Security Directory

U

Utopia 56

utopia56.org

61

Utopia 56 is a French non-profit humanitarian organization founded in 2015, dedicated to supporting exiled persons and migrants through direct aid such as distribution maraudes, information campaigns, and solidarity housing across seven French cities. The organization operates primarily on donations from individuals and ethical foundations, explicitly refusing state funding to maintain independence. Their website is professionally designed using WordPress and Avada theme, integrating modern tools like WooCommerce for fundraising, Google Analytics for tracking, and Mailin for communications. The site is well-structured, mobile-optimized, and rich in relevant content, including news, calls to action, and social media engagement. Security posture is solid with HTTPS and domain locking, though DNSSEC is not enabled, and additional security headers could enhance protection. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site reflects a credible, transparent, and active humanitarian organization with a strong digital presence.

Maison de Quartier Villejean is a non-profit community center based in Rennes, France, operated by the Association Rencontre et Culture. The organization provides a variety of cultural, educational, and social activities targeting children, youth, adults, and volunteers within the local community. Their services include workshops, events, room rentals, and a toy library, positioning them as a key local cultural hub. The website reflects this community focus with clear navigation and relevant content tailored to their audience. Technically, the site is built on Joomla CMS with common JavaScript libraries such as jQuery and Bootstrap, hosted by OVH, and uses Google Analytics for visitor tracking. The site is moderately optimized for mobile and accessibility but could improve in these areas. Security-wise, the site uses HTTPS but lacks advanced security headers and visible incident response or security policies. Privacy compliance is basic, with a privacy policy located on a legal mentions page but no cookie consent mechanism. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy features.

S

Stop the war now

stopthewarnow.eu

46

Stop the war now is a medium-sized Italian non-profit network comprising over 170 organizations dedicated to peacebuilding and international solidarity through nonviolent actions. The website serves as a platform to coordinate peace caravans, humanitarian projects, and cultural peace initiatives, targeting citizens and organizations interested in activism and humanitarian aid. Technically, the site is built on WordPress with a modern theme and plugins such as Yoast SEO and Google Analytics integration, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy policies, which are recommended for compliance and trust. Overall, the website is credible and professional but could improve transparency and security practices to enhance trust and compliance.

L

Land Rover Srbija

landrover.rs

59

Land Rover Srbija operates as the official regional website for the Land Rover brand in Serbia, focusing on showcasing luxury SUVs such as Range Rover, Discovery, and Defender. The site targets affluent customers interested in premium automotive products and provides brand and vehicle information. Technically, the website is built using modern JavaScript frameworks including Nuxt.js and Vue.js, leveraging Jaguar Land Rover's CDN infrastructure for media and fonts. The site demonstrates good mobile optimization and SEO practices but lacks explicit privacy and terms of service pages in the provided content. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and DNSSEC are not implemented. Overall, the website is professional and trustworthy but could improve privacy compliance and security best practices.

H

Hello Career

hello-career.ch

51

Hello Career is a Swiss educational platform dedicated to providing comprehensive information about the apprenticeship profession 'Kauffrau/Kaufmann Treuhand/Immobilien'. The website targets young individuals interested in pursuing apprenticeships in fiduciary and real estate sectors, offering resources such as career choice analysis, event listings, blog testimonials, and apprenticeship opportunities. The platform is well-positioned within its niche, supported by partnerships with reputable Swiss organizations, enhancing its credibility and trustworthiness. Technically, the website employs modern tracking technologies including Google Analytics and Google Tag Manager, integrated with a consent management system to comply with privacy regulations. The site demonstrates good mobile optimization, clear navigation, and a professional design, contributing to a positive user experience. However, there is room for improvement in accessibility and the implementation of advanced security headers. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, reflecting a solid baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted as an area for enhancement to strengthen transparency and preparedness. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure framework to further bolster trust and security maturity.

U

UNDP Sverige

globalamalen.se

40

Globalamalen.se is an official informational and educational website operated by UNDP Sweden, focusing on the United Nations Sustainable Development Goals (Globala målen). The site serves as a comprehensive resource for the general public, educators, businesses, and organizations interested in sustainable development, offering educational materials, interactive tools, and news updates. The platform is well-branded with UNDP logos and maintains a professional and authoritative presence in the Swedish market. Technically, the website is built on WordPress with a modern tech stack including jQuery, Foundation CSS, and various plugins for analytics and social media integration. It is hosted by Loopia AB and uses HTTPS with good SSL configuration. Security practices are solid but could be enhanced by enabling DNSSEC and adding more security headers. Privacy compliance is strong, with clear cookie and privacy policies and consent mechanisms in place. However, no explicit terms of service or incident response policies are published. Overall, the website demonstrates a high level of professionalism, trustworthiness, and content quality, making it a reliable source for information on the Global Goals in Sweden.

