Security Directory

S

Seltec GmbH

seltec-sports.com

47

Seltec GmbH is a specialized provider of sports event timing, scoring, and data management solutions, delivering interactive fan experiences through live data and multimedia services. The company targets sports federations, clubs, event organizers, and sponsors, positioning itself as a trusted technology partner with a strong presence in Austria and international markets. The website is built on WordPress with modern plugins and offers good content quality and user experience. However, the absence of WHOIS data raises questions about domain registration legitimacy, though the website content and business references suggest a legitimate operation. Security posture is generally good with HTTPS and no visible vulnerabilities, but privacy compliance and contact transparency need improvement.

Experian plc is a global leader in data and analytics, specializing in credit reporting and financial health services for both consumers and businesses. The company leverages data to empower organizations and individuals to make informed financial decisions, supporting sustainable growth. Their market position is strong, with a broad international footprint and multiple subsidiaries across key regions including the US, UK, Brazil, and Asia Pacific. The website reflects a mature digital presence with comprehensive content tailored to investors, customers, and partners. Technically, the site is built on Adobe Experience Manager, utilizing modern web technologies such as Adobe Launch for tag management, Google reCAPTCHA for security, and analytics tools like Matomo and Hotjar for user behavior insights. The site is mobile-optimized, accessible, and SEO-friendly, indicating a high level of digital maturity. From a security perspective, the website enforces HTTPS, employs security headers, and integrates consent management mechanisms compliant with GDPR. However, explicit security policies and vulnerability disclosure information are not publicly available, which could be improved to enhance transparency and trust. No critical vulnerabilities or exposed sensitive data were detected. Overall, Experian plc's website demonstrates a high level of professionalism, security, and compliance suitable for a large enterprise in the finance sector. The absence of WHOIS data slightly impacts trust but is likely due to privacy or registrar limitations. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and enhancing DPO contact visibility to further strengthen security posture and stakeholder confidence.

C

Chainlink

chain.link

71

Chainlink is a leading decentralized oracle network that connects blockchains to real-world data, other blockchains, and enterprise systems. It serves major financial institutions, DeFi protocols, and governments worldwide, providing critical infrastructure for onchain finance, cross-chain interoperability, and secure data feeds. The company is well-established with a domain age since 2017 and strong partnerships with industry leaders such as J.P. Morgan, Mastercard, and UBS. Their platform offers a suite of products including Chainlink CCIP, data feeds, automation, and verifiable randomness, positioning them as a backbone for blockchain applications. Technically, Chainlink's website is built on modern web technologies including Webflow CMS, Cloudflare CDN, and integrates analytics and marketing tools like HubSpot and Google Tag Manager. The site is fast, mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security posture is strong with HTTPS, security headers, and domain registration protections, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, Chainlink demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations including GDPR. The website content is comprehensive, well-branded, and targeted at institutional and developer audiences. No critical security vulnerabilities or suspicious activities were detected. Recommendations include enabling DNSSEC, publishing a security policy, and adding vulnerability disclosure mechanisms to further enhance trust and security. This analysis indicates Chainlink is a credible, secure, and technically sound organization with a strong market position in blockchain technology and decentralized finance.

Sportjugendreisen.de is a website operated by the Sportjugend im Landessportbund Berlin e.V., a non-profit organization focused on providing children and youth sports travel programs in Berlin. The organization offers travel packages for 2025, staffed by trained volunteer teamers, and is supported by the Berlin Senate Department for Education, Youth and Family. The website serves as an information and booking platform targeting children, youth, parents, and potential volunteer teamers. The business model is non-profit, relying on government funding and volunteer support, positioning itself as a regional leader in youth sports travel services. Technically, the website is built on TYPO3 CMS with modern front-end technologies including Bootstrap 5 and Font Awesome 6. It integrates Matomo analytics configured to disable cookies, indicating a privacy-conscious approach. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, with no blocking or WAF detected, allowing full content access. From a security perspective, the site enforces HTTPS and uses Matomo analytics with cookie disabling, which is positive. However, it lacks security headers such as Content-Security-Policy and does not publish any security or incident response policies. There is no cookie consent mechanism despite analytics usage, which is a GDPR compliance gap. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website demonstrates a good level of professionalism, trustworthiness, and technical maturity suitable for a small non-profit organization. Strategic improvements in security headers, cookie consent, and published security policies would enhance compliance and security posture. The domain registration data aligns well with the business claims, supporting legitimacy and trust.

Maximum India Conclave is a professional event organized by the Indian Private Equity & Venture Capital Association (IVCA) focused on promoting India as a destination for alternate asset investing. The event targets limited partners, family offices, and investors interested in the Indian market. The website provides event details, agenda, speakers, and registration options, emphasizing knowledge sharing and community building. Technically, the site is built on a modern React and Next.js framework with Chakra UI components, offering a responsive and visually consistent user experience. However, the site lacks key privacy and security policies, and no explicit contact emails or phone numbers are provided, relying mainly on contact forms. Security headers and incident response information are absent, indicating room for improvement in security posture. Overall, the site is legitimate and professional but would benefit from enhanced compliance and security transparency.

