Security Directory

A

Amaury Sport Organisation

aso.fr

62

Amaury Sport Organisation (A.S.O) is a prominent international sports event organizer specializing in non-stadia events such as cycling, motor sports, mass participation events, golf, and sailing. It operates flagship events including the Tour de France and Dakar Rally, organizing approximately 250 competition days annually across 36 countries. The company is a subsidiary of the Amaury Group, a major media and sports conglomerate. The website reflects a professional and consistent brand presence, targeting sports enthusiasts, participants, and business partners. Technically, the site employs modern JavaScript frameworks, Google Tag Manager, and consent management tools, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and consent mechanisms in place, though additional security headers and explicit privacy policies are absent. WHOIS data is unavailable, limiting domain trust verification, but the website content and external links support legitimacy. Overall, the site is well-structured and trustworthy, with room for improvement in privacy transparency and security header implementation.

Q

Qode Interactive

qodeinteractive.com

65

Qode Interactive is a well-established company specializing in premium WordPress themes and plugins, founded in 2011. Their website presents a professional portfolio of products targeting WordPress users, designers, and agencies seeking high-quality themes with extensive customization options. The company maintains a consistent brand presence across multiple social media platforms and uses modern web technologies including WordPress, WPBakery Page Builder, and Slider Revolution. The technical infrastructure is solid, leveraging HTTPS and Cloudflare DNS, with integration of Google Tag Manager and Facebook SDK for analytics and marketing. From a security perspective, the website enforces HTTPS and implements a cookie consent mechanism compliant with GDPR requirements. However, it lacks explicit privacy policies, terms of service, security policies, and incident response contacts, which are important for comprehensive compliance and trust. No security headers were detected, and DNSSEC is not enabled, representing areas for improvement. No vulnerabilities or suspicious patterns were found in the WHOIS data, which aligns well with the company's legitimacy and domain age. Overall, the website demonstrates good content quality, technical implementation, and business credibility, but could enhance its privacy compliance and security posture by publishing relevant policies and improving security headers. The risk level is moderate with no critical issues detected, making it a trustworthy site for its target audience.

W

WestCord Hotels

westcordhotels.nl

57

WestCord Hotels is a medium-sized hospitality business operating a chain of 15 unique hotels across the Netherlands. The website serves as a professional digital presence showcasing their accommodation services, targeting general travelers and tourists. The company has an established market position with a domain registered since 2001, consistent with their business history. Technically, the website is built on WordPress with WooCommerce and uses modern tracking and consent management tools such as Google Tag Manager, Facebook SDK, and Cookiebot. The site is mobile optimized and SEO friendly with structured data implemented. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place; however, there are gaps such as missing DNSSEC and lack of security headers. Privacy compliance is partial, with a cookie consent banner but no explicit privacy or terms of service pages detected in the provided content. Overall, the website is professional and trustworthy but could improve in security and compliance documentation.

P

Official website of Paris Tours cycling race

paris-tours.fr

59

The website www.paris-tours.fr serves as the official digital platform for the Paris Tours cycling race, providing comprehensive information about the event, including news, team details, live coverage, and media contacts. It targets cycling enthusiasts, sports fans, and media professionals, positioning itself as a key source for race-related content. The site leverages modern web technologies and tracking tools to deliver a rich user experience and advertising capabilities. However, the absence of WHOIS registration data and explicit privacy and terms of service policies slightly detracts from its overall trustworthiness. The site is well-structured, mobile-optimized, and integrates social media channels effectively, enhancing its outreach and engagement.

P

Official website of the Paris–Nice cycling race. “The sun’s race”.

paris-nice.fr

54

The website www.paris-nice.fr serves as the official digital platform for the Paris–Nice cycling race, a prominent professional cycling event in France. It provides comprehensive race information, rankings, media content, and sponsor details, targeting cycling enthusiasts, media professionals, and event participants. The site integrates multiple advertising and analytics technologies, including Google Tag Manager, Facebook and TikTok pixels, and Google Ad Manager, indicating a mature digital marketing infrastructure. The presence of cookie consent mechanisms aligns with privacy regulations, although explicit privacy and terms of service pages were not detected in the provided content. Security posture is strong with HTTPS enforcement and standard security headers, but the absence of WHOIS data and lack of explicit security or incident response information slightly reduce trustworthiness. Overall, the site is professional, well-branded, and content-rich, but would benefit from enhanced transparency in privacy and security disclosures.

C

Official website of Tour Auvergne-Rhône-Alpes race 2025

criterium-du-dauphine.fr

63

The website www.tour-auvergne-rhone-alpes.fr serves as the official digital platform for the 2025 Tour Auvergne-Rhône-Alpes cycling race, a significant event in the professional cycling calendar. It provides comprehensive information about the race, including news, teams, routes, media content, and partner details. The site targets cycling enthusiasts, media professionals, sponsors, and the general public interested in the event. The business model focuses on event promotion, fan engagement, and sponsor visibility. Technically, the site employs a modern JavaScript-based infrastructure with integrations of Google Tag Manager, Facebook SDK, TikTok Pixel, and Google DoubleClick for advertising and analytics. The presence of OneTrust cookie consent indicates attention to privacy compliance, although explicit privacy and terms of service pages are not found. The site is mobile-optimized with good SEO and accessibility basics, though some improvements are possible. From a security perspective, the website enforces HTTPS with strong SSL configuration and implements key security headers, enhancing protection against common web threats. However, the absence of published security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for maturity in security governance. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy front for the cycling event, supported by official partners and social media presence. The lack of WHOIS data due to privacy protection is typical for event sites and does not detract from legitimacy. Strategic recommendations include publishing comprehensive privacy and terms policies, enhancing contact transparency, and continuing to monitor third-party scripts for security risks.

