Security Directory

B

Bottle Raiders

arteagave.com

58

Arte Agave is a niche hospitality business specializing in immersive events celebrating fine agave spirits, cocktails, art, and culture. The company, legally known as Bottle Raiders, has been operating since 2013 and targets adult consumers interested in agave-based beverages and cultural experiences. Their business model includes event hosting and merchandising, supported by a professional website built on the Squarespace platform. The site features rich multimedia content, social media integration, and clear event-related policies. Technically, the website leverages modern web technologies and tracking tools such as Google Tag Manager and Facebook Pixel, ensuring moderate performance and good mobile optimization. Security posture is strong with HTTPS and HSTS enabled, though additional security headers and policies could enhance protection. Privacy and cookie policies are present but basic, with limited GDPR compliance indicators. Overall, the website presents a trustworthy and professional image suitable for its market niche.

O

OneLog AG

onelog.ch

69

OneLog AG operates a centralized login platform serving the Swiss media industry, enabling users to access multiple digital media offerings with a single registration. The platform is positioned as a key enabler for the Swiss Digital-Allianz, a coalition of major Swiss media and publishing houses. The website clearly communicates its value proposition, emphasizing simplicity, security, and centralized user data management. The business model revolves around providing a unified authentication service to media consumers, enhancing user experience across partner media brands.

S

Schweizer Strohmuseum

strohmuseum.ch

61

Schweizer Strohmuseum is a specialized cultural museum in Switzerland dedicated to the history and craft of straw art and industry. The website presents a well-structured and professionally designed platform offering information about exhibitions, guided tours, educational programs, and museum shop services. The target audience includes general visitors interested in cultural heritage and history. Technically, the site is built on the Squarespace CMS platform, leveraging modern web technologies such as Typekit fonts, Google reCAPTCHA, and Weglot for multilingual support. Performance and mobile optimization are good, though accessibility features could be improved. Security posture is strong with HTTPS and HSTS enabled, and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit privacy and cookie policies, which impacts compliance with GDPR and related regulations. Contact information is not clearly presented, which may affect user trust and business credibility. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and clearer contact channels.

K

K. Lienhard AG

lienhard-ag.ch

49

K. Lienhard AG is a Swiss engineering firm specializing in the planning, documentation, and maintenance of infrastructure for energy and water supply. With over six decades of experience, the company serves utilities and infrastructure operators across Switzerland, offering a broad range of professional services and products. The website reflects a mature market position with clear service offerings and a professional digital presence. Technically, the site is built on WordPress with WooCommerce and integrates privacy-conscious analytics and Google reCAPTCHA for form security. Security posture is solid with HTTPS and no obvious vulnerabilities, though some improvements in security headers and explicit policies could enhance trust. Overall, the site is accessible, well-structured, and compliant with GDPR, though a cookie consent mechanism is missing. Strategic recommendations include enhancing security policies, adding cookie consent, and publishing terms of service to improve compliance and user trust.

G

Gemeinde Dintikon

dintikon.ch

50

Gemeinde Dintikon is the official website of the municipality of Dintikon, Switzerland, providing residents and visitors with comprehensive information about local government services, politics, administration, education, environment, leisure activities, and current news. The site serves as a key communication channel for the community, offering contact details, event announcements, and online services. The website is well-structured and professionally designed, reflecting its role as a trusted local government portal. Technically, the website employs a modern but straightforward technology stack including jQuery, Bootstrap, Moment.js, and Google reCAPTCHA for form security. The site appears to be custom-built or uses a proprietary CMS, with moderate performance and good mobile optimization. However, there is room for improvement in accessibility and SEO optimization. No major technical issues or vulnerabilities are evident from the provided data. From a security perspective, the website uses HTTPS and integrates Google reCAPTCHA to protect forms. However, it lacks visible security headers and does not publish privacy or cookie policies, which are important for GDPR compliance and user trust. There is no evidence of a vulnerability disclosure policy or incident response contacts. Overall, the security posture is moderate but could be enhanced with additional best practices. The overall risk assessment is low given the nature of the site as a municipal government portal with no sensitive user data collection beyond basic contact forms. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and establishing clear incident response contacts to improve compliance and security maturity.

S

Spitex Limmat Aare Reuss AG

spitex-lar.ch

50

Spitex Limmat Aare Reuss AG is a Swiss healthcare provider specializing in outpatient nursing and care services. The company emphasizes professional, high-quality care with a strong focus on collaboration with healthcare professionals and families. Their services include somatic and psychiatric nursing, wound and stoma care, palliative care, dementia care, household services, and additional comfort services. They also invest in education and training, positioning themselves as a regional leader in outpatient care. Technically, the website is built on WordPress with modern analytics and security tools such as Google reCAPTCHA and Plausible Analytics. The site is well-optimized for mobile and SEO, with clear navigation and professional design. Security posture is good with HTTPS and form protections, though some security headers and policies could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website reflects a trustworthy and professional healthcare organization with a solid digital presence.