I

India Energy Week

indiaenergyweek.com

71

India Energy Week is a large-scale, flagship energy exhibition and conference held in India, focusing on global energy innovation, partnerships, and investment. The event is organized under the patronage of India's Ministry of Petroleum and Natural Gas and in partnership with the Federation of Indian Petroleum Industry and dmg events. The website presents a professional and comprehensive platform showcasing the event's scope, speakers, exhibitors, and sponsorship opportunities. Technically, the site uses modern web technologies including Umbraco CMS, Google Analytics, Microsoft Clarity, and various marketing and tracking tools. Security posture is generally good with HTTPS enabled, but lacks visible security headers and privacy compliance documentation. The absence of WHOIS data for the domain raises concerns about domain legitimacy or recent registration, which should be further investigated. Overall, the website is well-designed, content-rich, and targets energy professionals and stakeholders globally.

N

NTTドコモビジネス

ntt.com

70

NTTドコモビジネス is a major Japanese telecommunications and ICT service provider, formerly known as NTT Communications, rebranded in July 2025. The company offers a broad portfolio of services including cloud, 5G, IoT, AI, security, and mobile solutions targeting corporate clients and medium to small enterprises. The website reflects a mature, enterprise-grade digital presence with comprehensive service information and strong branding consistent with a leading telecommunications group in Japan. Technically, the site employs a modern technology stack with multiple analytics and marketing tools integrated, ensuring good SEO, accessibility, and mobile responsiveness. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though some security headers are not explicitly detected and incident response contact details are not publicly visible. Overall, the site is trustworthy and professional, though the lack of WHOIS data is unusual but likely due to registry privacy policies. Strategic recommendations include enhancing security header implementation, publishing explicit vulnerability disclosure policies, and improving transparency on privacy compliance and incident response.

C

Citopia

citopia.global

53

Citopia is a member-owned federated network focused on creating a decentralized, interoperable Web3 marketplace leveraging advanced digital identity standards such as W3C Verifiable Credentials and Decentralized Identifiers. Supported by the MOBI consortium and aligned with global standards like ISO, IEEE, and SAE, Citopia targets a broad audience including vehicle manufacturers, startups, NGOs, and government agencies. The platform emphasizes data privacy, selective disclosure, and zero-knowledge proofs to comply with regulations such as GDPR and CPRA. Technically, the website is built on WordPress with the Avada theme, hosted by SiteGround, and integrates Google Analytics with opt-out capabilities. The site demonstrates good design quality, mobile optimization, and SEO practices. Security posture is solid with HTTPS and privacy-focused technologies, though it lacks some security headers and a formal vulnerability disclosure policy. Overall, the domain registration is consistent and appropriate for the business age and claims.

M

MOBI

dlt.mobi

54

MOBI is a global nonprofit consortium established in 2018, focused on creating standards and building Web3 infrastructure for interoperability in mobility and IoT ecosystems. The organization targets stakeholders in technology, transportation, and data privacy sectors, providing standards, working groups, and educational services to foster a decentralized and equitable digital economy. The website reflects a professional and consistent brand presence with clear navigation and relevant content aligned with its mission. Technically, the site is built on WordPress with modern plugins and hosted on SiteGround, employing Google Analytics and Tag Manager for tracking and marketing. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. The domain registration is privacy protected but consistent with the nonprofit's Canadian origin and founding date. Overall, the site is trustworthy, well-maintained, and compliant with privacy regulations, though it could improve transparency by publishing detailed privacy and security policies.

igus® Korea operates as a regional branch of the global igus GmbH, specializing in manufacturing and supplying motion plastics products such as energy chains, cables, polymer bearings, and automation components. The website is professionally designed, offering extensive product information, online configurators, CAD tools, and customer support features tailored for industrial clients in South Korea. The company positions itself as a leader in the manufacturing sector with a strong focus on innovation and customer-centric solutions. Technically, the website employs modern JavaScript libraries, analytics, and marketing tools, ensuring a robust digital presence. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site reflects a mature business with good digital maturity and trustworthiness, despite the lack of WHOIS data which may be due to regional registry constraints.

O

OpenCampus

opencampus.net

65

OpenCampus is a small, specialized software company founded in 2013 that provides an open adoption software framework tailored for education and enterprise management. Their platform integrates multiple management systems such as campus, graduate school, learning, medical school, recruitment, and research management. The company targets universities, schools, enterprises, and researchers, positioning itself as a niche provider with a strong client base including reputable German universities and medical institutions. Technically, the website is built on Drupal 8 with modern libraries and frameworks, offering good mobile optimization and accessibility. Analytics are implemented via Piwik and Google Analytics, with some privacy considerations such as Do Not Track enabled. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit incident response information. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or registration issues, which slightly lowers trust. Overall, the website is professional, content-rich, and trustworthy, but could improve privacy compliance and security transparency.

M

Multilateral Investment Guarantee Agency

miga.org

72

The Multilateral Investment Guarantee Agency (MIGA) website serves as a comprehensive platform for the World Bank Group's guarantee products, focusing on political risk insurance and credit enhancement guarantees to promote foreign direct investment in developing countries. The site is well-positioned within the international finance and development sector, leveraging its affiliation with the World Bank Group to establish credibility and trust. It targets investors, lenders, governments, and development organizations seeking risk mitigation solutions for emerging market projects. The business model centers on providing guarantees that reduce investment risks, thereby facilitating economic growth and poverty reduction.