A

Amaury Sport Organisation (ASO)

paris-roubaix.fr

61

The Paris-Roubaix official website serves as the authoritative digital platform for one of cycling's most iconic races, managed by Amaury Sport Organisation (ASO). It provides comprehensive race information, multimedia content, team details, rankings, and event-related news, targeting cycling enthusiasts, media, and participants globally. The site is well-branded, professionally designed, and integrates modern digital marketing and analytics tools, ensuring a rich user experience across devices. Technically, the website employs contemporary JavaScript libraries, Google Tag Manager, Facebook SDK, and Google DoubleClick for advertising, alongside a responsive design and accessibility features. The presence of a robust cookie consent mechanism demonstrates compliance with GDPR and privacy regulations. The site uses HTTPS with strong SSL configurations, and security headers are likely implemented, contributing to a solid security posture. While WHOIS data is unavailable, likely due to privacy protection or registry policies, the website's affiliation with recognized organizations such as UCI and ASO, along with consistent branding and secure infrastructure, supports its legitimacy. No critical vulnerabilities or security issues were detected during analysis. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing explicit security policies, incident response procedures, and vulnerability disclosure programs to enhance transparency and trust further.

A

Amaury Sport Organisation (A.S.O.)

letapedutourdefrance.com

60

L'Etape du Tour de France is an amateur cycling event website operated by Amaury Sport Organisation, offering non-professional riders the experience of the Tour de France. The website is well designed with clear navigation, targeting cycling enthusiasts globally. It provides event information, registration, training plans, and additional services such as bike rental and mechanical assistance. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and Facebook SDK for analytics and marketing, with good mobile optimization and cookie consent compliance. Security posture is solid with HTTPS and basic security best practices, though some HTTP security headers are missing and no explicit security or incident response policies are publicly available. The absence of WHOIS data for the domain is a concern for domain legitimacy, but the website content and branding strongly indicate a legitimate and professional event. Overall, the site scores well on content quality and technical implementation but could improve transparency on security and domain registration details.

A

Amaury Sport Organisation

lavuelta.es

10

La Vuelta is a premier international cycling race organized by Amaury Sport Organisation, prominently featuring 21 stages across Spain and neighboring countries. The website serves as an official platform providing race information, multimedia content, and fan engagement tools. Technically, the site employs modern JavaScript libraries, Google Tag Manager, and multiple tracking pixels, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though it lacks some security headers and explicit security policies. Privacy compliance is partial, with no visible privacy or terms of service pages on the homepage. Overall, the site is professional, trustworthy, and well-positioned in the sports event market.

A

Amaury Sport Organisation (ASO)

letour.fr

10

The website www.letour.fr is the official digital platform for the Tour de France 2025, operated by Amaury Sport Organisation (ASO). It serves as a comprehensive source for race information, media content, merchandising, and fan engagement. The site targets cycling enthusiasts, media, and tourists interested in the event. The business model revolves around event promotion, media distribution, and official merchandise sales, positioning ASO as a leading organizer in the global cycling sports industry. Technically, the site employs modern JavaScript frameworks and integrates multiple third-party analytics and advertising services, including Google Tag Manager, Facebook SDK, and TikTok Pixel. It uses HTTPS with strong SSL configuration and implements cookie consent mechanisms, reflecting a mature digital infrastructure. The site is mobile-optimized and provides a rich user experience with clear navigation and professional design. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and cookie consent but lacks explicit visible security headers in the HTML source. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. However, no direct contact information or security incident response details are publicly available. The WHOIS data for the domain is unavailable, which limits the ability to fully verify domain legitimacy and registration details. Despite this, the website's branding, content quality, and partner references strongly indicate it is an official and trustworthy source. Overall, the site scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a reliable and professional platform for its audience.

Q

Qode Interactive

edge-themes.com

66

Qode Interactive is a well-established WordPress theme author founded in 2011, offering a large portfolio of over 150 premium WordPress themes under the Edge brand. The company targets web designers, developers, and agencies seeking high-quality, customizable WordPress themes. Their business model focuses on digital product sales, including themes and plugins, supported by affiliate marketing and digital downloads. The website demonstrates a good level of digital maturity, utilizing modern WordPress plugins such as Easy Digital Downloads, WPBakery Page Builder, and Slider Revolution, alongside integration with Google Tag Manager and Facebook SDK for analytics and marketing purposes. Hosting and DNS are managed via Cloudflare, providing reliable infrastructure and SSL encryption.