Regionales Führungsorgan Baden (RFO Baden) is a regional government entity responsible for coordinating emergency and disaster response measures in the Baden region of the Canton Aargau, Switzerland. The website serves as an information portal for the public and local authorities, providing updates on population protection, safety events, and emergency plans. The organization supports municipalities in managing crises and severe shortages, positioning itself as a key regional coordination body in civil protection. Technically, the website is built on WordPress using WPBakery Page Builder and Yoast SEO for content management and optimization. It employs modern web technologies including Bootstrap for responsive design and Google reCAPTCHA to secure its contact form. The site demonstrates good mobile optimization and basic accessibility features, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site uses HTTPS with an excellent SSL configuration and integrates reCAPTCHA to prevent spam. However, it lacks explicit security headers and does not publish incident response or vulnerability disclosure policies, which are important for transparency and trust. No critical vulnerabilities or suspicious elements were detected. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Overall, RFO Baden's website is a professional, trustworthy platform that effectively supports its governmental mission. Strategic enhancements in security policies, cookie consent, and transparency would further strengthen its security posture and compliance with data protection regulations.

R

Regionale 2025

regionale2025.ch

53

Regionale 2025 is a regional government-backed initiative focused on promoting cultural, spatial, and societal projects in the Limmattal region of Switzerland. The website serves as a platform to showcase around 30 innovative projects supported by 16 municipalities and the cantons of Aargau and Zürich, with a program of events running from May to October 2025. The target audience includes local residents, cultural stakeholders, and visitors interested in regional development and community engagement. The business model is primarily public sector and non-profit, emphasizing regional collaboration and cultural promotion. Technically, the website is built on WordPress with modern plugins such as Gravity Forms for data collection, Instagram Feed Pro for social media integration, and Google reCAPTCHA for form security. It uses Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good accessibility and SEO practices, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies and incident response information, which could be enhanced to improve trust and compliance. Privacy compliance is basic, with a privacy policy present but no cookie consent banner detected. Overall, the website is professional, trustworthy, and well-aligned with its public sector mission. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security and incident response policies, and enhancing security headers to strengthen the security posture further.

S

SocialCatnip

socialcatnip.com

55

SocialCatnip is a specialized Webflow development and digital marketing agency focusing on marketing technology, conversion tracking, GA4, and Google Tag Manager. The company targets B2B SaaS businesses and offers a comprehensive suite of services including marketing tech integrations, technical SEO, tracking and analytics, webflow development, paid media, web design, and local services ads. The website reflects a mature, professional business with a decade of experience and a strong client base, supported by positive testimonials and notable client logos. Technically, the website is built on Webflow and leverages modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Hotjar, and Microsoft Clarity. The site is well-optimized for performance, mobile responsiveness, and SEO, with a clean and professional design. Security practices include HTTPS enforcement and use of reCAPTCHA, but lack explicit security headers and published security policies. The security posture is solid but could be improved by adding formal privacy and cookie policies, incident response information, and vulnerability disclosure mechanisms. The absence of WHOIS data for the domain is a concern, suggesting either recent registration or privacy protection, which slightly reduces trustworthiness. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and compliance documentation.

R

Regionalpolizei Wettingen-Limmattal

repol-wettingen-limmattal.ch

59

Regionalpolizei Wettingen-Limmattal is a regional police authority serving multiple municipalities in the Wettingen-Limmattal area of Switzerland. The website provides information about their mission to maintain public safety, peace, and order in the contractual municipalities. The site targets residents and visitors of these municipalities and operates as a government entity with a small organizational size. Technically, the website uses modern web fonts, Font Awesome icons, and Google reCAPTCHA for bot protection, indicating a moderate level of digital maturity. The site is secured with HTTPS and presents structured data for organization details, enhancing SEO and trust. However, it lacks explicit privacy, cookie, and terms of service policies, which are important for compliance and user trust. Security posture is adequate with HTTPS and bot protection but could be improved by adding security headers and incident response information. Overall, the website is professional, trustworthy, and safe for general audiences, but it would benefit from enhanced privacy compliance and security transparency.

T

Tägi AG

taegi.ch

59

Tägi AG operates a regional leisure and sports center in Wettingen, Switzerland, offering year-round facilities including indoor and outdoor swimming pools, an ice rink, mini golf, sauna, and event spaces. The website reflects a well-established business with a clear focus on community recreation and event hosting. Their market position is that of a key local provider of sports and leisure services, targeting general public and sports enthusiasts. Technically, the website is built on WordPress with a modern theme and plugins, including Yoast SEO and Cookiebot for privacy compliance. The site is mobile-optimized and integrates social media channels effectively. Security posture is solid with HTTPS enforced and bot protection via Google reCAPTCHA, though some security headers could be improved. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

The website sanitaet.info represents Samariterverein Lägern Wettingen, a Swiss non-profit organization focused on first aid training and medical services. The site offers a broad range of courses, a simulation and training center, and a shop for related products. The organization appears to be well-positioned locally with partnerships evident through linked partner sites. Technically, the site is built on the Weebly platform using standard web technologies including jQuery and Google Analytics. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate; while HTTPS is implied, no explicit security headers were detected and the jQuery version is outdated, which could pose risks. Privacy compliance is basic with a cookie consent banner but no visible privacy policy or terms of service. WHOIS data is unavailable due to TLD restrictions and privacy protections, but the domain appears legitimate and consistent with the organization's profile. Overall, the site is functional and professional but could improve in security and privacy transparency.