H

Hamilton Lane

hamiltonlane.com

75

Hamilton Lane is a well-established global investment manager specializing in private markets solutions, serving institutional and private wealth clients. The company emphasizes a client-driven, results-oriented approach with over $958 billion in assets under management and supervision. Their services include asset management, customized solutions, technology-driven insights, private wealth strategies, and educational resources. The website reflects a mature, professional brand with consistent messaging and comprehensive content tailored to sophisticated investors. Technically, the website leverages modern analytics and tracking tools such as Google Analytics, Hotjar, LinkedIn Insight, and Google Tag Manager, integrated with a Kentico CMS platform. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Privacy compliance is robust, featuring cookie consent mechanisms and GDPR-aligned policies. From a security perspective, the site enforces HTTPS and employs standard best practices, though explicit security headers and incident response information are not prominently published. No vulnerabilities or suspicious content were detected. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the professional presentation and external trust signals. Overall, Hamilton Lane's website demonstrates a strong digital presence aligned with its market position, though improvements in security disclosures and WHOIS transparency could enhance trust further.

U

UNDP Bosnia and Herzegovina

zelenatranzicija.ba

62

The website 'Zelena tranzicija' is a public information platform dedicated to providing key resources and information on green transition and circular economy, primarily targeting audiences in Bosnia and Herzegovina. It is affiliated with UNDP Bosnia and Herzegovina, which lends credibility and aligns with its mission of sustainability and environmental awareness. The platform uses modern web technologies including Angular and Material Design, ensuring a contemporary user experience with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced, though it lacks advanced security headers and visible privacy or cookie policies. No forms or direct data collection mechanisms are present on the main page, reducing privacy risks but also limiting user engagement. Overall, the site is trustworthy and professionally presented but could improve in privacy compliance and contact transparency.

A

Adriaticket

adriaticket.com

54

Adriaticket is an established online ticketing and event promotion platform primarily serving Croatian and regional markets. Founded in 2012, it offers ticket sales for concerts, festivals, and cultural events, leveraging a custom-built website with AngularJS and Bootstrap frameworks. The platform integrates multiple third-party services including Google Maps, Facebook SDK, and YouTube APIs to enhance user experience. While the website is professionally designed with good navigation and mobile optimization, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but absence of DNSSEC and security headers present areas for improvement. Overall, Adriaticket demonstrates a solid business presence with moderate risk, suitable for general audiences and event attendees.

T

The Human Safety Net

thehumansafetynet.org

65

The Human Safety Net website represents a global non-profit network focused on social support and community empowerment. The site aims to connect people to help transform lives, emphasizing humanitarian values. The website's content is well-structured, with consistent branding and a professional design that targets a general audience interested in social good. However, the absence of explicit business model details and contact information limits deeper business insights. Technically, the website employs modern JavaScript libraries such as jQuery and Kaltura for media playback, alongside common analytics and tracking tools including Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The site appears moderately optimized for performance and mobile responsiveness, though accessibility features are basic. The lack of detected CMS or hosting provider information suggests a custom or proprietary platform. From a security perspective, the website lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance with GDPR and other regulations. The WHOIS data is incomplete or obscured, which raises concerns about domain registration transparency and trustworthiness. No forms or direct contact channels were found, limiting user engagement and support avenues. Overall, the website is functional and professionally presented but requires improvements in privacy compliance, security best practices, and transparency of domain registration to enhance trust and credibility.

L

Lasten ja nuorten säätiö

nuori.fi

71

Lasten ja nuorten säätiö is a Finnish non-profit foundation dedicated to strengthening the future confidence of children and youth across Finland. Established in 2011, the foundation operates nationwide and reaches tens of thousands of young people annually through various support and educational programs. The website reflects a professional and consistent brand image, providing clear information about its mission, donation methods, and multilingual support. Technically, the site is built on WordPress with modern web technologies including jQuery and Google Tag Manager, hosted on infrastructure inferred from its nameservers. Security posture is solid with HTTPS enforced and standard security headers present, though DNSSEC is not implemented and no explicit incident response contacts or vulnerability disclosure policies are published. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR adherence. Overall, the domain registration data aligns well with the organization's identity, enhancing trust and legitimacy.

S

Showit

showit.co

61

Showit is a technology company providing a drag & drop website builder tailored for creatives and designers seeking creative freedom. The platform integrates with WordPress and offers customizable templates, positioning itself as a niche leader in creative website building. The website demonstrates a professional design and good user experience, targeting designers and creative professionals. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and integrates video and social media content, hosted on AWS infrastructure with domain registration via Amazon Registrar. Security posture is good with HTTPS and domain protection statuses, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is basic with a cookie consent mechanism but no visible privacy or terms pages. Overall, the site is trustworthy and well-established with a domain age consistent with the business history.