L

Lumen d.o.o.

lumen.ba

42

Lumen d.o.o. is a well-established manufacturer and wholesaler of candles, paraffin and electronic lanterns, and decorative products, operating primarily in Bosnia and Herzegovina with a subsidiary in Croatia. Founded in 1986, the company has a strong regional presence and emphasizes environmentally friendly, reusable products. The website reflects a medium-sized business with consistent branding and good content quality, targeting retail and wholesale customers in the decorative and candle product sectors. Technically, the site uses common JavaScript libraries and Google Analytics but lacks advanced security headers and explicit privacy policies, indicating room for improvement in compliance and security posture. The security stance is moderate with no critical vulnerabilities detected but missing some best practices such as security headers and incident response contacts. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

L

Lumen trgovina d.o.o.

lumentrgovina.hr

39

Lumen trgovina d.o.o. is a Croatian wholesale and retail company specializing in decorative products such as candles, lanterns, wedding invitations, and floral supplies. It operates under the umbrella of LUMEN d.o.o., a well-established manufacturer with over 35 years of experience in candle and lamp production. The company targets retailers, florists, and event planners, providing a broad product range for various decorative needs. The website reflects a medium-sized business with consistent branding and a professional online presence. Technically, the website uses a traditional tech stack including jQuery, Owl Carousel, and Google Analytics, but relies on outdated JavaScript libraries which may pose security risks. The site is moderately optimized for performance and mobile use, with basic SEO and accessibility features. No CMS or advanced frameworks were detected, indicating a custom or static site approach. From a security perspective, the site lacks visible security headers and explicit privacy or cookie policies, which lowers its compliance posture. The use of HTTPS is implied but not explicitly confirmed in the provided data. Tracking via Google Analytics and Facebook SDK is present, but privacy compliance is minimal. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and professional but would benefit from updates to its security practices, privacy compliance, and modernization of its technical stack. These improvements would enhance trustworthiness and reduce potential vulnerabilities.

H

Henkel

schwarzkopf-professional.com

64

Schwarzkopf Professional is a globally recognized brand under the Henkel umbrella, specializing in professional hair care products and education targeted at hairdressers. The website reflects a mature digital presence built on Adobe Experience Manager, integrating modern analytics and consent management tools. While the site is well-structured and professionally designed, the absence of WHOIS data and explicit privacy policies slightly detracts from its overall trustworthiness. Security posture is solid with HTTPS and cookie consent mechanisms, but could be improved with additional security headers and published policies. Overall, the site serves its B2B audience effectively with a focus on product information and educational resources.

S.T.R. Tehno Centar is a small retail business established in 2012, specializing in consumer electronics and household appliances. Their product range includes satellite antennas, white goods such as refrigerators and washing machines, LCD and LED televisions, as well as new and used computers and components. The company targets general consumers in Bosnia and Herzegovina and operates both a physical presence and an online presence linking to an external webshop kupijeftino.ba. The website content is basic but functional, with moderate branding consistency and limited trust indicators. Technically, the website uses older technologies such as jQuery 1.6 and Cufon font replacement, with integration of Facebook SDK and Google Analytics for marketing and tracking. Hosting is supported by Cloudflare DNS, but no explicit HTTPS enforcement or modern security headers are detected. The website lacks mobile optimization and accessibility features, and no CMS or modern frameworks are identified. From a security perspective, the site has a clientTransferProhibited domain status and uses Cloudflare nameservers, which provide some protection. However, the absence of HTTPS enforcement, security headers, and updated libraries exposes the site to potential vulnerabilities. No privacy, cookie, or terms of service policies are present, indicating poor privacy compliance. Contact information is not explicitly provided on the site, limiting business credibility. Overall, the website is moderately trustworthy but requires significant improvements in security posture, privacy compliance, and technical modernization to enhance user trust and regulatory adherence.

PCC WebShop is a Bosnia and Herzegovina-based e-commerce retailer specializing in electronics and household appliances. The website offers a broad product catalog including computers, laptops, monitors, printers, televisions, and small appliances, targeting general consumers in the region. The platform supports user accounts, shopping cart functionality, and promotional deals, positioning itself as a local online electronics retailer. Technically, the site employs common web technologies such as jQuery, Slick Slider, Facebook SDK, Google Tag Manager, and Google Analytics, indicating a moderate level of digital maturity. The website is mobile-optimized with a good user experience and clear navigation. Security-wise, the site uses HTTPS and includes anti-forgery tokens in login forms, but lacks visible security headers and published privacy or cookie policies, which are areas for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. The site does not contain adult or NSFW content and maintains a safe content rating.

S

Streamable Inc.

streamable.com

70

Streamable Inc. operates a mature and well-established online video hosting and sharing platform, founded in 2003. The company targets a broad audience including businesses, content creators, and individuals, offering a freemium business model with advanced video editing and sharing tools. The platform supports multiple video formats and provides seamless upload and streaming experiences, positioning itself as a reliable and user-friendly service in the competitive video hosting market. Technically, the website is built on modern web technologies including React, integrates with major third-party services for analytics, marketing, and payments, and is hosted on Amazon AWS infrastructure, ensuring scalability and performance. Security posture is strong with HTTPS enforced, domain transfer protections, and bot mitigation via reCAPTCHA, although some security headers could be more explicitly implemented. Privacy compliance is well addressed with accessible privacy and cookie policies, and GDPR compliance indicators are present. However, explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates high professionalism, trustworthiness, and technical maturity, with minor areas for security and compliance enhancement.

