Security Directory

V

Volkswagen

volkswagen.com

65

Volkswagen Finland operates a comprehensive and professionally designed website offering detailed information about Volkswagen's vehicle lineup, services, and customer support. The site targets Finnish consumers and businesses interested in new and used Volkswagen vehicles, including electric and hybrid models. The business model includes vehicle sales, leasing, servicing, and digital connectivity services, positioning Volkswagen as a leading automotive brand in Finland. The website demonstrates a mature digital infrastructure leveraging modern web technologies such as React and Adobe Experience Manager, ensuring fast performance and excellent mobile optimization. Security measures include HTTPS enforcement, content security policies, and client-side guards to prevent unauthorized content loading. Privacy and cookie policies are comprehensive and GDPR compliant, with clear consent mechanisms. Overall, the site reflects a high level of professionalism, trustworthiness, and compliance with industry standards.

B

bbv Software Services AG

bbv-software.de

59

bbv Software Services AG is a well-established Swiss software and consulting company specializing in digital consulting, software engineering, and digital transformation services. Founded in 1995, the company serves a broad range of clients, focusing on delivering scalable digital businesses, innovative digital experiences, and sustainable software products. Their market position is strong within Switzerland, supported by a medium-sized team and a comprehensive portfolio of services including AI consulting, cloud services, cybersecurity, and data management. The website reflects a professional and consistent brand image with multilingual support and rich content tailored to business clients. Technically, the website is built on WordPress with modern plugins and tools such as WPBakery Page Builder, Google Tag Manager, HubSpot, and LinkedIn Insight Tag. It employs standard web technologies including JavaScript and jQuery, and integrates multiple analytics and marketing tools with a robust cookie consent mechanism ensuring GDPR compliance. The site demonstrates good performance, mobile optimization, and accessibility features. From a security perspective, the site uses HTTPS with strong SSL configuration and employs Google reCAPTCHA to protect forms from spam. While some security headers are not explicitly detected, the overall security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management system. However, the site could improve by publishing explicit security policies and incident response contacts. Overall, bbv Software Services AG presents a trustworthy and professional online presence with strong business credibility, good technical implementation, and solid privacy and security practices. The risk level is low, and the company is well-positioned to maintain compliance and security in its digital operations.

The Fondation internationale pour la recherche en paraplégie (IRP) is a Swiss-based non-profit organization dedicated to advancing research in paraplegia and tetraplegia. The foundation supports scientific projects, offers research grants and fellowships, and organizes events to raise awareness and funds. Their website is professionally designed, multilingual, and targets researchers, donors, and patients interested in spinal cord injury research. The foundation holds a reputable position in the healthcare non-profit sector with clear contact and event information.

S

Scan Compétences

scan-competences.ch

54

Scan Compétences is a small Swiss-based service provider specializing in competency evaluation and development services. The website is professionally designed using WordPress with modern plugins such as Yoast SEO and Divi Builder, indicating a moderate level of digital maturity. The company targets professionals and organizations seeking expert competency assessments. The site includes structured data and social media links to LinkedIn and YouTube, enhancing its online presence. Technically, the site uses HTTPS with Google Analytics tracking and an opt-out mechanism, but lacks visible security headers and published privacy or cookie policies. No incident response or vulnerability disclosure information is available, which limits transparency in security practices. Overall, the website is functional and professional but could improve in privacy compliance and security posture.

S

Servette FC

servettefc.ch

60

Servette FC is a Swiss football club with an official website serving as a hub for club news, updates, and fan engagement. The website is built on WordPress and leverages modern SEO and cookie consent tools such as Yoast SEO and Cookiebot. It integrates multiple third-party analytics and marketing pixels including Google Analytics, Facebook Pixel, and TikTok Pixel, indicating a mature digital marketing approach. The site is well-branded and professionally designed, targeting football fans and stakeholders in Switzerland. Technically, the site is moderately performant with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of security headers and explicit privacy and terms of service pages are notable gaps. No contact information or incident response channels are directly visible, which could impact user trust and compliance. Overall, the domain registration aligns well with the business claims, supporting legitimacy. Strategic improvements include publishing comprehensive privacy and terms policies, enhancing security headers, and providing clear contact channels for security and privacy inquiries.

C

Chambre de commerce, d’industrie et des services de Genève

ccig.ch

63

The Chambre de commerce, d’industrie et des services de Genève (CCIG) is a well-established private association founded in 1865, representing approximately 2600 member companies. It serves as a key economic actor in Geneva, promoting a strong economy and supporting its members through business networking, events, export services, legal advice, and publications. The website reflects a professional and consistent brand image, targeting local businesses and economic stakeholders. Technically, the site uses a modern tech stack including jQuery, Bootstrap, Kendo UI, and integrates analytics tools such as Google Analytics and LinkedIn Insight Tag. The site is mobile-optimized and well-structured, though performance is moderate. Security posture is good with HTTPS enforced, but lacks visible security headers and a public security policy. Privacy compliance is limited due to absence of explicit privacy and cookie policies or consent mechanisms. Overall, the domain registration data aligns well with the organization's claims, indicating a legitimate and trustworthy entity.

