Security Directory

P

PT. Sebelas Cipta Mandiri

disnakblitar.id

52

The website disnakblitar.id serves as the official online presence for the Dinas Peternakan dan Kesehatan Hewan Kabupaten Blitar, a government agency responsible for livestock and animal health in Kabupaten Blitar, Indonesia. The site provides public information, educational content, event updates, and contact details to support local farmers and stakeholders. The business model is focused on public service and information dissemination, targeting the general public and agricultural community. The site is relatively new, launched in 2025, and reflects a consistent government branding and messaging. Technically, the website employs modern web technologies including Bootstrap, jQuery, and various JavaScript libraries for UI and interactivity. It is hosted behind Cloudflare, ensuring good performance and security at the network level. The site is mobile responsive and has a moderate performance profile. SEO and accessibility are basic but functional. However, there is no explicit CMS detected, and some technical improvements could enhance security and compliance. From a security perspective, the site uses HTTPS and Google reCAPTCHA to protect forms, and the domain is protected against unauthorized transfers. However, DNSSEC is not enabled, and no security headers were detected in the provided data, which are areas for improvement. Privacy and cookie policies are absent, which is a compliance gap. No incident response or vulnerability disclosure information is provided, limiting transparency in security matters. Overall, the website is trustworthy and professional, serving its government mandate effectively. The main risks relate to privacy compliance and some technical security hardening. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies, and establishing incident response contacts to enhance trust and compliance.

P

PT. Sebelas Cipta Mandiri

disnakboyolali.id

51

The website disnakboyolali.id serves as the official online presence of the Dinas Peternakan dan Kesehatan Hewan Kabupaten Boyolali, a government entity responsible for livestock and animal health services in Boyolali, Indonesia. It provides public information, educational content, event updates, galleries, and videos targeting local farmers, government stakeholders, and the general public interested in livestock development. The site is branded consistently with government logos and offers clear contact channels including email, phone, and physical address. Technically, the website employs modern front-end technologies such as Bootstrap, jQuery, Swiper.js, and Slick Carousel, and integrates Google services including reCAPTCHA and Google Analytics. Hosting and DNS are managed via Cloudflare, enhancing performance and security. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. From a security perspective, HTTPS is enforced and domain status includes clientTransferProhibited, indicating some domain security. However, no explicit security headers were detected, and DNSSEC is not enabled. Privacy and cookie policies are absent, representing compliance gaps. WHOIS data shows inconsistencies, notably a domain creation date set in the future and a registrant organization unrelated to the government entity, which may warrant further verification. Overall, the website is functional, informative, and trustworthy as a government resource, but improvements in privacy compliance, security headers, and WHOIS data accuracy are recommended to enhance trust and security posture.

U

Universitätsklinikum Ulm

uniklinik-ulm.de

65

Universitätsklinikum Ulm is a prominent university hospital in Germany, providing advanced medical care, research, and education. The website reflects a well-structured institution focused on patient services, clinical studies, and academic excellence. The digital infrastructure is built on TYPO3 CMS with modern frontend technologies, ensuring a responsive and accessible user experience. Privacy compliance is robust, leveraging Usercentrics for consent management and self-hosted Matomo for analytics, indicating a strong commitment to data protection. Security posture is good with HTTPS enforced, though the absence of certain security headers suggests room for enhancement. Overall, the domain registration and website content align well, confirming legitimacy and trustworthiness.

G

Gedtrans

gedtrans.com

60

Gedtrans operates a specialized SaaS platform focused on transport document management, targeting transport subcontractors and orderers primarily in France and Europe. The platform facilitates the collection, verification, and real-time tracking of legal transport documents, helping clients comply with regulatory obligations and streamline their operational processes. With over 12,000 customers annually and a 5-year market presence, Gedtrans positions itself as a leader in its niche. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, integrating essential tools such as Google reCAPTCHA for form security and Matomo for analytics. The site demonstrates good mobile optimization, SEO practices, and GDPR compliance through cookie consent mechanisms and a comprehensive privacy policy. From a security standpoint, the site enforces HTTPS and employs standard best practices, though it lacks explicit HTTP security headers and a published security policy or incident response plan. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain introduces a minor trust concern but does not detract significantly from the overall legitimacy given the professional presentation and business consistency. Overall, Gedtrans presents a secure, compliant, and professionally managed online presence suitable for its business domain, with recommendations to enhance security headers and incident response transparency to further strengthen trust and resilience.

F

Fundació Mies van der Rohe

miesbcn.com

48

Fundació Mies van der Rohe is a well-established non-profit cultural foundation based in Spain, dedicated to promoting contemporary architecture and urban planning, with a special focus on the work of Ludwig Mies van der Rohe and the Modern Movement. The foundation offers a variety of services including exhibitions, research, publications, educational programs, and pavilion visits. The website reflects a professional and consistent brand image with good content quality and clear navigation, targeting architecture enthusiasts, researchers, and the general public. Technically, the website is built on WordPress with modern JavaScript libraries such as Vue.js and jQuery, and uses plugins for SEO and GDPR compliance. The site is mobile-optimized and performs moderately well. Security posture is adequate with HTTPS enabled and cookie consent implemented, though it lacks some security headers and DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration is consistent with the business profile, showing a long-standing presence since 1996, enhancing trustworthiness. The site integrates Google Analytics and Mailchimp for marketing and analytics, with good privacy compliance indicators. Contact is primarily through forms and social media channels, with no direct emails or phone numbers published. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing security and incident response policies, and considering a vulnerability disclosure policy to improve transparency and security maturity.

