Security Directory

F

Fidutrust Gestion et Conseils SA

fidutrust.ch

50

Fidutrust Gestion et Conseils SA is a Swiss fiduciary and consulting firm established in 1983, based in Fribourg. The company offers fiduciary expertise and consulting services, emphasizing professional ethics and independence through shareholder-managers. Their market position is that of a trusted, established fiduciary firm serving professional and business clients. The website is multilingual and built on WordPress with the Divi theme, showing a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security policy and incident response information. Overall, the site reflects a professional and credible business with room for enhanced security transparency.

A

Allgemeiner Deutscher Fahrrad-Club e. V. (ADFC)

adfc.de

65

The Allgemeiner Deutscher Fahrrad-Club e. V. (ADFC) operates as a large non-profit organization advocating for cycling and sustainable transportation in Germany. With over 240,000 members, it holds a strong market position as the world's largest cycling interest group. The website serves as a comprehensive platform offering membership services, advocacy information, event announcements, and educational content focused on cycling safety and infrastructure. The target audience includes cyclists, policymakers, and environmentally conscious individuals in Germany. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including Matomo analytics and Facebook Pixel for tracking with user consent. The site is well-optimized for mobile devices, accessible, and SEO-friendly, reflecting a mature digital infrastructure. The presence of cookie consent mechanisms and a detailed privacy policy indicates good privacy compliance. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent for tracking scripts. However, explicit security headers like Content-Security-Policy are not evident, and no formal security policy or incident response contacts are published. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional, trustworthy, and well-maintained, supporting the organization's mission effectively. The domain WHOIS data is minimal but consistent with the organization's legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen security posture.

V

v2com newswire

v2com-newswire.com

68

v2com newswire is a specialized media distribution service focused on architecture, design, and lifestyle sectors. It offers press release distribution, media relations, and related services to architects, designers, journalists, and editors worldwide. The company positions itself as a leader with 30 years of experience and a large international media network. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting a niche professional audience. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, reCAPTCHA, and uses Ruby on Rails framework. It integrates multiple marketing and tracking tools, indicating a mature digital infrastructure. Performance and SEO are good, with responsive design and accessibility features. From a security perspective, the site uses HTTPS, CSRF tokens, and reCAPTCHA for form security. However, it lacks explicit security headers, privacy and cookie policies, and incident response information. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or registration issues, which impacts trustworthiness. Overall, the website is functional, professional, and trustworthy in content and design but would benefit from improved transparency in privacy, security policies, and domain registration information to enhance credibility and compliance.

S

Statsforvalteren

statsforvalteren.no

66

Statsforvalteren.no is the official website of the Norwegian government agency representing the state in various counties. The agency is responsible for implementing parliamentary and governmental decisions, acting as a liaison between municipalities and central authorities. The website provides comprehensive information about the agency's services, news updates, job postings, and access to various public forms and complaint mechanisms. It targets Norwegian citizens, public officials, and municipalities, offering content primarily in Norwegian with options for English and other Norwegian dialects. Technically, the website employs a modern technology stack including Bootstrap for responsive design, Azure Application Insights, Hotjar, and Maze Analytics for user behavior tracking and performance monitoring. The site is well-structured with good SEO and mobile optimization, though it lacks a visible cookie consent mechanism. The site uses HTTPS with no detected security vulnerabilities in the content or scripts. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The WHOIS data is unavailable due to Norid's privacy policies for .no domains, which is typical and not suspicious for Norwegian government domains. Overall, the site is trustworthy, professional, and safe for general audiences. Strategically, the site would benefit from implementing a cookie consent banner to comply fully with privacy regulations, publishing clear security and incident response policies, and enhancing accessibility features to improve inclusivity and compliance.

H

House Of Builders

houseofbuilders.no

62

House Of Builders operates as an innovative showroom and meeting place within the Norwegian construction industry, targeting professionals and companies in this sector. The website presents a professional image with good SEO and structured data, reflecting a small but focused business established in 2017. The technical infrastructure is based on WordPress, utilizing common libraries and plugins such as jQuery, Bootstrap, FontAwesome, and Cookiebot for cookie consent management. Google Analytics is employed for visitor tracking, indicating moderate user tracking levels. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of a published privacy policy and terms of service pages represents compliance gaps. No WAF or blocking mechanisms were detected, and no suspicious or malicious content was found.