F

FER Genève

fer-ge.ch

68

FER Genève is a large, established umbrella organization representing over 80 professional associations and 29,000 member companies in Geneva, Switzerland. The website serves as a platform for advocacy and support of its members' political and economic interests. Technically, the site is built on the Liferay CMS platform, utilizing modern JavaScript libraries such as jQuery and FontAwesome, and integrates multiple analytics and tracking services including Google Analytics and Friendly Analytics. The security posture is adequate with HTTPS enabled and asynchronous loading of scripts, but lacks visible security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, the website is functional and moderately professional but would benefit from enhanced privacy disclosures and security best practices.

T

Théâtre de Beausobre

beausobre.ch

54

Théâtre de Beausobre is a well-established Swiss cultural venue located in Morges, attracting over 42,000 visitors per season to attend a diverse program of approximately 60 performances including theatre, dance, music, and circus. The website reflects a mature digital presence with a professional design, clear navigation, and mobile optimization, supporting ticket sales and subscriptions through a partnered external platform. Technically, the site leverages WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant, and serves its audience effectively.

I

Infront Moto Racing

mxgp.com

59

MXGP.com is the official website for the FIM Motocross World Championship and related motocross events managed by Infront Moto Racing. The site serves as a comprehensive media and information hub for motocross fans, teams, riders, and partners worldwide. It offers news, event calendars, results, photos, and multimedia content, supported by a professional digital infrastructure. The website uses Drupal 7 CMS with integrations for advertising, analytics, and social media, ensuring a modern and engaging user experience. Security posture is strong with HTTPS enforcement and GDPR-compliant privacy and cookie policies, though some security headers could be improved. The absence of WHOIS data is noted but does not detract significantly from the site's legitimacy given its professional presentation and official affiliations. Overall, MXGP.com is a credible, well-maintained sports media platform with good privacy and security practices.

B

Butini

butini.ch

57

Butini is a Swiss-based senior care organization providing residential and day care services for elderly individuals with loss of autonomy or cognitive disorders. The website positions Butini as a community-centric care provider with personalized care plans and a vibrant social environment. Technically, the site is built on WordPress with modern SEO and privacy plugins, ensuring good digital maturity. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, reflecting a mature healthcare service provider.

S

Standout GmbH

standout.ch

55

Standout GmbH is a Swiss-based online marketing agency established in 2012, specializing in services such as SEO, Google Ads, social media marketing, lead generation, e-commerce marketing, and digital recruiting. The company holds reputable certifications including Google Premier Partner and Meta Business Partner, positioning it as a credible player in the Swiss digital marketing sector. Their website reflects a professional and modern design with clear navigation and comprehensive service offerings tailored to businesses seeking to enhance their online visibility and lead acquisition. Technically, the website leverages a modern technology stack including Google Tag Manager, Facebook Pixel, LinkedIn Insight Tag, and Cookiebot for privacy compliance. The use of Craft CMS is inferred from security cookies. The site is mobile-optimized, accessible, and SEO-friendly, with good performance metrics. Cookie consent mechanisms are robust, ensuring GDPR compliance. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements security best practices such as CSRF protection and security headers. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or incident response contact is noted. Overall, the website demonstrates a high level of professionalism, security, and privacy compliance, making it a trustworthy digital presence for Standout GmbH. Strategic recommendations include publishing a security policy, providing incident response contacts, and establishing a vulnerability disclosure program to further enhance trust and security posture.

B

Bowling Room

bowlingroom.com

47

Bowling Room is a regional hospitality and entertainment business operating multiple venues in Germany, offering bowling, billiards, darts, and laser tag activities. The website targets local customers and promotes social and leisure activities. Technically, the site is built on WordPress with Elementor and several Jet plugins, integrating Google Analytics and Tag Manager for tracking. The site implements cookie consent via Borlabs Cookie, indicating some privacy awareness. Security posture is moderate with HTTPS enabled but lacks explicit security headers and a visible privacy policy. WHOIS data is missing, which reduces domain trustworthiness and raises questions about domain registration status. Overall, the site is functional and professional but would benefit from improved transparency and security hardening.

S

Scherer Gruppe

scherer-gruppe.de

52

Scherer Gruppe is a large, multi-brand automotive dealership group operating in Germany with 37 locations offering new and used vehicles, service, rental, and financing. The website reflects a mature digital presence with modern technologies including analytics and consent management, supporting a professional user experience. Security posture is solid with HTTPS and privacy consent mechanisms, though some security headers and incident response details are missing. Overall, the site is trustworthy and well-branded, targeting both retail and commercial automotive customers.