E

Esri Deutschland GmbH

esri.de

72

Esri Deutschland GmbH is a leading provider of geographic information system (GIS) solutions based on the ArcGIS platform, serving a broad audience including private enterprises, government agencies, and academic institutions. The company offers a comprehensive suite of GIS software products, consulting, training, and support services, positioning itself as a key player in the spatial data and location intelligence market in Germany and Europe. The website reflects a mature digital presence with professional design, clear navigation, and rich content that highlights their product offerings, industry applications, and customer success stories. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies such as the ArcGIS JavaScript API, Calcite design components, and integrates advanced analytics and marketing tools including Matomo, Adobe Analytics, and Google Tag Manager. The site is optimized for performance, mobile responsiveness, and accessibility, demonstrating a high level of digital maturity. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers. Consent management for cookies is in place, aligning with GDPR requirements. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not prominently available, representing areas for improvement. Overall, the website presents a low-risk profile with strong business credibility and technical robustness. Strategic recommendations include enhancing transparency around security policies and incident response, publishing vulnerability disclosure information, and providing clear data protection officer contacts to further strengthen trust and compliance.

M

Mississippi State University

msstate.edu

59

Mississippi State University operates a comprehensive and professionally designed website that serves a broad audience including prospective and current students, faculty, staff, alumni, and visitors. The institution is positioned as a large, well-established public research university in the United States, offering extensive academic programs, research initiatives, and community engagement. The website leverages a modern technology stack centered on Drupal 8, enhanced with multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, Facebook Pixel, and Marketo. Security posture is strong with HTTPS enforced and reputable third-party scripts, though some security headers and policies could be improved. Privacy compliance is partially addressed with a clear privacy policy but lacks a cookie consent mechanism. WHOIS data is incomplete, likely due to querying the subdomain rather than the root domain, but the website's branding and content strongly support legitimacy. Overall, the site demonstrates high professionalism, trustworthiness, and technical maturity.

B

Bleecker Street

bleeckerstreetmedia.com

61

Bleecker Street is an independent film production and distribution company established in 2014. The company focuses on bringing a curated selection of films to audiences, as reflected in their website content highlighting various film titles. The website is professionally designed with consistent branding and targets a general audience interested in movies and film trailers. Technically, the site uses modern web technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and is likely built on Craft CMS. The site is mobile optimized and performs moderately well. Security-wise, the site uses HTTPS and has domain transfer protections, but lacks DNSSEC and explicit security headers, which are recommended for enhanced security. Privacy and cookie policies are not found, indicating a gap in compliance with GDPR and other privacy regulations. Overall, the website is credible and trustworthy but would benefit from improved privacy disclosures and security hardening.

E

Epic Digital

epicdigital.com

45

Epic Digital is a media and storytelling agency specializing in creating premium documentary and branded content for high-profile clients such as Google, Ford, and IBM. The company operates under Vox Media Studios and focuses on surfacing deep customer insights through compelling narratives. The website showcases a rich portfolio of multimedia projects, indicating a mature digital presence with modern technologies like Vimeo, YouTube APIs, and Google Analytics integrated. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the professional content and association with Vox Media suggest authenticity. Security posture is moderate with HTTPS usage but lacks visible security headers and explicit privacy policies. Contact information and compliance documentation are not readily available, which could impact trust and regulatory adherence.

V

Vulture

vulture.com

65

Vulture is a prominent entertainment news website owned by Vox Media through its subsidiary New York Magazine. It provides comprehensive coverage of TV, movies, music, books, theater, art, and podcasts, targeting a general audience interested in entertainment and pop culture. The site is well-established with a strong market position and recognized trust indicators such as Pulitzer and National Magazine Awards. Technically, the website employs a modern tech stack including Google Tag Manager, various ad networks, and tracking services, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no obvious vulnerabilities, though improvements in security headers and explicit vulnerability disclosure could enhance it further. Privacy compliance is partially met with a comprehensive privacy and ethics policy but lacks a visible cookie consent mechanism. Overall, the site is professional, trustworthy, and technically sound, with minor areas for improvement in privacy and security transparency.

P

Punch

punchdrink.com

60

Punch is an established media brand specializing in drinks and drinking culture, offering rich content including articles, recipes, city guides, and subscription newsletters. The brand targets adult audiences interested in cocktails, spirits, and wine, positioning itself as a niche leader in beverage media. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Tag Manager, and OneTrust for privacy compliance. The site demonstrates good mobile optimization, SEO practices, and user experience. Security posture is solid with HTTPS, reCAPTCHA, and domain protections, though DNSSEC is not enabled and some security headers could be improved. Overall, the domain registration and WHOIS data support the site's legitimacy and trustworthiness.

BOC Group is a recognized technology company specializing in Business Process Management (BPM), Enterprise Architecture (EA), and Governance, Risk & Compliance (GRC) software solutions. The company holds a strong market position as a Gartner Customers' Choice 2021 vendor and offers a suite of products including ADONIS, ADOIT, and ADOGRC. Their target audience primarily consists of businesses seeking to optimize operational excellence, leverage technology, and secure their business processes. The business model revolves around software licensing, professional services, and training programs, supported by a network of partners and academic collaborations. Technically, the website is built on WordPress using the Avada theme, enhanced with modern JavaScript libraries and SEO tools such as Yoast SEO and Google Tag Manager. The site demonstrates good performance, mobile optimization, and accessibility standards. Cookie consent mechanisms and privacy policies indicate a mature approach to privacy compliance. From a security perspective, the website enforces HTTPS, implements key security headers, and avoids exposing sensitive data. However, it lacks publicly available security policies, incident response details, and vulnerability disclosure information, which are areas for improvement. The absence of WHOIS registration data raises minor concerns about domain registration transparency but does not detract significantly from the overall legitimacy given the professional presentation and external trust signals. Overall, BOC Group's digital presence reflects a professional and trustworthy enterprise with solid technical infrastructure and compliance posture. Strategic enhancements in security transparency and domain registration clarity would further strengthen their risk profile and stakeholder confidence.