S

Sveriges Annonsörer

sverigesannonsorer.se

70

Sveriges Annonsörer is a well-established independent interest organization founded in 1924, dedicated to promoting responsible and effective marketing practices exclusively for advertisers in Sweden. The organization offers a broad range of services including education, certification programs, networking opportunities, and advocacy on key industry issues such as brand safety, data ethics, and transparency in media buying. Their market position is strong within the Swedish advertising sector, supported by a professional and content-rich website that reflects their commitment to their members. Technically, the website is built on WordPress with modern plugins and tools, providing good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the website and organization demonstrate high professionalism and trustworthiness, though WHOIS data for the domain was not available due to querying a subdomain.

S

ShowHeroes Studios

showheroes-studios.com

55

ShowHeroes Studios is a media production company specializing in editorial, commercial, and digital video production services targeted at publishers and advertisers. The company operates under the parent entity ShowHeroes Group and maintains a professional online presence with a well-structured website optimized for SEO and user experience. The website leverages modern web technologies including JavaScript ES modules and Google Analytics for tracking. Security posture is solid with HTTPS enforced and domain transfer protections in place, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service available, but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and well-positioned in the media industry.

S

ShowHeroes Group

showheroes-group.com

59

ShowHeroes Group is a medium-sized, Germany-based company specializing in contextual video and CTV advertising solutions. It operates multiple subsidiary brands providing advanced video technology and advertising platforms targeting digital publishers and advertisers primarily in Europe. The website demonstrates a high level of professionalism, with excellent content quality and clear business messaging. The technical infrastructure leverages modern JavaScript modules, HubSpot marketing tools, and is hosted on DigitalOcean, indicating a mature digital presence. Security posture is strong with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website and domain registration data align well, supporting the legitimacy and trustworthiness of the business.

D

dunp

dunp.it

48

dunp is a well-established communication agency based in Rome, Italy, founded in 2009. It serves a diverse clientele including entrepreneurs, startups, SMEs, large international players, and public institutions. The agency offers a broad range of services such as digital marketing, web development, advertising campaigns, consultancy on grants and funding, and digital transformation support. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive service descriptions. Technically, the site uses ASP.NET WebForms with modern front-end libraries and integrates Google services for analytics and advertising. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The agency holds multiple Google certifications, enhancing its credibility. Contact information is clearly provided, supporting trust and accessibility.

E

eMarketeer

emarketeer.com

68

eMarketeer is a well-established marketing automation platform founded in 2003, specializing in lead generation, management, and sales delivery. The company targets businesses seeking comprehensive marketing tools to optimize lead workflows and measure campaign success. The website reflects a mature digital presence built on WordPress with Elementor, integrating modern marketing and analytics technologies such as Google Tag Manager and Google Analytics. Hosting is provided by Amazon Web Services, indicating a robust infrastructure. Security posture is solid with HTTPS enforced and domain registration protections, though additional HTTP security headers could enhance defenses. The site demonstrates strong GDPR compliance with a detailed cookie consent mechanism and a comprehensive privacy policy. Contact is primarily via embedded forms, with no direct emails or phone numbers publicly listed. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

IATI Connect is a well-established global community platform dedicated to aid transparency, serving practitioners and members of the IATI community. The website offers a rich set of resources, discussions, events, and guidance to support transparency initiatives worldwide. It positions itself as a niche but important platform within the non-profit and government sectors focused on international aid transparency. Technically, the site is built on Drupal CMS and integrates modern analytics and bot detection tools, providing a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS and some security best practices, though there is room for improvement in HTTP security headers. Privacy compliance is good with a clear privacy policy and GDPR considerations, though cookie consent mechanisms could be enhanced. Overall, the site demonstrates high professionalism and trustworthiness, despite the lack of publicly available WHOIS data due to privacy protection.

The d-portal website serves as a key tool within the International Aid Transparency Initiative (IATI) ecosystem, providing users with the ability to explore, search, and analyze international development and humanitarian aid data. The platform targets development professionals, NGOs, researchers, and policymakers, offering open access to detailed activity data from various reporting organizations. The site is well-branded and consistent with IATI standards, supporting multiple languages and providing helpful documentation links. Technically, the site employs a modern JavaScript stack including jQuery, Chartist.js for data visualization, and multiple analytics platforms such as Google Analytics, Matomo, and Plausible. The site is mobile-optimized with good navigation and user experience, though accessibility features are basic. Performance is moderate, with room for improvement in SEO and accessibility compliance. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in the HTML. However, no explicit security headers were detected, and privacy and cookie policies are not present in the analyzed content, indicating gaps in privacy compliance. WHOIS data is unavailable or malformed, likely due to privacy protection, but the domain is consistent with the official IATI network, supporting legitimacy. Overall, the site is a credible and professional resource for aid transparency, but it would benefit from enhanced privacy disclosures, security header implementation, and accessibility improvements to strengthen its security posture and compliance.