H

Hoststar - Multimedia Networks AG

hoststar.ch

73

Hoststar - Multimedia Networks AG is a Swiss-based web hosting and domain registration provider established since 2013. The company offers a wide range of hosting solutions including shared hosting, reseller hosting, virtual servers, SSL certificates, and security services such as SiteLock and VPN. Their market position is that of a reputable mid-sized hosting provider serving individuals and businesses primarily in Switzerland. The website is professionally designed with good content quality and clear navigation, targeting customers seeking reliable and affordable hosting services. Technically, the website is built on Drupal CMS and integrates multiple third-party marketing and analytics tools including Google Analytics, Facebook Pixel, Intercom, and SalesManago. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and security headers. HTTPS is properly implemented, ensuring secure communications. From a security perspective, the site follows basic best practices such as HTTPS and offers security-related products. However, it lacks visible security policies, incident response contacts, and comprehensive security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, which is a notable compliance gap. Overall, the website is trustworthy and legitimate, supported by consistent WHOIS data showing transparent Swiss company ownership and an appropriate domain age. The risk level is moderate, primarily due to privacy compliance shortcomings and limited security policy disclosures. Strategic recommendations include implementing clear privacy and cookie policies, enhancing security headers, and publishing incident response information to improve trust and compliance.

D

Designorina Showit Template Webdesign Studio

designorina.com

70

Designorina is a small, specialized e-commerce business offering stylish and customizable Showit website templates targeted at creative entrepreneurs. The company leverages a modern WordPress infrastructure with WooCommerce and Elementor to provide a seamless shopping and customization experience. The website is professionally designed with excellent content quality, clear navigation, and mobile optimization. The business maintains a consistent brand presence and integrates social media channels such as Instagram and Pinterest to engage its audience. Technically, the site uses a robust tech stack including Google Analytics, Flodesk for marketing, and CookieYes for privacy compliance. Security posture is strong with HTTPS, clientTransferProhibited domain status, and bot management cookies, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the site lacks explicit security policies, incident response contacts, and terms of service. Overall, the website is trustworthy, professional, and well-positioned in its niche market.

T

Terravigna AG

terravigna.ch

66

Terravigna AG operates a specialized e-commerce platform and physical retail stores focused on wine and spirits in Switzerland. The company offers a curated selection of wines, spirits, gift boxes, and organizes events and tastings, targeting wine enthusiasts and retail customers primarily in Switzerland. The website is built on the Magento platform, leveraging modern web technologies such as jQuery, Bootstrap, and integrates analytics and marketing tools like Google Analytics and Facebook Pixel. The digital infrastructure supports a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enforced and use of invisible reCAPTCHA on forms, but lacks some security headers and explicit cookie consent mechanisms. Privacy and terms policies are present and comprehensive, supporting GDPR compliance. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

LB Airpark SA operates a luxury jet park in Sion, Switzerland, targeting affluent private jet owners and operators. The business focuses on providing premium parking and aviation-related services, positioning itself as a niche luxury aviation real estate and service provider. The website reflects a small-sized company with a founding date consistent with the domain registration in 2013. The site content is minimal but professional, with consistent branding and clear navigation.

S

Swiftcopters

swiftcopters.net

51

Swiftcopters is a specialized helicopter company based at Geneva International Airport, offering a range of luxury and professional aviation services including VIP flights, panoramic tours, pilot training, and maintenance. The company has a strong market position as the only IFR approved helicopter operator at this strategic location, targeting affluent clients and corporate customers in Switzerland and Europe. The website reflects a professional and consistent brand image with good content quality and clear service offerings. Technically, the site is built on WordPress with Elementor and integrates modern analytics and marketing tools such as Google Analytics and Google Tag Manager. Security posture is strong with HTTPS and security headers properly configured, though there is room for improvement in privacy compliance and explicit policy disclosures. Overall, the domain registration data supports the legitimacy and trustworthiness of the business, with a domain age consistent with the company's founding date. Recommendations include adding comprehensive privacy and cookie policies, visible contact information, and incident response details to enhance compliance and user trust.

F

Fédération Fribourgeoise des Entrepreneurs

cppf-pbkf.ch

50

The Commission Professionnelle Paritaire Fribourgeoise du Secteur Principal de la Construction (CPPF) operates as a regional federation representing construction sector entrepreneurs in the canton of Fribourg, Switzerland. The organization provides key services including labor conventions, collective agreements, work calendars, salary scales, and professional cards, targeting construction professionals and companies within the region. The website serves as an information hub with news updates, downloadable resources, and partner information, positioning the CPPF as a trusted authority in its sector. Technically, the website is built on the Neos CMS platform leveraging the Flow PHP framework, with modern JavaScript libraries such as Swiper.js and Google Analytics integrations. The site is mobile-optimized with good SEO practices and structured data usage, reflecting a moderate to good level of digital maturity. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site enforces HTTPS and uses anonymized IP tracking in analytics, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic with a privacy policy and cookie consent mechanism present, though GDPR compliance indicators are limited. Overall, the website is professional, trustworthy, and safe for general audiences. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, expanding privacy and incident response disclosures, and continuing to monitor third-party scripts for vulnerabilities to improve security posture and compliance.