P

Prägebüro GmbH

papiersaal-loc.ch

50

Prägebüro GmbH operates the Papiersaal and Folium event venues located in the historic Old Sihlpapierfabrik in Zurich, Switzerland. The company offers flexible event spaces suitable for conferences, presentations, and celebrations accommodating 60 to 600 guests. Their business model centers on venue rental complemented by comprehensive event services including catering, technical setup, and event creation. The company targets business, private, and public clients seeking unique event locations in Zurich. The website reflects a strong market position within the hospitality sector, supported by partnerships with local tourism and event organizations. Technically, the website is built on the Cmsbox CMS platform with integrations such as Google reCAPTCHA for form security, Typekit fonts for typography, and Piwik analytics for user tracking. The site is mobile-optimized, accessible, and SEO-friendly, delivering a professional user experience. Performance is moderate with modern web technologies employed, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a comprehensive privacy policy and terms of service, but the absence of a cookie consent banner reduces compliance confidence. Overall, the website is trustworthy, professional, and well-aligned with the business objectives. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing incident response information to improve compliance and security posture further.

Z

ZHERO Media

zheromedia.com

64

ZHERO Media is a professional digital communication and marketing agency offering a broad range of services including performance marketing, SEO, social media marketing, branding and design, content marketing, and art design. The company targets businesses seeking to enhance their brand positioning and ROI through strategic marketing campaigns. The website demonstrates a mature digital infrastructure with Webflow CMS, Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance. Security posture is solid with HTTPS and anti-CSRF cookies, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, but the professional presentation and client trust signals mitigate this risk. Overall, the website is well-designed, user-friendly, and compliant with GDPR cookie consent requirements.

Horfam d.o.o. is a Croatian company specializing in lighting solutions, offering a broad range of lighting products and services including design and project planning. Established in 2000, the company positions itself as a provider of modern, ecological, and energy-efficient lighting technologies tested in demanding applications. The website is built on WordPress, leveraging popular plugins such as Yoast SEO and Google Analytics, and includes a cookie consent mechanism compliant with GDPR requirements. Security measures include HTTPS and Google reCAPTCHA, but lack explicit security policies or vulnerability disclosures. The domain registration data aligns well with the company's claims, indicating legitimacy and trustworthiness.

3

365 Fit&Co

365fitco.sk

55

365 Fit&Co is a modern fitness center chain operating multiple locations in Slovakia, including Bratislava, Košice, and Prešov. The company offers well-equipped gym facilities, group training spaces, and wellness amenities such as Finnish saunas. Their market position is that of a regional fitness provider targeting health-conscious individuals seeking quality fitness and wellness services. The website reflects a professional digital presence with localized content and social media integration. Technically, the site is built on WordPress using the Salient theme and includes modern technologies such as Google Tag Manager and reCAPTCHA for security and analytics. Security posture is solid with HTTPS enforced and GDPR cookie compliance implemented, though explicit privacy policies and security disclosures are absent. Overall, the site is trustworthy and well-maintained, supporting the company's business credibility.

S

Stroka produkt d.o.o.

stroka.si

55

Stroka produkt d.o.o., operating under the brand Skupina stroka.si, is a well-established Slovenian IT service provider founded in 2005. The company offers a broad range of IT solutions including infrastructure management, business software integration (notably PANTHEON), digital workplace services leveraging Office 365, business analytics, custom software development, and digital transformation consulting. Their market position is strengthened by a Microsoft Gold Partner certification and multiple industry awards, reflecting a strong reputation in the Slovenian technology sector. The website content and design reflect a professional and mature digital presence targeting business clients seeking comprehensive IT solutions. Technically, the website is built on the DotNetNuke CMS platform, utilizing modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the company demonstrates a mature digital infrastructure and credible business operations.

I

Istarski filmski ured

istriafilmcommission.com

44

Istarski filmski ured is a regional film commission established in 2015 under the Istarska kulturna agencija (IKA) to promote and facilitate audiovisual production in the Istria region of Croatia. The website serves as an informational and promotional platform targeting filmmakers and producers, offering services such as location scouting, permit facilitation, and liaison with public and private entities. Technically, the site is built on WordPress using the Divi theme and several plugins for multilingual support, SEO, accessibility, and cookie compliance. The security posture is adequate with HTTPS enabled and some security best practices observed, though there is room for improvement in security headers and incident response visibility. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy or terms of service. The absence of WHOIS data for the domain is a notable concern, impacting trust and legitimacy assessment. Overall, the site is professional, content-rich, and serves its business purpose well, but could enhance transparency and security practices.

E

EKOME, spol. s.r.o.

ekome.cz

40

EKOME, spol. s.r.o. is a Czech company specializing in environmental emission measurements and ecological consulting, with a focus on stationary pollution sources and workplace risk factors. The company holds multiple accreditations and authorizations from the Ministry of the Environment, indicating a reputable position in its sector. Their website reflects a professional service provider targeting businesses and organizations requiring environmental compliance and consulting services. Technically, the website is built on WordPress with modern plugins and demonstrates good SEO and privacy compliance, including GDPR and cookie consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA integration, though some security headers could be improved. The absence of WHOIS data limits full trust assessment but the visible business information and certifications support legitimacy.