F

Fundación Universitaria San Pablo CEU

ceu.es

69

Fundación Universitaria San Pablo CEU is a well-established Spanish educational institution operating multiple centers across Spain, including universities, vocational training, and schools. The website reflects a professional and comprehensive digital presence targeting students and academic communities. The institution leverages modern web technologies such as Bootstrap, jQuery, and integrates analytics and marketing tools like Google Analytics, Facebook Pixel, and Cookiebot for privacy compliance. The website is well-structured, mobile-optimized, and provides clear privacy and cookie policies, demonstrating a commitment to GDPR compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit security policies could enhance protection. Overall, the domain and website present a trustworthy and credible educational entity with no signs of malicious activity or content blocking.

Via Charlemagne is an international non-profit association dedicated to promoting the cultural and historical heritage of Charlemagne and the Carolingian Empire across Europe. The organization focuses on educational and touristic circuits, cultural activities, and training programs related to European history and identity. The website is well-positioned as a recognized cultural itinerary certified by the Council of Europe, targeting history enthusiasts, tourists, educators, and cultural organizations. The business model centers on cultural promotion and education rather than commercial activities. Technically, the website is built on WordPress with modern technologies including Bootstrap, jQuery, Owl Carousel, and AOS for animations. SEO is enhanced by the Yoast SEO plugin, and Google Analytics and Tag Manager are used for visitor tracking. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA v3 on contact forms, indicating a reasonable security posture. However, it lacks explicit security headers and a formal security or incident response policy. Privacy compliance is partially addressed with a privacy policy page, but no cookie consent mechanism is present, which could be improved to meet GDPR requirements fully. Overall, the website is professional, trustworthy, and serves its cultural and educational mission effectively. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

D

Dignity In Europe

dignity-in-europe.com

46

Dignity in Europe is a youth-driven non-profit initiative focused on advocating for dignified reception and rights of migrants within the European Union. The platform is supported by multiple NGOs and local government entities, emphasizing legislative change and solidarity among EU member states. The website is built on WordPress with modern SEO and performance plugins, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and domain transfer protections, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site presents a trustworthy and professional front for its advocacy mission.

E

European Movement

europeanmovement.eu

52

European Movement is a non-profit organization advocating for European integration, democracy, and defence cooperation within the EU. The website serves as a platform for sharing opinion polls, organizing events, and promoting innovation, particularly focusing on European military cooperation and AI-driven initiatives. The organization targets European citizens, policymakers, and stakeholders interested in EU affairs. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, with integrations such as Google Analytics and MonsterInsights for tracking. The site is hosted with a European registrar and uses a CDN for content delivery, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

K

Kantar

kantar.com

59

Kantar is a global leader in market research and data analytics, offering a comprehensive suite of services including brand strategy, sales performance analytics, and advanced data platforms. The website reflects a mature enterprise-level digital presence with consistent branding and professional content tailored to business clients seeking market insights. Technically, the site employs a modern technology stack with integrations such as Google Analytics, Hotjar, LinkedIn Insight, and Cookiebot for privacy compliance. Hosting and security are supported by Cloudflare, ensuring robust performance and protection. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and vulnerability disclosure information are absent. Overall, the site is safe, professional, and trustworthy, but the lack of WHOIS data and explicit privacy policy links suggests areas for improvement in transparency and compliance.

S

ShowHeroe SE

showheroes.com

60

ShowHeroes is a well-established company specializing in Connected TV (CTV) and digital video advertising solutions. They leverage advanced AI technology, notably their SemanticHero AI platform, to deliver contextual targeting and innovative ad formats. The company serves both advertisers and publishers globally, positioning itself as a leader in the media advertising technology sector. Their website reflects a professional and modern digital presence with strong branding and comprehensive service descriptions. Technically, the site is built on WordPress with modern JavaScript frameworks and integrates multiple marketing and analytics tools such as Google Analytics, HubSpot, and Quantcast for consent management and tracking. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. However, no explicit security policy or incident response contacts are published. Overall, the website is trustworthy, well-structured, and targets a professional audience in the advertising technology space.

V

VO2

vo2cap.se

59

VO2 is a holding company specializing in the media technology sector, focusing on acquiring, investing in, and supporting media tech companies. The website presents a professional image with clear branding and a concise business description targeting media tech industry stakeholders. The technical infrastructure leverages modern web technologies including Webflow CMS, Google Tag Manager, Google Analytics, and cookie consent management tools, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced, security headers present, and integration of Google reCAPTCHA, although the absence of explicit privacy and terms of service pages and lack of contact information limit full compliance and trust. The WHOIS data is missing or inaccessible, which raises concerns about domain legitimacy and age, suggesting the domain may be recently registered or privacy protected. Overall, the website is functional and professional but would benefit from enhanced transparency and compliance documentation.