Z

Zuiderzeemuseum

zuiderzeemuseum.nl

63

Zuiderzeemuseum is a cultural museum based in the Netherlands, dedicated to preserving and showcasing the heritage of the Zuiderzee region. The website serves as an informational and visitor engagement platform, targeting general audiences interested in cultural history and museum exhibitions. The business operates as a non-profit cultural institution with a regional market position. Technically, the website employs modern web technologies including Google reCAPTCHA v3 for bot mitigation, Cookiebot for cookie consent management, Google Tag Manager for analytics and marketing integration, and FontAwesome for iconography. The site is served over HTTPS, ensuring secure communications, and includes a comprehensive cookie consent mechanism that categorizes cookies by purpose and provider. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and bot protection. However, it lacks explicit security headers and a published security policy or vulnerability disclosure framework. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by a detailed cookie consent dialog, but a formal privacy policy page was not found in the analyzed content. Overall, the website is professionally designed with good user experience and trust indicators. The absence of direct contact information and formal privacy/security policies suggests areas for improvement. The domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness.

A

Activision Publishing

sekirothegame.com

60

Sekirothegame.com is the official website for the video game Sekiro™ Shadows Die Twice, published by Activision Publishing. The site serves as a marketing and e-commerce platform targeting gamers interested in this action-adventure title developed by FromSoftware. It features rich multimedia content including videos, images, and interactive elements to engage visitors and promote game sales globally. The website is part of a larger ecosystem of Activision game sites, reflecting a strong brand presence in the gaming industry. Technically, the site is built on Adobe Experience Manager CMS, uses modern JavaScript libraries such as jQuery, and integrates Google Tag Manager and OneTrust for analytics and cookie consent management. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. Security posture is strong with HTTPS enforcement, secure cookies, and CSRF protections, but lacks visible security policies or incident response contacts. Overall, the site is professional, trustworthy, and well-aligned with the business goals of promoting and selling the game.

A

Activision Publishing

tonyhawkthegame.com

58

The website www.tonyhawkthegame.com is a professionally designed digital platform promoting the Tony Hawk’s Pro Skater 3 + 4 video game collection. It is operated by Activision Publishing, a major player in the video game industry, with consistent branding and comprehensive content targeting gamers and fans of the franchise. The site offers detailed game information, media galleries, news updates, and purchase options across multiple platforms. Technically, the site leverages modern web technologies including Adobe Experience Manager CMS, jQuery, Google Tag Manager, and OneTrust for privacy compliance. Security practices are robust with HTTPS enforcement, SSO integration, and cookie consent mechanisms. Legal and privacy policies are clearly linked and comprehensive, supporting GDPR compliance. Overall, the site demonstrates a mature digital presence with high trustworthiness and user experience quality.

A

AFAS Theater

afastheater.nl

67

AFAS Theater is a modern theater and event venue located in Leusden, Netherlands, established in 2021. It serves both business clients and general theater audiences, offering a unique experience with inclusive services such as parking and refreshments. The theater is part of the AFAS Software group, leveraging a strong brand and partnerships to enhance its market position. The website reflects a professional and well-structured digital presence with good content quality and user experience. Technically, the site uses modern web technologies and implements essential security measures including HTTPS and security headers. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the website and business demonstrate a high level of credibility and trustworthiness.

F

Fondation L'Oréal

forwomeninscience.com

72

The website forwomeninscience.com represents the Fondation L’Oréal's initiative in partnership with UNESCO to promote and support women in science globally. It features comprehensive programs including international awards and regional initiatives aimed at empowering women scientists and encouraging young girls to pursue scientific careers. The site is well-branded, professionally designed, and provides rich content including multimedia and detailed program descriptions. Technically, the site uses modern web technologies such as Google Tag Manager, reCAPTCHA, and OneTrust for cookie consent, ensuring a good level of user experience and privacy compliance. Security posture is solid with HTTPS and anti-bot measures, though explicit security policies and incident response contacts are not published. The absence of WHOIS data is a notable anomaly, potentially indicating privacy protection or registry issues, which slightly impacts trustworthiness. Overall, the site is a credible and authoritative resource in its domain, with room for improvement in transparency of security and contact information.

B

British Red Cross

redcross.org.uk

74

The British Red Cross website represents a well-established humanitarian charity providing emergency aid, health and social care, first aid training, and refugee support across the UK and globally. The organization is a large non-profit entity founded in 1870, with a strong market position as part of the global Red Cross network. The website features rich multimedia content, clear navigation, and consistent branding aligned with its mission. Technically, the site employs modern tracking and marketing technologies such as Google Tag Manager, Salesforce Marketing Cloud, and OneTrust for cookie consent, ensuring GDPR compliance and user privacy. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and safe for general audiences.