G

Games Croatia

gamescroatia.com

61

Games Croatia is an official project website dedicated to promoting the gaming industry and innovation within Croatia. The site serves as a hub for information about the project, its partners, public funding opportunities, and activities related to the Croatian games sector. The website targets game developers, industry stakeholders, and governmental bodies interested in fostering growth and collaboration in the gaming ecosystem. The business model appears to be informational and collaborative, supported by public or governmental funding, positioning itself as a niche regional initiative with a focus on technology and innovation. Technically, the website is built on the Squarespace platform, leveraging modern web technologies such as HTTPS with HSTS, Google reCAPTCHA for form security, and Google Fonts for typography. The site demonstrates good mobile optimization and a professional design, although some accessibility features could be enhanced. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the website enforces HTTPS and HSTS, uses reCAPTCHA to protect forms, and does not expose sensitive data or vulnerable libraries. However, privacy compliance could be improved by implementing a cookie consent mechanism and publishing explicit security and incident response policies. The absence of WHOIS data for the domain raises concerns about domain registration transparency, although the website content and partner affiliations suggest legitimacy. Overall, the site presents a professional and trustworthy front for the Games Croatia project but would benefit from enhanced privacy compliance and clearer domain registration information to strengthen trust and regulatory adherence.

P

Pro-Link

pro-link.pl

47

Pro-Link is a Polish digital marketing and web development company specializing in building PrestaShop e-commerce stores, SEO/SEM services, hosting, and domain registration. Established in 2004, the company has a solid market presence with a focus on small to medium businesses seeking online store solutions and digital marketing support. Their website reflects a professional and consistent brand image, targeting businesses in Poland. Technically, the site is built on WordPress with modern technologies such as Bootstrap, jQuery, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. Security measures include HTTPS and Google reCAPTCHA on contact forms, but lack advanced security headers and DNSSEC. The site complies well with GDPR, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, Pro-Link demonstrates a mature digital infrastructure with room for security enhancements.

B

Breedveld Staal

breedveldstaal.nl

60

Breedveld Staal is a well-established steel and metal supplier based in the Netherlands, with a business history dating back to 1946 and an active domain since 2003. The company serves industrial and business clients requiring steel products, positioning itself as a trusted B2B supplier in the manufacturing sector. The website reflects a professional business presence with good content quality and clear navigation, targeting business customers in need of steel and metal materials. Technically, the site uses modern JavaScript libraries such as Swiper.js and Fancybox, along with Google reCAPTCHA for form security, and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and policies could be improved or explicitly published. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance, suitable for its industry and audience.

F

Faneks

faneks.lv

54

Faneks is a Latvian-based company specializing in providing scientific and analytical equipment for production, analysis, and research. Their offerings include chromatography, mass spectrometry, spectral apparatus, titrators, synthesis equipment, and metrology services. The company targets laboratories, research institutions, and manufacturing businesses, positioning itself as a trusted regional supplier with a diverse portfolio of scientific instruments and services. The website is multilingual, professionally designed, and provides clear navigation and relevant content to its audience. Technical infrastructure is based on WordPress with modern plugins and SEO tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though additional security headers and explicit security policies could enhance protection. Overall, the domain registration and business information are consistent and trustworthy, supporting the legitimacy of the company.

D

Dan Abrams

dan-abrams.com

53

Dan Abrams is a well-established media entrepreneur and legal analyst with a diversified portfolio including media businesses, television and radio hosting, publishing, and hospitality ventures. The website reflects a professional media presence with good content quality and consistent branding. Technically, the site is built on WordPress using modern themes and plugins, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and some protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is credible and trustworthy but could improve in privacy and security transparency.

N

Nationale staalprijs

nationalestaalprijs.nl

46

Nationale staalprijs is a Dutch organization dedicated to promoting and awarding excellence in steel construction projects. The website serves as a platform to showcase nominations, winners, and project submissions related to steel construction within the Netherlands. It targets professionals and companies in the steel construction industry, providing information and recognition to encourage innovation and quality in this sector. The business model appears to be non-profit or industry promotional in nature, focusing on national recognition rather than commercial sales. Technically, the website is built on Drupal 10 CMS and integrates modern web technologies including Google Tag Manager, Google Analytics, YouTube and Vimeo APIs, and Google reCAPTCHA for form security. The site is mobile optimized with good navigation and SEO practices, although some accessibility features could be improved. Performance is moderate with asynchronous loading of scripts. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA on user registration and login forms to mitigate automated abuse. However, no explicit security headers were detected in the provided content, and there is no published security policy or incident response information. No vulnerabilities or exposed sensitive data were found in the analysis. Privacy compliance is limited as no privacy or cookie policies were found on the homepage content, which could be improved to meet GDPR standards. Overall, the website is professional, trustworthy, and well-targeted to its audience. The main risks relate to privacy compliance and security policy transparency. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and providing vulnerability disclosure information to enhance trust and compliance.

D

Dineplan

dineplan.com

10

Dineplan is a South African-focused online restaurant reservation platform offering consumers the ability to book tables, browse menus, and read reviews for over 2,000 restaurants. It also provides reservation software solutions for restaurateurs, positioning itself as a key player in the hospitality sector within South Africa. The website promotes mobile app usage for enhanced user experience and convenience. Technically, the site employs a modern technology stack including Google Maps API, reCAPTCHA, and multiple analytics and marketing tools such as Google Analytics, HubSpot, Hotjar, and TikTok Pixel. Security measures include HTTPS enforcement and CAPTCHA protections on user authentication forms, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data for the domain is a notable gap, reducing trustworthiness from a domain registration perspective. Overall, the site is professionally designed, mobile-optimized, and provides comprehensive privacy and terms documentation, supporting a good security and privacy posture.

