Security Directory

C

Cookiebot

cookiebot.eu

74

Cookiebot, a product by Usercentrics, offers a comprehensive Consent Management Platform (CMP) designed to help small and medium businesses achieve effortless GDPR compliance. Positioned as a leading CMP provider, Cookiebot integrates with major advertising platforms and supports multiple privacy regulations globally. The website demonstrates a strong market presence with clear messaging, professional design, and multilingual support, targeting SMBs and website owners seeking privacy compliance solutions. Technically, the site leverages modern web technologies including WordPress CMS, Google Tag Manager, and asynchronous JavaScript loading, ensuring fast performance and mobile optimization. Security-wise, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data, reflecting a mature security posture. However, the absence of a public WHOIS record and explicit security or incident response policies slightly reduce trust scores. Overall, Cookiebot's website is professional, secure, and privacy-compliant, with recommendations to enhance transparency around security policies and incident response.

S

Serviceform

serviceform.com

66

Serviceform is a technology company specializing in AI-powered business solutions designed to enhance customer engagement and automate workflows. Their offerings include AI chatbots, live chat, WhatsApp business integration, and meeting scheduling tools tailored for industries such as real estate, automotive, and e-commerce. The company positions itself as a partner to businesses seeking to transform their customer interactions with human-like AI agents. Technically, the website is built on modern frameworks like Next.js and React, leveraging cloud CDN services and incorporating privacy-compliant tracking and consent management tools. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response information are not published. The absence of WHOIS registration data is a notable concern, but the website's professional content, client logos, and social media presence support its legitimacy. Overall, Serviceform demonstrates a mature digital presence with room for improvement in transparency and security documentation.

V

VWO

visualwebsiteoptimizer.com

79

VWO is a well-established enterprise SaaS company specializing in digital experience optimization, experimentation, and conversion rate optimization. Founded in 2000, it holds a market-leading position serving fast-growing companies with a comprehensive suite of services. The website reflects a mature digital presence with excellent content quality, professional design, and strong SEO practices. Technically, the site is built on WordPress with integrations of advanced analytics and marketing tools such as Google Analytics, Matomo, Marketo, and Cloudflare DNS services, ensuring robust performance and scalability. Security posture is strong with HTTPS enforcement, domain locking, and use of security monitoring tools, although DNSSEC is not enabled. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website and domain data indicate a trustworthy and credible business with a high level of digital maturity.

S

Sistema B

sistemab.org

47

Sistema B is a leading organization promoting the B Corporation movement in Latin America and the Caribbean, supporting businesses that prioritize social, environmental, and economic impact. The website is professionally designed, content-rich, and well-structured, targeting companies interested in sustainability certification and impact measurement. Technically, the site uses WordPress with Elementor and integrates analytics and security tools such as Google Analytics, Microsoft Clarity, and reCAPTCHA. Security posture is strong with HTTPS and security headers, though there is room for improvement in publishing explicit security policies and incident response information. The WHOIS data is incomplete, which slightly reduces domain trust, but the overall digital presence and branding are consistent and credible.

B

Bcorpsea

bcorpsea.org

48

Bcorpsea is a regional platform and community builder focused on promoting B Corp certification and social enterprise ecosystems across Southeast Asia. Founded in 2022, it serves as the Global Partner for the ASEAN region to grow and mobilize B Corp communities, providing tools such as the B Impact Assessment and SDG Action Manager. The website is built on WordPress with Elementor and integrates Google Analytics and Tag Manager for tracking. It is hosted on Google Cloud DNS infrastructure and secured with HTTPS, though DNSSEC is not enabled. The security posture is solid with domain locking and HTTPS, but lacks published privacy and cookie policies, which impacts compliance. Overall, the website is professional, well-branded, and trustworthy, with a clear business focus on sustainability and social impact in the ASEAN region.

B

B Lab UK

bcorporation.uk

65

B Lab UK operates as the UK representative of the global B Corporation movement, promoting sustainable and equitable business practices. The website serves as an informational and advocacy platform, providing resources, certification guidance, and community engagement for businesses interested in becoming B Corps. The organization appears well-established with a domain age of 10 years, consistent with its mission and market presence. Technically, the website employs modern JavaScript frameworks, integrates multiple analytics and marketing tools, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and bot protection via reCAPTCHA, though some security headers could be improved. Overall, the site is professional, accessible, and trustworthy, though it lacks explicit privacy policy and terms of service links in the provided content. Contact information is not directly visible in the analyzed HTML, which could be enhanced for better user trust and compliance.

