students, educators, and professionals in the field of special education. The site is built on Drupal 10, integrates modern analytics and marketing tools, and demonstrates good digital maturity with mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements in explicit security headers and incident response disclosures are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

T

Travail.Suisse

travailsuisse.ch

52

Travail.Suisse is a prominent independent umbrella organization representing employees in Switzerland, with a membership base of approximately 130,000 individuals across various sectors including private industry and public service. The organization is politically and religiously neutral and serves as one of the four national social partner umbrella organizations. Their website provides comprehensive information about their projects, campaigns, publications, and member associations, targeting employees and stakeholders in the Swiss labor market. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Bootstrap and Google Analytics for tracking. The site is well-optimized for mobile devices, accessible, and SEO-friendly. It employs HTTPS with good SSL configuration and includes a cookie consent mechanism compliant with GDPR standards. The presence of a newsletter subscription form indicates active user engagement and data collection with explicit consent. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visible in the HTML source and should be verified server-side. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, indicating a legitimate and trustworthy domain registration. Overall, Travail.Suisse's website is professional, secure, and compliant with privacy regulations, serving as a reliable platform for employee representation and advocacy in Switzerland.

E

Eidgenössische Hochschule für Berufsbildung EHB

ehb.swiss

70

The Eidgenössische Hochschule für Berufsbildung EHB is a Swiss federal higher education institution specializing in vocational education and training. It serves as the national expertise organization for vocational education, offering bachelor and master degree programs, continuing education, research, and consultancy services. The institution targets professionals and students involved in vocational education across Switzerland, positioning itself as a key player in the Swiss education sector. The website is well-structured, multilingual, and professionally designed, reflecting the institution's authoritative market position. Technically, the website is built on Drupal 10, leveraging modern web technologies and privacy-conscious analytics via Matomo hosted on a Swiss domain. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some improvements in security headers and explicit privacy/cookie policies are recommended. Hosting appears to be managed by a Swiss or government-affiliated provider, consistent with the .swiss domain. From a security perspective, the site enforces HTTPS and employs anti-bot measures on forms, with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit privacy and cookie policies, security headers, and incident response information suggests room for enhancement in compliance and transparency. The WHOIS data is privacy protected by the Swiss Registry, which is typical and justified for official .swiss domains, and the domain appears legitimate and consistent with the institution's profile. Overall, the website presents a secure, professional, and trustworthy digital presence for the Eidgenössische Hochschule für Berufsbildung EHB, with minor recommendations to improve privacy compliance and security posture.

K

KV Luzern Berufsakademie

kvlu.ch

58

KV Luzern Berufsakademie is a Swiss educational institution specializing in professional continuing education, primarily targeting working professionals in the Luzern region. The website serves as a platform to showcase their educational offerings and facilitate consultation appointments. Technically, the site is built on Drupal 10 and integrates multiple modern marketing and analytics tools including Google Analytics, Facebook Pixel, TikTok Pixel, and LinkedIn Insight Tag, managed via Google Tag Manager. The site demonstrates good digital maturity with responsive design and cookie consent mechanisms compliant with GDPR. Security posture is solid with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and well-aligned with its business purpose, though it could improve transparency by adding terms of service and vulnerability disclosure information.

F

Fortive

fortive.com

75

Fortive is a well-established enterprise specializing in essential technologies for industrial and healthcare sectors, focusing on safety and productivity. The company presents a strong market position with a global team and diversified services including advanced healthcare solutions and intelligent operating solutions. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to investors, job seekers, and industry partners. Technically, the site is built on Drupal 10, hosted on AWS infrastructure, and incorporates modern marketing and analytics tools such as Google Tag Manager and Optimizely. Security posture is solid with HTTPS enforcement and domain management protections, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy compliance is robust with clear policies and cookie consent mechanisms aligned with GDPR standards. Overall, the website is trustworthy, professional, and secure, supporting Fortive's corporate reputation and business objectives.

E

Euronext

oslobors.no

72

Euronext operates a leading pan-European stock exchange group including the Oslo market, providing comprehensive capital markets infrastructure such as listing, trading, clearing, and data services. The website is professionally designed using Drupal 10, with modern UI components and good mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, which slightly reduces transparency but the site’s branding and content strongly indicate legitimacy. Overall, the site serves investors, issuers, and market participants with detailed market and regulatory information.

G

George Mason University

gmu.edu

73

George Mason University is a prominent public research university located in Virginia, recognized as a top 50 Public R1 Research University in the United States. It serves a diverse student body with a broad range of undergraduate, graduate, and professional education programs, emphasizing innovation and inclusivity. The university's website reflects its academic stature with comprehensive content, clear navigation, and a professional design that targets prospective students, faculty, and researchers. Technically, the website is built on Drupal 10, leveraging modern web technologies including Font Awesome and Google Tag Manager for analytics and marketing. The site is well-optimized for mobile devices and accessibility, with strong SEO practices evident in meta tags and structured data. Security is robust, featuring HTTPS encryption and multiple security headers, alongside a cookie consent mechanism that supports GDPR compliance. While the WHOIS data is unavailable, which is common for .edu domains, the website's branding, content quality, and linked official subdomains strongly indicate legitimacy. No security vulnerabilities or sensitive data exposures were detected. However, the site lacks explicit security policy documentation and vulnerability disclosure information, which could enhance trust and transparency. Overall, George Mason University's digital presence is mature and secure, supporting its educational mission effectively. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and providing clear data protection officer contacts to further strengthen compliance and user trust.

C

Curtiss-Wright Corporation

curtisswright.com

71

Curtiss-Wright Corporation is a well-established industrial and defense engineering company with a strong presence in the energy, commercial, and industrial sectors. The company offers specialized manufacturing and engineering solutions tailored to these markets, positioning itself as a reliable and efficient partner. The website reflects a professional and consistent brand image, targeting B2B clients in specialized sectors. Technically, the website is built on Drupal 10 with modern front-end technologies such as jQuery and Bootstrap, hosted behind Cloudflare DNS services. While the site is mobile-optimized and offers a good user experience, there is room for improvement in accessibility and performance optimization. Security posture is moderate; domain registration protections are strong, but the site lacks visible security headers and DNSSEC is not enabled. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy transparency.

A

American Library Association

ala.org

63

The American Library Association (ALA) website serves as a comprehensive platform for library advocacy, membership services, education, conferences, awards, and grants. It targets library professionals, supporters, and the general public interested in library-related issues. The site is well-branded, content-rich, and professionally designed, reflecting its position as the largest membership association in the US library industry. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing tools, with good mobile optimization and accessibility features. Security posture is strong with HTTPS and some security best practices, though explicit security headers could be improved. Privacy compliance is evident with clear privacy and cookie policies and consent mechanisms. The lack of WHOIS data is a minor concern but likely due to query failure rather than privacy protection. Overall, the site is trustworthy, safe, and professionally maintained.