T

teuto.net Netzdienste GmbH

teuto.net

72

teuto.net Netzdienste GmbH is a German-based IT service provider specializing in Kubernetes, cloud, and hosting solutions. Founded in 1996, the company offers a broad portfolio including managed Kubernetes, bare-metal hosting, private and public cloud services, consulting, and data science platforms. Their market position is that of a specialized regional provider with a strong focus on modern container orchestration and cloud infrastructure technologies. The website reflects a professional and consistent brand image targeting businesses and IT professionals seeking advanced infrastructure solutions. Technically, the website is built on WordPress with the Divi theme, leveraging modern SEO and analytics tools such as Yoast SEO, Matomo, and Google Tag Manager. Hosting and DNS are managed via InterNetX GmbH and Cloudflare respectively, ensuring good performance and security. The site is mobile-optimized and accessible with good SEO practices. From a security perspective, the site uses HTTPS with a good SSL configuration and employs clientTransferProhibited status on the domain to prevent unauthorized transfers. While security headers are not explicitly detected, the site uses reCAPTCHA and cookie consent mechanisms, indicating awareness of security and privacy best practices. No critical vulnerabilities or exposed sensitive data were found. However, enabling DNSSEC and additional security headers would enhance the security posture. Overall, the website and domain demonstrate a high level of trustworthiness and professionalism. The business is compliant with GDPR, provides clear contact information, and maintains transparency in domain registration. The risk profile is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing DNS security, publishing a formal security policy, and continuous monitoring of third-party components.

M

Moratti & Söhne AG

morattisoehne.ch

48

Moratti & Söhne AG is a well-established Swiss construction company founded in 1905, offering a comprehensive range of construction and related services including high-rise construction, civil engineering, road construction, excavation, demolition, remodeling, transport, and building materials supply. The company targets private individuals, businesses, and public sector clients primarily in the Gstaad and Saanen regions. Their website reflects a professional and consistent brand image with clear service descriptions and multiple physical office locations, supporting their regional market position. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and uses performance optimization tools like WP Rocket. It integrates Google Analytics and Google Maps APIs for analytics and location services. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some accessibility features are basic, and there is room for improvement in SEO and security headers. From a security perspective, the site uses HTTPS with good SSL configuration and anonymizes IPs in Google Analytics, indicating some privacy awareness. However, it lacks important security headers and does not provide explicit security policies or incident response contacts. There is no cookie consent mechanism, which may affect GDPR compliance. No vulnerabilities or suspicious patterns were detected in the visible content. Overall, the website is trustworthy and professional with a solid business presence. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance their security posture and regulatory adherence.

D

Dinas Lingkungan Hidup Provinsi Daerah Istimewa Yogyakarta

dlhdiy.id

54

Dinas Lingkungan Hidup Provinsi Daerah Istimewa Yogyakarta operates as the official government environmental agency for the Yogyakarta Special Region in Indonesia. The agency focuses on environmental management including waste disposal, pollution control, and public environmental education. The website serves as a portal for public information, service requests, and news updates related to environmental activities in the region. The site targets local residents, government stakeholders, and environmental partners. Technically, the website employs modern web technologies such as Laravel Livewire, Swiper.js, and Cloudflare DNS services, providing a responsive and user-friendly experience. However, the domain WHOIS data shows an anomalous future creation date, which raises questions about data accuracy but does not necessarily undermine the site's legitimacy given the government affiliation and consistent content. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional and trustworthy for its intended audience but would benefit from enhanced security and privacy compliance measures.

D

Dinas Lingkungan Hidup Provinsi Aceh

dlhbali.id

53

Dinas Lingkungan Hidup Provinsi Aceh operates as a government environmental agency responsible for managing environmental preservation, waste management, pollution control, and public services related to environmental issues in Aceh Province, Indonesia. The website serves as an official portal providing information, news, and services to residents and stakeholders. The site is well-structured with clear navigation and contact information, targeting the general public and government stakeholders. Technically, the website employs modern web technologies including Laravel Livewire, Alpine.js, and Swiper.js, hosted behind Cloudflare DNS services. The site is mobile optimized and offers a good user experience with moderate performance. However, some SEO and accessibility features could be improved. From a security perspective, the site uses HTTPS and has domain transfer protection enabled, but lacks DNSSEC and important security headers. There is no published privacy, cookie, or incident response policy, which limits compliance with privacy regulations. The WHOIS data raises concerns due to a future domain creation date and registrant mismatch, which may indicate registration anomalies. Overall, the website is functional and professional but requires improvements in privacy compliance, security headers, and domain registration transparency to enhance trust and security posture.

C

Convergence Media

convergencemedia.fr

57

Convergence Media is a French digital communication and marketing agency specializing in serving SMEs, artisans, independents, and liberal professions. With over 15 years of experience, the agency offers a comprehensive suite of services including digital strategy, SEO, social media management, editorial content, video production, and print media. Their market position is that of a trusted, client-focused agency with a multi-lever approach to enhancing client visibility and brand reputation. The website reflects a professional and consistent brand image with clear service offerings and client testimonials, indicating a solid reputation in their sector. Technically, the website is built on CMS Made Simple and leverages modern web technologies such as Bootstrap, jQuery, Vimeo API, and Matomo analytics. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is strong with HTTPS enforced and secure form handling, though some security headers are missing and no explicit security policy or incident response information is published. Overall, the security posture is good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is mostly addressed with a clear privacy policy and GDPR references, but lacks a cookie consent mechanism. The WHOIS data is unavailable, which slightly reduces trust but the professional presentation and contact transparency mitigate concerns. Strategically, the agency should enhance security headers, implement cookie consent, and publish security and incident response policies to improve compliance and trust. Regular audits of third-party scripts and continued focus on privacy will further strengthen their security and compliance stance.

