Security Directory

R

Ringier AG

tv8.ch

61

The website boutique.illustre.ch is a subscription platform for L'illustré, a Swiss magazine published by Ringier AG. It offers paper subscriptions for various durations, including 3 months, 6 months, 1 year, and 2 years, with additional access to digital content such as an e-magazine and TV8 channels. The site targets French-speaking Swiss readers interested in lifestyle and entertainment content. Technically, the site is built using modern frameworks like Next.js and React, hosted on AWS infrastructure, and integrates OneTrust for cookie consent and New Relic for performance monitoring. Security posture is strong with HTTPS and standard security headers implemented. However, the site lacks explicit privacy policy and terms of service pages on the analyzed URL, and no direct contact information is visible, which slightly impacts privacy compliance and user trust. WHOIS data confirms the domain is legitimately owned by Ringier AG, matching the website's branding and business claims.

B

Bitpanda

bitpanda.com

70

Bitpanda is a prominent European online brokerage platform specializing in a wide range of investment products including cryptocurrencies, stocks, ETFs, precious metals, and leverage trading. The platform targets retail investors and crypto enthusiasts across Europe, offering easy access to trading starting from as low as 1 euro. Bitpanda positions itself as a leading broker with a comprehensive suite of services including savings plans, staking, and educational resources to empower users. Technically, the website is built on modern frameworks such as Next.js and React, ensuring fast performance, mobile optimization, and good SEO practices. The use of analytics tools like RudderStack indicates a mature digital infrastructure. Security-wise, the site enforces HTTPS, employs multiple security headers, and shows no visible vulnerabilities, reflecting a strong security posture. However, the absence of publicly available WHOIS data and direct company contact details slightly reduces transparency. Overall, Bitpanda presents a professional, trustworthy, and compliant online presence suitable for its financial services business.

J

JobRad GmbH

jobrad.org

68

JobRad GmbH operates as Germany's leading provider of bicycle leasing services, specializing in offering employees, employers, self-employed individuals, and public sector organizations access to leased bicycles and e-bikes as a sustainable mobility benefit. The company maintains a strong market position with over 100,000 corporate clients and a comprehensive service portfolio including digital portals for order management and customer support. The website reflects a mature digital presence with modern technologies such as Next.js and React, integrated consent management, and customer review widgets enhancing user trust and engagement. Security posture is robust with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS registration details slightly impacts domain trust but does not detract from the overall professionalism and legitimacy of the business. Strategic recommendations include publishing detailed security and incident response policies and improving transparency around domain registration data.

E

Energy

energy.ch

57

Energy.ch is a leading Swiss media and entertainment platform focused on radio broadcasting and digital content delivery. The website targets a broad Swiss audience with localized entertainment and streaming services. It is part of the Ringier AG media group, a well-established entity in Switzerland. The site demonstrates a mature digital infrastructure using modern web technologies such as React and Next.js, integrated with advertising and tracking tools like Google Tag Manager and Yieldlove. Privacy compliance is well addressed with comprehensive policies and a cookie consent mechanism powered by OneTrust. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the website is professional, trustworthy, and well-positioned in its market segment.

R

Rockit Radio

rockitradio.ch

52

Rockit Radio is a Swiss-based online webradio platform specializing in rock music streaming, ranging from classic rock to alternative genres. The website positions itself as a niche media service targeting rock music enthusiasts primarily in the German-speaking regions of Switzerland. It offers live streaming, curated playlists, and multiple radio channels under its brand umbrella. The platform maintains a consistent brand identity with active social media engagement on Facebook and Instagram, enhancing its market presence. Technically, the website leverages modern web technologies including React and Next.js frameworks, integrated with Contentful as a headless CMS. It employs industry-standard analytics and advertising tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and Prebid.js for programmatic advertising. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers to protect users. It also integrates a GDPR-compliant cookie consent mechanism via OneTrust. However, it lacks explicit security policies or incident response contact information, and no vulnerability disclosure policy is present. No critical vulnerabilities or suspicious patterns were detected, indicating a mature security posture appropriate for its business scale. Overall, Rockit Radio presents a professional, trustworthy, and compliant online media service with a solid technical foundation. Strategic improvements in security transparency and incident response readiness could further enhance its risk management and user trust.

V

Vintage Radio

vintageradio.ch

52

Vintage Radio operates as a Swiss-based online webradio streaming service specializing in classic pop music hits from the 1960s through the 1990s. The website presents a professional and consistent brand image, targeting a general audience interested in nostalgic music experiences. Their market position is niche, focusing on vintage pop classics, supported by curated playlists and live streaming services. The business model revolves around digital streaming and advertising revenue. Technically, the site leverages modern web technologies including React and Next.js frameworks, with integration of Google Analytics and advertising platforms such as Google DoubleClick and Ringier Advertising. The site is mobile-optimized and demonstrates good SEO practices, though hosting provider details are not explicitly identified. Cookie consent mechanisms are implemented, reflecting awareness of privacy regulations. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or incident response contact information suggests room for improvement in transparency and preparedness. Privacy compliance is basic, with a privacy policy and cookie banner present but lacking detailed GDPR compliance indicators. Overall, Vintage Radio presents a trustworthy and professionally maintained digital presence with moderate technical maturity and a solid security posture. Strategic enhancements in privacy transparency and incident response readiness would further strengthen their risk management and user trust.