S

StackBlitz, Inc.

stackblitz.com

67

StackBlitz, Inc. operates a leading browser-based integrated development environment (IDE) platform that enables web developers to create and launch applications instantly without local setup. The company leverages innovative WebContainers technology to run full development environments securely within the browser, positioning itself as a market innovator with adoption by major technology companies. The website reflects a mature, professional business with clear branding and comprehensive service offerings targeting frontend and product teams. Technically, the site uses modern frameworks like Astro and integrates multiple analytics and marketing tools, hosted on Cloudflare infrastructure, delivering fast and mobile-optimized user experiences. Security posture is strong with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC, security headers, and published security policies. Privacy compliance is adequate with clear privacy and terms pages but lacks cookie consent mechanisms despite tracking usage. Overall, the site is trustworthy, professional, and well-positioned in the technology sector.

U

Union suisse des professionnels de l’immobilier (USPI Suisse)

sous-location.immo

45

The website sous-location.immo is operated by the Union suisse des professionnels de l’immobilier (USPI Suisse), a recognized Swiss real estate professional association. It provides legal guidance and resources related to subletting residential properties in Switzerland, including downloadable contract templates. The site targets tenants and real estate professionals in the Swiss market, focusing on compliance with Swiss tenancy laws. Technically, the site is built on TYPO3 CMS, uses modern web technologies including Facebook SDK and Google Analytics, and is served over HTTPS with moderate performance and good mobile optimization. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks some security headers and formal privacy and cookie policies, which are compliance gaps. WHOIS data is unavailable or privacy protected, but the website's consistent branding, professional content, and valid contact information support its legitimacy. Overall, the site is professional, trustworthy, and safe for general audiences, though improvements in privacy compliance and security headers are recommended.

U

USPI Formation

uspi-formation.ch

60

USPI Formation is a specialized educational center focused on real estate training in the Suisse Romande region of Switzerland. Established in 2016, it offers a wide range of courses including basic training, professional development, and preparatory courses for federal certifications. The website reflects a mature digital presence with comprehensive course information and session scheduling, targeting individuals and professionals seeking to develop real estate competencies. The organization maintains active social media profiles on Facebook, Instagram, LinkedIn, and YouTube, enhancing its market reach and engagement. Technically, the website is built on WordPress with WooCommerce for e-commerce functionality. It integrates multiple modern marketing and analytics tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, Hotjar, and Zoho SalesIQ, indicating a sophisticated approach to user tracking and marketing. The site is well-optimized for SEO with structured data implemented via Yoast SEO and demonstrates good mobile responsiveness and user experience. From a security perspective, the site enforces HTTPS and employs a cookie consent mechanism compliant with GDPR. However, explicit security headers are not clearly detected, and no published security or incident response policies are found. There are no visible vulnerabilities or exposed sensitive data, but improvements could be made by adding security headers and formalizing incident response contacts. Overall, USPI Formation presents a professional, trustworthy, and GDPR-compliant online presence suitable for its educational mission. The risk profile is low with no critical security issues detected. Strategic recommendations include enhancing security headers, publishing incident response information, and adding a vulnerability disclosure policy to further strengthen security posture.

N

Niseko

niseko.ch

53

Niseko is a Swiss-based web agency specializing in bespoke web solutions, including custom website design, web applications, and AI/data integration services. The company targets businesses seeking tailored digital projects, emphasizing quality, performance, and user experience. Their market position is that of a small but professional agency with a clear focus on delivering solid and well-thought-out web solutions. Technically, the website is built on WordPress using Elementor, with modern JavaScript libraries and Google Analytics for tracking, complemented by a GDPR-compliant cookie consent mechanism. The site is well-optimized for SEO and mobile devices, offering a professional and consistent user experience. Security-wise, the site enforces HTTPS, includes standard security headers, and avoids exposing sensitive data, though it lacks explicit security policies and incident response information. Overall, the website is trustworthy and professional, with room for improvement in publishing security and compliance documentation.

K

KERUSSO · PRODUCTIONS

kerusso.ch

46

KERUSSO · PRODUCTIONS is a Swiss-based media production company specializing in social and cultural documentary projects. The website showcases various documentary works and projects, targeting a general audience interested in social issues and cultural storytelling. The company operates as a small-sized entity within the media industry, focusing on content creation and production services. The website is built on WordPress and integrates Google Analytics and Tag Manager for visitor tracking. While the site is professionally designed with good content quality and navigation, it lacks formal privacy and cookie policies, which are important for compliance and user trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal security policies.

C

CIFOR-ICRAF

cifor-icraf.org

69

CIFOR-ICRAF is a prominent non-profit international research organization focused on forestry, agroforestry, and landscape restoration to address global challenges such as climate change, biodiversity loss, and food security. The organization operates under the CGIAR umbrella and targets researchers, policymakers, and environmental stakeholders worldwide. Their website serves as a comprehensive knowledge hub offering publications, news, events, and multimedia resources. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and WHOIS transparency are lacking. Overall, the site is professional, trustworthy, and well-optimized for user experience and compliance, but would benefit from enhanced transparency in domain registration and contact information.