W

Workplace from Meta

workplace.com

80

Workplace from Meta is a comprehensive business communication platform that integrates chat, video, groups, and intranet tools to enhance organizational collaboration. Positioned as an enterprise-grade SaaS solution, it targets businesses and organizations seeking secure and integrated communication tools. The platform is backed by Meta's infrastructure, ensuring scalability and reliability. The website clearly communicates the upcoming closure of the Workplace service in 2026, providing users with timelines and data export instructions to facilitate a smooth transition. Technically, the website leverages modern web technologies including React and Facebook's proprietary frameworks, ensuring a fast, responsive, and accessible user experience. The presence of advanced tracking and analytics tools indicates a mature digital infrastructure focused on performance and user engagement insights. From a security perspective, the site demonstrates strong adherence to best practices with HTTPS enforcement, comprehensive security and governance documentation, and a public bug bounty program. However, explicit incident response contacts and a security.txt file are not found, representing areas for improvement. Privacy compliance is robust, with clear privacy and cookie policies aligned with GDPR requirements. Overall, the site presents a professional, trustworthy, and well-maintained digital presence consistent with a major technology enterprise. The lack of publicly available WHOIS data is typical for large brands employing privacy protection. The risk profile is low, with no detected vulnerabilities or suspicious content. Strategic recommendations include enhancing transparency around incident response and security certifications to further build user trust.

W

WordPress.com

wordpress.com

73

WordPress.com is a leading SaaS platform providing managed WordPress hosting, website building tools, themes, plugins, and enterprise solutions. Owned by Automattic, it serves a broad audience from individual bloggers to large enterprises, with a strong market position as the largest contributor to the WordPress open-source project. The website demonstrates excellent content quality, professional design, and comprehensive multilingual support, reflecting a mature digital presence. Technically, the site leverages WordPress CMS, modern JavaScript, and Google services, hosted on a robust infrastructure ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though DNSSEC is not enabled and explicit security policies are not publicly detailed. Overall, the domain registration and WHOIS data confirm legitimacy and long-term ownership. The site is safe for general audiences with no adult or questionable content detected.

W

WordPress.com

wp.com

73

WordPress.com is a leading web platform offering managed WordPress hosting, website building tools, domain registration, and related services. As part of Automattic, it holds a dominant market position with a broad target audience ranging from individual bloggers to large enterprises. The website demonstrates a mature digital presence with excellent content quality, multilingual support, and strong branding consistency. Technically, it leverages WordPress CMS, modern web technologies, and robust hosting infrastructure to deliver fast and mobile-optimized experiences. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though DNSSEC is not enabled. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, WordPress.com presents a trustworthy and professional online presence.

S

ShortPixel

shortpixel.ai

67

ShortPixel is a well-established technology company specializing in image optimization services primarily targeting WordPress users and website owners seeking to improve site speed and SEO through advanced image compression and format conversion technologies. The company offers SaaS products including WordPress plugins and CDN-based adaptive image delivery, positioning itself as a leader in the web performance optimization niche. The website demonstrates a mature digital presence with comprehensive content, customer testimonials, and clear product offerings. Technically, the website employs modern frameworks such as Bootstrap and JavaScript libraries like Tippy.js and Popper.js, leveraging Cloudflare for DNS and CDN services to ensure fast performance and global reach. Analytics and marketing tools like Google Analytics, Google Tag Manager, and ProfitWell are integrated for user tracking and subscription management. The site is mobile-optimized and SEO-friendly, with proper meta tags and structured content. From a security perspective, the site uses HTTPS with a valid SSL configuration and domain transfer protection. However, DNSSEC is not enabled, and no explicit security policies or incident response contacts are publicly disclosed. No vulnerabilities or exposed sensitive data were detected in the content. Privacy and cookie policies are present and include consent mechanisms, indicating good compliance with GDPR requirements. Overall, ShortPixel presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enabling DNSSEC, publishing a security policy, and enhancing security headers to further strengthen the security posture.

F

#1 Platform for Salesforce

formtitan.com

68

Titan DXP operates as a technology platform specializing in Salesforce digital experience solutions, targeting enterprises and Salesforce users. The website positions itself as a leading platform for Salesforce enhancements, offering B2B services. The technical infrastructure is built on WordPress CMS with multiple marketing and analytics integrations, including Google Analytics, Hotjar, and Crazy Egg, indicating a mature digital marketing approach. The domain is registered since 2019, consistent with a medium-sized technology business. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and functional but requires improvements in privacy and security transparency.

O

Opus One SA

opus-one.ch

54

Opus One SA is a Swiss-based event production and concert promotion company established in 1993. The company specializes in organizing concerts, shows, and cultural events, targeting a broad audience interested in entertainment and live performances. Their website reflects a mature market position with a comprehensive event agenda and multiple service offerings including ticketing and group bookings. Technically, the website is built on WordPress with modern integrations such as Gravity Forms for data collection and multiple analytics and tracking tools including Google Analytics, Facebook Pixel, and TikTok Pixel. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and secure form handling, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is professional, trustworthy, and compliant with privacy regulations including GDPR. The company maintains active social media channels and partners with reputable ticketing and venue providers, reinforcing its credibility.

M

MSC Cruises SA

mscpressarea.com

21

MSC Cruises SA operates a professional corporate and media website serving as a central hub for press releases, corporate information, sustainability initiatives, and media resources. The company is a major player in the global cruise transportation industry, with a strong brand presence and a clear focus on providing cruise vacations worldwide. The website targets media professionals, corporate stakeholders, and cruise customers, offering comprehensive and well-structured content. Technically, the site leverages modern web technologies including React and Gatsby, hosted on AWS infrastructure, ensuring fast performance and mobile optimization. Privacy compliance is well addressed with a clear cookie consent mechanism and comprehensive privacy and terms policies. Security posture is good with HTTPS enforced and no exposed sensitive data, though some improvements such as enabling DNSSEC and additional security headers are recommended. Overall, the website reflects a mature digital presence consistent with an enterprise-level transportation company.