A

Autocenter Ing. Mühlbacher GmbH

automuehlbacher.at

38

Autocenter Ing. Mühlbacher GmbH is a small regional automotive dealership and service provider located in Kirchbichl, Tirol, Austria. The company offers new and used cars from brands such as Citroën, Seat, Daihatsu, and SsangYong, alongside services including repairs, maintenance, vehicle registration, tuning, paint and bodywork, financing, insurance, and leasing. Their market position is focused on serving the local community with a comprehensive automotive offering. The website content is primarily in German and targets general consumers interested in automotive sales and services. Technically, the website uses basic HTML, CSS, and JavaScript with older versions of jQuery and integrates Facebook SDK and Google Analytics for social media and analytics purposes. The site appears to be custom-built without a known CMS and shows moderate performance with limited mobile optimization and basic SEO and accessibility features. From a security perspective, the site uses HTTPS (assumed from URL), but lacks modern security headers and uses an outdated JavaScript library, which poses potential vulnerabilities. There is no visible cookie consent mechanism or explicit GDPR compliance indicators on the homepage, although a privacy policy and terms of service page exist. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and provides essential business information but would benefit from technical modernization, improved security practices, and enhanced privacy compliance to reduce risk and improve user trust.

T

TVR Moldova

tvrmoldova.md

45

TVR Moldova is a regional media broadcaster affiliated with the Romanian Television network, providing news, cultural programming, and live TV content primarily targeting the Moldovan and Romanian-speaking audience. The website demonstrates a solid market position as a trusted news source with consistent branding and a comprehensive content offering including news categories, TV shows, and live streaming. Technically, the site leverages modern web technologies, including Cloudflare CDN, Google Tag Manager, and social media integrations, ensuring moderate to good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though there is room for improvement in privacy compliance and incident response transparency. Overall, the domain registration and technical setup align well with the business profile, indicating a legitimate and stable online presence.

J

JU Federalna novinska agencija (FENA)

fena.ba

53

Federalna novinska agencija (FENA) operates as a national news agency providing comprehensive news coverage from Bosnia and Herzegovina, the region, and international affairs. The website offers a broad range of news categories including politics, economy, culture, sports, and multimedia content such as photos and videos. The agency maintains a professional market position with affiliations to recognized news alliances, enhancing its credibility and reach. Technically, the website employs modern web technologies including Google Fonts, Google Analytics, Facebook SDK, and Google Publisher Tags for advertising. The site is mobile optimized with good navigation and content structure, although it lacks explicit CMS identification. Performance is moderate with asynchronous script loading to improve user experience. From a security perspective, the site uses HTTPS with good SSL configuration but lacks important security headers and a cookie consent mechanism, which impacts privacy compliance. No visible forms or sensitive data exposure were detected, but incident response and security policies are not publicly documented. The WHOIS data aligns well with the business identity, supporting legitimacy. Overall, the website is a reliable and professional news source with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

Risk & Compliance Platform Europe is a specialized content and educational platform focused on European regulatory, compliance, and risk management topics. It offers news, whitepapers, educational events, books, and job listings primarily targeting compliance professionals and regulatory stakeholders in Europe. The website is multilingual with sister sites for various European countries, indicating a regional market focus. Technically, the site is built on WordPress with modern web technologies including jQuery, Bootstrap, Google Analytics, and Facebook SDK, providing a moderate to good user experience with mobile responsiveness and SEO optimization. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks some security headers and explicit cookie consent mechanisms. The absence of WHOIS data limits domain trust verification, but the professional content and active updates suggest legitimate operation. Overall, the site is a credible resource for compliance professionals with room for improvement in privacy and security transparency.

Risk & Compliance Platform Europe is a specialized media and knowledge platform focused on compliance, risk management, and regulatory developments in Europe. It offers news, whitepapers, educational courses, books, and events targeting compliance professionals and businesses in regulated sectors. The platform maintains a multilingual presence with sister sites in multiple European countries, enhancing its reach and relevance. Technically, the website is built on WordPress with modern web technologies including Bootstrap, jQuery, Google Analytics, Facebook SDK, and Google reCAPTCHA. It employs HTTPS with strong security headers and uses SEO best practices, ensuring good performance and mobile optimization. However, it lacks a visible cookie consent mechanism and explicit privacy compliance features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, security headers, and form protection via reCAPTCHA. No vulnerabilities or exposed sensitive data were detected. The absence of visible security policies and incident response information suggests room for improvement in transparency and preparedness. Overall, the website is professional, trustworthy, and content-rich, serving a niche audience effectively. The lack of WHOIS data limits full domain trust analysis, but the site's quality and security posture support its legitimacy. Strategic enhancements in privacy compliance and security transparency would further strengthen its position.

Risk & Compliance Platform Europe is a specialized content and knowledge platform focused on risk management, compliance, and regulatory topics primarily serving European financial and regulatory professionals. The website offers a broad range of services including news, events, whitepapers, educational courses, books, job listings, and a knowledge database, targeting compliance officers, risk managers, and regulatory stakeholders. The platform maintains a multilingual presence to cater to diverse European audiences. Technically, the website is built on WordPress CMS, utilizing common plugins such as Yoast SEO and Simple Share Buttons Adder, with a Bootstrap framework for responsive design. It integrates third-party services including Google Analytics, Facebook SDK, and Google reCAPTCHA for security and analytics. Hosting is provided by TransIP, a reputable European hosting provider. The site demonstrates moderate performance and good mobile optimization. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and published security or incident response policies. Privacy compliance is partial, with a comprehensive privacy policy present but no visible cookie consent mechanism. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a professional and trustworthy platform with good content quality and technical implementation. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance standing.