C

CIFOR-ICRAF

cifor.org

69

CIFOR-ICRAF is a globally recognized non-profit research organization focused on forestry, agroforestry, and environmental sustainability. It operates under the CGIAR umbrella and provides extensive research outputs, knowledge sharing, and policy advocacy to address global challenges such as climate change and biodiversity loss. The website reflects a mature digital presence with a professional design, multilingual support, and comprehensive content targeting researchers, policymakers, and environmental stakeholders. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates analytics and marketing tools such as Google Analytics, Hotjar, and Facebook Pixel, all managed with user consent mechanisms. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

S

SRG Schweizerische Revisionsgesellschaft AG

srgch.ch

48

SRG Schweizerische Revisionsgesellschaft AG is a Swiss-based consortium of revision experts providing auditing and financial revision services across multiple regional offices in Switzerland. The company is registered with the Swiss revision supervisory authority, indicating regulatory compliance and professional standing. Their website targets small and medium-sized enterprises (KMU) seeking expert revision and auditing services with industry-specific knowledge. Technically, the website is built on WordPress using the Divi theme, incorporating modern analytics tools such as Google Analytics and Google Tag Manager with IP anonymization, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and some privacy compliance measures in place, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, trustworthy, and well-structured, supporting the company's market position as a regional leader in revision services.

Z

Z83

z83.ch

52

Z83 is a Swiss-based fiduciary and CFO partner specializing in supporting digital companies, startups, and SMEs with financial and HR processes. Their service offerings include accounting, CFO-as-a-Service, tax consulting, and audits, positioning them as a niche financial services provider in the Swiss market. The website is built on WordPress with Elementor and integrates modern technologies such as GSAP and Google Analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements can be made by adding security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting the company's credibility and market positioning.

T

TF Financial Services

tf-fs.com

59

TF Financial Services is a newly established financial services company founded in 2023, specializing in technology-infused CFO partnership and financial consulting aimed at business growth and transformation. The company targets businesses seeking expert financial leadership and transformation support. The website is built on WordPress using Elementor and Weglot for multilingual capabilities, indicating a modern and flexible technical infrastructure. Performance is moderate with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and explicit security policies on the site. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website presents a professional and trustworthy image suitable for its niche market.

C

Consiglio Italiano Movimento Europeo

movimentoeuropeo.it

42

The Consiglio Italiano Movimento Europeo is a well-established Italian non-profit organization dedicated to promoting European unity and democratic integration since 1948. The website serves as an information hub, providing news, event calendars, thematic documents, and advocacy resources targeted at Italian citizens and organizations interested in European affairs. The organization maintains an active presence on major social media platforms and offers newsletters and petitions to engage its audience. Technically, the website is built on Joomla CMS using the Helix3 template framework, incorporating modern web technologies such as jQuery, Font Awesome, and Google Fonts. It is secured with HTTPS and DNSSEC, and includes cookie consent mechanisms aligned with GDPR requirements. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site employs standard best practices like HTTPS and DNSSEC but lacks advanced headers such as Content Security Policy and a security.txt file for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. Overall, the website presents a professional and trustworthy digital presence for a non-profit advocacy group, with room for improvement in security policies and accessibility to enhance user trust and compliance.

A

Associazione Luca Coscioni

formyrights.eu

40

The website www.formyrights.eu represents a non-profit advocacy initiative led by Associazione Luca Coscioni, focused on promoting respect for the rule of law within the European Union through a European Citizens' Initiative. The platform facilitates citizen engagement by providing information, partner support, and petition signing capabilities. The target audience includes EU citizens, human rights organizations, and civil rights advocates. The business model relies on donations and partnerships, positioning itself as a niche player in the government and non-profit sector. Technically, the website is built on ASP.NET WebForms with modern front-end libraries such as Bootstrap, jQuery, and FontAwesome. It employs Google Analytics for visitor tracking and uses responsive design techniques for mobile optimization. While the site is functional and well-structured, it lacks some advanced security headers and accessibility features, which could be improved to enhance security and user experience. From a security perspective, the site uses HTTPS and implements basic form validation, but no advanced security policies or incident response contacts are visible. The WHOIS data is unavailable due to EURid privacy policies, which is typical for .eu domains, but the website provides consistent contact information and partner references that support its legitimacy. Privacy and cookie policies are present with consent mechanisms, indicating a basic level of GDPR compliance. Overall, the website is trustworthy and professionally presented, with a clear mission and active engagement channels. However, improvements in security headers, incident response transparency, and accessibility would strengthen its security posture and compliance standing.

