Security Directory

Scheurich GmbH & Co. KG is a well-established German manufacturer and market leader in indoor and outdoor planters, with a history spanning over 90 years. The company emphasizes innovation, quality, and sustainable production, targeting consumers and retailers interested in home decoration and gardening products. Their business model focuses on manufacturing ceramic and plastic planters, supported by an online shop and extensive product range. The website reflects a professional and consistent brand image with clear navigation and multilingual support.

S

SharpSpring

sharpspring.com

64

SharpSpring is a well-established SaaS company providing a comprehensive marketing automation and CRM platform primarily targeting agencies and small to medium-sized businesses. The platform integrates sales automation, email marketing, social media management, and campaign tracking into a unified solution designed to fuel revenue growth. Positioned as an affordable alternative to leading competitors, SharpSpring benefits from its parent company Constant Contact's backing, enhancing its market credibility and reach. The website reflects a mature digital presence with rich content, clear navigation, and strong branding consistency.

A

Azul

azul.de

66

Azul is a specialty coffee roastery based in Bremen, Germany, focusing on high-quality coffee roasting, retail sales, and coffee education. The website presents a professional and well-structured digital presence built on WordPress, leveraging modern plugins such as WPBakery Page Builder, Slider Revolution, and Borlabs Cookie for cookie consent management. SEO is enhanced with Rank Math, and analytics are conducted via Matomo, indicating a moderate level of digital maturity. Security posture is good with HTTPS enabled and cookie consent implemented, though explicit security headers and privacy policies are missing. The site is accessible without any WAF or security challenges, and no adult or questionable content is present, making it safe for general audiences. Contact information is primarily via a contact form, with no explicit emails or phone numbers found in the HTML content. WHOIS data is minimal but does not raise suspicion, though more detailed registrant information would improve trust. Overall, Azul's website is a solid representation of a small specialty coffee business with room for improvement in privacy compliance and security best practices.

G

Gastivo

gastivo.de

55

Gastivo operates as a leading digital ordering platform tailored for the gastronomy sector in Germany, facilitating streamlined procurement between restaurants and suppliers. The website is built on a WordPress CMS with Elementor, indicating a modern and flexible technical infrastructure. The platform demonstrates good design quality, mobile optimization, and SEO practices, supporting a positive user experience for its target audience. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and incident response information, which could be improved to enhance trust and compliance. Privacy and cookie policies are absent, representing a compliance gap under GDPR regulations. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures to strengthen its risk profile.

I

i2 Ethics

i2-ethics.com

65

i2 Ethics is a Spanish-based compliance service provider specializing in anonymous whistleblowing channels and compliance with ENS and ISO 27001 standards. The company positions itself as an experienced niche player with over 10 years of expertise, targeting businesses requiring secure and compliant reporting mechanisms. The website is professionally designed using WordPress with modern technologies such as TailwindCSS and Cookiebot for cookie consent management. Hosting and domain registration are managed via Cloudflare, ensuring reliable infrastructure and security. Security posture is strong with HTTPS enforced and security headers present, though DNSSEC is not enabled and no explicit incident response or vulnerability disclosure policies are published. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy or terms of service. Contact is available via a web form but lacks direct emails or phone numbers. Overall, the website is trustworthy, secure, and well-positioned for its market segment but could improve transparency and compliance documentation.

C

Complianz B.V.

complianz.io

74

Complianz B.V. operates a leading privacy compliance platform specializing in WordPress and Shopify plugins and apps, trusted by over one million users globally. Their offerings focus on GDPR, ePrivacy, CCPA compliance, and cookie consent management, positioning them as a key player in the privacy technology sector. The company is based in the Netherlands and has been active since 2018, demonstrating a mature and stable market presence. Their website reflects a professional and user-friendly design, with comprehensive legal documentation and strong trust signals such as positive user reviews and a money-back guarantee. Technically, the website is built on WordPress using Elementor and integrates multiple modern technologies including Easy Digital Downloads for e-commerce, MonsterInsights for analytics, and Google Tag Manager for marketing. The site is well-optimized for performance, mobile responsiveness, SEO, and accessibility. Security practices include HTTPS enforcement and consent management, though there is room for improvement in DNSSEC and security headers. From a security perspective, the site shows a good posture with no detected vulnerabilities or exposed sensitive data. However, the absence of a published security policy or incident response information and lack of a vulnerability disclosure program are areas for enhancement. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, Complianz.io presents a trustworthy, professional, and technically sound online presence with a strong focus on privacy compliance solutions. Strategic improvements in security transparency and DNS security would further strengthen their position and trustworthiness.