MSC Cruises UAE operates as the official regional website for MSC Cruises, providing comprehensive information and booking options for cruises in the Mediterranean, Caribbean, Northern Europe, and other destinations. The site targets cruise travelers primarily in the UAE and international markets, offering detailed cruise itineraries, ship information, and booking management. The business is positioned as a large entity within the transportation and hospitality sectors, backed by the global MSC Cruises brand. Technically, the website is built on WordPress with modern plugins and optimization tools, delivering a good user experience with mobile responsiveness and SEO best practices. Security posture is adequate with HTTPS enabled, but could be improved by adding DNSSEC and security headers. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with the business goals of MSC Cruises in the UAE region.

K

Klarna

klarna.com

65

Klarna is a leading financial technology company specializing in consumer payment solutions and e-commerce services. The website provides users with price comparison tools, flexible payment options, and a mobile app to manage purchases and earn cashback. Klarna has a strong market presence with over 111 million users and partnerships with numerous retailers. The technical infrastructure is modern, leveraging React and various analytics and advertising technologies, ensuring a responsive and user-friendly experience. Security posture is generally strong with HTTPS and secure forms, though explicit security headers and policies are not visible in the provided content. The absence of WHOIS data is unusual but may be due to privacy protections. Overall, Klarna's website is professional, trustworthy, and well-optimized for its audience.

F

Fondation pour le droit de l'art

artlawfoundation.com

53

The Art Law Foundation is a small non-profit organization based in Switzerland, dedicated to promoting and coordinating research and activities related to art and cultural heritage law. It supports academic initiatives and organizes events and publications to serve legal professionals and cultural stakeholders. The website is built on WordPress with a modern tech stack including WooCommerce and Bootstrap, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and domain transfer protection, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear policies and a cookie consent mechanism. Overall, the site reflects a professional and trustworthy presence in its niche market.

F

Fanplayr

fanplayr.com

60

Fanplayr is a technology company specializing in behavioral data analytics and customer data platforms, serving multiple industries including e-commerce, telecom, utilities, automotive, travel, media, and financial services. The company offers a suite of services focused on leveraging first-party data, onsite personalization, AI-driven merchandising, multichannel messaging, and privacy-compliant user identification solutions. Their market position is that of an established mid-sized player with a strong emphasis on privacy and cookieless tracking readiness. Technically, the website is built on modern Webflow CMS infrastructure, utilizing reputable third-party services such as Google Analytics, reCAPTCHA, and Iubenda for cookie compliance. The site demonstrates good performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS, security headers, and anti-bot measures, though lacks a dedicated security policy or incident response information publicly. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though could improve transparency on security policies and incident handling.

V

Vidyard

vidyard.com

71

Vidyard is a well-established technology company specializing in AI-powered video messaging and hosting solutions tailored for sales and marketing teams. The company positions itself as a leader in the online video platform market, serving over 250,000 go-to-market teams globally. Their platform enables businesses to increase leads, accelerate pipelines, and enhance customer engagement through video communications. Vidyard's digital presence is robust, featuring a professional website with comprehensive content, strong branding, and active social media channels. The technical infrastructure leverages modern web technologies, analytics, and marketing automation tools, indicating a mature digital strategy. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. Overall, Vidyard presents a credible and professional business front with minor gaps in public security documentation.

S

Securitas

securitas.fi

71

Securitas Finland Oy is a leading provider of security services and technical solutions targeting large, medium, and small businesses, communities, and consumers in Finland. The company operates as part of the global Securitas AB group, offering a broad portfolio including local guarding, safety services, risk management, security technology, mobile patrol, and remote services. The website reflects a mature enterprise with a strong market position and comprehensive service offerings tailored to diverse customer segments. Technically, the site employs modern web technologies including EPiServer CMS, Google Tag Manager, Microsoft Application Insights, and OneTrust for cookie consent, demonstrating a good level of digital maturity and compliance with privacy regulations. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly detailed. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting the company's credibility and market leadership.

Q

Qualibroker - Swiss Risk & Care

qualibroker.ch

56

Qualibroker - Swiss Risk & Care is a leading Swiss insurance brokerage firm specializing in insurance, pension provisions, and HR services outsourcing. Positioned as the number one broker in French-speaking Switzerland and the second nationally, the company offers tailored solutions to companies, independent professionals, and individuals. Their services include risk management, employee benefits, actuarial consulting, and administrative outsourcing, supported by a strong compliance and security posture. The website reflects a mature digital presence with multi-language support, professional design, and comprehensive content.