T

Tamedia Espace AG

berneroberlaender.ch

61

Berner Zeitung is a well-established regional news media outlet under Tamedia Espace AG, serving the Bernese Oberland region with news, events, and subscription services. The website demonstrates a mature digital infrastructure using modern web technologies such as Next.js and UnityCMS, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforcement, security headers, and consent management for GDPR compliance. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

R

Ringier AG

interviewbyringier.ch

64

Interview by Ringier is a subscription-based print magazine platform operated by Ringier AG, a reputable Swiss media company. The website offers exclusive interviews with prominent Swiss personalities and targets German-speaking Swiss readers interested in cultural and in-depth interview content. The platform is professionally designed using modern web technologies such as React and Next.js, with performance and mobile optimization considered. Security measures include HTTPS, cookie consent via OneTrust, and monitoring through New Relic. Legal pages such as privacy policy, terms of service, and imprint are present and accessible. Overall, the website demonstrates a mature digital presence with good business credibility and privacy compliance.

S

Sandoz España

sandozfarma.es

62

Sandoz España operates as a subsidiary of Novartis, focusing on providing pharmaceutical products and healthcare solutions within Spain. The website serves as a corporate portal offering information about the company, its leadership, therapeutic areas, patient commitments, and career opportunities. The site targets healthcare professionals, patients, and potential employees, reflecting a mature enterprise presence in the healthcare sector. Technically, the website is built using modern web technologies including React and Next.js, hosted on Amazee.io infrastructure. It employs Google Tag Manager for analytics and OneTrust for cookie consent management, indicating a commitment to privacy compliance and data governance. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are not publicly available, suggesting room for improvement in transparency and security communication. Overall, the website presents a professional and trustworthy digital presence consistent with a large healthcare enterprise. The lack of publicly accessible WHOIS data is due to .es domain registry policies and does not detract from the site's legitimacy. Strategic recommendations include publishing detailed security policies, implementing a security.txt file, and enhancing accessibility to further strengthen trust and compliance.

S

Sandoz

sandoz.ua

67

Sandoz Ukraine operates as a subsidiary of Novartis, a global healthcare company headquartered in Switzerland. The website presents Sandoz as an independent pharmaceutical company focused on providing healthcare solutions in Ukraine. The site targets healthcare professionals, patients, and partners within the Ukrainian market, offering information about corporate values, anti-corruption programs, medical inquiries, and career opportunities. The branding and content align with a professional healthcare organization, reflecting a large enterprise business model within the pharmaceutical sector. Technically, the website is built using modern web technologies including React and Next.js, with integration of Google Tag Manager for analytics and OneTrust for cookie consent management. The site demonstrates good mobile optimization and a moderate performance profile. However, some SEO and accessibility features could be enhanced for better compliance and user experience. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating awareness of privacy regulations such as GDPR. Nonetheless, the absence of security headers, vulnerability disclosure information, and published privacy or terms of service policies suggests room for improvement in security posture and compliance transparency. The lack of WHOIS data limits the ability to fully verify domain legitimacy, although the website content and branding provide positive trust signals. Overall, the website is professional and trustworthy in appearance but would benefit from enhanced security practices, clearer privacy documentation, and improved domain registration transparency to strengthen its risk profile and stakeholder confidence.

S

Sandoz

sandoz.com.br

10

Sandoz Brasil is a division of Novartis specializing in generic and biosimilar medicines, serving healthcare professionals and patients in Brazil. The website reflects a mature enterprise with a clear focus on pharmaceutical products, corporate governance, and patient information. Technically, the site uses modern frameworks such as Next.js and React, with integrations for analytics and cookie consent, indicating a good level of digital maturity. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, suitable for its healthcare industry context.

S

Sandoz

sandoz.com.au

10

Sandoz Australia operates as a division of Novartis, focusing on providing access to generic and biosimilar pharmaceutical products. The website reflects a global healthcare leader's digital presence, targeting healthcare professionals and patients with information about their medicines and corporate responsibility. The site is professionally designed with consistent branding and clear navigation, supporting their market position as a major pharmaceutical entity. Technically, the site uses modern frameworks such as Next.js and React, hosted on a reputable platform (Amazee.io), and integrates Google Tag Manager and OneTrust for analytics and privacy compliance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be enhanced. WHOIS data is unavailable due to privacy policies, but the domain appears legitimate and consistent with the business identity. Overall, the site demonstrates a mature digital infrastructure suitable for an enterprise healthcare company.