H

Hextom Inc

hextom.com

61

Hextom Inc is a Toronto-based SaaS company specializing in software products designed to enhance e-commerce businesses, particularly those using Shopify and BigCommerce platforms. With a strong market presence as a top-rated Shopify partner trusted by over 270,000 merchants, Hextom offers a suite of apps focused on marketing, sales optimization, and store management. Their business model revolves around providing scalable SaaS solutions that help online merchants increase sales and streamline operations. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies such as jQuery, Bootstrap, and various JavaScript libraries for enhanced user experience. Hosting is provided via Amazon AWS, ensuring reliable infrastructure. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. From a security perspective, the site uses HTTPS and has domain status protections in place, but lacks DNSSEC and explicit security headers, which are recommended for enhanced security. The absence of a visible privacy policy and terms of service on the homepage is a compliance gap. Google Analytics is present but not fully configured, indicating room for improvement in analytics deployment. Overall, Hextom presents a credible and professional online presence with a solid business foundation. Strategic improvements in security headers, DNSSEC, and privacy documentation would strengthen their security posture and compliance standing.

G

Geli GmbH

geli.de

42

Geli GmbH is a well-established German family-owned manufacturer specializing in plastic products for gardening and household use. With over 75 years of experience, the company emphasizes sustainable and energy-efficient production processes, targeting gardeners and retail customers primarily in Germany. Their product portfolio includes a wide range of garden accessories, including watering cans and plant containers, with a focus on recycled plastics and environmental responsibility. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with WooCommerce, leveraging modern web technologies and analytics tools like Fathom Analytics. Security posture is solid with HTTPS enforced, though improvements can be made by adding security headers and cookie consent mechanisms. Overall, the business demonstrates strong credibility and market positioning in the manufacturing and retail sectors.

E

Entertainment Software Rating Board

esrb.org

66

The Entertainment Software Rating Board (ESRB) operates as a leading non-profit organization providing age and content ratings for video games and apps, primarily targeting parents and consumers to facilitate informed purchasing decisions. The organization also enforces advertising guidelines and runs a privacy certification program, positioning itself as a trusted authority in the media and entertainment sector. The website reflects a mature, well-established entity with consistent branding and comprehensive content tailored to its audience. Technically, the ESRB website is built on a modern WordPress CMS platform, utilizing popular frameworks and libraries such as Bootstrap 4 and jQuery, enhanced by performance optimization tools like WP Rocket. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, ensuring a high-quality user experience across devices. From a security perspective, the site enforces HTTPS, employs security headers, and monitors Content Security Policy violations, indicating a strong security posture. However, explicit security policies and incident response information are not publicly available, suggesting areas for improvement. No vulnerabilities or exposed sensitive data were detected. Overall, the ESRB website presents a low-risk profile with strong trust indicators and compliance with privacy regulations, including GDPR. The absence of WHOIS data due to privacy protection is justified given the organization's nature. Strategic recommendations include publishing detailed security policies, adding vulnerability disclosure mechanisms, and enhancing security contact visibility to further strengthen trust and compliance.

The Great Lakes St. Lawrence Seaway System website serves as the official digital presence for the St. Lawrence Seaway Management Corporation and the Great Lakes St. Lawrence Seaway Development Corporation. It provides comprehensive information and services related to commercial shipping, recreational boating, navigation, environmental stewardship, and community engagement within the Great Lakes and St. Lawrence Seaway region. The site targets a diverse audience including commercial shippers, recreational boaters, educators, and local communities, positioning itself as an authoritative source in the transportation sector. Technically, the website is built on WordPress with a modern tech stack including jQuery, Slick Slider, and various plugins for SEO, membership, and UI enhancements. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Hosting and DNS are managed via reputable providers including Cloudflare and Network Solutions, ensuring reliable uptime and security. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting basic privacy compliance. However, there is room for improvement in DNS security (DNSSEC not enabled) and the addition of explicit security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's identity, supporting its legitimacy. Overall, the website is professional, trustworthy, and serves its informational purpose effectively. Strategic enhancements in security headers, accessibility, and explicit privacy and incident response disclosures would further strengthen its posture.

J

Jobylon AB

trustcruit.com

67

Trustcruit, operated by Jobylon AB, is a technology company specializing in automated candidate feedback solutions designed to enhance recruitment processes and grow employer brands. Their SaaS platform provides data-driven insights to help employers attract top talent effectively. The website is professionally designed, leveraging WordPress with the Divi theme and integrates marketing and analytics tools such as HubSpot and Google Tag Manager. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to user data protection. However, the absence of WHOIS domain registration data raises questions about domain legitimacy, although the website content and branding suggest a legitimate business operation. Security posture is generally good with HTTPS enforced, but lacks visible security headers and explicit incident response information.

F

feinschreiber

feinschreiber.com

62

feinschreiber is a Bremen-based agency specializing in text, content creation, branding, and marketing services. Founded in 2018, the company offers a broad range of services including consulting, copywriting, SEO, social media, and storytelling, targeting businesses and brands seeking professional content solutions. The website demonstrates a strong market position with notable clients and a consistent brand presentation. Technically, the site is built on WordPress with modern libraries like jQuery and Swiper.js, and it implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Overall, the site is professional, accessible, and trustworthy, with clear contact information and no signs of malicious activity.