G

GedMouv

gedmouv.com

63

GedMouv is a specialized B2B platform offering shared traceability solutions for the transport and logistics industry, enabling real-time data exchange and delivery tracking among customers, carriers, and drivers. The company operates under the parent entity B2PWeb and targets transport companies, freight forwarders, and shippers primarily in France. The website is professionally designed using WordPress with modern technologies such as Bootstrap, jQuery, and slick carousel, and integrates multiple analytics and marketing tools with GDPR-compliant consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements in HTTP security headers and explicit security policies are recommended. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, but the overall business presence and content quality support a trustworthy profile.

G

Gemeinde Ermatingen

ermatingen.ch

48

Gemeinde Ermatingen operates as the official municipal government website for the community of Ermatingen in Switzerland. It provides residents and visitors with comprehensive information about local government services, community events, public notices, and administrative contacts. The website targets local citizens and stakeholders, serving as a central hub for municipal communication and service delivery. The business model is typical of a government entity, focusing on transparency, accessibility, and community engagement. From a technical perspective, the website employs a modern technology stack including jQuery, Bootstrap, Isotope, Fancybox, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile optimized and features interactive elements such as digital tours and event calendars. The CMS appears to be a custom or specialized system (Simpli CMS), supporting structured content management. Security posture is adequate with HTTPS enforced and no visible exposure of sensitive data. However, the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and defense-in-depth strategies. The use of Matomo analytics reflects a privacy-conscious approach to user tracking, though GDPR compliance could be enhanced by adding explicit cookie consent and privacy notices. Overall, the website is trustworthy and professional, with clear contact information and consistent branding. The risk level is low, but strategic enhancements in security policies, privacy compliance, and technical hardening are recommended to maintain and improve trust and regulatory adherence.

24 Stops is a cultural and artistic project focused on guided walks, events, and installations, supported by regional partners such as Fondation Beyeler and others. The website provides information about the project, event registration, and partner links, targeting a general audience interested in culture and art. The technical infrastructure includes common web technologies such as jQuery, Cookiebot for consent management, Google Tag Manager, and Vimeo for video content. The site is hosted behind AWS Cloudfront CDN, ensuring reasonable performance and availability. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security headers and uses an outdated jQuery version, which could pose risks. Privacy compliance is good with a visible privacy policy and cookie consent mechanism. Overall, the website is professionally presented with consistent branding and trustworthy partner associations, but could improve in technical security and contact transparency.

B

Bundesministerium für Wirtschaft und Energie

energieforschung.de

49

The website energieforschung.de is an official German government platform managed by the Bundesministerium für Wirtschaft und Energie (Federal Ministry for Economic Affairs and Energy). It serves as an information hub for project funding and research initiatives within the energy sector, focusing on applied energy research and the energy transition. The site targets researchers, energy sector stakeholders, policymakers, and the general public interested in energy innovation and funding opportunities. It provides comprehensive content including news, project funding details, research missions, and networking events, positioning itself as a key resource in Germany's energy research landscape. Technically, the website employs a modern yet stable technology stack including jQuery, Bootstrap, Slick Carousel, and Matomo analytics configured with privacy-conscious settings (cookies disabled). The site is mobile-optimized, accessible, and SEO-friendly with proper metadata and Open Graph tags. Hosting appears to be on German research and education network infrastructure, consistent with its governmental nature. From a security perspective, the site uses HTTPS with strong SSL configuration and implements cookie consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly configured, and no published security or incident response policies are found. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is strong, with a comprehensive privacy policy and cookie management. Overall, energieforschung.de demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government research information portal. Strategic improvements could include publishing formal security policies, enhancing HTTP security headers, and providing direct contact information for security incidents to further strengthen trust and security posture.

S

Stiftung Habitat

aktienmuehle.ch

57

Stiftung Habitat is a Swiss non-profit organization focused on revitalizing historic industrial properties in Basel, such as the Aktienmühle, into vibrant creative workspaces and social hubs. Their website presents detailed information about their properties, including the Werkstatthaus and Pförtnerhaus, emphasizing community engagement and support for small businesses and social initiatives. The organization targets creative professionals, social enterprises, and the local community, positioning itself as a niche player in real estate with a social mission. Technically, the website employs modern analytics and tracking tools including Google Analytics, Microsoft Clarity, Facebook Pixel, and LinkedIn Insight Tag, integrated via Google Tag Manager. The site is well-structured, mobile-optimized, and uses HTTPS with good SSL configuration. However, it lacks visible cookie consent mechanisms and security headers, which are areas for improvement. From a security perspective, the site shows good practices such as HTTPS enforcement and no exposed sensitive data. There is no evidence of vulnerability disclosure or incident response contacts, which could be enhanced to improve trust and compliance. Overall, the domain registration aligns well with the organization's claims, supporting legitimacy. The website is safe for general audiences, with no adult or questionable content detected. The overall risk is low, but strategic improvements in privacy compliance and security headers are recommended to strengthen the security posture and regulatory adherence.