T

Tamedia AG

carteblanche.ch

61

The website www.carteblanche.ch serves as a customer loyalty platform for subscribers of Tamedia AG's newspapers and magazines, offering exclusive discounts, contests, and cultural event benefits. It is well integrated into the Tamedia media ecosystem, reflecting a strong market position in the Swiss media sector. The site targets subscribers interested in cultural, sports, and travel offers, leveraging a digital customer card model to enhance subscriber engagement. Technically, the site is built on modern web technologies including Next.js and React, supported by a robust content management system (UnityCMS). It employs industry-standard analytics and advertising tools such as Google Analytics, DoubleClick, and OneTrust for cookie consent, ensuring compliance and performance. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the website enforces HTTPS, uses multiple security headers, and integrates CAPTCHA on contact forms to mitigate abuse. While no explicit security policy or incident response contacts are published, the overall security posture is strong with no evident vulnerabilities. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and aligned with the business identity of Tamedia AG. It demonstrates a mature digital presence with good security and privacy practices, supporting its role as a customer engagement platform within the media industry.

K

Kantonsspital Baden

kantonsspitalbaden.ch

75

Kantonsspital Baden is a large regional healthcare provider in Switzerland offering comprehensive medical services, research, and patient care. The website reflects a mature digital presence with a modern tech stack including Next.js and React, hosted on Vercel, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

G

Galaxus

galaxus.be

73

Galaxus.be is a well-established e-commerce platform serving the Belgian market, specializing in IT, electronics, telecommunications, and a broad range of consumer products. It operates as a subsidiary of Digitec Galaxus AG, Switzerland's largest online retailer, leveraging a strong brand presence and extensive product catalog. The website demonstrates a mature digital infrastructure with modern technologies such as Next.js and React, optimized for performance and mobile responsiveness. Privacy and cookie policies are clearly communicated with user consent mechanisms, reflecting compliance with GDPR requirements. Security posture is robust, with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly disclosed. WHOIS data is restricted due to registry policies, but the brand's market reputation supports legitimacy. Overall, Galaxus.be presents a professional, trustworthy, and user-friendly online shopping experience.

G

Galaxus

galaxus.at

73

Galaxus is a large e-commerce platform primarily serving Austria and other European markets, offering a wide range of products including electronics, computers, toys, and home appliances. It operates under the parent company Migros and maintains a strong market position with multiple country-specific portals. The website demonstrates a high level of digital maturity, utilizing modern technologies such as React, Next.js, and GraphQL, supported by robust analytics and payment integrations. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly detailed. Overall, the platform is professional, trustworthy, and compliant with GDPR requirements, making it a reliable online retail destination.

D

Digitec

digitecgalaxus.ch

73

Digitec is a leading Swiss e-commerce platform specializing in consumer electronics, operating under Digitec Galaxus AG. The website serves a broad Swiss consumer audience with a comprehensive product range including smartphones, TVs, notebooks, and more. It maintains a strong market position as Switzerland's online market leader in this sector, supported by quality content, community engagement, and attractive deals. The technical infrastructure is modern, leveraging React and Next.js frameworks, GraphQL APIs, and robust third-party integrations for payments and analytics. Hosting is managed via Akamai, ensuring fast and reliable delivery. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site demonstrates high professionalism, trustworthiness, and digital maturity.

L

Level27 BV

level27.eu

46

Level27 BV operates a professional hosting service website targeting agencies and businesses seeking reliable and hassle-free web hosting solutions. The company has been established since 2004 and positions itself as a niche provider offering fast, stable hosting with direct support. The website is built on modern technologies including Next.js and React, with a CMS likely based on Strapi. It employs Cookiebot for GDPR-compliant cookie management and integrates analytics and marketing tools such as Google Analytics, Hotjar, and Facebook Pixel. The site demonstrates good mobile optimization and SEO practices, with a clean and professional design.

S

SafetyWing

safetywing.com

66

SafetyWing is a specialized insurance provider offering global health and travel insurance products tailored for remote workers, digital nomads, and remote companies. Founded in 2017, the company positions itself as a modern alternative to traditional national welfare systems, targeting a niche but growing market segment. The website presents a professional and consistent brand image with clear product offerings such as Nomad Insurance and Remote Health Insurance. The technical infrastructure leverages modern web technologies including React and Next.js, supported by a variety of marketing and analytics tools such as HubSpot, Google Tag Manager, and Facebook Pixel. Hosting and DNS services are provided by reputable providers, ensuring reliable performance and availability. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data, but lacks some security headers and explicit privacy and cookie policies, which are critical for compliance and user trust. The WHOIS data confirms the domain's legitimacy and appropriate age for the business history. Overall, SafetyWing demonstrates a solid digital presence with room for improvement in privacy compliance and security best practices.