S

SERV – Swiss Export Risk Insurance

serv-ch.com

70

SERV is a Swiss government-backed export risk insurance provider that supports Swiss companies in managing risks associated with export transactions and expanding into new markets. The website presents a professional and comprehensive digital presence, leveraging TYPO3 CMS and modern web technologies to deliver a user-friendly experience. The site is well-optimized for SEO, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and use of Google Tag Manager for controlled script loading. No critical vulnerabilities or exposed sensitive data were detected. However, the WHOIS data for the domain is unavailable, which is inconsistent with the active and professional website presence and warrants further investigation. Overall, the website demonstrates a high level of trustworthiness and compliance with privacy regulations, making it a reliable resource for its target audience.

A

Auto Welt von Rotz AG

vonrotz.ch

55

Auto Welt von Rotz AG operates a comprehensive automotive dealership website based in Switzerland, offering over 500 new and used vehicles across multiple brands, along with extensive after-sales services including repairs, tuning, rentals, and an online accessories shop. The company maintains a strong market position as a large regional dealer with a diverse inventory and multiple customer engagement channels. Technically, the website is built on WordPress with WooCommerce, leveraging modern web technologies such as Bootstrap, jQuery, and integrates marketing and analytics tools like Google Analytics, Google Tag Manager, and Facebook Pixel. The site demonstrates good SEO practices with structured data and meta tags, and provides a responsive user experience optimized for mobile devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website reflects a professional and trustworthy business presence with strong customer trust signals including numerous positive Google reviews.

D

diversified design

diversified.ch

49

diversified design is a Swiss-based small design agency founded in 2008, specializing in corporate identity, print media, photography, and electronic media services. The company targets businesses and individuals seeking comprehensive and tailored design solutions. The website is professionally designed using WordPress with modern plugins and demonstrates good content quality and branding consistency. Technical infrastructure includes WordPress CMS, Yoast SEO, WPBakery Page Builder, and Google Analytics for tracking. Security posture is solid with HTTPS enabled and no exposed sensitive data, though security headers and cookie consent mechanisms are lacking. The domain registration details align well with the business information, supporting legitimacy. Overall, the website is trustworthy and professional but could improve privacy compliance and security best practices.

S

STARLITE | Audio Visual & Lighting Solutions

starlite.com

68

STARLITE is a small, established company specializing in audio visual and lighting solutions for events, rentals, and systems integration based in Moorestown, New Jersey. The company has a strong local presence and offers services tailored to event organizers and businesses requiring professional AV and lighting support. Their website reflects a professional brand with consistent messaging and active social media engagement. Technically, the site is built on WordPress using the Divi theme and integrates modern tools such as Google Analytics, Google Tag Manager, and reCAPTCHA to enhance functionality and security. The hosting and domain registration are managed via Cloudflare, providing a solid infrastructure foundation. Security posture is generally good with HTTPS enforced and reCAPTCHA protecting forms; however, the absence of DNSSEC and security headers indicates room for improvement. Privacy compliance is lacking due to missing privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy and security disclosures.

H

Helilagon

helilagon.com

39

Helilagon is a well-established helicopter transport company based in La Réunion, with over 30 years of market presence. The company specializes in aerial sightseeing and transport services, positioning itself as a leader in its niche. The website reflects a professional and modern digital presence built on WordPress with WooCommerce and Elementor, supporting e-commerce and content management needs. The technical infrastructure is solid, hosted by OVH sas, and employs common web technologies and analytics tools. Security posture is adequate with HTTPS and reCAPTCHA in place, but lacks advanced security headers and published security policies. Privacy compliance is partial, with cookie consent mechanisms but missing privacy and terms of service documents. Overall, the site is trustworthy and functional but could improve compliance and security transparency.

F

Fullerton Tool Company

fullertontool.com

68

Fullerton Tool Company is a well-established precision tooling manufacturer and supplier with a strong legacy dating back to 1996. The company offers a broad range of carbide cutting tools and custom tooling services, targeting manufacturing professionals and machinists. Their market position is supported by a consistent brand image, ISO certification, and a comprehensive online presence including e-commerce capabilities. Technically, the website leverages modern frameworks like Vue.js and integrates multiple analytics and marketing tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and domain protections, though DNSSEC is not enabled and incident response contacts are not explicitly published. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences.

F

firstvoucher

firstvoucher.com

59

firstvoucher.com is a German-based e-commerce platform specializing in providing businesses with an online voucher and ticket sales system. The company targets a broad range of businesses, from small cafes to large hotel groups, enabling them to sell vouchers and tickets online with automated processes for issuance, personalization, and redemption. The website is professionally designed, content-rich, and includes customer testimonials and logos, indicating a strong market presence with over 3000 customers. Technically, the site uses modern web technologies including JavaScript libraries, tracking and analytics tools, and a consent management platform to comply with privacy regulations. Security posture is good with HTTPS enforced and privacy-conscious analytics configurations, though some security headers are missing and no explicit security policies are published. The WHOIS data is unavailable, which raises concerns about domain registration transparency, but the active and professional website mitigates some risk. Overall, the site is trustworthy and well-positioned in its niche, but domain registration details should be verified for full assurance.