Risk & Compliance Platform Europe is a specialized content and educational platform focused on risk management, compliance, and regulatory affairs within the European context. It offers news, whitepapers, books, and educational events targeting compliance professionals, risk managers, and legal experts. The platform maintains a multilingual presence with a strong focus on French content on this domain. Technically, the website is built on WordPress using modern technologies such as jQuery, Bootstrap, Google Analytics, and Facebook SDK. It employs SEO best practices via Yoast SEO and includes Google reCAPTCHA for form security. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers are missing and no explicit incident response or security policies are published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and well-maintained, serving a niche market in finance and compliance education.

Risk & Compliance Platform Europe is a specialized content and educational platform focused on risk management, compliance, and regulatory topics primarily within the European financial and regulatory sectors. The website offers a range of services including news articles, whitepapers, educational courses, job listings, books, and a knowledge base, targeting professionals in risk, compliance, NGOs, and regulatory bodies. The platform maintains a multilingual presence, enhancing its reach across European markets. Technically, the website is built on WordPress CMS and leverages common web technologies such as jQuery, Bootstrap, Google Analytics, Facebook SDK, and Google reCAPTCHA for security and user interaction. The site demonstrates good mobile optimization and SEO practices, though some accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and a visible cookie consent mechanism, which are important for compliance with EU regulations. The absence of WHOIS data limits full trust verification, but the professional content and consistent branding support legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy platform for its niche audience, though improvements in privacy compliance and security best practices are recommended to enhance trust and regulatory adherence.

Risk & Compliance Platform Europe operates as a specialized media and information platform serving professionals in compliance, risk management, and governance sectors primarily in Europe. The platform offers a variety of content including news articles, educational events, whitepapers, job listings, books, and video content, targeting compliance professionals and organizations seeking up-to-date regulatory and risk insights. The website is well-positioned as a niche player with multilingual support and a consistent brand presence. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, Bootstrap, Google Analytics, and reCAPTCHA for form security. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be enhanced. Performance is moderate, with standard use of CDN-hosted libraries and asynchronous loading of scripts. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options. There is no visible security or incident response policy, and no direct contact emails for security issues. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but no cookie consent mechanism is evident. Overall, the website presents a professional and trustworthy front with good content quality and business credibility. The main risks relate to improving security headers and privacy compliance mechanisms. Strategic recommendations include enhancing security policies, implementing cookie consent, and publishing incident response contacts to strengthen trust and compliance posture.

O

Oink Games

oinkgames.com

53

Oink Games is a small, specialized company focused on creating board games and video games. Their website reflects a niche market position with a clean, professional design and multilingual support for English, Japanese, and German audiences. The business model centers on game design and sales, targeting enthusiasts of analog and digital games. The company was founded in 2020, consistent with the domain registration date. Technically, the website leverages modern JavaScript frameworks such as Vue.js and Nuxt.js, with hosting infrastructure likely on Amazon AWS. The site includes integrations for Google Analytics and Facebook SDK for tracking and marketing purposes. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized transfers or deletions. However, DNSSEC is not enabled, and no security headers were detected, which are areas for improvement. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms. Contact information and incident response details are not provided, limiting transparency. Overall, the website is trustworthy and professional but would benefit from enhanced privacy disclosures, security headers, and contact transparency to improve compliance and user trust.

C

Camptocamp

camptocamp.com

56

Camptocamp is a well-established Open Source IT company founded in 2001, specializing in providing innovative solutions in GIS, ERP (Odoo), and IT infrastructure. The company operates internationally with offices in Switzerland, France, and Germany, targeting enterprises seeking flexible and collaborative Open Source technologies. Their business model includes consulting, implementation, subscription management, training, and hosting services, positioning them as a trusted partner in the Open Source ecosystem. Technically, the website is built on modern web technologies including Pimcore CMS, Bootstrap, and integrates multiple analytics and marketing tools such as Google Analytics, Matomo, Facebook SDK, and LinkedIn Insight. Hosting is inferred to be on Amazon AWS, ensuring reliable infrastructure. The website demonstrates excellent design quality, mobile optimization, and accessibility, with a comprehensive cookie consent mechanism supporting GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though DNSSEC is not enabled and security headers are not explicitly detected. The absence of a published privacy policy and terms of service in the provided content is a gap in compliance documentation. Overall, the domain registration is consistent with the business history and location, supporting legitimacy. The website is safe for general audiences with no adult or questionable content detected.

Z

Zwischengas AG

zwischengas.com

64

Zwischengas AG operates zwischengas.com, the largest German-language online platform dedicated to classic automobiles, including oldtimers, youngtimers, and historic motorsport. The website offers detailed reports, news, event coverage, a marketplace for buying and selling vehicles and parts, and premium subscription services for an ad-free experience. The company targets classic car enthusiasts and collectors primarily in the German-speaking region, with a strong presence in Switzerland. The business model combines advertising, premium subscriptions, and marketplace services, positioning Zwischengas as a leading media and community platform in its niche. Technically, the website employs a mature technology stack including jQuery, Bootstrap, Google Tag Manager, and various consent management tools to ensure GDPR compliance. The site is mobile-optimized with good SEO and accessibility features, though some improvements could be made in accessibility and security headers. The integration of social login options via Google and Facebook enhances user experience and security. From a security perspective, the site enforces HTTPS and uses consent management for cookies and tracking. While no critical vulnerabilities were detected in the provided content, the absence of some security headers and the lack of visible incident response or security policy pages suggest areas for improvement. The WHOIS data is missing or unavailable, which is unusual but does not detract significantly from the site's legitimacy given the professional presentation and business information. Overall, Zwischengas.com is a professional, content-rich platform with strong privacy compliance and a solid security posture. Strategic recommendations include enhancing security headers, conducting regular security audits, and improving accessibility to further strengthen trust and compliance.