H

Hinrichs & Partner

stb-hinrichs.de

66

Hinrichs & Partner is a German tax consultancy firm providing personalized and professional tax advisory and accounting services to a broad range of clients from small businesses to large enterprises. The firm emphasizes digital client engagement through its Kanzlei-App and maintains a strong commitment to environmental sustainability. The website is built on WordPress with modern plugins and technologies, offering a good user experience with clear navigation and mobile optimization. Security posture is solid with HTTPS and GDPR-compliant cookie management, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the website and domain registration indicate a trustworthy and legitimate business with active operations and a professional online presence.

F

FHnet

eu-strategie-fh.net

57

FHnet operates as a collegial network of German universities of applied sciences focused on advancing EU research activities and funding participation. The platform serves as an information hub and strategic collaboration space for its members, primarily targeting academic and administrative staff involved in EU projects. The website is professionally designed, content-rich, and consistent with its educational and non-profit mission. Technically, it leverages WordPress with modern libraries such as Bootstrap and Leaflet.js, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is addressed with a privacy policy and cookie information, but lacks an explicit consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, with moderate technical and security maturity.

H

HSB - Hochschule Bremen

aufzurhsb.de

59

Hochschule Bremen (HSB) is a well-established university of applied sciences in Germany offering a broad range of Bachelor and Master degree programs with a strong emphasis on practical experience and international exposure. The website serves as an informational portal targeting prospective students, highlighting study programs, campus life, and application deadlines. The digital infrastructure is based on WordPress with standard plugins for privacy compliance and spam protection, reflecting a moderate level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and formal security policies. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the university's reputation and outreach efforts.

I

IVBM GmbH

ivbm-gmbh.de

57

IVBM GmbH is a small German real estate service company specializing in property management, asset management, and real estate valuation. The company operates primarily in Bremen and Hannover, targeting real estate owners and investors seeking professional management and valuation services. Their website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the site is built on WordPress with Bootstrap and uses a GDPR-compliant cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy and well-maintained, supporting the company's credibility in its niche market.

H

Hospiz St. Peter Oldenburg

hospiz-oldenburg.de

63

Hospiz St. Peter Oldenburg is a well-established non-profit healthcare provider specializing in hospice and palliative care services in Oldenburg, Germany. The organization offers stationary and day hospice care, grief counseling, and social services, aiming to support terminally ill patients and their families with dignity and compassion. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional design, targeting patients, caregivers, and the local community. Technically, the site is built on WordPress with modern libraries such as jQuery and Swiper.js, and employs GDPR-compliant cookie management. Security posture is solid with HTTPS and anti-spam measures, though some security headers could be improved. The WHOIS data aligns well with the business claims, showing transparency and legitimacy. Overall, the site demonstrates a strong commitment to privacy, compliance, and user experience.

B

Bernd Pfelzer

ra-pfelzer.de

38

Bernd Pfelzer operates a professional legal and notary practice based in Bremen, Germany, offering services primarily in tenancy law, inheritance law, traffic accident law, and debt collection. The website is designed to serve local clients seeking legal counsel and notary services, presenting clear contact information and service descriptions. The business is positioned as a small, specialized legal entity with a focus on personal client service. Technically, the website is built on WordPress using Bootstrap and FontAwesome, hosted on kasserver.com. It demonstrates good mobile optimization and moderate performance. The site uses HTTPS with a valid SSL certificate, ensuring secure communications. However, it lacks some advanced security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. From a security perspective, the site shows a solid baseline with no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contact limits transparency in security governance. No tracking or advertising scripts were detected, indicating minimal user tracking and a privacy-respecting approach. Overall, the site is trustworthy and professional but could improve in privacy compliance and security best practices.

S

Startseite - Stadtmagazin Bremen

stadtmagazin-bremen.de

62

Stadtmagazin Bremen is a local media outlet focused on providing news, events, and cultural information relevant to the Bremen area. The website serves residents and visitors interested in local happenings and cultural content. The business model revolves around media publication and event promotion within the Bremen community. Technically, the website is built on WordPress, uses Matomo for analytics, and Font Awesome for icons. Hosting appears to be provided by Ewetel, a German hosting provider. The site shows basic mobile optimization and moderate performance. Security posture is weak, with no detected security headers or explicit security policies, and no HTTPS status provided in the data. Privacy compliance is minimal, with no privacy or cookie policies found, and no consent mechanisms in place. Overall, the site is accessible and safe for general audiences but lacks advanced security and privacy features. Strategic improvements in security headers, privacy policies, and contact transparency are recommended.