K

Koninklijke Horeca Nederland

khn.nl

66

Koninklijke Horeca Nederland (KHN) is the leading branch association for the hospitality industry in the Netherlands, representing and advocating for hospitality businesses. The website serves as an information and service portal for members and stakeholders in the Dutch hospitality sector. It features a professional design with good content relevance and clear navigation, targeting hospitality professionals and businesses. The technical infrastructure leverages modern web technologies including Vue.js, Google Tag Manager, Cookiebot for consent management, and analytics tools such as Google Analytics and Hotjar, indicating a mature digital presence. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive cookie consent mechanisms and a clear privacy policy. Overall, the website demonstrates high business credibility and trustworthiness, supported by consistent WHOIS data and a strong social media presence.

T

Team for the Planet

team-planet.com

69

Team for the Planet is a not-for-profit organization dedicated to combating climate change by creating and financing innovative businesses globally. The website positions the company as a citizen-driven movement with a strong community of shareholders and innovators. Their business model focuses on crowdfunding and direct investment in climate solutions, emphasizing transparency and open-source principles. Technically, the website employs modern frameworks such as Turbo and StimulusJS, integrates analytics tools like Matomo and Plausible, and demonstrates excellent design and mobile optimization. Security posture is solid with HTTPS and CSRF protections, though improvements like DNSSEC and security headers are recommended. Overall, the site is professional, trustworthy, and well-aligned with its mission.

L

LocID

locid.com

61

LocID is a technology company offering a fixed geospatial identifier solution designed to provide advertisers, DSPs, and publishers with a stable and privacy-safe alternative to IP-based targeting. The website presents a professional and modern digital presence built on WordPress with Elementor, integrating various marketing and analytics tools such as Google Analytics, Hotjar, and Cookiebot for compliance and user tracking. The business targets advertising technology sectors, focusing on privacy and data protection in geospatial targeting. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. The site lacks explicit privacy policy and terms of service pages, and no direct contact information is provided, which impacts business credibility and compliance perception. Security posture is generally good with HTTPS and cookie consent mechanisms, but could be improved with additional security headers and published security policies.

P

Publica Global (Gibraltar) Limited

publica.com

68

Publica is a pioneering blockchain-based publishing platform that enables authors to tokenize their literary content as NFTs and sell them directly to readers worldwide. The platform offers an innovative business model combining crowdfunding, digital collectibles, and a proprietary secondary market, positioning itself as a niche leader in blockchain publishing. The company is based in Gibraltar and operates a web platform alongside iOS and Android e-reader apps. Technically, the website uses a modern JavaScript stack with integrations for analytics, marketing, and customer support, hosted likely on AWS infrastructure. Security posture is solid with HTTPS and domain protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-branded, targeting authors and readers interested in blockchain innovations in publishing.

H

Huler

huler.io

53

Huler is a technology company founded in 2020, offering a connected workplace platform that integrates digital work life tools, links, and media into a unified SaaS solution. The website positions Huler as a modern digital workplace platform targeting business professionals and organizations seeking productivity and integration solutions. Technically, the website is built on WordPress with popular plugins such as Yoast SEO and Elementor, hosted on Amazon AWS infrastructure, and employs modern analytics and marketing tools including Google Analytics, LinkedIn Insight, and Twitter tracking. The security posture is good with HTTPS enforced and use of Google reCAPTCHA, though it lacks explicit security headers and published security policies. Privacy compliance is limited due to absence of visible privacy and cookie policies. Overall, the website is professional, well-branded, and trustworthy with moderate user tracking and good SEO optimization.

K

Knack

knack.com

75

Knack is a well-established no-code application development platform that enables businesses to build, automate, and scale operations without coding. The company offers a unified platform combining database management, workflow automation, forms, and front-end design, targeting a broad range of industries including government, non-profit, and technology sectors. With over 6,000 users and a medium-sized company profile, Knack positions itself as a leading SaaS provider in the no-code space. The website is professionally designed, content-rich, and optimized for SEO and mobile use, reflecting a mature digital presence. Technically, the website leverages WordPress CMS with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, HubSpot, and various ad networks. The site uses HTTPS with good SSL configuration and includes several security best practices, although some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. From a security and compliance perspective, Knack provides comprehensive privacy and cookie policies with GDPR compliance indicators. However, the absence of WHOIS domain registration data raises concerns about domain transparency and trustworthiness, which slightly impacts the overall risk assessment. No explicit incident response or vulnerability disclosure information is publicly available. Overall, Knack presents a strong business and technical profile with a secure and user-friendly website. The main risk lies in the lack of publicly available domain registration details, which should be addressed to enhance trust. Strategic recommendations include improving security headers, publishing incident response contacts, and ensuring WHOIS transparency to bolster credibility.