N

new-hiemed

hiemed.com

55

Hierros del Mediterráneo (new-hiemed) is a medium-sized Spanish company specializing in steel sector services including distribution, transformation, panel sandwich supply, and industrial supplies. The company positions itself as a leader in the Mediterranean steel market, targeting business customers and professionals. The website is built on WordPress with Elementor and includes modern features such as structured data, cookie consent, and GDPR compliance. Security posture is generally good with HTTPS and reCAPTCHA in use, but lacks explicit security headers and a published security policy. WHOIS data is missing or unavailable, which slightly reduces trust but the website content and business presence appear professional and legitimate. Overall, the site demonstrates good digital maturity with room for improvement in security transparency and technical optimizations.

B

British Constructional Steelwork Association Ltd.

steelconstruction.org

68

The British Constructional Steelwork Association (BCSA) is a well-established trade body representing UK and Irish steelwork contractors and the wider structural steelwork supply chain. With a domain age dating back to 1997 and a history spanning over a century, BCSA provides membership services, industry directories, technical resources, training programs, and organizes events to support its members. The website targets industry professionals and stakeholders, offering comprehensive information and tools relevant to the steel construction sector. The business model centers on membership and industry support, positioning BCSA as a key national organization within its sector. Technically, the website employs modern web technologies including Bootstrap, jQuery, FontAwesome, Google reCAPTCHA, and a cookie consent management system. It is hosted via Cloudflare, ensuring robust performance and security. The site is mobile-optimized with good SEO and accessibility features, though some accessibility improvements could be considered. The technical infrastructure supports a professional and user-friendly experience. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and implements a cookie consent mechanism compliant with GDPR. However, explicit security headers are not detected, and no published security or incident response policies are found. No vulnerabilities or exposed sensitive data were identified in the analysis. Overall, the security posture is solid but could be enhanced by adding security headers and formal policies. The overall risk assessment is low, with the site demonstrating strong business credibility, good privacy compliance, and a professional online presence. Strategic recommendations include implementing security headers, publishing security policies, enhancing accessibility, and maintaining up-to-date third-party libraries to further strengthen the security and compliance posture.

V

VNET a.s.

vnet.sk

71

VNET a.s. is a well-established Slovak telecommunications company with over 22 years of experience providing a wide range of services including internet connectivity, digital TV, VoIP phone services, cloud hosting, and data center solutions. The company targets both residential and business customers, leveraging its own optical network and multiple data centers to deliver reliable and modern telecommunication services. Their market position is solid within Slovakia, supported by a strong customer base and strategic partnerships. Technically, the website employs modern technologies such as Bootstrap, Google Tag Manager, and Petite Vue, ensuring a responsive and user-friendly experience. Security measures include HTTPS, CAPTCHA integration, and a coordinated vulnerability disclosure policy, although explicit security headers and incident response contacts could be improved. Overall, the website reflects a professional and trustworthy business with good compliance to privacy and cookie regulations.

F

FETMED

fetmed.cz

47

FETMED is a specialized healthcare provider in the Czech Republic focusing on fetal medicine, genetics, and gynecology. The company operates two physical centers in Olomouc and Ostrava, offering comprehensive prenatal diagnostics, genetic consultations, psychological counseling, and pediatric cardiology. Their market position is that of a trusted regional specialist with experienced medical professionals and advanced diagnostic technologies. The website is professionally designed, mobile-optimized, and provides clear service information and contact channels. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, and Google reCAPTCHA, ensuring a functional and user-friendly experience. Performance is moderate with good mobile responsiveness and basic accessibility features. However, some security best practices such as security headers are missing, and no privacy policy or terms of service pages are present, which impacts compliance and trust. Security posture is generally good with HTTPS enforced and use of CAPTCHA for forms, but the absence of security headers and WHOIS transparency reduces the overall security confidence. No vulnerabilities or exposed sensitive data were detected. Cookie consent is implemented properly, supporting GDPR compliance to some extent. Overall, the website is a credible and professional healthcare service platform with room for improvement in privacy disclosures and security hardening. The lack of WHOIS data is a concern but may be due to local registry policies. Strategic recommendations include publishing privacy and terms policies, adding security headers, and maintaining updated libraries to enhance security and compliance.

N

Niedax Group

niedax-group.com

56

Niedax Group is a well-established German company specializing in cable management systems with over 100 years of experience. It operates globally with numerous subsidiaries and partners, serving industries such as energy, infrastructure, and manufacturing. The website reflects a professional and comprehensive digital presence, built on TYPO3 CMS with modern frontend technologies. Security posture is solid with HTTPS and reCAPTCHA usage, though some security headers could be enhanced. Privacy and cookie policies are present and GDPR compliant. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the company's extensive footprint and professional presentation.