2

Inklusion am Arbeitsplatz: Vielfalt fördern, Barrieren abbauen

27prozentvonuns.de

58

The website 27prozentvonuns.de is a German-language informational blog focused on promoting workplace inclusion, diversity, and barrier-free communication. It provides educational content, guides, and strategies aimed at professionals and organizations interested in fostering inclusive work environments. The site is built on WordPress, leveraging common plugins such as Yoast SEO for optimization and uses Cloudflare for DNS and likely CDN services. The technical infrastructure is modern and supports mobile responsiveness with good SEO practices. Security posture is adequate with HTTPS enabled and Cloudflare DNS, but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service page. Contact is available via a contact form, but no direct emails or phone numbers are published. Overall, the site is safe, professional, and trustworthy for its niche audience.

S

Silver Bell Group

silverbellgroup.com

42

Silver Bell Group is a professional business process outsourcing (BPO) provider specializing in scalable European nearshore sales and customer support teams. Their service offerings include sales outsourcing, customer support, lead generation, video customer experience, IT staffing, and a tech tool marketplace. The company targets global businesses seeking multilingual and on-demand BPO solutions based in Europe, with a physical presence in Belgrade, Serbia. The website is well-designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, the website is built on WordPress using the Elementor framework, leveraging modern JavaScript libraries and multiple third-party marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Cookiebot for consent management. The site employs HTTPS with a strong SSL configuration and uses reCAPTCHA to secure forms. However, explicit security headers are not clearly visible and could be improved. From a security perspective, the site demonstrates good practices including encrypted connections and cookie consent mechanisms, but lacks visible incident response contacts or security certifications. The absence of WHOIS registration data for the domain is a significant concern, as it raises questions about domain legitimacy despite the professional website. Overall, the website presents a low to moderate risk profile with strong business and technical maturity but requires verification of domain registration and enhancement of security transparency to improve trustworthiness and compliance.

Vallée de Joux 360° is a regional promotional website dedicated to showcasing the diverse facets of the Vallée de Joux region in Switzerland. It highlights local expertise, traditional talents, innovative activities, and community projects, targeting residents, tourists, and local businesses. The platform offers news, thematic content, a business directory, and newsletters to engage its audience effectively. Technically, the site is built on WordPress using Elementor and WooCommerce, integrating modern web technologies such as jQuery, Google Tag Manager, and OpenStreetMap for interactive features. The website demonstrates good mobile optimization and SEO practices, though accessibility could be further enhanced. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR, but lacks some recommended security headers like Content-Security-Policy and X-Frame-Options, which should be addressed to strengthen protection against common web threats. Overall, the domain registration data aligns well with the website's regional focus, supporting its legitimacy and trustworthiness. Strategic improvements in security headers and accessibility would further enhance the site's robustness and user experience.

P

Pur Jus

pur-jus.ch

47

Pur Jus is a specialized education provider based in Switzerland offering internationally recognized wine and spirits certifications, including WSET, Wine Scholar Guild, and RVFA programs. The company targets both amateur and professional wine enthusiasts, providing high-quality courses and workshops with a strong emphasis on recognized certifications and practical tastings. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and GDPR compliance, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

H

Hotelfachschule Zürich

hfz.swiss

54

Hotelfachschule Zürich is a specialized educational institution focused on hotel management and hospitality careers, primarily serving students and professionals in Switzerland and abroad. The website presents a professional image with clear navigation, comprehensive information about diploma programs, continuing education, and events. The institution is currently under the management of GastroSuisse, which has temporarily paused new student intakes but continues to support ongoing programs until 2027. Technically, the website is built on WordPress using the Kadence theme and JetEngine plugins, with modern web technologies and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the domain and website appear legitimate and trustworthy, with no signs of malicious activity or content blocking.

T

TECNOLUMEN GmbH & Co.KG

tecnolumen.com

48

TECNOLUMEN GmbH & Co.KG is a medium-sized German company specializing in the manufacture and retail of original Bauhaus lamps, design classics, and related lighting products. The company emphasizes high-quality craftsmanship and sustainability, targeting retailers, design enthusiasts, and collectors. Their market position is that of a niche leader in Bauhaus and classic design lighting. The website is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

V

Viaplay Radio

ilikeradio.se

64

Viaplay Radio operates as a digital media platform offering streaming access to 20 Swedish radio stations and podcasts through its website and mobile applications. The service targets Swedish-speaking audiences interested in diverse music genres and podcast content. The website is built on WordPress, leveraging modern JavaScript libraries and Google services for analytics and advertising. Privacy compliance is addressed through OneTrust cookie consent and detailed privacy and cookie policies. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS data for the exact domain queried suggests the domain may be a subdomain or alias, which slightly impacts trust but does not detract from the professional presentation and functionality of the site.