Y

Yieldify

yieldify.com

73

Yieldify is a medium-sized ecommerce personalization SaaS company, now part of Epsilon Accelerate, serving over 1000 global brands with AI-powered marketing and customer journey optimization solutions. Their platform offers lead capture, promotions, email remarketing, and advanced audience segmentation, supported by expert client services. The website demonstrates a mature digital presence with modern technologies, strong SEO, and comprehensive privacy compliance including GDPR. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, but the site’s professionalism and parent company association support legitimacy. Overall, Yieldify presents a trustworthy and well-established business in the ecommerce personalization market.

D

Dept (formerly Hinderling Volkart)

hinderlingvolkart.com

67

The website represents the rebranding of Hinderling Volkart as part of the global digital agency Dept. It positions itself as a leading full-service digital agency in Switzerland with a broad range of services from strategy to experience design. The site is professionally designed with modern technologies such as Vue.js and Nuxt.js, and integrates analytics and marketing tools like Google Analytics and Google Tag Manager. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and explicit privacy and terms policies. The missing WHOIS data is a concern but the website's professional appearance and parent company affiliation mitigate trust issues. Overall, the site is a credible digital agency landing page with room for improvement in compliance transparency and security hardening.

T

ti&m AG

ti8m.com

76

ti&m AG is a Swiss-based technology company specializing in digital solutions and security products, serving clients primarily in Switzerland and the European Union. Positioned as a market leader, the company focuses on innovation projects and digital transformation services. Their website reflects a professional and modern digital presence, emphasizing their expertise and leadership in the technology sector. The company targets business clients seeking advanced digital and security solutions, leveraging certifications such as ISO 27001 to reinforce trust and credibility. The technical infrastructure of the website includes modern web technologies and multiple analytics tools such as Google Analytics, Microsoft Clarity, Hotjar, and LinkedIn Insight Tag, integrated with a consent management platform (OneTrust) to ensure GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital strategy. However, the absence of explicit CMS or hosting provider details limits full infrastructure transparency. From a security perspective, the website enforces HTTPS with strong SSL configuration and employs privacy-conscious tracking practices like IP anonymization. While security headers are implied, explicit implementation details are not fully visible. The presence of ISO 27001 certification suggests a robust internal security framework, though the lack of a dedicated security policy or incident response page indicates room for improvement in transparency and readiness. Overall, the website presents a trustworthy and professional image with good privacy compliance and security posture. The main risk factor is the lack of WHOIS data, which raises questions about domain registration transparency. Strategic recommendations include enhancing security header implementation, publishing detailed security policies, and establishing clear incident response contacts to further strengthen trust and compliance.

E

ERNI

betterask.erni

73

ERNI is a Swiss-based software engineering consultancy specializing in advising companies on innovation and technology to enhance performance through software and digitalization of critical business processes. The company positions itself as a leading provider in software engineering and digital transformation with a broad portfolio of services including software engineering, requirements engineering, quality assurance, architecture advisory, design, embedded software, digital business solutions, agile consulting, DevOps, cloud, data and AI, and cybersecurity. The website reflects a mature digital presence with multilingual support and professional branding consistent with a large enterprise. Technically, the website is built on WordPress using Elementor and several modern plugins for SEO, multilingual support, and GDPR compliance. It employs Google Analytics and Hotjar for analytics and user behavior tracking. The site is well-optimized for mobile and accessibility, with good SEO practices and performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and vulnerability disclosure policies could be improved. The WHOIS data is privacy-protected but consistent with the corporate identity of Erni Group Holding AG, indicating legitimacy. No blocking or WAF challenges were detected, allowing full content access and analysis. Overall, the website demonstrates a professional, secure, and compliant digital presence suitable for its business domain. Strategic recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and making incident response contacts more visible to strengthen trust and security posture.

C

CSS

css.ch

79

CSS is a large, established Swiss health insurance company providing a broad range of insurance products including basic, supplementary, and additional insurances. The company emphasizes its role as a health partner, offering digital services such as the myCSS client portal and mobile app, as well as health promotion programs. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content tailored to private customers in Switzerland. Technically, the site leverages modern technologies including Adobe Experience Manager, Vue.js, and integrates advanced analytics and consent management tools. Security posture is strong with HTTPS enforcement, secure cookies, and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is robust with GDPR-aligned policies and cookie consent mechanisms. Overall, CSS presents a trustworthy, professional online presence consistent with its market position as a leading Swiss health insurer.