B

Buffer

buffer.com

69

Buffer is a well-established social media management platform founded in 1996, offering a comprehensive suite of tools for content creation, publishing, analytics, engagement, and team collaboration. The company targets small businesses and social media professionals, positioning itself as a trusted and user-friendly SaaS solution with over 190,000 active users. The website reflects a mature digital presence with excellent design, clear navigation, and strong branding consistency. Technically, Buffer employs modern web technologies including React and Next.js, hosted behind Cloudflare, ensuring fast performance and robust security. The site implements comprehensive cookie consent mechanisms aligned with GDPR requirements and uses multiple analytics and marketing tools responsibly. Security posture is strong with HTTPS, security headers, and CSRF protections, though DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, Buffer demonstrates high business credibility and digital maturity, with minor recommendations to enhance security transparency and DNS security. The website content is safe for general audiences and free from adult or questionable material.

GoFor!Artists is a professional German-language platform specializing in local artist booking for various events including weddings, birthdays, corporate events, and more. The platform offers a transparent and secure booking process, supported by state funding from the German Federal Ministry of Economics, which adds credibility. The website is well-designed, mobile-optimized, and rich in content, providing users with easy navigation and comprehensive information about artists and event types. Technically, the site leverages modern frameworks such as Next.js and Material-UI, and integrates multiple analytics and marketing tools including Google Tag Manager, Matomo, and HubSpot. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are not published. The absence of WHOIS data for the domain is a notable concern, potentially indicating recent registration or privacy protection, which slightly reduces trust. Overall, the platform presents a trustworthy and professional service for event organizers seeking entertainment solutions.

N

NBC News

telemundo.com

64

Telemundo is a leading Spanish-language media website operated under the NBC News umbrella, providing comprehensive news coverage, entertainment, and lifestyle content targeted at the Hispanic community in the United States. The site features full episodes of series and shows, along with up-to-date news and multimedia content. Its market position is strong as a major player in Spanish-language broadcasting and digital media. Technically, the website leverages modern web technologies including React and Next.js, with robust video streaming via JWPlayer and integrated advertising and tracking tools such as Taboola and Criteo. The site is well-optimized for mobile and desktop platforms, ensuring a fast and accessible user experience. Security-wise, the site employs HTTPS with strong SSL configurations and security headers, along with cookie consent mechanisms compliant with GDPR. However, explicit security policies and incident response details are not publicly available, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, likely due to privacy protection. Strategic recommendations include publishing detailed security policies, enhancing incident response transparency, and adding a vulnerability disclosure mechanism.

V

Vocal

vocal.media

60

Vocal is a digital media platform designed to support, discover, and reward content creators by providing tools for story creation, audience building, and monetization through reads, tips, and challenges. The platform targets creative individuals and readers interested in storytelling and community engagement. It holds a niche position in the media industry focusing on creator empowerment and safe content moderation without intrusive advertising. Technically, Vocal employs a modern web stack including React and Next.js frameworks, supported by a variety of third-party analytics and advertising services such as Google Analytics, Heap Analytics, Facebook Pixel, and TikTok Pixel. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced. From a security perspective, the website enforces HTTPS with strong SSL configuration and implements multiple security headers, reflecting a mature security posture. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for further strengthening trust and compliance. Overall, Vocal presents a professional and trustworthy platform with extensive content and community features. The absence of direct contact information and privacy-protected WHOIS data is typical for media platforms and does not detract significantly from its credibility. Strategic improvements in transparency and security communication would enhance its risk profile and user trust.

S

Specialized Bicycle Components

rovalcomponents.com

71

Specialized Bicycle Components operates a comprehensive e-commerce platform focused on bicycles, bike wheels, components, and cycling gear. The company targets a broad audience ranging from professional cyclists to casual riders and commuters. Their market position is strong, supported by a professional website that showcases a wide product range and emphasizes quality and innovation. The website is well-designed, mobile-optimized, and provides clear navigation and rich content, enhancing user experience. Technically, the website leverages modern web technologies including React and Next.js, and integrates third-party marketing and analytics tools such as Klaviyo, Monetate, Affirm, and Klarna. The site employs HTTPS with strong security headers, indicating a good security posture. However, the absence of WHOIS data limits the ability to fully verify domain registration legitimacy. Privacy and cookie policies are present and indicate GDPR compliance, though explicit contact details and security policies are limited. Overall, the website demonstrates a mature digital infrastructure and a solid security foundation, with room for improvement in transparency of domain registration and explicit security incident response information. The risk profile is low given the professional nature of the business and the absence of vulnerabilities or suspicious content.

Lavva Digital Agency is a Portugal-based creative digital agency specializing in branding, website design, and digital activation services. Established in 2015, the agency has built a strong market position with a portfolio of award-winning projects and a focus on delivering innovative digital experiences to ambitious companies. Their services include brand identity, UX design, web development, marketing consultancy, and SEO, targeting a diverse range of industries including technology, energy, hospitality, and healthcare. Technically, the website is built on a modern stack using Next.js and React, optimized for performance and mobile responsiveness. The site employs Google reCAPTCHA v3 for form security and includes a cookie consent mechanism, reflecting good privacy compliance practices. SEO and accessibility features are well implemented, contributing to a professional user experience. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements best practices such as secure forms and consent management. However, explicit security headers and a public security policy or incident response contacts are absent, representing areas for improvement. No vulnerabilities or suspicious activities were detected. Overall, Lavva Digital Agency presents a trustworthy and professional online presence with strong business credibility and technical maturity. Strategic enhancements in security policy transparency and additional security headers would further strengthen their security posture.