F

Fondation Beyeler

fondationbeyeler.ch

51

Fondation Beyeler is a well-established Swiss museum specializing in modern and contemporary art, located in Riehen/Basel. The institution offers a rich program of exhibitions, educational workshops, events, and a museum shop, targeting art enthusiasts, families, and educators. The website reflects a mature digital presence with multilingual support and comprehensive visitor information. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates various third-party services for analytics and marketing. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

G

Gemeinde Muttenz

hagnau-schaenzli.ch

51

The website www.hagnau-schaenzli.ch serves as an official municipal government portal for the community of Muttenz, Switzerland, focusing on urban development projects in the Hagnau and Schänzli areas. It provides detailed information about cooperative neighborhood planning procedures and private construction concepts, targeting local residents and stakeholders interested in community development. The site is positioned as a trusted source for project updates and community engagement within the local government sector. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies such as Google Analytics and Google Tag Manager for visitor tracking and performance monitoring. The site demonstrates moderate performance and good mobile optimization, with a clear navigation structure and professional design. However, it lacks some advanced accessibility features and explicit SEO enhancements beyond basic meta tags. From a security perspective, the site enforces HTTPS with anonymized IP tracking in Google Analytics, which is a positive privacy measure. Nonetheless, it lacks critical HTTP security headers and does not implement a cookie consent mechanism, which are important for GDPR compliance and overall security posture. No incident response or vulnerability disclosure policies are published, and no contact information is readily available on the homepage, which could hinder user trust and support. Overall, the website is a reliable and professional municipal information portal with room for improvement in privacy compliance and security best practices. Strategic enhancements in cookie consent, security headers, and transparent contact channels would strengthen its trustworthiness and regulatory adherence.

The website 'Bewegen.Integrieren.Fördern' serves as a crowdfunding platform operated by the Niedersächsische Lotto-Sport-Stiftung, focusing on supporting sports projects within Lower Saxony, Germany. It provides a digital venue for local sports clubs and initiatives to raise funds, featuring project listings with progress tracking and community engagement features. The platform leverages modern web technologies including React and integrates accessibility tools to enhance user experience. The site is well-structured, mobile-optimized, and includes privacy and cookie consent mechanisms aligned with GDPR requirements. Technically, the platform is built on a proprietary or custom CMS with integration of third-party services such as Google Analytics (with IP anonymization) and Eye-Able accessibility scripts. Hosting and DNS are managed via DomainControl (GoDaddy), and the site uses HTTPS with a good SSL configuration. However, there is a lack of visible HTTP security headers which could be improved to enhance security posture. From a security perspective, the site demonstrates good baseline practices including encrypted connections and user consent for cookies. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of a published security policy or incident response contact limits transparency in security management. WHOIS data is limited but does not raise concerns about legitimacy. Overall, the site is trustworthy and professionally maintained. Strategically, the platform is positioned as a regional niche crowdfunding service for non-profit sports projects, supported by a lottery sports foundation. It targets sports clubs and community members in Lower Saxony, providing a valuable service to facilitate funding and engagement. The business model is straightforward, relying on project hosting and donation facilitation. The site’s digital maturity is moderate with room for technical and security enhancements to further strengthen trust and compliance.

B

Berner Generationenhaus

begh.ch

51

Berner Generationenhaus is a Swiss non-profit community and cultural center located in Bern, focused on fostering intergenerational dialogue and providing social services. The website presents a well-structured platform offering information about events, exhibitions, social institutions, and room rentals, targeting a broad audience across generations. The organization maintains a strong local presence with clear contact details and active social media channels. Technically, the site is built on Drupal 11 with modern libraries and analytics tools, showing good mobile optimization and accessibility. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks some security headers and formal security policies. Privacy compliance is limited by the absence of explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and serves its community role effectively.

AgiL – Sächsische Agentur für Regionale Lebensmittel is a government-backed agency focused on supporting the development and expansion of regional food value chains in Saxony, Germany. It provides free consulting, networking, and informational services to companies in the agricultural and food sectors, including farms, food crafts, wholesalers, retailers, and logistics companies. The agency operates under the Saxon Ministry of Agriculture and the Saxon State Office for Environment, Agriculture and Geology. The website is professionally designed, content-rich, and well-structured, targeting regional businesses and stakeholders in the food industry.

H

Hawlik GmbH Pilzbrut

pilzbrut.de

53

Hawlik GmbH Pilzbrut operates an e-commerce website specializing in mushroom cultivation products, including mushroom spawn, cultivation kits, dried mushrooms, spices, and educational materials. The website targets consumers interested in home and garden mushroom cultivation, primarily in Germany. The business model is retail-focused with a niche market position supported by a well-structured online shop and product categorization. Technically, the site uses a modern tech stack including jQuery, Bootstrap, Google Analytics, Google Ads, and a consent management platform, hosted on Rackspeed infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced, consent management implemented, and secure login forms, though some security headers and explicit policies are missing. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service pages. Overall, the website is trustworthy and professional but could improve transparency and compliance documentation. No WAF or blocking mechanisms were detected, and no adult or questionable content is present.

Amt Achterwehr operates as a local government administrative body serving multiple municipalities in Germany. The website provides comprehensive citizen services including appointment scheduling, political information, building and housing resources, and community support. The site is well-structured and targets residents and stakeholders within the Amt Achterwehr region. Technically, the website is built on TYPO3 CMS with modern frontend components such as jQuery and Slick Carousel, hosted likely by Your-Server.de. The site is mobile-optimized and accessible with good SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is evident with clear cookie and privacy policies and consent mechanisms. Overall, the website is trustworthy and professionally maintained, reflecting its government entity status.