Verbandsgemeinde Prüm operates as a local government administrative body in Germany, providing a comprehensive range of public services and information to residents and visitors within its jurisdiction. The website serves as an official portal offering news, event updates, citizen services, and tourism information, positioning itself as a trusted regional authority. The target audience primarily includes local citizens, businesses, and tourists seeking official information and services. The business model is centered on governmental public service and community engagement.

T

The Ogoh Ogoh Museum Indonesia

theogohogohmuseum.id

56

The Ogoh Ogoh Museum Indonesia is a cultural institution dedicated to preserving and educating about the Balinese Nyepi tradition through its collection of Ogoh-Ogoh statues. The website serves as an informational platform targeting a general audience interested in Balinese culture and heritage. The museum operates as a small entity within the government or non-profit sector, with a recent founding date consistent with the domain registration in 2025. Technically, the website is built on WordPress with common plugins like Yoast SEO and uses Cloudflare for DNS services. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. Security posture is basic with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies, and no contact information or incident response channels are provided. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures to improve trust and user confidence.

V

Villa Bukit Hambalang Lokasi Outbound Camping Favorit di Sentul

villabukithambalang.id

55

Villa Bukit Hambalang is a hospitality business specializing in outdoor activities such as outbound events, camping, and gatherings located in Sentul, Bogor, Indonesia. The website positions itself as a favored location for companies, schools, communities, and families seeking nature-based event experiences. The business offers comprehensive facilities including camping areas, swimming pools, multipurpose halls, and large outdoor fields. The site is built on WordPress with SEO optimization via Yoast plugin and uses common web technologies like jQuery and FontAwesome. Hosting and DNS services are managed through Cloudflare, enhancing performance and security. However, the domain WHOIS data shows an unusual future creation date, which may indicate a newly launched or test site. No privacy, cookie, or terms of service policies are present, and no direct contact information is provided on the homepage, which may affect user trust and compliance.

G

Groupe Jolival

groupe-jolival.com

54

Groupe Jolival is a French transport and logistics group comprising three specialized subsidiaries: Jolival, ALS, and Ripoche. Established since 1948, the group offers a wide range of transport services including pallet transport, dedicated vehicle rental, and specialized avian logistics. The company operates primarily in France with some European reach, targeting businesses requiring transport and logistics solutions. The website is professionally designed using WordPress and Elementor, featuring clear navigation, structured data, and multilingual metadata in French. The digital infrastructure includes modern tracking and consent tools such as Google Tag Manager and Axeptio for cookie management. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with visible policies and consent mechanisms. Overall, the site reflects a credible and established business with a medium-sized market presence.

C

Convergence Media

cvgmedia.fr

57

Convergence Media is a French digital communication agency specializing in integrated marketing services including SEO, social media, editorial content, video production, and print media. With approximately 15 years of experience, the agency targets SMEs, artisans, independents, and liberal professionals, positioning itself as a trusted partner for multi-channel digital visibility and brand development. The website reflects a professional and consistent brand image with comprehensive service offerings and client testimonials, indicating a solid market presence in the media sector. Technically, the website is built on CMS Made Simple and leverages modern web technologies such as Bootstrap, jQuery, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized with good SEO practices and a moderate performance profile. Security posture is generally good with HTTPS enforced and secure form handling, though the absence of security headers and explicit cookie consent mechanisms suggests room for improvement. The WHOIS data is unavailable, which slightly impacts trustworthiness but does not detract significantly from the overall legitimacy given the professional content and contact transparency. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, Convergence Media presents a credible and professional digital presence with strong business and technical foundations, though enhancements in security headers and privacy compliance would further strengthen its posture.