T

Telewizja Puls Sp. z o.o.

puls2.pl

62

Puls 2 is a Polish television channel operated by Telewizja Puls Sp. z o.o., offering a broad range of entertainment including series, films, and cultural programming targeted at a general Polish audience. The website reflects a mature digital presence with modern web technologies such as React and Next.js, providing a responsive and user-friendly experience. The site integrates social media channels extensively, enhancing audience engagement and brand visibility. From a security perspective, the site employs HTTPS and DNSSEC, indicating a good baseline security posture, though explicit security policies and incident response contacts are not publicly available. Privacy and cookie policies are present and appear GDPR compliant, with consent mechanisms implemented. Overall, the site is professional, trustworthy, and well-maintained, supporting the brand's market position as a reputable media outlet in Poland.

W

WarnerMedia Direct, LLC

cartoonnetwork.pl

69

HBO Max, operated by WarnerMedia Direct, LLC, is a leading subscription-based streaming service offering a wide range of entertainment content including movies, TV shows, originals, and live sports. The website analyzed is a 404 error page in German language, indicating the requested content is unavailable. Despite this, the site demonstrates a mature technical infrastructure using modern web technologies such as React and Next.js, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms in place. Privacy policies are comprehensive and GDPR compliant. However, direct contact and security policy information are not present on this error page, limiting some aspects of compliance verification. WHOIS data for the domain is not publicly available in the provided raw output, but the branding and domain usage strongly indicate legitimacy as part of WarnerMedia's portfolio.

J

JetBrains

kotlinlang.org

72

Kotlinlang.org is the official website for the Kotlin programming language, developed and maintained by JetBrains. The site serves as a comprehensive resource for developers interested in Kotlin, offering documentation, code examples, API references, and community engagement. It positions Kotlin as a concise, multiplatform language suitable for server-side, mobile, web, and desktop applications, reflecting JetBrains' strong market presence in developer tools and programming languages. The website is professionally designed with excellent content quality and clear navigation, targeting developers and enterprises leveraging JVM and multiplatform technologies. Technically, the site employs modern web frameworks such as Next.js and React, hosted on AWS infrastructure. It integrates analytics and marketing tools like Google Tag Manager and Optimizely, alongside a cookie consent mechanism compliant with GDPR. The site demonstrates good performance, mobile optimization, and accessibility standards, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS with strong domain registration protections, including clientDeleteProhibited and clientTransferProhibited statuses. While DNSSEC is not enabled, the overall SSL configuration and security headers indicate a solid security posture. However, explicit security policies and incident response contacts are not publicly available, suggesting room for improvement in transparency and vulnerability management. Overall, kotlinlang.org is a trustworthy, professional, and well-maintained platform that effectively supports the Kotlin developer community. Strategic recommendations include enabling DNSSEC, publishing a dedicated security policy, and providing clear incident response contacts to enhance security transparency and compliance.

S

Sandoz

sandoz.com

71

Sandoz is a global leader in generic and biosimilar medicines, dedicated to pioneering access to medicines for patients worldwide. The company operates an enterprise-scale digital presence with a modern tech stack including Next.js and React, hosted on Amazee.io, and integrates Google Tag Manager for analytics and cookielaw.org for cookie consent management. The website demonstrates excellent content quality, professional design, and clear navigation targeting patients, healthcare professionals, investors, and partners. Security posture is strong with HTTPS enforcement and cookie consent, though some security headers could be more explicitly implemented. WHOIS data is unavailable or privacy protected, which is common for large enterprises, but the website's legitimacy is supported by consistent branding and corporate governance disclosures. Overall, the site is secure, compliant with privacy regulations, and professionally maintained.

F

Forcepoint

forcepoint.com

75

Forcepoint is a leading enterprise cybersecurity company specializing in data security and cloud security solutions. The company serves over 10,000 customers globally, including government agencies and large enterprises, providing advanced protection for data across cloud and network environments. Their market position is strong, supported by recognized certifications such as ISO 27001, SOC 2, and FedRAMP, reflecting a commitment to security and compliance. The website clearly communicates their value proposition and key services, targeting security professionals and enterprise clients. Technically, the website is built on modern frameworks including Next.js and React, hosted on Pantheon with robust performance and mobile optimization. The site integrates advanced analytics and marketing tools such as Visual Website Optimizer and Google Analytics, enabling detailed user behavior tracking and optimization. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms implemented. From a security perspective, Forcepoint demonstrates strong security posture with HTTPS enforcement, security headers, and published security policies. The presence of incident response contacts and vulnerability disclosure programs further enhance trust. No critical vulnerabilities or suspicious content were detected. However, the WHOIS data is unavailable or protected, which slightly reduces transparency but does not detract significantly from overall legitimacy. Overall, Forcepoint's website reflects a mature, professional cybersecurity provider with strong technical and security foundations. Recommendations include maintaining up-to-date third-party libraries, enhancing transparency on data retention, and continuing rigorous security audits to sustain trust and compliance.