P

Procab Group

procab.ch

72

Procab Group is a well-established digital agency based in Geneva, Switzerland, with over 28 years of experience specializing in web development, digital marketing, branding, and AI-driven solutions. The company targets businesses in Suisse Romande seeking comprehensive digital transformation services, including website creation, SEO/SEA, community management, and AI automation. Their market position is strong locally, supported by a portfolio of reputable clients and a consistent brand presence. Technically, the website is built on WordPress with modern plugins and technologies such as Gravity Forms, Google Tag Manager, and accessibility tools. The site demonstrates excellent performance, mobile optimization, and accessibility compliance, reflecting a mature digital infrastructure. The integration of GDPR-compliant cookie management and reCAPTCHA enhances user privacy and security. Security posture is solid with HTTPS enforced, secure form handling, and no visible vulnerabilities or exposed sensitive data. However, the site could improve by explicitly publishing a security policy and incident response contacts. The absence of a vulnerability disclosure policy or security.txt is noted but not critical. Overall, the website presents a professional, trustworthy, and compliant digital presence with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining vigilance on third-party scripts to sustain and improve security and compliance.

C

Cloudflare, Inc.

unpkg.com

60

UNPKG is an open source content delivery network specializing in serving files from npm packages globally. It leverages Cloudflare's edge network and Workers to provide fast, scalable, and reliable delivery of JavaScript libraries and assets. The service targets developers and frontend engineers who need quick access to npm package files without build steps, supporting semantic versioning and npm tags. The website is well designed, mobile optimized, and provides comprehensive technical documentation and examples for usage. Technically, UNPKG uses modern JavaScript frameworks such as Preact and HTM, and is hosted on Cloudflare's infrastructure, ensuring high performance and global availability. The site includes Google Analytics and Tag Manager for usage tracking but lacks visible privacy or cookie consent mechanisms. Security posture is strong with HTTPS and Cloudflare protections, but could be improved by adding explicit security headers and publishing security policies. From a security perspective, the site has no forms or user inputs, reducing attack surface. However, it lacks published incident response contacts and vulnerability disclosure information, which are recommended for transparency and trust. WHOIS data shows the domain is registered with Cloudflare, Inc. since 2016, consistent with the hosting provider and business model, indicating legitimacy. Overall, UNPKG is a technically mature and trustworthy service with excellent content quality and performance. To enhance compliance and security posture, it should add privacy and cookie policies, explicit security headers, and incident response information.

M

Multilingualizer

multilingualizer.com

68

Multilingualizer is a specialized technology company offering a unique multilingual website solution that supports a wide range of web platforms including Squarespace, Wix, Shopify, WordPress, and more. Their business model emphasizes a one-time purchase with lifetime support and updates, positioning them competitively in the multilingual website software market. The website is professionally designed, content-rich, and targets website owners and developers seeking easy-to-use multilingual solutions. Technically, the site is built on WordPress with WooCommerce and leverages modern web technologies such as AngularJS and jQuery, along with SEO optimization via Yoast. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not evident. The absence of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy, but the presence of customer testimonials, case studies, and a money-back guarantee enhance trust. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

F

Franck Muller Group

franckmullerperfume.com

59

Franck Muller Perfume is a luxury retail brand offering a collection of five Eau de Parfums inspired by the iconic Franck Muller watch designs. The brand leverages the prestige and craftsmanship associated with Franck Muller watches to position its perfumes in the niche luxury market. The website is professionally designed using Squarespace, featuring brand storytelling, product information, and boutique locator functionality. Technical infrastructure includes modern web technologies such as Google Analytics and reCAPTCHA Enterprise for form security. However, the site lacks published privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is adequate with HTTPS and basic protections but could be improved with additional security headers and transparency.

1

Homepage | 1905.ch

1905.ch

50

1905.ch is a non-official fan website dedicated to the Genève-Servette Hockey Club, providing news, match results, interviews, multimedia content, and community forums. The site targets hockey fans and followers primarily in Switzerland. It operates as an informational platform without commercial or transactional services. The website is built on Drupal 8 CMS, utilizing Bootstrap for responsive design and integrates Google Analytics and Tag Manager for visitor tracking. Social media presence includes Facebook and Twitter, enhancing community engagement. From a technical perspective, the site demonstrates moderate digital maturity with a modern tech stack and good mobile optimization. However, it lacks advanced security headers and published privacy or cookie policies, which are critical for compliance and user trust. No contact information or formal security policies are provided, limiting transparency and incident response readiness. Security posture is moderate but could be improved by implementing HTTPS enforcement, security headers, and clear privacy and cookie disclosures. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of WHOIS data limits domain legitimacy assessment. Overall, the site is safe with no adult or explicit content, but privacy compliance and security practices require enhancement. Strategic recommendations include publishing comprehensive privacy and cookie policies, adding security headers, improving contact transparency, and establishing a vulnerability disclosure mechanism to strengthen trust and compliance.

EVENTIM.Tixx operates as a SaaS digital platform specializing in ticketing, merchandising, and CRM solutions tailored for sports and event organizers. The company targets sports clubs, federations, arenas, and festival organizers, offering a comprehensive suite of services including software, hardware, and marketing support. With over 20 years of market experience and a broad customer base, EVENTIM.Tixx holds a strong position in the event technology sector in Germany. The website reflects a professional and well-structured digital presence with extensive client references and testimonials, reinforcing its market credibility. Technically, the website is built on TYPO3 CMS and integrates modern web technologies such as Google Tag Manager and Swiper.js for enhanced user experience. The site is mobile-optimized, SEO-friendly, and implements GDPR-compliant privacy and cookie policies with consent management. However, no explicit security policy or incident response information is published, which could be improved to enhance transparency and trust. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS registration data is a notable anomaly, reducing trust slightly despite the professional appearance and client endorsements. Overall, the website demonstrates a mature digital infrastructure and business model but would benefit from improved transparency in security and domain registration details. Strategically, the company should focus on publishing clear security policies, incident response contacts, and clarifying domain registration information to strengthen trust and compliance posture.