L

Lekarna Soča

lekarna-soca.si

61

Lekarna Soča operates as a specialized online pharmacy based in Slovenia, offering a wide range of healthcare products including medicines, medical aids, nutritional supplements, and mother and child care items. The website is well-structured, targeting general consumers, patients, and individuals requiring medical supplies, with a business model centered on e-commerce retail and home delivery services. The company has been established since 2011, indicating a mature presence in the market. Technically, the website leverages the Magento e-commerce platform with integrations such as Google Analytics, Facebook Pixel, and Google reCAPTCHA to enhance user experience and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is solid with HTTPS enforced and standard security practices in place, but could be improved by adding explicit security headers and publishing a security policy. Privacy compliance is strong with a clear privacy and cookie policy and consent mechanism aligned with GDPR requirements. Overall, the website is professional, trustworthy, and secure, with no critical vulnerabilities detected.

S

Slovenski regionalno razvojni sklad

srrs.si

38

Slovenski regionalno razvojni sklad (SRRS) is a Slovenian public financial institution established in 2020, focused on providing favorable financing and subsidies to support regional development, agriculture, entrepreneurship, local infrastructure, and non-profit organizations across Slovenia. The institution operates multiple financial product programs tailored to different sectors and prioritizes sustainability, green transition, and social responsibility. The website reflects a professional and comprehensive digital presence with clear communication channels and extensive program information. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics, reCAPTCHA, and accessibility features, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and reCAPTCHA protection on forms, though explicit security headers could be more visible. Privacy compliance is well addressed with a comprehensive GDPR policy and cookie consent mechanisms. Overall, SRRS presents a trustworthy and authoritative online presence aligned with its government-backed mission.

F

fireTMS.com Sp. z o.o.

firexgo.com

70

fireXgo is a freight exchange platform integrated into the fireTMS transport management system, designed to serve transport and forwarding companies by providing a unified tool for posting freights, finding transport orders, and managing transport operations comprehensively. The platform leverages the established fireTMS user base and infrastructure, offering real-time load monitoring and GPS telematics integration to enhance operational transparency and efficiency. The business targets freight forwarders and carriers, positioning itself as a secure and reliable marketplace with verified users and a large volume of daily orders. Technically, the website is built on a modern React and Next.js stack, hosted by OVH sas, and integrates Google services such as reCAPTCHA and Tag Manager for security and analytics. The site is mobile-optimized and provides a professional user experience with clear navigation and comprehensive content. However, some GDPR compliance aspects, such as cookie consent mechanisms, are missing. From a security perspective, fireXgo enforces HTTPS, uses user verification to reduce fraud risk, and integrates GPS telematics for real-time tracking. The absence of DNSSEC and explicit security headers suggests room for improvement in hardening the platform. No critical vulnerabilities or exposed sensitive data were detected. Overall, fireXgo presents a credible and professional service with strong business credibility and technical maturity. Strategic improvements in privacy compliance and security policies would further enhance trust and regulatory adherence.

K

KENDRIS Capital Limited

kendriscapital.com

74

KENDRIS Capital Limited is an independent alternative investment fund manager specializing in multi-asset class fund solutions domiciled in Cyprus and Luxembourg. It operates as a wholly owned subsidiary of KENDRIS AG, targeting professional and well-informed investors with a comprehensive suite of fund management services including portfolio management, risk management, marketing, distribution, and fund administration. The company emphasizes a personal, independent, and digital approach to fund management, supported by a strong regulatory framework under CySEC. Technically, the website employs modern web technologies such as Google Tag Manager, Google Analytics, and CookieYes for consent management, ensuring a professional and user-friendly digital presence. Security measures include HTTPS enforcement and reCAPTCHA integration, though there is room for improvement in security headers and published security policies. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the overall website content and regulatory disclosures support a trustworthy business profile.

F

flyo.cloud - flyo.cloud

flyo.cloud

64

flyo.cloud is a technology-focused SaaS platform aimed at revolutionizing content workflows, targeting content creators and teams. The website presents a professional login page with modern design elements and uses technologies such as Vue.js, Font Awesome, and Google reCAPTCHA to enhance user experience and security. The domain is registered since 2021 and uses Cloudflare for DNS and hosting, indicating a reliable technical infrastructure. However, the site lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with HTTPS and bot protection but lacks security headers and published security policies. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security transparency.

D

Društvo DOVES – FEE SLOVENIA

ekosola.si

57

Ekošola.si represents a well-established Slovenian non-profit organization focused on environmental education and sustainable development awareness among children, students, and educators. The website serves as a hub for program information, news, projects, and partner engagement, positioning itself as a leading educational network in Slovenia. The business model revolves around educational program delivery, community involvement, and international cooperation under the Foundation for Environmental Education (FEE) umbrella. Technically, the website is built on WordPress using popular plugins such as Slider Revolution and WPBakery Page Builder, with modern web technologies including jQuery and Google reCAPTCHA for form security. The site demonstrates good mobile optimization and moderate performance, with a clean and professional design that supports user engagement and navigation. From a security perspective, the site enforces HTTPS, employs security headers, and integrates CAPTCHA to protect forms, reflecting a mature security posture. However, it lacks explicit security policies, vulnerability disclosure mechanisms, and incident response contacts, which are recommended for enhanced transparency and preparedness. Overall, the website is trustworthy, compliant with GDPR, and safe for general audiences. Strategic recommendations include adding dedicated security and incident response pages, improving accessibility features, and maintaining up-to-date software to mitigate potential vulnerabilities.