ペライチは日本を拠点とするホームページ作成ツールのSaaS企業で、専門知識不要で誰でも簡単に高品質なホームページやランディングページを作成できるサービスを提供しています。600種類以上のテンプレートやフォーム、決済、予約、メールマガジンなど多彩な機能を備え、個人事業主や中小企業、フリーランスを主なターゲットとしています。技術的にはNext.jsを利用したモダンなフロントエンドを持ち、AWSのDNSを利用してホスティングされており、Google AnalyticsやFacebook Pixel、Mixpanelなど多様なマーケティング・分析ツールを活用しています。セキュリティ面ではHTTPSが有効でドメインは安定的に管理されていますが、DNSSEC未設定やセキュリティヘッダーの欠如、プライバシーポリシーやクッキーポリシーの不備が見られます。全体として高品質で信頼性の高いサービスですが、プライバシーとセキュリティの強化が推奨されます。

Z

Zürcher Schneesportverband

zsv.ch

47

The Zürcher Schneesportverband (ZSV) is a Swiss non-profit sports association dedicated to promoting youth participation in various winter sports disciplines including Alpine skiing, cross-country skiing, biathlon, ski jumping, snowboarding, and freestyle skiing. The organization operates primarily within the Zurich region and serves as a key regional player in winter sports development. Their website provides event information, educational workshops, and resources to support athletes and enthusiasts. The site is well-structured, professionally designed, and uses modern web technologies to deliver content effectively to its target audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several popular plugins such as Yoast SEO and Contact Form 7. It employs Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized and uses HTTPS with a strong SSL configuration, ensuring secure data transmission. However, it lacks some advanced security headers and a cookie consent mechanism, which are recommended for enhanced compliance and security. From a security perspective, the site demonstrates good practices such as secure forms and no visible exposure of sensitive data. There is no evidence of a published security policy or incident response contacts, which could be improved to enhance trust and readiness. The WHOIS data aligns well with the website's claims, showing consistent registrant information and no privacy protection, supporting the site's legitimacy. Overall, the ZSV website is a credible, well-maintained platform serving its community effectively. Strategic improvements in privacy compliance and security policy transparency would further strengthen its security posture and user trust.

S

Swiss Sailing

swiss-sailing.ch

65

Swiss Sailing is the official Swiss national association dedicated to sailing, windsurfing, kitesurfing, and wingfoiling. It serves as the governing body for these sports in Switzerland, providing event organization, training programs, and athlete development. The website reflects a well-established organization with a clear focus on both recreational and competitive sailing communities. It maintains strong partnerships with recognized insurers and sport promotion entities, and is affiliated with international sailing bodies such as World Sailing and Swiss Olympic. The target audience includes sailing clubs, athletes, officials, and enthusiasts across Switzerland. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, incorporating modern web technologies such as Google Tag Manager for analytics and Google Fonts for typography. The site is mobile optimized, accessible, and SEO friendly, with a clear navigation structure and professional design. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks publicly available formal security policies and incident response contacts. No security headers were detected in the provided data, suggesting room for improvement in hardening the site against common web threats. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, Swiss Sailing presents a trustworthy and professional online presence with strong business credibility and compliance posture. Strategic recommendations include publishing a formal security policy, enhancing security headers, and providing incident response contact information to improve transparency and security readiness.

א

אוריין בע״מ

orian.com

62

Orian Ltd. is a publicly traded Israeli logistics company offering comprehensive supply chain management solutions. The company operates as part of an international group, providing sea and air freight, domestic transportation, customs brokerage, e-commerce logistics, and specialized services such as cargo insurance and clinical trials logistics. The website is professionally designed, primarily in Hebrew, targeting business clients and investors. Technical infrastructure includes modern JavaScript libraries, Google Analytics, and Tag Manager, indicating a mature digital presence. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks explicit security headers and detailed privacy compliance mechanisms. The absence of WHOIS data raises concerns about domain registration legitimacy, though the business content and investor relations links support its authenticity. Strategic improvements in privacy policies, security headers, and incident response disclosures are recommended to enhance trust and compliance.

S

Swiss Olympic

swissolympic.ch

63

Swiss Olympic is the umbrella organization for Swiss sports and serves as the National Olympic Committee of Switzerland. It supports and strengthens its members, including 83 national sports federations and 30 partner organizations, representing approximately 18,300 clubs and 2.2 million active sports participants. The organization is well-established with a strong market position and recognized trust indicators such as ISO 9001:2015 certification and partnerships with major national and international brands. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience of sports organizations, athletes, and partners. Technically, the website employs modern JavaScript libraries including jQuery, Slick Carousel, JWPlayer, and integrates Google Analytics and Tag Manager for analytics. Accessibility tools like Eye-Able are implemented, and the site is mobile-optimized with good SEO practices. Performance is moderate, with no critical technical issues detected. However, no CMS or hosting provider details were identified. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security policy pages, incident response contacts, and security headers such as Content-Security-Policy. No vulnerabilities or exposed sensitive data were found. The WHOIS data shows privacy protection consistent with organizational privacy needs, and no suspicious patterns were detected. Overall, the website is secure, professional, and compliant with privacy regulations, with room for improvement in formal security disclosures and enhanced security headers. The risk level is low, and the site effectively supports the organization's mission and stakeholder engagement.

A

ADAC Niedersachsen/Sachsen-Anhalt e.V.

adac-niedersachsen-sachsen-anhalt.de

48

ADAC Niedersachsen/Sachsen-Anhalt e.V. operates as a regional club focused on mobility, motorsport, tourism, and traffic safety within the German states of Niedersachsen and Sachsen-Anhalt. The organization provides a variety of services including motorsport events, tourism activities, traffic safety programs, and member support. The website reflects a well-established regional presence with consistent branding and a clear target audience of club members and regional residents interested in mobility and motorsport. Technically, the site is built on TYPO3 CMS with modern front-end technologies such as jQuery, Bootstrap, and carousel plugins, offering a good user experience with mobile optimization and SEO best practices. Security-wise, the site enforces HTTPS, uses GDPR-compliant cookie consent, and avoids exposing sensitive data, though it lacks explicit security policies or incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the organization's credibility and regional leadership.