V

Volkswagen Financial Services Schweiz AG

vw-nutzfahrzeuge-versicherung.ch

59

Volkswagen Financial Services Schweiz AG operates a specialized insurance website providing comprehensive vehicle insurance solutions tailored for Volkswagen commercial vehicle owners in Switzerland. The site emphasizes partnership with Zurich Versicherungs-Gesellschaft AG and offers premium insurance packages, customer support, and claims services. The business model focuses on insurance brokerage and customer service within the transportation and financial sectors, targeting Volkswagen Nutzfahrzeuge customers. The website is well-branded, consistent, and professionally designed, reflecting a medium-sized enterprise with a strong market position in its niche. Technically, the website is built on the Umbraco CMS platform, utilizing modern JavaScript libraries such as Swiper.js and LazySizes for enhanced user experience. It integrates Google Analytics and Facebook Pixel for tracking and marketing purposes, managed via Google Tag Manager. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security practices include HTTPS enforcement and nonce usage in scripts, though explicit security headers and cookie consent mechanisms are absent. From a security perspective, the website maintains a good posture with no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies and incident response contacts, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the website's business claims, confirming legitimacy and consistent domain registration details. Overall, the website presents a trustworthy and professional front for Volkswagen Financial Services Schweiz AG's insurance offerings, with room for improvement in privacy compliance and security transparency to meet higher standards and regulatory requirements.

I

Imagine Virtual

imaginevirtual.com

53

Imagine Virtual is a Lisbon-based communication and marketing agency specializing in design, web development, marketing, and communication services. The company targets businesses seeking to enhance their brand image and communication strategies through creative and effective solutions. Their service offerings include social media management, online store solutions, and campaign management, positioning them as a comprehensive agency for digital and offline marketing needs. Technically, the website is built on WordPress and leverages modern web technologies such as Google Analytics, Google Tag Manager, Facebook Pixel, and reCAPTCHA for security and analytics. The site is well-structured with good SEO practices, mobile optimization, and accessibility features, although some accessibility improvements could be made. The presence of cookie consent mechanisms and privacy policies indicates a commitment to GDPR compliance. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data raises some concerns about domain legitimacy, although the professional presentation and valid contact information mitigate this risk somewhat. Overall, the website presents a professional and trustworthy front for the agency, but the domain registration inconsistency warrants further verification. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility to strengthen trust and compliance.

A

ASP Global Manufacturing GmbH

asplearninglab.com

52

ASP Learning Lab is a specialized educational platform operated by ASP Global Manufacturing GmbH, focusing on lifelong learning and professional development for healthcare professionals in the EMEA region. The platform offers a comprehensive suite of services including e-learning modules, webinar series, professional certifications (notably the CRCST by HSPA), and a rich resource hub with e-books, podcasts, and factsheets. The business positions itself as a niche leader in healthcare sterilization education, leveraging partnerships and a strong digital presence to serve its target audience effectively. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, ensuring good SEO, analytics, and marketing capabilities. The site is mobile-optimized, uses HTTPS with excellent SSL configuration, and employs consent management via OneTrust, reflecting a mature digital infrastructure. Performance is moderate with room for optimization, and accessibility is basic but functional. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, use of Google reCAPTCHA, and cookie consent mechanisms. However, it lacks some advanced HTTP security headers and does not publicly disclose a security policy or incident response contacts. The WHOIS data is transparent and consistent with the business launch timeline, enhancing trustworthiness. Overall, ASP Learning Lab presents a professional, secure, and compliant online presence with strong business credibility in the healthcare education sector. Strategic improvements in security headers and incident response transparency could further enhance its security posture and trust.

F

Font Awesome

fontawesome.com

72

Font Awesome is a leading technology company specializing in providing a comprehensive icon library and toolkit widely used by designers, developers, and content creators globally. Established in 2012, the company offers a freemium business model with free icons and paid Pro and Pro+ subscription plans that unlock additional icon packs and features. The website demonstrates a strong market position with millions of users and a professional, consistent brand presence. Technically, the site leverages modern web technologies including Vue.js, SVG, and optimized assets hosted on AWS infrastructure, ensuring fast performance and excellent mobile responsiveness. Security posture is robust with HTTPS, CSRF protection, reCAPTCHA integration, and privacy compliance mechanisms including GDPR-aligned policies and cookie consent. No critical vulnerabilities or suspicious indicators were found. Overall, Font Awesome presents a trustworthy, mature, and well-managed digital presence with clear business credibility and user-focused design.

G

Google

safety.google

67

The Google Safety Center website serves as an official platform by Google LLC to educate users on online safety, privacy, and cybersecurity. It highlights Google's commitment to protecting users across its broad range of products including Search, Gmail, Chrome, YouTube, and more. The site targets a general audience with a focus on family safety, content safety, and cybersecurity advancements. The business model is service-oriented, leveraging Google's extensive technology ecosystem and market leadership in the technology sector. The website is part of the enterprise-level digital presence of Google, a subsidiary of Alphabet Inc., founded in 1998 in the United States.