B

bbv Software Services AG

bbv.ch

61

bbv Software Services AG is a well-established Swiss technology company specializing in digital consulting, software development, and digital transformation services. With a medium-sized workforce and a history dating back to 1995, bbv positions itself as a trusted partner for companies seeking to innovate and scale digital businesses. Their offerings include software engineering, AI consulting, data management, cybersecurity, and cloud services, targeting enterprises aiming to leverage modern technologies for sustainable success. The website reflects a mature digital presence with multilingual support and comprehensive content tailored to business clients. Technically, the website is built on WordPress with modern plugins and tools such as Yoast SEO, WPML for multilingual support, and advanced cookie consent management aligned with GDPR and Google Consent Mode. The site demonstrates good performance, mobile optimization, and SEO practices, supporting a positive user experience. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and manages cookie consent effectively. However, explicit security headers and published security policies are lacking, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious activities were detected. Overall, bbv.ch presents a professional, trustworthy, and compliant digital presence suitable for its business domain. Strategic recommendations include enhancing security headers, publishing incident response information, and establishing a vulnerability disclosure policy to further strengthen security posture and stakeholder confidence.

C

Crownpeak Technology, Inc.

evidon.com

67

Crownpeak Technology, Inc. is an enterprise technology company specializing in AI-driven product discovery and enterprise content management solutions. Their flagship products, Fredhopper and FirstSpirit CMS, empower global brands to enhance digital experiences, improve conversions, and ensure accessibility compliance. The company targets large enterprises seeking scalable and flexible digital growth solutions. The website reflects a mature digital presence with professional design, comprehensive content, and clear branding. Technically, the site employs modern analytics and marketing tools, including Google Analytics, Marketo, and LinkedIn Insight, alongside a robust consent management platform to ensure GDPR compliance. Security posture is solid with HTTPS and Content Security Policy in place, though additional security headers and explicit security policies could enhance trust. WHOIS data is incomplete, which slightly impacts transparency but does not detract significantly from the site's legitimacy. Overall, Crownpeak presents as a credible and professional technology provider with a strong market position.

A

AMSOIL INC – APAC

amsoilasiapacific.com

47

AMSOIL INC – APAC is a regional branch of AMSOIL specializing in high-performance synthetic lubricants for automotive and motorcycle markets in the Asia-Pacific region. The company targets vehicle enthusiasts and distributors, offering a range of synthetic oils and fluids with a focus on performance and protection. The website reflects a professional and consistent brand presence with clear navigation and relevant content, including product lookup tools and distributor locators. Technically, the website is built on WordPress with modern JavaScript libraries and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar. It employs HTTPS and a cookie consent mechanism, demonstrating a moderate level of digital maturity. However, DNSSEC is not enabled, and some security headers are missing, indicating room for improvement in security hardening. From a security perspective, the site shows good practices like HTTPS enforcement and domain transfer protection but lacks published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by visible privacy and cookie policies with consent management, aligning with GDPR requirements. Overall, the website presents a trustworthy and professional digital presence for AMSOIL in APAC, with moderate technical and security maturity. Strategic improvements in DNS security, security headers, and transparency around security policies would enhance its posture and trustworthiness.

S

SAULAINAS NOMETNES BĒRNIEM 2025

saule.lv

54

The website www.saule.lv represents a small Latvian business organizing children's summer camps for ages 8 to 13. The camps focus on educational and recreational activities including expeditions, language learning, horseback riding, and cultural experiences. The business targets families seeking enriching summer activities for children within Latvia. The site is hosted on Google Sites, leveraging Google Fonts and Google Analytics for tracking. The technical infrastructure is modern and secure with HTTPS and security headers properly configured. However, the site lacks explicit privacy and cookie policies, which is a compliance gap. Contact information is limited to phone numbers and Facebook social media links, with no email addresses or incident response contacts published. Overall, the website is professionally presented with good content quality and user experience, but improvements in privacy compliance and security transparency are recommended.

S

sfb Bildungszentrum

sfb.ch

57

sfb Bildungszentrum is a Swiss educational institution specializing in practical and career-oriented training and continuing education, primarily targeting technical and commercial professionals. The website presents a well-structured, professional platform offering a variety of study programs, seminars, and career upgrade options across multiple Swiss locations. The institution maintains a strong market position as a medium-sized education provider with a clear focus on skill development and career advancement. Technically, the site is built on WordPress and integrates modern analytics and tracking tools, reflecting a mature digital infrastructure. Security posture is robust with HTTPS, security headers, and privacy compliance mechanisms in place, though there is room to enhance transparency with dedicated security policies and incident response information. Overall, the site is trustworthy, user-friendly, and compliant with GDPR, supporting a positive user experience and business credibility.