E

Evangelische Hochschule Ludwigsburg

eh-ludwigsburg.de

53

Evangelische Hochschule Ludwigsburg is a state-recognized university of applied sciences affiliated with the Evangelical Church in Württemberg, Germany. The institution offers a broad range of bachelor and master programs primarily in social work, pedagogy, and theology, with a strong emphasis on practical application and international orientation. The website reflects a well-established academic institution with a clear focus on education, research, and community engagement. The target audience includes prospective and current students, academic staff, and partners in social and church-related sectors. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Bootstrap and jQuery, and integrates third-party services like Google Analytics 4 and YouTube for enhanced user engagement. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Privacy and cookie compliance are robust, featuring a detailed cookie consent mechanism and clear privacy policies aligned with GDPR requirements. From a security perspective, the site enforces HTTPS and employs cookie management best practices. While explicit security headers like Content-Security-Policy are not visibly declared, the overall security posture is strong with no evident vulnerabilities or exposed sensitive data. The WHOIS data is minimal but consistent with the domain's educational purpose, and no suspicious patterns were detected. Overall, the website demonstrates a mature digital presence with high content quality, good technical implementation, and strong privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular audits of third-party scripts to sustain security and trust.

S

StiftungSchweiz

spendenschweiz.ch

58

SpendenSchweiz is a Swiss non-profit online donation platform operated by StiftungSchweiz, offering donors access to over 900 charitable organizations and projects. The platform facilitates easy, secure donations and enables users to start their own fundraising campaigns. The website is professionally designed, SEO optimized, and uses modern WordPress technologies including jQuery, Slick Carousel, and Intercom for user engagement. Google Analytics and Google Tag Manager are employed for traffic analysis. Security posture is strong with HTTPS and secure forms, though explicit privacy and cookie policies are missing, which impacts compliance. No incident response or vulnerability disclosure information is provided. Overall, the platform is trustworthy and well-positioned in the Swiss charitable sector, but could improve transparency and privacy compliance.

株

株式会社カビネット

kabinett.com

58

株式会社カビネット is a Japanese IT company specializing in cloud services, software system development, and design content production. Established in 1998, it serves primarily business clients in Japan with a focus on delivering customer value through IT and communication. The company maintains a professional web presence with clear service descriptions, case studies, and recruitment information, positioning itself as a reliable mid-sized IT service provider. Technically, the website uses modern JavaScript libraries such as jQuery and Slick Carousel, and integrates Google Analytics for visitor tracking. The site is mobile-optimized and well-structured with good SEO practices. However, there is no visible cookie consent mechanism, which is a compliance gap given the use of tracking scripts. From a security perspective, the website uses HTTPS and displays trust certifications like the Privacy Mark and Secom Trust Systems badge, indicating a commitment to privacy and security. Nonetheless, the absence of DNSSEC, security headers, and explicit security or incident response policies suggests room for improvement in security posture. Overall, the website is professional, trustworthy, and functional with moderate technical sophistication. Strategic improvements in privacy compliance and security practices would enhance its risk profile and user trust.

K

Kulturstiftung Basel H. Geiger | KBH.G

kbhg.ch

46

Kulturstiftung Basel H. Geiger (KBH.G) is a small non-profit cultural foundation based in Basel, Switzerland, focused on contemporary art exhibitions and public cultural programs. The website presents a professional and consistent brand image with clear navigation and relevant content targeting art enthusiasts and the general public interested in cultural events. The business model centers on hosting exhibitions and related public programs, positioning itself as a regional cultural institution with a specialized audience. Technically, the site uses a modern but simple tech stack including jQuery, Slick Carousel, Material Design Icons, and Matomo analytics, providing a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS usage and privacy-respecting analytics, but lacks published privacy and cookie policies, security headers, and explicit incident response contacts. Overall, the site is trustworthy and safe with no adult or questionable content detected.

M

Müller & Schade

mueller-schade.com

58

Müller & Schade operates a professional e-commerce website specializing in music sheets, books, and musical instruments, primarily serving customers in Switzerland. The company has a long-standing history dating back to 1850 and maintains physical stores in Bern and Zurich. The website is well-structured with multiple product categories and features, including user login, registration, and a contact form with captcha protection. Technical infrastructure leverages jQuery and slick carousel for UI components, and the CMS is identified as NImQ Enterprise Shop Edition. While the website demonstrates good content quality and user experience, the absence of WHOIS data raises concerns about domain registration legitimacy. Security practices include HTTPS usage and form validation, but lack of security headers and cookie consent mechanisms indicate room for improvement. Overall, the site is functional and trustworthy from a user perspective but requires attention to domain registration transparency and enhanced privacy compliance.

H

Haus der Flüsse - Natura 2000-Informationszentrum des Biosphärenreservates Mittelelbe

haus-der-fluesse.de

58

Haus der Flüsse is a regional informational and educational center dedicated to the Biosphärenreservat Mittelelbe in Germany. It provides visitors with educational exhibits, accessibility services, and organizes events related to nature conservation. The website is well-structured, professionally designed, and targets a broad audience including families, educational groups, and people with disabilities. The business operates as a non-profit or government-affiliated entity with a strong emphasis on accessibility and environmental awareness. Technically, the site is built on TYPO3 CMS with modern frameworks like Bootstrap and jQuery, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information.