D

Divine Mercy University

divinemercy.edu

63

Divine Mercy University is a specialized higher education institution offering graduate degrees in psychology and counseling, grounded in a Catholic-Christian worldview. The university targets graduate students seeking online and on-campus education in these fields, positioning itself as a niche provider with a clear mission and focused academic offerings. The website reflects a professional and consistent brand image with good content quality and clear navigation, supporting its educational mission effectively. Technically, the site is built on WordPress using modern themes and plugins such as Kadence and Elementor, with integrations for event management, analytics, and marketing tools. The infrastructure supports good mobile optimization and accessibility features, including EqualWeb for enhanced accessibility compliance. SEO practices are well implemented with structured data and meta tags. From a security perspective, the site enforces HTTPS and includes standard security headers, indicating a solid baseline security posture. However, it lacks visible cookie consent mechanisms and published security or incident response policies, which are areas for improvement to enhance compliance and user trust. No critical vulnerabilities or suspicious patterns were detected. Overall, Divine Mercy University’s website demonstrates a mature digital presence suitable for its educational purpose, with recommendations focusing on improving privacy compliance and transparency around security policies to further strengthen trust and regulatory adherence.

N

National EMS Information System Technical Assistance Center (NEMSIS TAC)

nemsis.org

55

NEMSIS.org is the official website for the National EMS Information System Technical Assistance Center, a key organization providing standardized emergency medical services data collection and reporting across the United States. The site serves multiple EMS stakeholders including state data managers, EMS agencies, researchers, software developers, and educators by offering data standards, public datasets, technical resources, and training opportunities. The organization is well-established with a domain age dating back to 2002, reflecting its longstanding role in the EMS data ecosystem. Technically, the website is built on WordPress with a modern tech stack including jQuery, Owl Carousel, and ScrollMagic, supported by Google Fonts and Google Analytics for performance and analytics. Hosting and domain registration are managed via Amazon Registrar, Inc., indicating reliable infrastructure. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate with good design and navigation. From a security perspective, the site enforces HTTPS and has domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled, and there is a lack of explicit security policies, incident response information, and vulnerability disclosure mechanisms. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, NEMSIS.org is a trustworthy and professional resource for EMS data standards and services with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory compliance.

R

Real Centro Universitario Escorial - María Cristina

rcumariacristina.es

48

The Real Centro Universitario Escorial - María Cristina is a private university institution located in San Lorenzo de El Escorial, Spain, with a rich history dating back to 1892. It offers official undergraduate and postgraduate degrees in business administration, law, and related fields, affiliated with Universidad CEU San Pablo. The website reflects a well-established academic institution with a professional digital presence, including comprehensive academic program information, campus details, and active social media engagement. Technically, the website is built on WordPress with modern JavaScript libraries such as Swiper.js and jQuery, enhanced by SEO plugins and GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and uses HTTPS with good SSL configuration, though some security headers are missing. Analytics and marketing tools are implemented with user privacy in mind, leveraging Google Tag Manager and consent mode. From a security perspective, the site demonstrates a solid baseline with HTTPS and cookie consent but lacks published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. The absence of WHOIS data due to Red.es restrictions limits domain registration verification, but the website content and structured data strongly support legitimacy. Overall, the site is a credible, professional educational platform with good technical and privacy practices. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance trust and compliance.

V

Viaplay Radio

viaplayradio.se

64

Viaplay Radio operates as a Swedish media streaming platform offering 20 radio stations and podcasts accessible via their website and mobile apps. The service targets Swedish-speaking audiences interested in diverse music genres and radio content. The website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and OneTrust for cookie consent. SEO is well implemented using Yoast SEO. Security posture is moderate with HTTPS enabled and some security hardening plugins in use, but lacks comprehensive security headers and explicit privacy and terms of service pages. The absence of WHOIS data for the exact domain queried raises some concerns about domain registration legitimacy, though the site content and branding appear professional and consistent. Overall, the platform provides a good user experience with safe content suitable for general audiences.

N

Niklas Palmklint

palmklint.se

46

Niklas Palmklint operates a professional photography business based in Stockholm, Sweden, specializing in portrait, product photography, and image bank creation for businesses. The website presents a well-structured portfolio and service offering, targeting businesses and individuals seeking authentic and high-quality photographic content. The digital infrastructure is built on WordPress with modern plugins and SEO tools, hosted by ODERLAND, a Swedish registrar and hosting provider. Security posture is solid with HTTPS enforced and Google reCAPTCHA protecting forms, though some security headers and policies could be improved. Privacy compliance is basic but includes a cookie consent mechanism and a privacy policy page. Overall, the website is professional, trustworthy, and well-maintained, with no signs of malicious activity or content blocking.

P

PLR Jura bernois

plrgrandchasseral.ch

48

PLR Grand Chasseral is a regional political party website serving the Jura bernois area in Switzerland. The site provides political information, event announcements, and community engagement for local residents and voters. It is positioned as a small, regional government entity with a clear focus on local political activities. Technically, the website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a moderate level of digital maturity with good SEO and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal privacy or terms of service documentation. Overall, the site is safe, professional, and trustworthy but could improve privacy compliance and security best practices.