Mercedes-Benz Oldtimer-Ticker is a specialized German-language online news portal dedicated to classic, old, and youngtimer Mercedes-Benz vehicles. It serves a niche audience of classic car enthusiasts and Mercedes-Benz lovers by providing news, event information, and community updates related to vintage Mercedes-Benz automobiles. The website is positioned as a trusted source within the classic automotive community, leveraging social media channels and structured data to enhance visibility and engagement. Technically, the website is built on the WordPress CMS platform, utilizing a variety of plugins for analytics, social media integration, and user login functionality. The hosting is managed via kasserver.com, and the site employs HTTPS with good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO is well addressed through meta tags and structured data. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and anonymizes IP addresses in analytics. However, it lacks advanced security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with no explicit privacy policy or terms of service found on the homepage. Overall, the website presents a moderate risk profile with good business credibility and technical implementation but could improve in privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and improving accessibility compliance.

B

Barracuda Bar & Grill Restaurant Ettenheim Altdorf

barracuda-garage.de

37

Barracuda Bar & Grill Restaurant Ettenheim Altdorf is a small hospitality business specializing in American-style burgers, BBQ, and Tex Mex cuisine, targeting general consumers in the Ortenau and Dreiländereck regions of Germany. The website is built on WordPress using the Divi theme and WooCommerce plugin, indicating a moderate level of digital maturity with e-commerce capabilities. The site is well-branded and optimized for SEO with Yoast SEO plugin and includes social media integration via Facebook and Instagram. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities detected, but lacks comprehensive security headers and formal security policies. Privacy compliance is weak due to the absence of a privacy policy and terms of service, although a cookie policy with consent is present. Overall, the website is functional and professional but would benefit from enhanced compliance and security documentation.

G

Gumroad, Inc.

gumroad.com

63

Gumroad, Inc. operates a well-established e-commerce platform that enables creators and entrepreneurs to sell digital products, subscriptions, and side projects directly to customers. Founded in 2009, the company has positioned itself as a simple and effective solution for individuals seeking to monetize their knowledge and creative work. The platform supports multiple payment options, storefront customization, and integration with various third-party applications, catering primarily to digital creators and small business owners. Technically, Gumroad leverages a modern Ruby on Rails backend, integrates Stripe for payment processing, and uses Cloudflare for DNS services. The website is fast, mobile-optimized, and employs contemporary web technologies including JavaScript frameworks and CSS utilities. The presence of CSRF tokens and HTTPS indicates a strong baseline security posture, although DNSSEC is not enabled and some advanced security headers could be added. From a security and compliance perspective, Gumroad demonstrates good practices such as HTTPS enforcement, CSRF protection, and domain registration safeguards. However, explicit cookie consent mechanisms and published security policies or incident response contacts are absent, representing areas for improvement. No vulnerabilities or suspicious indicators were detected in the publicly accessible content. Overall, Gumroad presents a professional, trustworthy, and user-friendly platform with a mature technical infrastructure and solid business credibility. Strategic enhancements in privacy compliance and security transparency would further strengthen its market position and user trust.

3

360 Rumors

360rumors.com

53

360 Rumors is a specialized online platform providing in-depth reviews, news, and tutorials related to 360 cameras and virtual tour technologies. The website targets consumers and professionals interested in immersive camera technology, offering comprehensive content on brands like Insta360, DJI, and Theta. The business model primarily revolves around content publishing supported by affiliate marketing and advertising revenue streams. The site maintains a niche authority position within the 360 camera review market segment. Technically, the website is built on WordPress 6.6.4 with a modern tech stack including Yoast SEO Premium, Google Analytics, Facebook SDK, and affiliate marketing plugins like Lasso. The site demonstrates good SEO optimization, mobile responsiveness, and moderate performance. Hosting and DNS are managed through DNC Holdings, Inc. with Directnic name servers. Structured data and Open Graph tags are properly implemented to enhance search engine visibility and social media sharing. From a security perspective, the site enforces HTTPS with a good SSL configuration and domain registration protections such as clientDeleteProhibited status. However, DNSSEC is not enabled, and some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected. No exposed sensitive data or vulnerabilities were found in the HTML content. Privacy and cookie policies are present and indicate GDPR compliance, though no explicit security policy or incident response contacts are published. Overall, the website presents a low-risk profile with a high level of professionalism, good content quality, and standard security practices for a content publishing platform. Strategic recommendations include enabling DNSSEC, implementing additional security headers, and publishing a formal security policy to enhance trust and compliance.

M

Motor Medien Garage UG (haftungsbeschränkt)

radio-oldtimer.de

42

Radio Oldtimer is a niche internet radio station focused on classic car enthusiasts, providing a unique music mix, podcasts, and event information tailored to the Oldtimer and Youngtimer community. The business operates primarily as a media platform offering advertising opportunities to companies within the classic car sector. The website is built on TYPO3 CMS and integrates modern technologies such as Google Analytics, Facebook SDK, and Google Maps API, reflecting a moderate to good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the site presents a professional and trustworthy online presence with clear contact information and active social media engagement.