G

Gibraltaz

gibraltaz.fr

10

Gibraltaz is a French technology company founded in 2020, specializing in custom digital business solutions and software services primarily serving enterprises, associations, and territorial organizations in the Grand Est region and Luxembourg. The company offers a broad range of services including consulting, software development, UX/UI design, maintenance, and digital transformation support. They are recognized partners of regional industry initiatives and have won awards for innovation. Technically, the website is built on WordPress with modern plugins and frameworks, hosted by OVH, and uses HTTPS with some security best practices but lacks explicit security headers and formal policies. Contact is primarily via email and web forms, with social media presence on LinkedIn and Facebook enhancing credibility. Privacy and cookie policies are missing, representing compliance gaps. Overall, the website is professional, content-rich, and trustworthy, with moderate technical and security maturity.

S

Saentys

saentys.com

60

Saentys is a specialized creative consultancy agency focused on the real estate destination sector, providing services such as placemaking, leasing, tenant engagement, investment, and corporate solutions. The company positions itself as a leading agency helping real estate assets stand out in competitive markets. The website is professionally designed using WordPress with modern SEO and tracking tools, reflecting a mature digital presence. Security posture is adequate with HTTPS and CAPTCHA protections, though improvements in security headers and published policies are recommended. Overall, the site is trustworthy and well-maintained, supporting the company's business credibility.

A

Aji Groupe

aji-groupe.com

51

Aji Groupe is a specialized communication agency based in Alsace, France, focusing on the gastronomy sector. Founded in 2015, the company offers a range of services including culinary photography, custom website creation, social media management, and proprietary software solutions such as Aji Box and Aji Manager. The agency positions itself as a regional expert with a strong emphasis on digital marketing tailored to culinary businesses. Technically, the website is built on WordPress using Elementor and Yoast SEO, with modern libraries and Google reCAPTCHA for security. Hosting is provided by OVH sas, a reputable French provider. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the website is professional, well-branded, and compliant with GDPR, with clear trust indicators such as certifications and client testimonials.

Hottgenroth Software AG is a German software company specializing in energy and building technology solutions. The company targets professionals and businesses within the energy sector, offering software products and customer support services. Their website is professionally designed, consistent in branding, and primarily in German, reflecting their focus on the German market. The business model centers on providing specialized software tools for energy management and building technology, positioning them as an established player in this niche industry. Technically, the website is built on ASP.NET WebForms and utilizes common web technologies such as jQuery, Bootstrap, Google Tag Manager, and Google reCAPTCHA for security. Cookie consent is managed through Consentmanager.net, indicating a basic level of privacy compliance. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. SEO optimization is basic but present. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, which is positive. However, it lacks explicit security headers such as Content Security Policy and HSTS, and there is no publicly available privacy policy, terms of service, or vulnerability disclosure information. Incident response contacts and data protection officer details are also missing, which are important for compliance and trust. Overall, the website is safe and professional but could improve its privacy and security posture by publishing comprehensive policies, implementing security headers, and providing clear incident response channels. These improvements would enhance trustworthiness and compliance with GDPR and other regulations.

N

Niedax | Kleinhuis | Fintech

niedax.de

57

Niedax | Kleinhuis | Fintech is a well-established German industrial group specializing in cable management systems and electrical installation materials. With over 100 years of experience and a global presence in more than 30 countries, the company offers a broad product portfolio including steel, stainless steel, fiberglass-reinforced plastic, and PVC solutions. Their services include custom project management, BIM data provision, and technical consulting, targeting electrical installation professionals and industrial clients worldwide. The website reflects a mature digital presence with comprehensive content, multiple language options, and a professional design consistent with their market position. Technically, the website is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and Swiper JS, ensuring good mobile optimization, accessibility, and SEO. Security posture is strong with HTTPS enforced and use of Google reCAPTCHA on forms, though explicit security headers and published security policies are not evident. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. The main concern is the absence of WHOIS data for the domain www.niedax.com, which is inconsistent with the company's long history and global footprint. This discrepancy may be due to privacy protection or domain registration under a different domain, which slightly reduces trustworthiness. Overall, the website is professional, secure, and business credible, with recommendations to enhance transparency and security disclosures.

G

Giersiepen GmbH & Co. KG

gira.de

56

Gira is a well-established German company specializing in smart home technology products such as switches, sockets, and security systems. The company operates a professional partner network to distribute and install its products, targeting private customers, architects, and electrical professionals. The website is professionally designed, mobile-optimized, and rich in content, providing extensive product information, technical documentation, and customer support resources. The digital infrastructure leverages modern analytics and marketing tools with a strong emphasis on user consent and privacy compliance. Security posture is robust with HTTPS enforcement and consent-based tracking, though explicit security policies are not publicly disclosed. Overall, Gira presents a trustworthy and mature online presence consistent with its market position as a leading smart home technology provider in Germany.

G

Gewiss

gewiss.de

72

Gewiss is a well-established company operating in the energy sector, specializing in electrical components and energy management solutions. The website targets industrial and commercial customers, providing detailed product information and corporate content. The company maintains a professional online presence with consistent branding and comprehensive privacy and cookie policies, indicating a mature approach to regulatory compliance. Technically, the website leverages modern web technologies including Google Tag Manager, reCAPTCHA, and Cookiebot for consent management, and appears to be built on Adobe Experience Manager CMS. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is enforced and bot protection is implemented, though explicit security headers were not detected in the provided data, suggesting room for improvement. The WHOIS data is not publicly available, which is common for commercial entities but reduces transparency. Overall, the website demonstrates a solid security posture and compliance maturity with no critical vulnerabilities detected.