G

Gartenreich - Biosphärenreservat Mittelelbe

gartenreich.net

58

The website www.gartenreich.net represents the Gartenreich Dessau-Wörlitz, a UNESCO World Heritage site located within the Biosphärenreservat Mittelelbe in Germany. It serves as an informational and cultural heritage platform promoting the historical and environmental significance of the region. The site targets general audiences interested in cultural tourism, environmental education, and heritage preservation. The business model is primarily informational and non-commercial, focusing on education and tourism promotion. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as Bootstrap 4.6, jQuery 3.6, Slick Carousel, and Fancybox. The site is mobile-optimized and includes accessibility features like contrast mode and font size adjustments. Performance is moderate with good SEO and accessibility practices. However, no explicit security headers were detected, and no analytics or tracking scripts were found in the provided content. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. No incident response or vulnerability disclosure policies are publicly available. The site shows no signs of malware or phishing but would benefit from enhanced security headers and transparency regarding security policies. Overall, the website is professionally designed and trustworthy in content but has gaps in domain registration transparency and security policy disclosures. Strategic improvements in security headers, WHOIS registration clarity, and incident response documentation are recommended to enhance trust and compliance.

B

Biosphärenreservat Mittelelbe

mittelelbe.com

58

The website www.mittelelbe.com represents the Biosphärenreservat Mittelelbe, a well-established and significant biosphere reserve in Germany, focusing on nature conservation, education, and tourism. It is part of a larger UNESCO Biosphärenreservat Flusslandschaft Elbe partnership and provides rich content about its projects, visitor information, and events. The site targets nature enthusiasts, tourists, and educational groups, operating primarily as a non-profit or government-affiliated entity. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap and jQuery. It is mobile-optimized, accessible, and includes a cookie consent mechanism compliant with GDPR. The site loads moderately fast and has good SEO and accessibility features. However, no explicit security headers were detected, and no contact emails or phone numbers are directly visible, which could be improved. Security-wise, the site uses HTTPS and has a cookie consent banner, indicating a good baseline security posture. The absence of WHOIS data for the domain is a notable anomaly that reduces trustworthiness and should be investigated further. No signs of malware, phishing, or adult content were found, and the site appears safe for general audiences. Overall, the website is professional and trustworthy in content and presentation but would benefit from enhanced transparency in domain registration and improved security headers. Strategic recommendations include verifying domain registration details, publishing a vulnerability disclosure policy, and adding explicit contact information to improve business credibility and user trust.

T

The Architectural Review

architectural-review.com

68

The Architectural Review is a well-established global architecture magazine with a history dating back to 1896. It offers incisive critiques and international design content through online and print media. The website serves architects, designers, and enthusiasts with articles, competitions, podcasts, and newsletters. Technically, the site is built on WordPress with modern web technologies and integrates multiple third-party analytics and advertising services. Security posture is solid with HTTPS and some security best practices, though explicit security headers and privacy policies are lacking. The absence of WHOIS data for the domain is a concern but does not outweigh the professional presentation and social media presence. Overall, the site is credible and professionally maintained but would benefit from enhanced privacy compliance and clearer contact information.

O

OpenAsset

openasset.com

69

OpenAsset is a mature technology company specializing in digital asset management and AI-powered proposal management software tailored for the architecture, engineering, and construction (AEC) industry. The company positions itself as a trusted partner to over 1,000 AEC firms, offering a SaaS platform that streamlines marketing workflows and proposal creation. Their key services include OpenAsset DAM and Shred.ai, supported by extensive partner integrations and training resources. The website reflects a professional and consistent brand with strong trust indicators such as client logos and social media presence. Technically, the website is built on WordPress, leveraging modern libraries and frameworks including Bootstrap, jQuery, and various marketing and analytics tools such as Marketo, Google Tag Manager, and Facebook Pixel. Hosting is likely on AWS, supported by DNS server data. The site demonstrates good SEO and mobile optimization, though accessibility features are basic. Performance is moderate, with room for improvement. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There is no visible security policy or incident response contact information published. Privacy and cookie policies are not found in the analyzed content, indicating a gap in compliance and transparency. Overall, the website is high quality and trustworthy from a business and content perspective but could improve its privacy compliance and security posture. Strategic recommendations include publishing comprehensive privacy and cookie policies with consent mechanisms, enabling DNSSEC, implementing security headers, and providing clear security and incident response information to enhance user trust and regulatory compliance.

H

Hochparterre Bücher

hochparterre-buecher.ch

66

Hochparterre Bücher is a specialized architecture bookstore based in Zürich, Switzerland, offering a curated selection of architecture, landscape, and furniture design books. The website serves as an e-commerce platform targeting architects, students, and design enthusiasts, positioning itself as a niche leader in the Swiss market. The business model focuses on retail sales supported by events and a newsletter to engage its audience. Technically, the website is built on Magento with modern JavaScript libraries such as jQuery, Prototype.js, and Algolia for search functionality, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and CSRF protections in place, though it lacks some advanced security headers and a cookie consent mechanism, which are recommended for GDPR compliance. Overall, the website is professional, trustworthy, and well-maintained, with transparent contact information and a consistent brand presence.