B

Business Sweden

business-sweden.se

71

Business Sweden is a government-affiliated organization dedicated to helping Swedish companies expand their global sales and assisting international companies to invest and grow in Sweden. The website is professionally designed with comprehensive content covering markets, industries, insights, and business support services. The technical infrastructure includes modern web technologies such as Adobe Typekit for fonts, Google Tag Manager and Analytics for tracking, Cookiebot for consent management, and Microsoft Application Insights for telemetry. Security posture is strong with HTTPS enforced and privacy mechanisms in place, though explicit security headers and incident response information are not prominently published. The absence of WHOIS data for the domain is unusual and warrants further verification, but the website's branding and content strongly support its legitimacy. Overall, the site demonstrates a mature digital presence suitable for its role as a trade and investment promotion entity.

R

Refina Treuhand AG

refina.ch

51

Refina Treuhand AG is a Swiss fiduciary company with over 30 years of experience, specializing in tax, auditing, fiduciary consulting, payroll administration, and accounting services. The website presents a professional image targeting businesses and individuals in Switzerland seeking trusted fiduciary services. The content is well-structured, primarily in German, and includes essential contact information and a cookie consent mechanism compliant with GDPR requirements. Technically, the site uses legacy jQuery 1.8.3, Google Analytics, and custom CSS, with basic mobile responsiveness and SEO optimization. Security posture is moderate, with no visible security headers and use of an outdated JavaScript library, but no critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is trustworthy and professionally maintained but could benefit from technical and security improvements.

H

Hugentobler & Bühler AG für Treuhand und Unternehmensberatung

hubtreuhand.ch

59

Hugentobler & Bühler AG is a Swiss-based medium-sized company specializing in fiduciary and business consulting services, including financial accounting, tax consulting, corporate consulting, succession planning, financial management, and personnel administration. With over 30 years of professional experience and a team of more than 20 specialists, the company holds a reputable position in the Swiss finance sector and is a member of the Swiss fiduciary association TREUHAND | SUISSE. The website reflects a professional and consistent brand image targeting Swiss businesses and private clients seeking trusted fiduciary services. Technically, the website is built on the Contao CMS platform and employs modern web technologies such as jQuery, Google Analytics, and Google Tag Manager. The site is mobile-optimized, SEO-friendly, and performs moderately well. However, it lacks a cookie consent mechanism despite using tracking scripts, which is a privacy compliance gap. Security-wise, the site uses HTTPS with anonymized IP tracking for analytics, but lacks explicit security headers and incident response information. Overall, the security posture is solid but could be improved by implementing cookie consent, security headers, and publishing security policies. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. No suspicious or malicious content was detected, and the site is safe for general audiences.

B

Bolleter GmbH

bolleter-gmbh.ch

45

Bolleter GmbH is a Swiss fiduciary company specializing in accounting, tax, payroll, personnel management, and company formation services primarily targeting small and medium-sized enterprises (KMU) and private clients in the Zürcher Unterland region. The website presents a professional image with clear service offerings and contact information, positioning the company as a regional service provider in fiduciary and related business services. Technically, the website is built on WordPress using the Divi theme, incorporating Google Analytics and Tag Manager for user tracking. The site is mobile-optimized and has good SEO practices but lacks some advanced accessibility features. Security-wise, the site uses HTTPS and avoids exposing sensitive data but does not implement important security headers or publish security policies, which could be improved. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced compliance and security measures.

C

CIFOR-ICRAF

worldagroforestry.org

69

CIFOR-ICRAF is a globally recognized non-profit research organization focused on forestry, agroforestry, and environmental sustainability. It operates under the CGIAR consortium and provides extensive research outputs, knowledge sharing, and policy advocacy to address global challenges such as climate change and biodiversity loss. The website reflects a mature digital presence with comprehensive content and strong branding consistency. Technically, the site is built on WordPress with modern frameworks and integrates multiple analytics and marketing tools while maintaining GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and bot management cookies, though some security headers and incident response disclosures could be improved. Overall, the site is professional, trustworthy, and well-optimized for users and search engines.

Stockholm Resilience Centre is a prominent international research and education institution focused on advancing transdisciplinary research for governance of social-ecological systems. It operates as a collaboration between Stockholm University and the Beijer Institute of Ecological Economics at the Royal Swedish Academy of Sciences, positioning itself as a leader in sustainability science and resilience research. The website reflects a mature digital presence with comprehensive content aimed at researchers, policymakers, and students interested in sustainability challenges such as climate change and biodiversity loss. Technically, the website employs a modern technology stack including jQuery, Bootstrap, Google Analytics, and Piwik PRO for analytics, hosted on a SiteVision CMS platform. The site is well-optimized for mobile devices, accessible, and SEO-friendly, with a professional design and clear navigation. Privacy and cookie consent mechanisms are implemented in compliance with GDPR, enhancing user trust. From a security perspective, the site uses HTTPS with strong SSL configuration and security headers, and no vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement. The WHOIS data is unavailable due to query failure or privacy protection, but the website's institutional affiliations and content quality support its legitimacy. Overall, the site demonstrates a strong security posture, good privacy compliance, and high business credibility, making it a trustworthy platform for its audience.