V

Vodovod i kanalizacija d.o.o. Ogulin

vodovod-ogulin.hr

43

Vodovod i kanalizacija d.o.o. Ogulin is a local public utility company providing potable water supply and sewage services to the Ogulin region in Croatia. The company emphasizes quality water provision, environmental protection, and customer satisfaction. The website serves as an information portal for consumers, offering news, service information, and contact options. The business operates in the energy sector with a small company size and targets local residents and water consumers. Technically, the website is built on WordPress using common plugins and libraries such as jQuery, Bootstrap, and Google reCAPTCHA. It features accessibility tools and is mobile optimized, providing a good user experience. However, the site lacks some advanced SEO and security configurations, such as security headers and detailed privacy policies. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. Google reCAPTCHA is used to protect forms from abuse. However, there is no published security or incident response policy, and the domain registration uses privacy protection, which reduces transparency. No critical vulnerabilities or malicious content were detected. Overall, the website is functional, professional, and trustworthy for its purpose but would benefit from enhanced privacy disclosures, security headers, and transparency in domain registration to improve trust and compliance.

S

SOGO

pluginsmarket.com

60

Sogo WordPress Plugins Market is a small technology business specializing in the development and sale of WordPress plugins. The website offers a range of plugins including calendar widgets, author recent posts, accessibility tools, and premium support services. The target audience primarily consists of WordPress site owners and developers seeking specialized plugin solutions. The business operates an e-commerce model leveraging the Easy Digital Downloads platform for sales and distribution. The domain age and registration details align well with the business history, supporting legitimacy and trustworthiness. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several third-party integrations such as Google Analytics, Google reCAPTCHA, and Tawk.to live chat. The site demonstrates good mobile optimization and accessibility features, including a dedicated accessibility plugin and UI controls. Performance is moderate with room for improvement in SEO and technical optimization. From a security perspective, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks explicit security headers and DNSSEC. There is no published security policy or incident response information, and no vulnerability disclosure mechanism is present. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Contact information is limited to contact forms without direct emails or phone numbers. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and clearer contact and policy disclosures to strengthen trust and security posture.

A

Afternic / GoDaddy Operating Company, LLC

kf-global.com

68

The website is a professional domain sales landing page hosted by Afternic, a GoDaddy company, offering the domain kf-global.com for sale. It provides multiple purchasing options including buy now, lease to own, and make an offer, targeting businesses or individuals interested in acquiring this domain. The site leverages modern web technologies such as React and Next.js, ensuring a responsive and performant user experience. Security measures include HTTPS, secure forms with reCAPTCHA, and standard security headers, reflecting a mature security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the site presents a trustworthy and professional marketplace environment for domain transactions.

S

SEO optimalizace s.r.o.

seooptimalizacesro.cz

52

SEO optimalizace s.r.o. is a Czech Republic based company specializing in web development, e-commerce solutions, digital marketing, and branding services. Established in 2010, the company positions itself as an expert in delivering tailored online solutions aimed at increasing client revenue and market presence. Their website showcases a professional design, clear navigation, and a comprehensive service portfolio targeting businesses seeking digital growth. Technically, the site employs modern frameworks such as Bootstrap and Nette, integrates Google reCAPTCHA for form security, and implements a robust cookie consent mechanism compliant with GDPR. Security posture is solid with HTTPS usage and no visible vulnerabilities, though security headers and explicit policies are not publicly detailed. Overall, the company demonstrates a mature digital presence with strong business credibility and compliance adherence.

O

O FELIZ Metalomecânica

ofeliz.com

48

O FELIZ Metalomecânica is a Portuguese manufacturing company specializing in metal construction, sheet profiling, laser cutting, and fabrication of lighting columns and communication towers. The company has a solid market presence since 2008, offering end-to-end solutions from design to final assembly. Their website reflects a medium-sized enterprise with a professional digital presence built on Drupal CMS, featuring multilingual support and integrated marketing tools like Google Analytics and reCAPTCHA for security. While the site is well-structured and content-rich, it lacks some privacy compliance features such as a cookie consent banner. Security practices include HTTPS and CAPTCHA protections, but could be improved with DNSSEC and security headers. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate operation.

G

GoDaddy Operating Company, LLC

fratellimantova.com

68

The website is a professionally designed domain sales landing page hosted on the Afternic platform, a well-known domain marketplace owned by GoDaddy Operating Company, LLC. It offers the domain fratellimantova.com for sale with clear pricing options including buy now and lease to own. The site targets German-speaking domain buyers and businesses looking for premium domain names. The presence of GoDaddy branding and a high Trustpilot rating enhances its credibility. Technically, the site uses modern web technologies such as React and Next.js, served via Akamai CDN, ensuring good performance and mobile optimization. Security is robust with HTTPS enforced, security headers present, and reCAPTCHA protecting forms. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. However, WHOIS data for the domain www.afternic.com is unavailable, likely due to querying a subdomain rather than the registered domain, which slightly impacts trust analysis. Overall, the site demonstrates a strong business and technical posture with minor gaps in WHOIS transparency.