F

fireTMS.com Sp. z o.o.

firexgo.com

70

fireXgo is a freight exchange platform integrated into the fireTMS transport management system, designed to serve transport and forwarding companies by providing a unified tool for posting freights, finding transport orders, and managing transport operations comprehensively. The platform leverages the established fireTMS user base and infrastructure, offering real-time load monitoring and GPS telematics integration to enhance operational transparency and efficiency. The business targets freight forwarders and carriers, positioning itself as a secure and reliable marketplace with verified users and a large volume of daily orders. Technically, the website is built on a modern React and Next.js stack, hosted by OVH sas, and integrates Google services such as reCAPTCHA and Tag Manager for security and analytics. The site is mobile-optimized and provides a professional user experience with clear navigation and comprehensive content. However, some GDPR compliance aspects, such as cookie consent mechanisms, are missing. From a security perspective, fireXgo enforces HTTPS, uses user verification to reduce fraud risk, and integrates GPS telematics for real-time tracking. The absence of DNSSEC and explicit security headers suggests room for improvement in hardening the platform. No critical vulnerabilities or exposed sensitive data were detected. Overall, fireXgo presents a credible and professional service with strong business credibility and technical maturity. Strategic improvements in privacy compliance and security policies would further enhance trust and regulatory adherence.

Z

Zeitpol AG

aha.ag

59

AHA (operated by Zeitpol AG) is a hospitality and cultural venue located in Aarau, Switzerland, offering a diverse range of live events, dining experiences, and room rentals. The website presents a professional and engaging platform showcasing upcoming events, restaurant offerings, and cultural programs, targeting local residents and visitors interested in entertainment and social gatherings. The business is relatively young, founded in 2021, and positions itself as a vibrant community hub with a unique industrial ambiance. Technically, the website leverages modern frameworks such as Next.js and React, hosted on AWS infrastructure, and integrates common analytics tools like Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and comprehensive security headers. Privacy compliance is partial, with privacy and terms pages present but no cookie consent mechanism. Overall, the site is trustworthy, well-branded, and user-friendly, though improvements in security and privacy transparency are recommended.

H

Hotel Aarauerhof

aarauerhof.net

64

Hotel Aarauerhof is a modern self check-in hotel located in the center of Aarau, Switzerland, offering 75 rooms with amenities such as highspeed WLAN and breakfast. The website is professionally designed using modern web technologies including Next.js and React, with integration of Usercentrics for consent management and Aleno for reservations. The security posture is good with HTTPS enforced and no exposed sensitive data, though some security headers and incident response information are missing. The domain WHOIS data is unavailable, which raises some legitimacy concerns, but the website content and business presentation are professional and trustworthy. Overall, the site is well-optimized for SEO, mobile, and accessibility, targeting business travelers and tourists seeking flexible accommodation.

AutoScout24.ch is a leading online automotive marketplace in Switzerland, offering vehicle listings for buyers and sellers. The platform is part of Scout24 AG, a reputable company in the digital classifieds sector. The website employs modern web technologies such as React and Next.js and is protected by Cloudflare's security services, including Turnstile captcha, indicating a strong focus on security and bot mitigation. However, the current content is inaccessible due to the Cloudflare WAF challenge, limiting the ability to fully assess the website's content, privacy policies, and user experience. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website appears to be a professional and established platform in the transportation sector, but the security challenge page restricts comprehensive analysis.

R

ReviewsJet

reviewsjet.com

61

ReviewsJet is a SaaS platform specializing in aggregating and displaying customer reviews from multiple sources such as Google, Yelp, Etsy, and more. It targets small and medium businesses seeking to enhance their website credibility through authentic testimonials and social proof. The platform offers integrations with popular website builders and marketing tools, providing a streamlined user experience for review management and display. Technically, the website is built using modern frameworks like React and Next.js, hosted on DigitalOcean, and optimized for performance and mobile responsiveness. Security posture is solid with HTTPS and domain protections, though improvements like DNSSEC and security headers are recommended. Privacy compliance is basic with policies present but lacking advanced consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned in its niche.

P

Power Electronics S.L.

power-electronics.com

11

Power Electronics S.L. is a well-established multinational company specializing in renewable energy solutions, including solar inverters, energy storage systems, electric mobility charging infrastructure, and industrial drives. The company holds a strong market position as a global benchmark in these sectors, with a focus on sustainable and clean energy technologies. Their website reflects a professional and comprehensive digital presence, targeting industry professionals and business clients worldwide. Technically, the site is built on modern frameworks such as Next.js and React, hosted likely on AWS infrastructure, and optimized for performance and mobile use. Security posture is solid with HTTPS enforced and domain protections in place, though improvements in DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website and domain data indicate a legitimate, trustworthy, and mature business with a high level of professionalism and digital maturity.