B

Bravoauto

bravoauto.lt

64

Bravoauto is a Lithuanian-based used car dealership offering a wide selection of used vehicles with warranty, alongside services such as car purchase, leasing, insurance, and ordering. The company operates multiple physical locations in major Lithuanian cities including Vilnius, Kaunas, and Klaipėda, positioning itself as a regional player in the transportation sector. The website is professionally designed with good navigation and mobile optimization, supporting a positive user experience for its target audience of used car buyers in Lithuania. Technically, the site employs modern tracking and advertising technologies such as Google Analytics, Facebook Pixel, TikTok Pixel, and Criteo, and is hosted with Azure DNS services, indicating a solid digital infrastructure. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and cookie consent management via Cookiebot, although there are gaps in published privacy and security policies. Overall, the website is functional and credible but would benefit from enhanced compliance documentation and security disclosures.

М

Мото-Пфое ЕООД

motopfohe.bg

61

Мото-Пфое ЕООД е водещ автомобилен дилър в България, официален представител на марки като Ford, Volvo, Jaguar и Land Rover. Компанията предлага широка гама от услуги, включително продажба на нови и употребявани автомобили, сервизни услуги, лизинг, застраховки и коли под наем. Със силна пазарна позиция и дългогодишна история, Мото-Пфое е част от международната корпорация Sumitomo, което допълнително засилва доверието в бранда. Таргет аудиторията включва както индивидуални, така и корпоративни клиенти в България, търсещи качествени автомобилни решения и услуги. Техническата инфраструктура на сайта е модерна, използваща Google Tag Manager, Google Analytics, Facebook Pixel и други съвременни инструменти за анализ и маркетинг. Сайтът е мобилно оптимизиран, с добра SEO структура и бързо зареждане, което осигурява отлично потребителско изживяване. Въпреки липсата на явен CMS, сайтът демонстрира професионална реализация и стабилна техническа основа. От гледна точка на сигурността, сайтът използва HTTPS и има основни мерки за защита, включително cookie consent механизъм с възможност за персонализиране. Липсват видими уязвимости или изтичане на чувствителна информация. Препоръчва се добавяне на допълнителни security headers и публикуване на политика за сигурност и контакт за инциденти. Общата оценка за сигурността е добра, като сайтът показва зрялост и отговорност към защитата на потребителските данни. Общата оценка на сайта е висока, с отлична съдържателна и техническа реализация, добра съвместимост с GDPR и силна бизнес достоверност. Препоръчва се фокус върху допълнителни мерки за сигурност и прозрачност, за да се повиши още повече доверието и защитата на потребителите.

R

Richard Creative Agency

richard-creative.com

57

Richard Creative Agency is a small, established marketing and communications design firm founded in 2012, specializing in website development, branding, and print collateral design. The company targets businesses seeking strategic marketing solutions and creative design services, positioning itself as a practical and personal service provider in the media sector. The website reflects a professional and consistent brand image with a clear portfolio and service descriptions. Technically, the site is built on WordPress using modern plugins and themes, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and domain registration transparency, but lacks security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible but would benefit from enhanced security and compliance documentation.

Mississippi Behavioral Health Services is a regional healthcare provider specializing in behavioral health rehabilitation services for children and adults with serious mental illness and behavioral disturbances. Established in 2016, the organization operates multiple offices throughout Mississippi, offering a comprehensive range of therapeutic and support services tailored to individual and family needs. The website reflects a professional and consistent brand presence with clear contact information and service descriptions, targeting residents of Mississippi seeking mental health support. Technically, the website is built on WordPress using the X Theme framework, incorporating modern web technologies such as jQuery and Google Analytics for tracking. The site is mobile-optimized and provides a moderate performance experience. However, it lacks advanced SEO and accessibility features and does not implement security headers beyond HTTPS. From a security perspective, the site benefits from HTTPS encryption and domain transfer protection but lacks DNSSEC and security headers that could enhance protection against common web threats. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are critical for compliance and user trust, especially in healthcare. Analytics usage is moderate, with Google Analytics and Jetpack Stats employed without clear privacy disclosures. Overall, the website is functional and professional but would benefit from improved privacy compliance, enhanced security practices, and more transparent user data handling policies to strengthen trust and regulatory adherence.

F

Fédération Romande Immobilière

fri.ch

50

Fédération Romande Immobilière (FRI) is a well-established association founded in 1925, representing property owners in the French-speaking region of Switzerland. The organization focuses on defending property owners' rights, improving political, economic, and legal conditions related to real estate, and encouraging home ownership. The website reflects a professional presence with clear business information, contact details, and regional partnerships with cantonal chambers and HEV Schweiz. Technically, the site is built on WordPress with modern plugins for SEO, GDPR compliance, and search functionality, supported by Google Analytics and Tag Manager for analytics and marketing. Security posture is solid with HTTPS and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy accessible via a report page. Overall, the site is trustworthy, well-branded, and serves its target audience effectively.