C

Cookiebot

cookiebot.com

73

Cookiebot, a product by Usercentrics, is a leading consent management platform (CMP) focused on helping businesses comply with GDPR and other privacy regulations. The company offers a SaaS solution that automates consent signaling and manages user consent preferences, targeting primarily SMBs and enterprises requiring privacy compliance. The website reflects a mature digital presence with multiple language support, clear navigation, and professional branding. Technically, the site is built on WordPress with modern JavaScript integrations, Google Analytics, and Tag Manager for tracking and performance optimization. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS data reduces transparency but does not detract significantly from the overall trustworthiness given the company's established market position and branding. Strategic recommendations include publishing detailed security and incident response policies and adding vulnerability disclosure mechanisms to enhance trust further.

D

Datwyler IT Infra

datwyler.com

68

Datwyler IT Infra is a well-established provider of IT and OT infrastructure solutions, specializing in data centres, fibre networks, and intelligent building systems. The company operates globally, offering a broad range of services including managed services, software solutions, and turnkey projects. Their market position is strong, supported by comprehensive governance and sustainability commitments. Technically, the website employs modern technologies such as Craft CMS, Google Tag Manager, and Imgix for image delivery, ensuring a responsive and professional user experience. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the website reflects a mature digital presence aligned with corporate standards.

L

Label Fait Maison – Le label des restos qui cuisinent

labelfaitmaison.ch

51

Label Fait Maison is a small hospitality-focused website that provides a label for restaurants emphasizing homemade cooking. The site targets restaurants and consumers interested in authentic homemade food, positioning itself in a niche market within Switzerland. The website is built on WordPress using the Enfold theme and includes common technologies such as jQuery, Font Awesome, and Google Analytics for tracking. Multilingual support is indicated by hreflang tags for French, German, English, and Italian. The technical infrastructure is moderate in performance and mobile optimization but lacks advanced accessibility and SEO features. Security posture is weak due to the absence of visible security headers, privacy policies, and incident response information. No WHOIS data was provided to assess domain legitimacy. Overall, the website is functional but basic, with significant room for improvement in privacy compliance, security, and business credibility.

O

Opus One

thonexlive.ch

48

Thônex Live is a concert event platform operated through a partnership between the commune of Thônex and Opus One, a well-established Swiss concert organizer founded in 1993. The website promotes approximately 20 concerts per season, focusing on genres such as chanson, rock, pop, and urban music. The business model centers on event programming, production, artist booking, and ticket sales, positioning itself as a key player in the Swiss live music scene. The target audience includes local and regional music enthusiasts in Geneva and surrounding areas. Technically, the website is built on WordPress using the Bridge theme and WPBakery Page Builder, with integrations including Google Fonts, Google Analytics, and Ticketcorner for ticket sales. The site demonstrates moderate performance and good mobile optimization but lacks some advanced accessibility features. SEO practices are adequately implemented with proper meta tags and structured content. From a security perspective, the site enforces HTTPS and uses a honeypot plugin for spam protection but lacks visible security headers and a formal privacy or cookie policy, which are compliance gaps. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's business claims, indicating a legitimate and consistent domain registration. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security header implementation to improve its security posture and regulatory adherence.

U

University of Plymouth

plymouth.ac.uk

74

The University of Plymouth website serves as the digital presence for a large UK-based educational institution focused on advancing knowledge and transforming lives through higher education and research. The site targets prospective and current students, researchers, and the academic community, offering information about courses, research programs, and student services. The website demonstrates a mature digital infrastructure with modern technologies such as AWS Cloudfront CDN, Google Analytics, Microsoft Clarity, and Cookiebot for privacy compliance and user experience enhancement. The use of Ruby on Rails is implied by the presence of CSRF tokens, indicating a robust backend framework. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, explicit security headers could be more clearly implemented and documented. Privacy compliance is well addressed with a comprehensive cookie policy and GDPR-aligned consent management. The absence of WHOIS data limits domain registration insights, but the overall professionalism and trust indicators suggest legitimacy. Strategic recommendations include enhancing security header implementation, publishing incident response and security policies, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

T

The Learning Lab is a the Retail-First LMS

thelearning-lab.com

65

The Learning Lab website presents a professional and well-structured platform focused on providing a Retail-First Learning Management System (LMS) tailored for luxury, fashion, sport goods, automotive, and beauty brands. The company offers a no-code, customizable LMS solution alongside eLearning agency services including content development, SCORM design, and mobile learning strategies. The site is built on the Squarespace platform, leveraging modern web technologies and includes integrations such as Google Analytics and Weglot for translation. Security posture is moderate with HTTPS enabled but lacks advanced security headers and privacy policies. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and design suggest a legitimate business. Overall, the site is suitable for retail and luxury brand businesses seeking LMS solutions but would benefit from enhanced privacy compliance and security hardening.