Z

Zaptec

zaptec.com

70

Zaptec is a Norwegian company specializing in the manufacturing of electric vehicle (EV) charging solutions. The company positions itself as a reliable and user-friendly provider of EV charging hardware and software, targeting both residential and commercial customers. Their market presence is supported by a professional website with consistent branding and a clear focus on energy and transportation sectors. The website demonstrates a mature digital infrastructure, leveraging modern web technologies such as Next.js and React, and integrates multiple analytics and marketing tools including Google Tag Manager, HubSpot, and Facebook Pixel. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policies. Security posture is solid with HTTPS enforcement and standard security headers, although the absence of a public security policy and incident response contact points to areas for improvement. The lack of WHOIS data reduces domain trustworthiness, but the overall business credibility remains high based on website content and external references.

G

GoDaddy Operating Company, LLC

filmodeer.com

51

The website filmodeer.com is a domain sales landing page operated by Afternic, a well-known domain marketplace owned by GoDaddy Operating Company, LLC. It offers the domain filmodeer.com for sale with options to buy now or request pricing information. The site targets individuals and businesses interested in acquiring premium domain names and positions itself as a trusted and secure platform for domain transactions. The presence of verified domain badges and a high Trustpilot rating reinforces its market credibility. Technically, the site is built using modern web technologies including React and Next.js, hosted on Akamai CDN infrastructure, and integrates Google reCAPTCHA v2 for form security. The website is well-optimized for performance, mobile responsiveness, and accessibility, providing a good user experience. Security posture is strong with HTTPS enforced, security headers present, and secure transaction messaging. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the domain marketplace platform demonstrates a mature digital infrastructure and trustworthy business model, with minor gaps in transparency around security governance.

C

Coop Pank

cooppank.ee

64

Coop Pank is a well-established Estonian bank offering a comprehensive range of retail and business banking services including loans, savings, insurance, and payment solutions. The bank positions itself as a local partner for customers both in urban and rural areas, emphasizing innovative and customer-centric financial products. The website reflects a mature digital presence with modern technologies such as React and Next.js, and integrates multimedia content and social media channels effectively. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit cookie consent mechanisms and published security policies could be improved. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives and regulatory requirements.

A

Arena Center Zagreb d.o.o.

arenacentar.hr

63

Arena Centar is a well-established large retail shopping center located in Croatia, operated by Arena Center Zagreb d.o.o. and owned by the parent company NEPI Rockcastle. The website provides comprehensive information about the shopping center's services, including retail stores, dining, entertainment, parking, and customer engagement via a mobile app and gift cards. The site targets a broad audience including local residents, families, and visitors seeking shopping and leisure experiences. Technically, the website is built on modern frameworks such as Next.js and React, with integrations for analytics and marketing tools like Google Tag Manager, Facebook Pixel, and TikTok Pixel. Hosting and DNS are managed by reputable providers, ensuring stable performance and security. Security posture is good with HTTPS enforced and consent mechanisms for cookies, though explicit security policies and incident response details are not publicly available. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, providing a positive user experience and strong business credibility.

C

Coolinarika

coolinarika.com

58

Coolinarika is a well-established Croatian culinary website offering a rich platform for recipes, cooking inspiration, and food-related content. It targets a general audience interested in cooking and culinary arts, positioning itself as a leading media site in this niche within Croatia. The website leverages modern web technologies including React and Next.js, hosted on Azure CDN, ensuring fast performance and excellent mobile optimization. The presence of structured data and social media integration further enhances its digital maturity. Security-wise, the site enforces HTTPS, employs security headers, and manages user consent for cookies, reflecting a good security posture. However, the absence of WHOIS registrant data and direct company contact emails slightly reduces transparency. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable resource for its users.

Credit24.ee is a well-established Estonian online consumer finance provider offering a variety of loan products including credit accounts, car loans, and personal loans. The company operates under IPF Digital AS and has a strong regional presence with subsidiaries and partner brands across the Baltics and Australia. The website is professionally designed using modern web technologies such as React and Next.js, hosted on AWS, and incorporates GDPR-compliant cookie consent mechanisms. Analytics and marketing tools like Microsoft Clarity and Google Tag Manager are used for user behavior tracking and advertising. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not publicly detailed. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

U

UC Affärsinformation

allabolag.se

60

Allabolag.se is a comprehensive Swedish business information platform operated by UC Affärsinformation, a subsidiary of Enento Group Plc. The website offers detailed financial data, official company roles, and business insights for all Swedish companies that file annual reports with the Swedish Companies Registration Office. It targets business professionals, researchers, and companies seeking reliable corporate data. The platform provides both free and premium services, including segmentation tools and network searches, positioning itself as a leading source for Swedish corporate information. Technically, the website is built on modern web technologies including React and Next.js, with Material-UI for design. It integrates multiple third-party advertising and analytics services, managed through a consent platform ensuring GDPR compliance. The site is well-optimized for mobile and accessibility, with good SEO practices and fast loading times. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses a consent management platform for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy or incident response information, which could be improved to enhance trust. Overall, Allabolag.se presents a professional, trustworthy, and well-maintained digital presence with strong business credibility. The missing WHOIS data for the www subdomain is not a concern given the known parent domain and business entity. Strategic recommendations include enhancing security transparency, maintaining third-party script audits, and publishing vulnerability disclosure policies.