J

JP/Politikens Hus A/S

jppol.dk

58

JP/Politikens Hus A/S is a major Danish media house established in 2003, operating multiple news and publishing brands that reach approximately 3 million Danes monthly. The company holds a strong market position with about 100 million visits per month, offering news media, publishing, and niche media services. The website reflects a professional and consistent brand image targeting the Danish general public and media consumers. Technically, the site is built on WordPress using modern libraries such as jQuery and Modernizr, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements are recommended in DNSSEC implementation and security headers. Privacy compliance is partial, with a comprehensive privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with minor gaps in security and privacy transparency.

V

Vergic AB

psplugin.com

60

Vergic AB operates the Vergic Engage platform, a digital-first customer engagement solution designed to improve customer experience and revenue through personalized digital interactions. The company targets businesses and public organizations seeking to enhance their digital customer service and sales channels. The platform offers a comprehensive suite of tools including live chat, chatbots, video, digital voice, and collaboration features, supported by APIs and integrations with major CRM and contact center systems. Recently acquired by Puzzel, Vergic maintains a strong market presence with reputable clients primarily in Sweden and the Nordic region. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various marketing and analytics tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Hotjar. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and uses several security best practices, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency. Overall, Vergic presents a professional and trustworthy digital presence with a solid business model and technical foundation. The main risk lies in the lack of WHOIS transparency, which should be investigated further. Strategic recommendations include enhancing security headers, verifying domain registration details, and maintaining rigorous third-party script audits to ensure ongoing security and compliance.

S

Grands Sites du Gout – Entrez dans l'univers des Grands Sites du Goût

swisstastes.ch

50

The website 'swisstastes.ch' presents itself as a culinary and gourmet portal focused on Swiss tastes and culture, targeting a general audience interested in food and travel. The site uses WordPress CMS with the Enfold theme and integrates plugins such as MapPress for Google Maps and Google Tag Manager for analytics. The technical infrastructure is moderately modern, with basic mobile optimization and SEO features. However, the site lacks visible privacy and cookie policies, contact information, and security best practices such as security headers and vulnerability disclosures. This indicates a low maturity in security and privacy compliance. Overall, the website is functional but requires improvements in security posture and compliance to enhance trust and professionalism.

S

STnet

stnet.ch

63

STnet AG is a Swiss company specializing in transport and mobility services, providing digital solutions and information primarily for public transport users in Switzerland. The company maintains a professional and well-structured website built on WordPress, incorporating modern web technologies and monitoring tools such as New Relic and Google Tag Manager. The website is accessible, mobile-optimized, and offers clear contact information, including email, phone, and contact forms, supporting user engagement and service inquiries. Security posture is solid with HTTPS enforced and standard security headers present, although explicit security policies and incident response details are absent. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a dedicated privacy policy and terms of service pages. Overall, the website reflects a trustworthy and professional digital presence aligned with the company's business focus.

T

Taberg Media Group

tabergmediagroup.se

44

Taberg Media Group is a well-established Swedish media and communication company founded in 2005, offering a broad range of services including print production, expo solutions, profile products, creative marketing, and digital solutions. The company operates across multiple Swedish cities, positioning itself as a full-service communication partner for businesses seeking integrated marketing and print services. Their website reflects a mature digital presence with professional design, clear service segmentation, and active marketing integrations. Technically, the site is built on WordPress with the Divi theme and leverages modern JavaScript libraries and marketing tools such as HubSpot, Google Tag Manager, and Facebook Pixel. Security posture is generally good with HTTPS enabled and no critical vulnerabilities detected, though some security headers like Content-Security-Policy are missing, and DNSSEC is not enabled. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism in place, aligned with GDPR requirements. Contact information is primarily via web forms, with no explicit emails or phone numbers visible on the homepage. Overall, the site is trustworthy, professional, and well-suited for its business purpose.

S

Stockholm Waterfront

stockholmwaterfront.com

45

Stockholm Waterfront is a well-established event venue located in central Stockholm, offering flexible spaces for conferences, congresses, corporate events, exhibitions, concerts, and banquets. The venue caters to a diverse audience including event organizers and corporate clients, with capacity for up to 3,000 participants. The website reflects a professional and consistent brand presence with detailed information about services and event spaces. Technically, the site is built on WordPress using Elementor and includes common plugins for SEO and cookie management. The site is mobile-optimized and provides a cookie consent mechanism compliant with GDPR principles, although no explicit privacy policy or terms of service were found in the provided content. Security posture is moderate with HTTPS enforced and domain transfer protection enabled, but lacks DNSSEC and security headers. No contact emails or phone numbers were found in the analyzed content, which limits direct contact transparency. Overall, the domain registration data is consistent and supports the legitimacy of the business.