2

20 Minuten

20min.ch

77

20 Minuten is the largest Swiss news portal providing 24/7 news coverage, videos, and live TV content primarily targeting the Swiss general public. The website demonstrates a mature digital infrastructure using modern technologies such as React and Next.js, with strong mobile optimization and good SEO practices. Security posture is solid with HTTPS enforcement and security headers, although explicit security policies and incident response contacts are not publicly visible. Privacy compliance is well addressed through cookie consent mechanisms and GDPR-aligned policies. Overall, the site is professional, trustworthy, and well-positioned in the Swiss media market.

F

FDP.Die Liberalen Winterthur

fdp-winterthur.ch

51

FDP.Die Liberalen Winterthur is a local political party branch in Winterthur, Switzerland, focused on liberal political advocacy and community engagement. The website serves as a platform for news, events, membership, and policy information targeting local residents and voters. Technically, the site is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery, and integrates social media and analytics tools. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the website is professional, trustworthy, and aligned with the organization's public identity.

E

Elvi

elvi.lv

41

Elvi.lv is the official website of SIA ELVI Latvija, a large retail supermarket chain operating in Latvia. The site provides comprehensive information about their stores, promotions, recipes, job vacancies, and loyalty programs, targeting general consumers in Latvia. The business is well-established with a consistent brand presence and clear contact channels. Technically, the website is built on WordPress and uses modern JavaScript libraries such as jQuery, Swiper, and Tooltipster, along with Google Analytics and Facebook SDK for tracking and marketing. The site is mobile optimized and SEO friendly, though some lazy loading images have errors that should be addressed. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, but lacks advanced security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it could improve transparency by adding terms of service and incident response information.

S

SIA Aprūpes Grupa

aprupe.group

50

SIA Aprūpes Grupa operates as a family-style senior care provider in Riga, Latvia, offering 24-hour care, social rehabilitation, and medical support primarily for elderly clients including those with dementia. The company runs two facilities and emphasizes a home-like environment with comprehensive services. The website is built on Joomla CMS with Yootheme and UIkit, featuring a responsive design and integrated social media presence. Security posture is moderate with HTTPS and CAPTCHA protection on forms, but lacks advanced security headers and explicit incident response policies. Privacy compliance is good with GDPR-aligned policies and cookie consent mechanisms. Overall, the business presents a trustworthy and professional online presence suitable for its local healthcare service market.

F

FDP Kanton Zürich

fdp-zh.ch

53

FDP Kanton Zürich is a regional political party representing liberal values in the canton of Zürich, Switzerland. The website serves as an information hub for party news, campaigns, events, and membership services, targeting residents, voters, and supporters within the region. It maintains a consistent brand presence and offers multiple channels for engagement including social media and direct contact. Technically, the site is built on TYPO3 CMS with modern web technologies and integrates analytics and marketing tools with user consent mechanisms. Security posture is solid with HTTPS and cookie consent, though explicit security headers could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

F

FDP.Die Liberalen Zug

fdp-zg.ch

48

FDP.Die Liberalen Zug is a regional political party in the Canton of Zug, Switzerland, providing a comprehensive digital platform for party news, events, and member engagement. The website serves as an information hub for residents and voters interested in liberal political content and party activities. It offers key services such as media releases, event agendas, membership registration, and newsletters, positioning itself as a trusted source for local political information. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap, jQuery, and FontAwesome. It integrates social media platforms and uses cookie consent tools to comply with privacy regulations. The site demonstrates good mobile optimization and SEO practices, although some improvements in accessibility and security headers could enhance its technical maturity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, reflecting a solid baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies and incident response contacts suggests room for improvement in security transparency and readiness. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It effectively supports the party's communication and engagement goals while maintaining a secure and privacy-conscious environment.

F

FDP.Die Liberalen Thurgau

fdp-tg.ch

51

FDP.Die Liberalen Thurgau is a regional political party representing liberal values in the canton of Thurgau, Switzerland. The website serves as an information hub for party news, events, membership, and political positions, targeting residents and voters interested in liberal politics. It maintains a consistent brand identity and integrates social media channels for broader engagement. Technically, the site is built on TYPO3 CMS with modern front-end frameworks like Bootstrap and jQuery, ensuring a responsive and user-friendly experience. The presence of cookie consent mechanisms and HTTPS indicates attention to privacy and security, although explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-maintained, reflecting the organization's stable market position within the Swiss political landscape.

F

FDP.Die Liberalen Obwalden

fdp-ow.ch

53

FDP.Die Liberalen Obwalden is a regional political party in Switzerland serving the canton of Obwalden. The website provides comprehensive information about the party's news, events, membership, and contact details, targeting local residents and politically engaged individuals. It maintains a consistent brand presence and integrates social media channels for broader engagement. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. The site employs GDPR-compliant cookie consent mechanisms and uses Google Analytics with user opt-in, reflecting a mature approach to privacy. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks explicit security policy and incident response information. Overall, the website is professional, trustworthy, and well-maintained, suitable for its non-profit political organization purpose.