A

Afternic / GoDaddy Operating Company, LLC

kf-global.com

68

The website is a professional domain sales landing page hosted by Afternic, a GoDaddy company, offering the domain kf-global.com for sale. It provides multiple purchasing options including buy now, lease to own, and make an offer, targeting businesses or individuals interested in acquiring this domain. The site leverages modern web technologies such as React and Next.js, ensuring a responsive and performant user experience. Security measures include HTTPS, secure forms with reCAPTCHA, and standard security headers, reflecting a mature security posture. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the site presents a trustworthy and professional marketplace environment for domain transactions.

Constálica is a medium-sized Portuguese company specializing in innovative structural systems for construction, including MadreMax®, OmegaMax®, and Réservoir®. The company targets construction professionals and partners globally, offering solutions for industrial, housing, agricultural, and photovoltaic structures. Their business model focuses on B2B manufacturing and structural simulation tools such as MAXBOX®. The website reflects a mature digital presence with modern technologies like React and Next.js, and integrates Google Tag Manager for analytics and Cookie Script for privacy compliance. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. The domain is well-established since 2008, consistent with the company's claims, and no suspicious WHOIS patterns are detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

G

GoDaddy Operating Company, LLC

fratellimantova.com

68

The website is a professionally designed domain sales landing page hosted on the Afternic platform, a well-known domain marketplace owned by GoDaddy Operating Company, LLC. It offers the domain fratellimantova.com for sale with clear pricing options including buy now and lease to own. The site targets German-speaking domain buyers and businesses looking for premium domain names. The presence of GoDaddy branding and a high Trustpilot rating enhances its credibility. Technically, the site uses modern web technologies such as React and Next.js, served via Akamai CDN, ensuring good performance and mobile optimization. Security is robust with HTTPS enforced, security headers present, and reCAPTCHA protecting forms. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting good privacy practices. However, WHOIS data for the domain www.afternic.com is unavailable, likely due to querying a subdomain rather than the registered domain, which slightly impacts trust analysis. Overall, the site demonstrates a strong business and technical posture with minor gaps in WHOIS transparency.

S

SOS dětské vesničky

kdyzboliduse.cz

46

The website 'Když bolí duše, jednej rychle' is a mental health awareness campaign operated by SOS dětské vesničky, a recognized non-profit organization in the Czech Republic. It targets children, adolescents, and their families, providing support, crisis plans, and access to helpline contacts. The site is well-branded and professionally designed, reflecting a strong commitment to youth mental health. Technically, it leverages modern web technologies such as React and Next.js, with embedded multimedia content and integration of Google Analytics under a cookie consent framework. Security posture is solid with HTTPS and consent management, though explicit security headers and privacy policies are missing, which are recommended for compliance and trust. WHOIS data is unavailable, likely due to privacy protection, which is common for non-profit campaigns. Overall, the site is trustworthy, safe, and professionally maintained, serving an important social cause.

J

Joer

joer.sk

57

Joer is a well-established Slovak company specializing in custom-made furniture manufacturing, offering design, production, and installation services. With over 25 years of experience and a strong market presence, Joer provides high-quality furniture solutions directly from the manufacturer, ensuring competitive pricing and fast delivery. Their digital infrastructure is modern, leveraging Next.js and React frameworks, with integrated marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The website is well-optimized for SEO and mobile devices, providing a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, Joer demonstrates a mature digital presence aligned with its business goals.

D

Duplex

duplex.com

61

Duplex presents itself as a technology platform focused on enhancing digital content discovery and audience engagement to drive revenue. The website content is professionally designed using modern web technologies such as Next.js and React, indicating a contemporary digital infrastructure. However, the absence of WHOIS registration data and domain legitimacy information raises concerns about the domain's registration status or privacy protections in place. Security posture evaluation is limited due to missing SSL and security header information, and no privacy or cookie policies were detected, indicating potential compliance gaps. Overall, while the business proposition appears credible and the website is functional and well-structured, the lack of verifiable domain registration and security best practices lowers the trust and security confidence.

S

Sandoz

sandoz.cz

10

Sandoz Česká republika operates as a regional branch of the global pharmaceutical leader Sandoz, specializing in generic pharmaceuticals and biosimilars. The website provides comprehensive educational content targeted at healthcare professionals and patients in the Czech Republic, supporting its market position as a trusted healthcare provider. The business model focuses on pharmaceutical manufacturing and distribution with a strong emphasis on improving patient outcomes through accessible medicines and educational resources. The site is well-branded and consistent with the parent company's global identity.