T

TEKO Schweizerische Fachschule AG

teko.ch

56

TEKO Schweizerische Fachschule AG is a Swiss educational institution specializing in technical and business education with campuses in Basel, Bern, Luzern, Olten, and Zürich. The website presents a professional and well-structured platform offering a variety of higher education programs, seminars, and preparation courses for federal professional exams. The institution holds recognized certifications such as ISO and eduQua, reinforcing its credibility in the education sector. The target audience includes students and professionals seeking advanced education in technology and business fields within Switzerland. Technically, the website employs modern JavaScript frameworks and analytics tools including Google Tag Manager, Google Analytics, Facebook Pixel, Matomo, and Olark live chat. The CMS appears to be Pimcore, supporting a responsive and user-friendly design optimized for mobile devices. SEO and accessibility are adequately addressed, though accessibility could be enhanced further. From a security perspective, the site uses HTTPS with good SSL configuration and implements Google reCAPTCHA v3 for bot protection. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy policy or terms of service pages found in the provided content. Overall, the website is trustworthy, professional, and secure with room for improvement in privacy and security policy transparency. The domain registration data aligns well with the website's claims, indicating legitimacy and consistency. Strategic recommendations include publishing comprehensive privacy and security policies, adding security headers, and enhancing accessibility features.

S

SHOFCO

shofco.org

61

SHOFCO is a prominent non-profit organization dedicated to empowering urban slum communities in Kenya through a holistic approach addressing physical, social, and economic needs. The organization mobilizes a large network of social groups to deliver services in community organizing, gender equality, health, education, financial services, and sustainable livelihoods. SHOFCO holds a strong market position as a leading community-based movement with recognized leadership and global accolades such as the UN Nelson Mandela Prize and TIME100 recognition. Technically, the website is built on WordPress with modern plugins and tracking tools, offering good performance and mobile optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though additional security headers and explicit security policies could enhance protection. Privacy compliance is well addressed with clear policies and GDPR consent. Overall, SHOFCO's digital presence reflects a professional, trustworthy, and impactful organization with room for technical and security improvements.

E

eKomi

ekomi-us.com

62

eKomi is a technology company specializing in customer feedback and review management solutions, targeting businesses seeking to enhance their reputation and customer trust. The website is built on WordPress with Bootstrap framework, integrating common analytics and advertising technologies such as Google Analytics and Google Adsense. The site demonstrates a professional design with good content quality and user experience, optimized for mobile devices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers could improve protection. The absence of WHOIS data and lack of explicit privacy policy and contact information reduce overall trust and privacy compliance scores. Strategic improvements in transparency and security practices are recommended to enhance credibility and compliance.

Y

YOUCANBOOKME LTD

youcanbook.me

64

YouCanBookMe Ltd operates a professional online scheduling platform targeting small businesses, teams, and enterprises globally. The company offers a SaaS model with a free trial and paid subscriptions, providing customizable booking pages, payment integrations, notifications, and extensive third-party app integrations. The website is well-designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages HubSpot CMS, AWS DNS, and integrates multiple analytics and marketing tools, demonstrating a modern and scalable infrastructure. Security posture is strong with HTTPS enforcement, domain transfer protections, and cookie consent mechanisms, though DNSSEC is not enabled and incident response contacts are not explicitly published. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

S agence

s-agence.ch

47

S agence is a Geneva-based communication agency specializing in branding, content creation, and digital marketing services. The company serves a diverse clientele including public institutions and private enterprises, positioning itself as a regional leader in creative communication solutions. Their website showcases a professional portfolio and client list, reflecting a strong market presence in the media sector. Technically, the website is built on WordPress with modern SEO and analytics tools, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and professionally maintained.

S

Sabre

sabre.com

62

Sabre is a leading software and technology company powering the global travel industry. It offers a comprehensive suite of products and services targeting airlines, travel agencies, hotels, corporate travel buyers, and travel suppliers. The company focuses on modernizing travel retailing, distribution, and fulfillment through innovative technology solutions and a broad partner ecosystem. Sabre's market position is strong, supported by decades of industry experience and a large enterprise footprint. Technically, the website is built on WordPress with modern JavaScript libraries and integrates key analytics and consent management tools such as Google Analytics, Google Tag Manager, Demandbase, and OneTrust. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and external references support its legitimacy. Overall, Sabre's website reflects a well-established enterprise with strong business credibility and a solid technical foundation. Strategic improvements in security header implementation and transparency around security policies would enhance its security posture and trustworthiness.

S

Spektrum Media

spektrummedia.com

55

Spektrum Media is a small French technology company specializing in web software development, mobile applications, and website creation. The company has an established domain since 2008, indicating a mature presence in its niche market. The website content is minimal and primarily in French, targeting businesses and individuals seeking digital solutions. The technical infrastructure includes usage of JavaScript, Google Analytics, and hosting via Amazon AWS DNS services. However, the site lacks advanced SEO optimization and accessibility features. From a security perspective, the website uses HTTPS but lacks DNSSEC and security headers, which are important for enhancing domain and web application security. There are no visible privacy, cookie, or terms of service policies, which indicates gaps in compliance with GDPR and other privacy regulations. No contact information or incident response details are provided, limiting transparency and trust. Overall, the website demonstrates a basic digital maturity level with room for improvement in security posture, privacy compliance, and content richness. The absence of critical security issues is positive, but the lack of policies and contact details reduces business credibility and user trust. Strategic improvements in security headers, privacy policies, and contact transparency are recommended to enhance the website's professionalism and compliance.