S

Grands Sites du Gout – Entrez dans l'univers des Grands Sites du Goût

sites-du-gout.ch

40

The website 'swisstastes.ch' presents itself as a platform dedicated to the 'Grands Sites du Goût', likely focusing on Swiss gastronomy and culinary heritage. The site targets a general audience interested in food culture and regional specialties. The technical infrastructure is based on WordPress using the Enfold theme, with integrations such as MapPress for Google Maps and FontAwesome for icons. Google Tag Manager is employed for analytics, indicating some level of user tracking and data collection. However, the site lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture appears weak due to the absence of security headers and explicit security policies. No contact information or forms were detected, limiting user engagement and support options. Overall, the site is functional but requires improvements in privacy, security, and business transparency to enhance trust and compliance.

L

Lac Souterrain de Saint-Leonard

lac-souterrain.com

40

Lac Souterrain de Saint-Leonard operates a tourism website promoting the largest natural navigable underground lake in Europe, located in Switzerland. The site offers guided boat tours, group visits, school visits, private events, and concerts. The business targets tourists and visitors interested in unique natural experiences within the hospitality sector. The website is built on WordPress using Elementor and related plugins, with integrations for booking and chatbot services. The technical infrastructure is modern and moderately performant, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain protection flags, but lacks explicit security headers and formal privacy or security policies. No email contacts are publicly listed, but a clear phone contact is provided. The site includes a cookie consent mechanism, indicating some GDPR awareness, though no privacy policy was found. Overall, the website is professional and trustworthy, but could improve privacy compliance and security transparency. Hidden spam links found in the content should be addressed to maintain reputation.

V

VAUD

vaudplus-produits.ch

54

The website www.vaud.ch/terroir is an official government platform representing the Canton of Vaud in Switzerland. It focuses on promoting the region's rich terroir, local products, and quality certifications such as the VAUD CERTIFIÉ D’ICI label. The site targets residents, local producers, and visitors interested in regional gastronomy and culture. It serves as a comprehensive informational and promotional tool, reinforcing the Canton’s market position as a reputable and authentic source of local products and tourism information. Technically, the site is built on WordPress with modern integrations including Google Tag Manager, Matomo Analytics, and Facebook Pixel, ensuring robust tracking and marketing capabilities. The design is professional, mobile-optimized, and accessible with clear navigation and rich content. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site demonstrates high business credibility and trustworthiness, supported by consistent branding and official domain registration.

Algarve 2020 is a travel-focused website providing content about the Algarve region in Portugal and other travel destinations. The site offers travel articles, guides, and tourism information targeting travel enthusiasts and tourists interested in this region. The business model is content publishing through a WordPress platform, with a niche focus on travel and tourism. The website demonstrates good content quality and consistent branding but lacks formal business contact information and privacy-related policies. Technically, the site is built on WordPress using the Blocksy theme and Yoast SEO plugin, with lazy loading for images to improve performance. The site is mobile optimized and uses HTTPS with good SSL configuration. However, it lacks advanced security headers and formal privacy and cookie policies, which are important for compliance and trust. From a security perspective, the site has a solid foundation with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of security policies, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in security maturity. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website is a legitimate travel content platform with moderate technical and security posture. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and compliance.

D

Daxa Nema

daxanema.com

38

Daxa Nema is a small technology company specializing in cloud-hosted eCommerce solutions, primarily developing Shopify apps under a SaaS model. The company has established a credible market presence since 2016 as a Shopify Partner with over 2,000 active users and a strong app rating. Technically, the website is built on WordPress using the Divi theme, leveraging common plugins for analytics and cookie consent. The site demonstrates moderate performance and basic SEO and accessibility features. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, but lacks visible direct contact emails or phone numbers on the homepage.

E

Exactag GmbH

exactag.com

66

Exactag GmbH operates a specialized marketing performance platform focused on Multi-Touch Attribution (MTA), Marketing Mix Modeling (MMM), and advanced tracking technologies. Founded in 2010 and based in Germany, Exactag targets marketing professionals and advertisers seeking data-driven insights to optimize marketing spend and effectiveness. The company positions itself as a technology provider offering future-proof tracking and best-of-breed algorithms to deliver flexible data solutions. Technically, the website is built on WordPress with WPBakery Page Builder, hosted likely on AWS infrastructure, and integrates Cookiebot for GDPR-compliant cookie management alongside Google Tag Manager and analytics services. The site demonstrates good digital maturity with structured data, responsive design, and SEO optimization. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though DNSSEC is not enabled and some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed via Cookiebot consent mechanisms and a comprehensive privacy policy in German. However, explicit terms of service, security policies, incident response contacts, and vulnerability disclosure mechanisms are not present. Overall, the website is professional, trustworthy, and aligned with its business objectives, with recommendations to enhance security headers and publish formal security and incident response policies.