P

PLR.Les Libéraux-Radicaux Neuchâtel

plrn.ch

49

PLR.Les Libéraux-Radicaux Neuchâtel is a regional political party in Switzerland serving the Neuchâtel canton. The website provides comprehensive political news, campaign information, organizational details, and engagement opportunities for members and the public. It targets local voters and party affiliates with a focus on liberal-radical political values. Technically, the site is built on TYPO3 CMS with modern web technologies including jQuery, Bootstrap, and social media integrations. It features a cookie consent mechanism compliant with GDPR and uses HTTPS for secure communications. Security posture is solid with no critical vulnerabilities detected, though improvements in security headers and published policies could enhance trust. Overall, the site is professional, trustworthy, and well-structured, supporting the party's mission and outreach effectively.

Α

ΑΜΚΕ ΙΑΣΙΣ

iasismed.eu

47

The website www.iasismed.eu represents ΑΜΚΕ ΙΑΣΙΣ, a small non-profit organization founded in 2005 in Greece, focused on providing psychosocial rehabilitation and counseling services to individuals in need. The organization emphasizes therapeutic and community support services, including food provision and training sessions. The website content is primarily in Greek with English language support, reflecting a localized target audience. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and includes a cookie consent mechanism, but lacks visible security headers and formal privacy or terms of service documents, which are areas for improvement. Overall, the site is accessible without WAF or blocking, and the domain WHOIS data is privacy protected as per EURid policies, which is typical for European domains. The absence of direct contact information and formal policies slightly reduces trust but does not critically impair the site's credibility.

U

Union suisse des professionnels de l’immobilier (USPI Suisse)

sous-location.immo

45

The website sous-location.immo is operated by the Union suisse des professionnels de l’immobilier (USPI Suisse), a recognized Swiss real estate professional association. It provides legal guidance and resources related to subletting residential properties in Switzerland, including downloadable contract templates. The site targets tenants and real estate professionals in the Swiss market, focusing on compliance with Swiss tenancy laws. Technically, the site is built on TYPO3 CMS, uses modern web technologies including Facebook SDK and Google Analytics, and is served over HTTPS with moderate performance and good mobile optimization. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks some security headers and formal privacy and cookie policies, which are compliance gaps. WHOIS data is unavailable or privacy protected, but the website's consistent branding, professional content, and valid contact information support its legitimacy. Overall, the site is professional, trustworthy, and safe for general audiences, though improvements in privacy compliance and security headers are recommended.

The website blitzcms.localpoint.ch is a content publishing platform focused on technology, artificial intelligence, and customer success stories. It serves a niche audience interested in digital innovation and localpoint's technology offerings. The platform uses BlitzCMS as its content management system and incorporates modern web technologies such as jQuery, Bootstrap, and third-party analytics tools like Google Analytics and Microsoft Clarity. The site is mobile-optimized and presents content in German, targeting a Swiss audience. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks security headers and formal privacy or cookie policies. No contact or incident response information is provided, which limits trust and compliance indicators. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security best practices.

A

Avaaz

avaaz.org

75

Avaaz is a large, globally recognized non-profit organization focused on empowering people worldwide to engage in social and political activism through online petitions and campaigns. The website serves as a hub for community mobilization, offering multilingual support and interactive features such as live activity feeds and community maps. Technically, the site employs modern JavaScript libraries including jQuery, Leaflet, and GrowthBook, and integrates tracking and social media SDKs from Google and Facebook. The site is secured with HTTPS and demonstrates good privacy compliance with clear privacy and cookie policies aligned with GDPR standards. Security posture is solid with secure forms and encrypted connections, though explicit security headers could be improved. The WHOIS data is unavailable due to privacy protection and a malformed WHOIS query, which is typical for non-profits seeking to protect registrant privacy. Overall, Avaaz's website is professional, trustworthy, and well-optimized for user engagement and global outreach.

C

Consiglio Italiano Movimento Europeo

movimentoeuropeo.it

42

The Consiglio Italiano Movimento Europeo is a well-established Italian non-profit organization dedicated to promoting European unity and democratic integration since 1948. The website serves as an information hub, providing news, event calendars, thematic documents, and advocacy resources targeted at Italian citizens and organizations interested in European affairs. The organization maintains an active presence on major social media platforms and offers newsletters and petitions to engage its audience. Technically, the website is built on Joomla CMS using the Helix3 template framework, incorporating modern web technologies such as jQuery, Font Awesome, and Google Fonts. It is secured with HTTPS and DNSSEC, and includes cookie consent mechanisms aligned with GDPR requirements. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. From a security perspective, the site employs standard best practices like HTTPS and DNSSEC but lacks advanced headers such as Content Security Policy and a security.txt file for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. Overall, the website presents a professional and trustworthy digital presence for a non-profit advocacy group, with room for improvement in security policies and accessibility to enhance user trust and compliance.

E

Europa in Movimento

europainmovimento.eu

46

Europa in Movimento is a small non-profit organization dedicated to promoting a federal, united, and peaceful Europe. The website serves as a platform for news, editorials, educational projects, and campaigns related to European integration and peace activism. It targets European citizens, activists, and educators interested in federalism and civic education. The site leverages Joomla CMS with Bootstrap and integrates social media extensively to engage its audience. Technical infrastructure is moderately modern with standard web technologies and Google Analytics for user tracking. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though security headers and explicit security policies are lacking. The website is accessible without any WAF or blocking mechanisms, and content is safe for general audiences. Overall, the site demonstrates a good balance of content quality, technical implementation, and business credibility for a non-profit advocacy platform.