C

Chris Dyson Architects

chrisdyson.co.uk

51

Chris Dyson Architects is a small, award-winning architecture firm based in London, specializing in diverse projects ranging from private commissions to public buildings and urban planning across Europe and Asia. The firm emphasizes context-driven design, historic building restoration, and innovative modern architecture. Their website showcases a professional portfolio and maintains a consistent brand image, targeting clients seeking architectural services. Technically, the website is built on WordPress with common plugins and integrates Google Analytics for user tracking. The site is mobile-optimized with good SEO practices but lacks some accessibility features and cookie consent mechanisms. Security posture is solid with HTTPS and secure forms, though security headers and incident response information are absent. WHOIS data is unavailable due to domain naming issues, but the website is active and legitimate. Overall, the site reflects a credible and professional business presence with room for security and privacy improvements.

N

Norske interiørarkitekters og møbeldesigneres landsforening

nil.no

61

NIL (Norske interiørarkitekters og møbeldesigneres landsforening) is a well-established Norwegian professional association representing interior architects and furniture designers. The organization focuses on promoting the professions, providing member services, organizing events, and publishing industry-related materials. The website is built on Drupal 10, featuring modern web technologies and a comprehensive content structure that supports member engagement and public information. Privacy and cookie policies are clearly presented and GDPR compliant, with a consent management system in place. Security posture is adequate but could be improved with additional security headers and explicit incident response information. Overall, the website reflects a mature digital presence consistent with the organization's history and professional standing.

S

sa_partners GmbH

sapartners.ch

51

sa_partners GmbH is a specialized consulting firm based in Zurich, Switzerland, focusing on urban design and territorial planning. Their core activities include project development, process design, and spatial strategies for urban and regional development. The company targets municipalities, developers, and planners seeking innovative and sustainable urban solutions. The website reflects a professional and consistent brand image with detailed project showcases and a clear business focus. Technically, the site uses modern web technologies such as Tailwind CSS, jQuery, and Google Tag Manager, providing a responsive and SEO-optimized experience. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and privacy compliance mechanisms could be improved. Overall, the site is trustworthy and well-positioned in its niche market.

V

Vogt

vogt-la.com

10

Vogt is a professional landscape architecture firm presenting a well-structured website featuring their projects, case studies, publications, and news. The firm appears to have an international presence with awards and recognitions highlighted. The website targets professionals and clients interested in landscape architecture services. Technically, the site uses a range of JavaScript libraries including jQuery, Select2, and Slick Carousel, indicating a moderately modern tech stack. The site is mobile optimized and includes cookie consent mechanisms, reflecting awareness of privacy compliance. Security posture is solid with HTTPS enforced, though security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found. WHOIS data is unavailable, which reduces trust slightly but the professional presentation and social media presence support legitimacy. Overall, the site is well-maintained, secure, and compliant with basic privacy standards.

The Architectural Association, Inc. operates a well-established educational website serving as the primary online portal for its architecture school based in London. The site provides comprehensive information about academic programmes ranging from foundation courses to PhD levels, public lectures, events, and publications. It targets students, architects, researchers, and the general public interested in architecture education and cultural programming. The institution holds a reputable market position as an independent and historic architecture school with a global reach. Technically, the website employs a modern technology stack including React, Google Analytics, Hotjar, and Bootstrap, ensuring a responsive and user-friendly experience. The site is served over HTTPS with asynchronous loading of scripts, contributing to moderate performance and good mobile optimization. However, some accessibility features could be enhanced, and security headers are not explicitly present. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no visible exposure of sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant, though no explicit security or incident response policies are published. The absence of WHOIS data is attributed to privacy protection, which is reasonable for this type of institution. Overall, the site maintains a high trust level with clear contact information and charity registration disclosures. The overall risk profile is low, with recommendations focusing on improving security headers, publishing incident response contacts, and enhancing accessibility compliance. These steps would further strengthen the site's security posture and user trust.

S

Swisslos

swisslos.ch

71

Swisslos is a prominent Swiss lottery and betting operator offering a wide range of games including Swiss Lotto, EuroMillions, EuroDreams, and various skill and instant ticket games. The website targets adult players in Switzerland and emphasizes responsible gaming with visible 18+ player protection indicators. Technically, the site employs modern frameworks such as Vue.js, integrates Google Analytics and Tag Manager for analytics, uses Google reCAPTCHA v3 for bot protection, and manages cookie consent via Usercentrics, reflecting a mature digital infrastructure. Security measures include HTTPS enforcement and CSRF token usage, though explicit privacy and terms of service pages are not clearly found in the provided content. Overall, the site presents a professional and trustworthy front with good branding and user experience.

4

41 Campus gGmbH

forty.one

46

FORTYONE is a niche media platform operated by 41 Campus gGmbH, focusing on the charitable activities and stories related to Dirk Nowitzki and his foundations in Germany and the USA. The website serves as a communication and donation platform, supported by sponsors such as ING. The content is professionally presented with a focus on storytelling and foundation updates, targeting a general audience interested in sports philanthropy and Dirk Nowitzki's legacy. Technically, the site is built on WordPress with modern plugins for donations and GDPR compliance, showing moderate performance and good mobile optimization. Security posture is solid with HTTPS and anti-spam measures, though improvements like DNSSEC and CSP headers are recommended. Privacy compliance is well addressed with clear cookie consent and policies. Overall, the site is trustworthy and professionally maintained, with no signs of malicious or adult content.