H

Haus Seewil

seewil.ch

41

Haus Seewil operates as a non-profit youth camp house affiliated with Cevi Region Basel, located in Vinelz, Switzerland. The website serves as an informational and booking platform for community and youth groups seeking event and camp facilities. The business model focuses on facility rental and community service within the hospitality and non-profit sectors. The site targets youth organizations and local community groups, positioning itself as a trusted regional facility. Technically, the website is built on WordPress using the Uncode theme and incorporates modern web technologies including Slider Revolution, Google Analytics, and Google Tag Manager. Hosting appears to be provided by a Swiss hosting provider (Metanet). The site is mobile optimized with moderate performance and basic SEO and accessibility features. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX calls, but lacks important security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the website is professionally designed and trustworthy but would benefit from enhanced privacy disclosures, improved security headers, and more transparent contact information to strengthen compliance and user trust.

B

Blaues Kreuz Schaffhausen-Thurgau

blaueskreuz-sh-tg.ch

56

Blaues Kreuz Schaffhausen-Thurgau is a well-established Swiss non-profit organization with over 125 years of experience supporting individuals and families affected by alcohol and addiction issues in the Thurgau and Schaffhausen regions. The organization offers a range of services including counseling, outpatient alcohol withdrawal, group programs, and community engagement through initiatives like the Brocki Pfyn thrift shop and KafiTreff meetings. Their market position is strong within the regional non-profit sector, supported by recognized certifications such as ZEWO and QuaTheDA. Technically, the website is built on TYPO3 CMS and integrates modern web technologies including Google Custom Search, Matomo analytics for privacy-conscious tracking, and Google Tag Manager. The site is mobile-optimized with good SEO practices and a moderate performance profile. However, some improvements could be made in accessibility and security headers. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. It uses Matomo analytics, which is privacy-friendly, but lacks explicit cookie consent mechanisms and security.txt files for vulnerability disclosure. No critical vulnerabilities or suspicious content were detected, and the WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, Blaues Kreuz Schaffhausen-Thurgau presents a trustworthy and professional online presence suitable for its mature target audience. Strategic improvements in privacy compliance and security best practices would further enhance their digital maturity and user trust.

A

AGC Automotive

agc-automotive.com

71

AGC Automotive is a leading global supplier specializing in automotive glazing solutions with a history spanning over 60 years. The company positions itself as a world leader in automotive glass, offering a broad range of products including automotive replacement glass, glass for transport vehicles, and mobility solutions such as displays, antennas, and sensors. The website reflects a mature enterprise with a strong focus on innovation and sustainability, aligned with the AGC Group's corporate philosophy. Technically, the website employs modern JavaScript frameworks and integrates multimedia content via YouTube APIs, providing a responsive and accessible user experience. Security posture is solid with HTTPS enforced, though improvements can be made by implementing security headers and explicit cookie consent mechanisms. The absence of WHOIS data raises concerns about domain registration transparency, warranting further verification. Overall, the website is professional, trustworthy, and well-structured, targeting automotive industry professionals and partners.

S

Schweizerische Bodensee-Schifffahrt AG

sbsag.ch

55

Schweizerische Bodensee-Schifffahrt AG operates as a regional transportation and tourism company specializing in ferry and cruise services on Lake Constance (Bodensee). The company offers a variety of services including scheduled ferry routes, themed experience trips, event hosting such as weddings and corporate charters, and hospitality through partner restaurants. Their market position is that of a key regional player in transportation and tourism, targeting general audiences including tourists and local residents. The website reflects a professional and consistent brand image with good content quality and clear navigation.

P

PUSCH Praktischer Umweltschutz

pusch.ch

65

PUSCH Praktischer Umweltschutz is a Swiss non-profit organization dedicated to supporting municipalities, schools, and companies in practical environmental protection. Their services include environmental education, consultancy on biodiversity, climate, sustainable procurement, and circular economy. The website is professionally designed using TYPO3 CMS, with a clear structure and multilingual support (German and French). The organization maintains a strong online presence with social media channels and provides comprehensive contact information. Technically, the site uses modern web technologies and includes Google Tag Manager for analytics. Security posture is good with HTTPS enforced and cookie consent implemented, though no explicit security or incident response policies are published. Overall, the domain registration aligns well with the organization's profile, indicating legitimacy and trustworthiness.

S

Schweizerische Bodensee-Schifffahrt AG

bodensee-schiffe.ch

55

Schweizerische Bodensee-Schifffahrt AG operates a regional transportation and tourism service on Lake Constance, offering ferry and cruise ship services, experience trips, event hosting, and gastronomy. The company maintains a professional website built on WordPress with Elementor, integrating multiple plugins for booking and event management. The site is well-structured with good SEO practices and modern technology usage, including Google Analytics and Tag Manager for tracking. However, the absence of explicit privacy and cookie policies, as well as lack of visible security headers, indicates gaps in compliance and security posture. No contact emails or phone numbers were found in the provided content, which may affect user trust and support accessibility. Overall, the website is legitimate, consistent with the business claims, and provides a good user experience for its target audience.

H

HearingLife Canada

hearinglife.ca

76

HearingLife Canada operates as a national hearing care provider offering hearing tests, hearing aids, and related accessories primarily targeting Canadian consumers. The website is professionally designed with clear branding and consistent messaging aligned with its healthcare focus. It leverages modern digital marketing and analytics tools including Google Tag Manager and Visual Website Optimizer, and is built on the Sitecore CMS platform, indicating a mature technical infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and accessible contact information. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism, although explicit security policies and incident response information are not published. The absence of WHOIS data is a notable gap but does not detract significantly from the overall legitimacy given the professional presentation and operational indicators. Strategic recommendations include enhancing transparency with published security and privacy policies and verifying WHOIS data for trust assurance.