P

Penceo eLearning Provider

penceo.com

61

Penceo eLearning Provider is a specialized eLearning agency focused on delivering comprehensive online training solutions tailored to various industries including fashion, luxury, retail, and technology. Their services encompass custom LMS development, interactive digital training modules, and content production aimed at enhancing engagement and performance. The website is professionally designed using Squarespace, featuring modern technologies such as Google Analytics and reCAPTCHA to support user interaction and data tracking. Security posture is strong with HTTPS and HSTS enabled, but the absence of explicit privacy and cookie policies, as well as missing WHOIS registration data, present compliance and legitimacy concerns. Overall, the site demonstrates a good level of technical maturity and business professionalism but would benefit from enhanced transparency and compliance documentation.

K

Kielder Agro Group

kielderagro.com

53

Kielder Agro Group is an agriculture company operating in Uruguay, Paraguay, Argentina, and South Africa, managing over 35,000 hectares of commercial land. The company focuses on sustainable farming, livestock management, and innovation in agricultural practices. Their market position is that of a regional agriculture operator with a medium-sized footprint and a commitment to quality and traceability across the value chain. The website is built on WordPress using the Avada theme and integrates SEO and analytics tools such as Yoast SEO and Google Analytics. Hosting is provided by Infomaniak Network SA, with domain registration dating back to 2021 and a long-term expiry in 2032, indicating stable ownership. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers. Privacy and cookie policies are absent, representing compliance gaps. No contact emails or phone numbers are explicitly found on the homepage content, limiting direct communication channels. Overall, the website is professional and well-branded but would benefit from enhanced privacy compliance and security hardening.

D

Devillard Holding SA

devillard.ch

47

Devillard Holding SA is a well-established Swiss technology company founded in 1958, specializing in IT infrastructure, printing systems, document management (GED), and interactive screens. It holds a leading market position in Suisse Romande, targeting SMEs with comprehensive technology solutions and premium maintenance services. The company operates multiple physical locations across the region, emphasizing proximity and high-quality customer service. The website reflects a mature digital presence with professional design, clear navigation, and relevant content tailored to its business audience. Technically, the site is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for performance monitoring. Security posture is strong with HTTPS, captcha protections, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is robust with a detailed privacy policy and cookie banner. Overall, the website and business demonstrate high credibility and trustworthiness.

S

Schellenberg Wittmer Ltd

swlegal.com

64

Schellenberg Wittmer Ltd is a leading Swiss business law firm with a strong presence in Zurich, Geneva, and Singapore. The firm offers a comprehensive range of legal services including transactions, advisory, and dispute resolution across multiple practice areas and industries. It is recognized for its professional excellence, awards, and commitment to corporate social responsibility. The website reflects a mature digital presence with modern technologies and good user experience. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. WHOIS data is missing, which is a concern for domain legitimacy verification but the professional content and contact details support trustworthiness.

Q

Qualibroker - Swiss Risk & Care

swissriskcare.ch

56

Qualibroker - Swiss Risk & Care is a prominent Swiss insurance brokerage firm specializing in insurance, pension provisions, and HR services outsourcing. Positioned as the leading broker in French-speaking Switzerland and the second nationally, the company offers tailored solutions for companies, independent professionals, and individuals. Their services include risk management, employee benefits, actuarial consulting, and administrative outsourcing, supported by a team of 430 expert employees managing 1.7 billion in premiums for 8000 corporate clients. The website reflects a mature, professional business with strong branding and clear market positioning. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, WPBakery Page Builder, and Ninja Forms. It employs Google Analytics and reCAPTCHA v3 for analytics and security, respectively, and complies with GDPR through Complianz cookie consent management. The site is mobile-optimized, SEO-friendly, and performs moderately well. Security-wise, the company demonstrates a strong posture with HTTPS enforcement, security headers, and certifications including ISO 27001 and ISAE 3402. Forms are protected with reCAPTCHA, and privacy policies are comprehensive and GDPR compliant. However, incident response and vulnerability disclosure policies are not publicly available, representing an area for improvement. Overall, the website and business present a low-risk profile with high trustworthiness, professional content, and solid security practices. Strategic recommendations include publishing incident response contacts, adding vulnerability disclosure mechanisms, and enhancing accessibility features to further strengthen compliance and user trust.

Mediterranean Shipping Company S.A. (MSC) operates a professional and comprehensive website focused on global container shipping and logistics services. The company positions itself as a world leader in the shipping industry, offering digitized global services with local expertise. The website features advanced tracking tools, schedule searches, and contact options, reflecting a mature digital infrastructure. Technically, the site employs modern JavaScript frameworks, analytics, and performance monitoring tools, hosted likely on Akamai's CDN, ensuring fast and responsive user experience across devices. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data limits domain registration trust analysis, but the overall professional presentation and business reputation support legitimacy. Strategic recommendations include publishing dedicated security and incident response policies and enhancing transparency around vulnerability disclosures.