S

Swiss Golf

swissgolf.ch

50

Swiss Golf is the official umbrella organization for golf sports in Switzerland, providing comprehensive services including player development, tournament organization, and sustainability initiatives. The website is well-structured, professionally designed, and targets golf players and enthusiasts across all levels in Switzerland. It features clear navigation, rich content, and strong branding supported by reputable sponsors such as Rolex and Helsana. Technically, the site uses modern JavaScript frameworks like Vue.js and libraries such as Axios and Chart.js, ensuring a dynamic and interactive user experience. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security-wise, the website enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and an explicit security policy or incident response contact. The WHOIS data aligns well with the website's claims, indicating a trustworthy domain registration. Overall, the site scores highly on content quality, business credibility, and privacy compliance, with minor technical and security enhancements recommended.

S

Sparkasse

sparkasseblog.de

53

Der Sparkasseblog is a professional German-language financial blog focused on the Sparkasse banking ecosystem, targeting private customers, young people, and business clients. The site provides educational content and advice related to banking, investments, taxes, and personal finance. It is positioned as a niche content provider within the finance sector, leveraging the trusted Sparkasse brand. Technically, the website is built on WordPress with a modern tech stack including jQuery, Yoast SEO, and Google Tag Manager, ensuring good SEO and moderate performance. The site is mobile optimized and offers clear navigation and search functionality. Security-wise, the site uses HTTPS with valid SSL certificates and employs Google Tag Manager for analytics. However, it lacks visible security headers, explicit privacy and cookie policies, and contact information for security or general inquiries, which are areas for improvement. Overall, the website is trustworthy and professional but could enhance its privacy compliance and security posture.

D

DigiCube AG

digicube.ch

52

DigiCube AG is a Swiss-based full-service digital agency specializing in website creation, online shops, and social media management. The company targets businesses seeking to enhance their digital presence through professional web development and digital marketing services. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital infrastructure. Technically, the site leverages WordPress with modern plugins and libraries, ensuring a robust and scalable platform. Security measures such as HTTPS, reCAPTCHA, and security headers are implemented, indicating a good security posture. However, the absence of a dedicated security policy and incident response contact suggests room for improvement in security transparency. Overall, DigiCube AG presents a credible and trustworthy digital presence with compliance to GDPR and cookie regulations, suitable for its business domain.

K

Klinikgruppe Valens

kliniken-valens.ch

51

Klinikgruppe Valens is a Swiss healthcare provider specializing in rehabilitation, prevention, and health promotion services. The website reflects a medium-sized organization with a strong regional presence in Switzerland's healthcare sector. The digital infrastructure is based on WordPress with a modern theme and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the organization's credibility and patient trust.

P

PluSport Behindertensport Schweiz

plusport.ch

49

PluSport Behindertensport Schweiz is a well-established Swiss non-profit organization dedicated to promoting sports and inclusion for children, youth, and adults with disabilities. Founded in 1960, it serves as the national competence center offering a wide range of services including sport camps, clubs, education, elite sports, and events. The organization targets individuals with disabilities as well as inclusive participants, supported by a strong partnership network including Swiss Olympic and Swiss Paralympic. The website reflects a professional and accessible digital presence with multilingual support and clear navigation.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

charta-fuer-holz.de

43

The website www.charta-fuer-holz.de represents the 'Charta für Holz 2.0' initiative managed by the Fachagentur Nachwachsende Rohstoffe e.V. (FNR), a German non-profit agency focused on promoting sustainable wood use and forestry. The site serves as an information hub for government bodies, industry stakeholders, researchers, and the public, offering resources, event information, and project updates related to renewable raw materials and wood construction. The business model is non-profit and government-supported, positioning the organization as a key player in Germany's sustainable forestry sector. Technically, the website is built on TYPO3 CMS with modern front-end technologies including jQuery, Foundation CSS, and Slick Carousel. It is mobile-optimized and provides a good user experience with clear navigation and professional design. Analytics are implemented via Matomo with cookies disabled, reflecting a privacy-conscious approach. However, the site lacks a cookie consent mechanism and some security headers, which are areas for improvement. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. No major vulnerabilities or security incidents are evident. The absence of a published security policy or incident response contact reduces transparency but does not indicate immediate risk. WHOIS data is consistent and supports the legitimacy of the domain and organization. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and publishing security and incident response policies to enhance compliance and trust.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

klav.de

45

KLAV is a German government-affiliated competence center focused on reducing food waste across the supply chain sectors including primary production, processing, trade, and out-of-home catering. It operates as part of the National Strategy to reduce food waste and collaborates with economic actors, policymakers, and scientists. The website is professionally designed using TYPO3 CMS and modern frontend technologies, providing comprehensive information, seminar offerings, and sector dialogue facilitation. The technical infrastructure is solid with good mobile optimization and accessibility. Security posture is strong with HTTPS and privacy-conscious analytics (Matomo with disabled cookies), though explicit cookie consent and security policies are missing. Contact information is clearly presented, enhancing trust and credibility. Overall, KLAV presents a trustworthy and authoritative online presence aligned with its governmental mission.

F

Fachagentur Nachwachsende Rohstoffe e. V. (FNR)

klimaanpassung-wald.de

44

The website www.klimaanpassung-wald.de is an official government-related platform operated by the Fachagentur Nachwachsende Rohstoffe e. V. (FNR) that provides comprehensive information and support for the climate-adapted forest management funding program in Germany. It serves private and communal forest owners by offering program details, document submission options, and relevant news. The site is well-positioned as an authoritative source within the forestry and environmental protection sector, supported by government ministries. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and uses Matomo for privacy-conscious analytics. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced, though some security headers are missing and privacy policies are not explicitly presented. Contact information is clearly provided, enhancing trust and credibility.