S

Standortförderung Zürioberland

zuerioberland-regionalprodukte.ch

53

Standortförderung Zürioberland is a regional economic and cultural promotion organization focused on the Zürcher Oberland area in Switzerland. The website serves as a platform to showcase local businesses, cultural events, tourism opportunities, and community initiatives. It targets residents, businesses, tourists, and partners interested in the region's development and lifestyle. The business model revolves around regional promotion and community engagement, positioning itself as a key player in fostering economic growth and cultural vibrancy in the area. Technically, the website is built on WordPress 6.8.2, utilizing modern JavaScript libraries such as jQuery, OpenLayers for mapping, Swiper for sliders, and YouTube iframe API for embedded videos. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some performance optimizations could be enhanced. The infrastructure appears stable and professionally maintained. From a security perspective, the site enforces HTTPS and uses sanitization libraries like DOMPurify to mitigate XSS risks. However, it lacks visible security headers such as Content-Security-Policy and does not provide explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is present, indicating room for improvement in security transparency and user trust. Overall, the website is professional, content-rich, and trustworthy, with a strong regional focus. To enhance its security posture and compliance, it should implement comprehensive privacy and cookie policies, add security headers, and provide clear contact channels for security incidents. These steps will improve user trust and regulatory adherence.

Feller AG is a well-established Swiss company specializing in electrical installation products and smart building technologies, operating since 1909. The company holds a leading market position in Switzerland, offering a broad range of products including switches, sockets, home automation solutions, and connected building services. Their website reflects a professional and consistent brand image, targeting both professional installers and private customers. Technically, the site uses modern JavaScript frameworks, integrates Azure Application Insights and Google Tag Manager for analytics and monitoring, and implements cookie consent mechanisms, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and monitoring tools in place, though explicit security headers and policies are not fully visible. Privacy compliance is moderate due to the absence of a clearly accessible privacy policy and terms of service. Overall, the site is safe, professional, and trustworthy with no signs of malicious content or blocking mechanisms.

S

Schellenberg Gruppe AG

pro-sales.ch

53

Schellenberg Gruppe AG is a well-established Swiss family-owned company specializing in traditional and digital communication solutions, including printing, crossmedia, security printing, and merchandising. The company holds a strong market position as a leading provider in the Swiss graphic industry, supported by multiple subsidiaries and a broad service portfolio. Their website reflects a professional and comprehensive presentation of their services, targeting business clients seeking high-quality printing and media solutions. Technically, the website employs modern web technologies such as Vue.js, UKit, and Matomo analytics, and is powered by Cockpit CMS. The site is mobile-optimized and provides a good user experience, although some improvements in accessibility and SEO could be made. Security-wise, the website uses HTTPS with good SSL configuration and some security best practices, but lacks explicit security headers and a vulnerability disclosure policy. Privacy compliance is limited due to the absence of privacy and cookie policies or consent mechanisms. Overall, the website is trustworthy and professional, with clear contact information and certifications displayed.

S

Schellenberg Gruppe AG

schellenberggruppe.ch

53

Schellenberg Gruppe AG is a Swiss-based printing and media company offering a wide range of services including offset printing, finishing, security printing, crossmedia solutions, and merchandise. The company targets business clients requiring flexible and efficient print media solutions, positioning itself as a well-established regional player with diversified competencies. The website reflects a professional and comprehensive presentation of services and team members, supporting a strong market presence. Technically, the website employs modern web technologies such as Vue.js, UKit, and integrates Matomo analytics and YouTube video content. The site is mobile-optimized with good performance and accessibility features, though some SEO and accessibility aspects could be improved. The use of Cockpit CMS indicates a custom content management approach. From a security perspective, the site uses HTTPS with good SSL configuration and some security headers, but lacks explicit security policies, incident response information, and a vulnerability disclosure mechanism. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency to reduce risk and improve user trust.

The website kronaby.cz represents Janeba Time, s.r.o., a small Czech retail business specializing in hybrid smartwatches under the Kronaby brand. The site provides product information and links to partner e-commerce platforms for purchase. The business targets consumers interested in classic design smartwatches with advanced technology. The website is built on the Incomedia WebSite X5 Pro CMS and uses modern web technologies including jQuery, Swiper.js, and Google Analytics. It is hosted likely by Forpsi, a Czech hosting provider, with domain registration consistent with the business age and location. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks some security headers and visible privacy or terms of service pages. No contact emails or phone numbers are explicitly provided on the main site, which may impact user trust and compliance. Overall, the site is professional and functional with moderate technical maturity.

V

Volg Konsumwaren AG

volg.ch

51

Volg Konsumwaren AG operates a well-established Swiss retail grocery chain focused on local convenience stores, offering a broad range of products, online shopping, and community engagement through recipes and magazines. The website reflects a mature digital presence with multilingual support and integration of modern web technologies such as TYPO3 CMS, Google Maps API, and Google Tag Manager. The security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting Volg's strong market position in Switzerland.