A

ActiveMedia, Digital Designers

activemedia.pt

61

ActiveMedia is a well-established digital agency based in Portugal, specializing in web design, UX/UI, content creation, and digital signage. With over 22 years of experience, the company positions itself as a trusted partner for brands seeking authentic and effective digital solutions. The website reflects a mature digital presence with professional design, clear branding, and comprehensive service offerings tailored to businesses and brands. Technically, the site is built on WordPress with modern integrations such as Weglot for multilingual support, Sendinblue for marketing automation, and Hotjar for user behavior analytics, indicating a good level of digital maturity. Security posture is strong with HTTPS enforced and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, secure, and compliant with privacy regulations, making it a credible digital agency in its market.

F

FCCN, Unidade FCT

fccn.pt

68

FCCN, Unidade FCT is a Portuguese digital services unit under the Fundação para Ciência e Tecnologia (FCT), providing technological infrastructure and services to the scientific and academic community in Portugal. The organization manages the national research and education network (Rede RCTS) and offers key services such as online learning platforms, secure file sharing, and digital content publication. The website reflects a strong market position with strategic partnerships and a clear focus on supporting research and education through technology. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and user experience tools such as Google Analytics, Hotjar, and Cookie Script for compliance and tracking. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are not publicly detailed. Overall, the site is professional, accessible, and trustworthy, serving a specialized audience effectively.

O

Omnisend

omnisend.com

76

Omnisend is a specialized ecommerce-focused email and SMS marketing automation platform designed to help ecommerce brands increase revenue efficiently through automation, segmentation, and multi-channel campaigns. The company positions itself as a nimble and user-friendly SaaS solution with strong integrations to major ecommerce platforms such as Shopify, WooCommerce, and BigCommerce. The website demonstrates a mature digital presence with professional design, comprehensive content, and strong branding consistency. Technically, the site leverages WordPress CMS with modern JavaScript libraries, analytics, and consent management tools, indicating a well-maintained infrastructure. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and a public security policy are absent. WHOIS data is not publicly available, likely due to privacy protection, which slightly reduces trust but is common for SaaS businesses. Overall, the site is professional, secure, and compliant with privacy regulations, targeting ecommerce marketers and businesses seeking marketing automation solutions.

T

TECNOLUMEN GmbH & Co.KG

tecnolumen.de

44

TECNOLUMEN GmbH & Co.KG is a German company specializing in the manufacture and retail of Bauhaus and design classic lighting, fittings, and design objects. The company targets design enthusiasts, retailers, and businesses with a focus on high-quality, timeless design products. Their market position is that of a niche leader in Bauhaus lighting and design classics, supported by a dealer network and an online shop. The website reflects a mature digital presence with WordPress CMS, SEO optimization via Yoast, and privacy-conscious analytics using Matomo. The technical infrastructure is solid, hosted via kunde24.de, and includes modern web technologies such as jQuery and Bootstrap. Security posture is good with HTTPS enforced and secure data collection forms, though some security headers and explicit security policies are missing. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting the company’s business credibility and customer engagement.

A

Artimeta BV

artimeta.nl

36

Artimeta BV is a Netherlands-based B2B company specializing in the distribution of design lighting products. Their clientele includes light, design, and furniture stores as well as project designers in sectors such as yachting and hotel interiors. The company has an established online presence with a domain registered since 1998, reflecting a mature business. The website showcases a curated collection of lighting products from various brands, targeting professional partners rather than end consumers. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, indicating a modern and flexible infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, some technical improvements are recommended, including enabling DNSSEC, adding security headers, and properly configuring analytics tools. From a security perspective, the site uses HTTPS but lacks advanced security headers and DNSSEC, which are important for enhancing protection against common web threats. The absence of a cookie consent mechanism and incomplete privacy compliance features indicate potential regulatory gaps, especially under GDPR. No incident response or security policy information is publicly available, which could be improved to enhance trust. Overall, Artimeta presents as a credible and professional business with a solid market position in the lighting distribution sector. Strategic improvements in security and privacy compliance would strengthen their digital maturity and reduce potential risks.

E

Element Green

element-green.com

58

Element Green operates as a network of 17 owner-managed companies specializing in interior and exterior greening solutions across Germany, Austria, and Switzerland. Their services include office greening, object greening, vertical and horizontal plantings, and professional plant care, positioning them as a collaborative and experienced player in the real estate and hospitality sectors. The website is professionally designed with comprehensive content, clear navigation, and good mobile optimization, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and Yoast SEO, employing modern libraries and security best practices such as HTTPS and security headers. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and contact information suggest a legitimate business. Privacy compliance is strong with a detailed privacy policy, but the lack of a cookie consent mechanism and security incident response policy are areas for improvement. Overall, the site scores well on content quality and technical implementation but should address compliance and domain legitimacy issues to enhance trust and security posture.