S

SVIT Schweiz

svit.ch

67

SVIT Schweiz is a well-established professional association serving real estate professionals in Switzerland. The website offers comprehensive information about their services, events, publications, and educational offerings, positioning them as a key player in the Swiss real estate sector. The site is professionally designed, mobile-optimized, and provides clear navigation and rich content tailored to its target audience. Technically, the website is built on Drupal 10 with modern libraries and integrates Google Tag Manager and Analytics with consent management, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response information are not publicly disclosed. Overall, the website demonstrates high business credibility and compliance with privacy regulations, making it a trustworthy resource for its audience.

M

My Tree Global OÜ

goplant.me

61

GoPlant is a small Estonian-based green technology startup focused on urban environmental improvement through a tree crowdfunding platform. The company enables users worldwide to donate for tree planting in various cities, calculate their carbon footprint, and participate in volunteer activities. The website demonstrates a moderate level of digital maturity, utilizing modern frontend technologies such as Bootstrap, jQuery, and slick carousels, and integrates analytics tools like Google Analytics and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks important security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business credibility is supported by consistent branding, contact information, and social media presence. Strategic improvements in privacy disclosures and security policies are recommended to enhance trust and compliance.

D

Doxio

doxio.online

61

Doxio is a technology company offering a SaaS document management system designed to optimize business workflows by enabling document creation, reporting, storage, and collaboration. The company targets businesses looking to improve administrative efficiency and productivity through features like OCR, workflow tracking, and customizable templates. The website is modern, built with Gatsby and React, hosted behind Cloudflare DNS, and integrates cookie consent and analytics tools. Security posture is solid with HTTPS and domain lock statuses, though explicit security and privacy policies are missing. The domain registration is consistent with the business timeline and shows no suspicious indicators.

A

away

awayonline.me

62

awayonline.me is a website for 'away', a SaaS-based Leave Management System designed to simplify employee absence management for businesses and HR departments. The platform offers features such as leave tracking, approval workflows, holiday calculation, and legal compliance reporting. The website targets small to medium-sized businesses seeking efficient and compliant leave management solutions. The company was founded in 2022 and operates primarily in the technology sector with a focus on HR software solutions. The website is professionally designed using modern web technologies including Gatsby and React, hosted likely behind Cloudflare DNS services, and incorporates cookie consent mechanisms via Usercentrics. Analytics are implemented using Google Tag Manager and Google Analytics, indicating moderate user tracking.

B

Barnes & Noble College

shoptruespirit.com

72

Barnes & Noble College operates a professional and comprehensive campus bookstore and retail services website, targeting educational institutions, students, and faculty. The company offers a wide range of services including course materials, affordable access programs, open educational resources, and retail solutions such as store design and merchandising. The website reflects an enterprise-level business with consistent branding and a strong market position in the education retail sector. Technically, the site is built on WordPress with modern frameworks like Tailwind CSS and Alpine.js, and integrates analytics and marketing tools such as Google Analytics, HubSpot, and LinkedIn Insight. The site is mobile optimized and SEO friendly, though accessibility could be improved. Security posture is good with HTTPS enforced and domain locking, but DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is partial, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, the site is trustworthy and professional, but could enhance compliance and security transparency.

T

The Wolfsonian–Florida International University

wolfsonian.org

58

The Wolfsonian–Florida International University is a well-established museum and research center located in Miami Beach, Florida. It operates as a non-profit educational institution affiliated with Florida International University, focusing on art, design, and cultural exhibitions. The website reflects a mature digital presence with comprehensive content aimed at museum visitors, students, researchers, and families. It offers access to a large digital catalog, educational programs, and membership opportunities, positioning itself as a key cultural institution in the region. Technically, the website employs modern web technologies including jQuery, Foundation framework, and slick carousel for UI components, alongside Google Analytics and Facebook Pixel for tracking. Hosting and CDN services are provided by Florida International University, ensuring reliable infrastructure. The site is mobile optimized and accessible, with good SEO practices evident in meta tags and structured navigation. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. However, it lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options, which could enhance security posture. No explicit privacy or cookie consent mechanisms are present, and no published security or incident response policies were found, indicating room for improvement in compliance and transparency. Overall, the website is trustworthy, professional, and safe for general audiences. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing security policies, and enabling DNSSEC to strengthen domain security and compliance.

F

Florida International University

fiualumni.com

53

Florida International University Alumni website serves as a comprehensive engagement platform for over 340,000 alumni worldwide. It offers networking, events, career development, and giving back opportunities, positioning itself as a key community hub for FIU graduates. The site is well-branded with consistent university identity and provides rich content relevant to its audience. Technically, the site uses modern analytics and marketing tools, a responsive design framework, and is hosted with a reputable registrar and university name servers. Security posture is solid with HTTPS and no exposed sensitive data, though it lacks some advanced security headers and explicit privacy and cookie policies. Overall, the site is trustworthy and professionally maintained, but could improve privacy compliance and security transparency.