M

MessengerPeople

messengerpeople.com

66

MessengerPeople operates a professional HelpCenter website providing support and documentation for its Messenger Communication Platform and chatbot services. The company is positioned as a medium-sized technology and telecommunications business based in Germany, owned by Sinch. The website is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for analytics. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented. Security posture is good with HTTPS enforced, though some security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found. WHOIS data for the subdomain is unavailable, which is typical and not suspicious. Overall, the website is professional, well-structured, and trustworthy.

P

prointernet GmbH & Co. KG

prointernet.de

56

prointernet GmbH & Co. KG is a well-established full-service internet agency based in Kastellaun, Germany, founded in 1998. The company specializes in web development, design, online shops, and voucher systems, serving a broad business clientele both regionally and worldwide. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the site employs modern web technologies including Matomo and Google Analytics for tracking, along with a consent management platform to ensure GDPR compliance. The site is mobile optimized and SEO friendly, contributing to a positive user experience. Security-wise, the website enforces HTTPS and anonymizes IP addresses in analytics, but lacks explicit security headers and published security policies, which are areas for improvement. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the company.

P

prointernet GmbH & Co. KG

prointernet.com

56

prointernet GmbH & Co. KG is a well-established full-service internet agency based in Kastellaun, Germany, founded in 1998. The company specializes in web development, design, e-commerce solutions, and consulting services, targeting businesses seeking comprehensive digital solutions. Their market position is solid within their regional base with a worldwide client reach, supported by a professional website and active social media presence. Technically, the website employs modern technologies including Matomo and Google Analytics for tracking, Angular for consent management, and uses HTTPS with privacy-conscious configurations. The site is mobile optimized and SEO friendly, providing a good user experience. Security posture is strong with HTTPS and cookie consent mechanisms, though improvements could be made by adding security headers and publishing explicit security policies. Overall, the website is trustworthy, professional, and compliant with GDPR regulations, with no signs of blocking or suspicious activity.

O

Oscarware Inc

oscarwareinc.com

52

Oscarware Inc is a small US-based company specializing in manufacturing and selling high-quality grill toppers designed for outdoor cooking enthusiasts. Established in 1989, the company has a strong niche market presence with products made in the USA, emphasizing quality and safety. Their e-commerce website is professionally designed, featuring clear navigation, product showcases, and customer engagement through recipes and tips. The company leverages modern digital marketing and analytics tools to optimize customer experience and sales. Technically, the website is built on WordPress with WooCommerce, hosted on HostGator, and uses various third-party integrations for marketing and analytics. Security posture is good with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is basic with policies present but limited GDPR indicators. Overall, the website and business demonstrate credibility and professionalism with room for security and compliance improvements.

F

Fullerton Tools MX

fullertontool.mx

48

Fullerton Tools MX is a well-established family-owned manufacturing company specializing in the design and production of solid carbide cutting tools for various industrial sectors. The company operates primarily in Mexico with regional presence linked to the USA and Canada through related domains. Their website reflects a professional and consistent brand image, offering product catalogs, custom tooling services, and client resources. The business model focuses on manufacturing and distribution with value-added services such as just-in-time delivery and tooling calculators. Technically, the website is built on WordPress with WooCommerce and uses modern plugins for SEO, analytics, and user engagement. The site is mobile-optimized and provides clear navigation and content relevant to its target industrial audience. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is evident with accessible privacy and cookie policies. Overall, the website demonstrates a mature digital presence aligned with the company's business operations.

S

Sciencix LAT

sciencixinc.lat

49

Sciencix LAT is a specialized provider of HPLC instrumentation replacement parts and maintenance kits, targeting the Latin American market with Spanish-language content. The company leverages its heritage from CTS, founded in 1985, to position itself as a trusted alternative to OEM parts suppliers. The website demonstrates a solid digital presence using WordPress with standard plugins and modern tracking tools. Security posture is adequate with HTTPS and reCAPTCHA, though improvements like DNSSEC and enhanced security headers are recommended. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

E

eKomi GmbH

ekomi.de

60

eKomi GmbH operates a technology platform focused on collecting and managing customer reviews to enhance business reputation and customer trust. The company targets businesses seeking to leverage customer feedback for marketing and quality improvement. The website is built on WordPress with a moderate technical infrastructure including Google Analytics and Tag Manager for tracking, and Typekit for fonts. The hosting is managed via INWX nameservers, indicating a professional hosting setup. Security posture is limited based on the provided data, with no visible security headers or explicit security policies. Privacy and cookie policies are not detected, which is a compliance gap. Overall, the website is functional and professional but could improve in security and privacy compliance to enhance trust and regulatory adherence.