F

Franck Muller Genève

franckmuller.com

62

Franck Muller Genève is a Swiss luxury watchmaker specializing in haute horlogerie and grand complications. The company operates a professional, content-rich website built on Squarespace, targeting luxury watch buyers globally with multilingual support. The site showcases collections, news, and brand craftsmanship, positioning itself as a high-end retailer with exclusive boutiques and authorized dealers. Technically, the website uses modern web technologies including Google Analytics, Facebook Pixel, and Weglot for translations, ensuring a good user experience and moderate performance. Security posture is adequate with HTTPS enforced but lacks some recommended security headers and published privacy or cookie policies, which are critical for compliance and trust. WHOIS data for the domain is unavailable, which slightly reduces trust but the brand's established reputation and consistent online presence mitigate concerns. Overall, the website is professional and trustworthy but would benefit from enhanced privacy disclosures and security header implementations.

G

Global-e

global-e.com

69

Global-e is an enterprise-level e-commerce platform specializing in enabling merchants and shoppers worldwide to engage in cross-border commerce seamlessly. The company positions itself as a leading global e-commerce enabler, offering localized shopping experiences, payment, and compliance services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to merchants and shoppers globally. Technically, the site is built on WordPress with Elementor and integrates multiple modern marketing and analytics tools such as Google Analytics, HubSpot, Facebook Pixel, and Cookiebot for privacy compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies could be improved. The absence of WHOIS data reduces transparency but does not significantly detract from the overall legitimacy given the professional web presence. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and auditing third-party scripts for vulnerabilities.

U

UL LLC

ulprospector.com

75

UL Prospector is a professional B2B platform operated by UL LLC, providing a comprehensive materials search engine for product developers and engineers in manufacturing sectors. The platform offers access to technical data, supplier information, and marketing solutions to accelerate product development and supplier reach. The website demonstrates a mature digital presence with modern technologies, consent management, and good user experience. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data for the domain is a notable anomaly but does not detract significantly from the overall legitimacy given the strong UL branding and content quality. Privacy and cookie policies are comprehensive and GDPR compliant, supporting trust and compliance.

S

StorifyMe GmbH

storifyme.com

69

StorifyMe GmbH operates a technology platform specializing in mobile-native storytelling formats such as Stories, Shorts, Snaps, and Ads, designed to enhance user engagement and monetization for apps and websites. The company targets a broad range of clients from startups to large enterprises, positioning itself as a leader in visual content creation and distribution. The website demonstrates strong branding, client trust signals, and a comprehensive suite of services aimed at digital marketing and content innovation. Technically, the site leverages modern web technologies including Webflow CMS, GSAP animations, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and HubSpot, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. The absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the overall professional presentation and client endorsements support a trustworthy business profile. Strategic recommendations include enhancing security transparency, publishing incident response contacts, and improving direct contact availability to further strengthen trust and compliance.

A

Alliance of Swiss Wealth Managers

asv-aswm.ch

56

The Alliance of Swiss Wealth Managers is a professional association representing independent wealth management companies in Switzerland. Founded in 2016, it serves as a collaborative platform for sharing knowledge, influencing the industry, and organizing events such as the Custodian Bank Award and annual summits. The association targets wealth managers and clients seeking trusted, independent financial advisory services within the Swiss market. The website reflects a medium-sized organization with a clear focus on finance and wealth management, supported by a professional digital presence built on WordPress and Elementor. Technically, the website employs modern web technologies including WordPress CMS, Elementor page builder, and essential addons, with Google Analytics for visitor tracking. The site is well optimized for SEO and mobile devices, with good content quality and structured data markup enhancing search visibility. Performance is moderate, with room for improvement in accessibility features and security headers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, showing a legitimate registration aligned with the association's founding date and location. Overall, the website presents a trustworthy and professional image suitable for its target audience. Strategic recommendations include publishing formal security and incident response policies, enhancing accessibility, and adding security headers to improve the security posture further.

A

ASP Global Manufacturing GmbH

aspuniversity.com

52

ASP Learning Lab is a professional healthcare education platform operated by ASP Global Manufacturing GmbH, based in Switzerland. The platform specializes in lifelong learning for healthcare professionals, focusing on medical device reprocessing, sterilization, and infection prevention. It offers a variety of educational resources including e-learning modules, webinars, professional certifications, and a Centre of Excellence program, targeting healthcare professionals primarily in the EMEA region. The website demonstrates a strong market position within its niche, supported by professional certifications and a consistent brand presence across social media channels. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag for analytics and marketing. The site is well-optimized for SEO, mobile-friendly, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though some improvements like enabling DNSSEC and additional security headers are recommended. Overall, the domain registration is recent but consistent with the platform's new branding and content, indicating legitimacy. No critical security issues or adult content were detected, and the site maintains high professionalism and trustworthiness.

C

Cloudinary

cloudinary.com

70

Cloudinary is a leading cloud-based media management platform founded in 2011, specializing in image and video upload, storage, optimization, and delivery via APIs and CDN. The company targets developers, IT teams, marketers, and enterprises across various industries, providing scalable and AI-powered media solutions. The website reflects a mature digital presence with comprehensive product information, strong branding, and clear navigation. Technically, the site leverages modern web technologies including WordPress CMS, Bootstrap framework, and integrates analytics and marketing tools such as Google Analytics and LinkedIn Insight Tag. Security posture is solid with HTTPS enforced and no exposed sensitive data, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR indicators. Overall, Cloudinary demonstrates a high level of professionalism, technical maturity, and business credibility.