E

Erwachsenenbildung Seetal

eb-seetal.ch

48

Erwachsenenbildung Seetal is a small non-profit adult education association based in the Seetal region of Switzerland. The organization offers a broad and diverse range of adult education courses including languages, fitness, cultural activities, and crafts. Their website is built on Joomla CMS and provides a well-structured, content-rich platform targeting adult learners in the local community. The site includes downloadable course programs, news updates, and contact forms for course proposals and inquiries. The presence of a local sponsor (Raiffeisen bank) adds to their community credibility. Technically, the website uses modern web technologies such as Joomla, Bootstrap, and FontAwesome, with a responsive design that supports mobile users adequately. While the site performs moderately well, there is room for improvement in accessibility and SEO. Security-wise, the site uses HTTPS and includes CSRF tokens, but lacks explicit security headers and a cookie consent mechanism, which are important for compliance and protection. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements in security headers, privacy compliance, and incident response policies are recommended. The domain uses privacy protection for WHOIS data, which is justified for a small non-profit. The website content is safe for general audiences with no adult or explicit material. The business credibility is high given the clear mission, sponsor support, and professional presentation. Strategic recommendations include implementing security headers, adding cookie consent, publishing a security policy, enhancing accessibility, and maintaining up-to-date software to strengthen security and compliance.

G

Gemeinde Altbüron

altbueron.ch

50

The website altbueron.ch serves as the official digital presence of the municipality of Altbüron in Switzerland. It provides comprehensive information about local governance, community events, societal services, education, building and environmental matters, as well as leisure and mobility options. The site targets residents and visitors seeking municipal services and community engagement. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries such as jQuery, Modernizr, and Owl Carousel, and integrates Google Maps API for location services. The design is professional, mobile-optimized, and accessible, with clear navigation and structured content. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and formal policies such as privacy and cookie policies. No incident response or data protection officer contact information is provided, which are areas for improvement. Overall, the website is trustworthy and legitimate, consistent with its governmental role, but could enhance privacy compliance and security posture to better protect users and meet regulatory standards.

J

Jolival - Entreprise de transport et logistique

transports-jolival.com

59

Transports Jolival is a well-established family-owned transport and logistics company based in the Maine-et-Loire region of France, founded in 1948. The company offers a diversified fleet and a broad range of services including transport, distribution, vehicle rental, logistics, and flow management. It positions itself as a trusted regional leader with a strong emphasis on client satisfaction and sustainable practices. The website reflects a mature digital presence with clear service descriptions, client portals, and active social media engagement. Technically, the site is built on WordPress with Elementor, uses modern tracking and consent tools, and is secured with HTTPS. However, it lacks explicit published security policies and incident response information, which are areas for improvement. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

MainAd is a performance marketing company specializing in dynamic advertising solutions powered by machine learning and customer journey data. Their flagship product, LOGICO, optimizes ad placements in real-time bidding environments to boost campaign performance globally. The company targets businesses seeking to enhance conversion rates and optimize media spend through tailored digital marketing strategies. Technically, the website is built on WordPress with standard SEO and analytics integrations, demonstrating moderate digital maturity. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks advanced security headers and explicit privacy or cookie policies. The absence of WHOIS data raises concerns about domain legitimacy, though the professional website and global campaign presence suggest an established business. Overall, the site is functional and professional but would benefit from improved transparency and security practices.

E

E-monsite

e-monsite.com

61

E-monsite is a French-based online platform specializing in website creation for individuals and businesses, offering free and professional website, blog, and e-commerce store creation without requiring coding skills. The platform targets a broad audience from beginners to experts, emphasizing ease of use, SEO optimization, and customizable design themes. The website is well-structured, content-rich, and professionally designed, reflecting a mature digital presence. Technically, the site uses modern web technologies including Bootstrap 4, jQuery, and integrates Google Analytics and Tag Manager for traffic analysis. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is partially addressed with a privacy policy and GDPR indicators, but lacks a visible cookie consent mechanism. WHOIS data is unavailable, which slightly reduces domain trustworthiness but the business presence and certifications like E-confiance support legitimacy. Overall, the site demonstrates a solid business and technical foundation with room for minor security and privacy enhancements.

P

PPDB Kota Kediri Persyaratan, Jalur, dan Tips Sukses Masuk Sekolah Favorit

ppdbkedirikota.id

56

The website 'PPDB Kota Kediri Persyaratan, Jalur, dan Tips Sukses Masuk Sekolah Favorit' serves as an educational information portal focused on student admissions in Kediri city, Indonesia. It provides guidance, news, and tips related to school admissions, targeting students, parents, and local educational stakeholders. The site is built on WordPress with common plugins and uses Cloudflare DNS services. The content is well structured, recent, and relevant to its audience, with good mobile optimization and SEO practices. However, the site lacks critical privacy and cookie policies, contact information, and security headers, which impacts its compliance and security posture. The domain WHOIS data shows inconsistencies with a future creation date and registrant being a registrar company, which slightly lowers trust but does not indicate malicious intent. Overall, the website is functional and informative but requires improvements in privacy, security, and transparency to enhance trust and compliance.

P

PT Nusa Toyotetsu Corporation

ptntc.id

53

PT Nusa Toyotetsu Corporation operates a website focused on disseminating government-related news and social service information primarily targeting Indonesian audiences. The website presents multiple news articles dated in late 2025, indicating active content updates. The business model centers on information provision and public engagement through digital channels. The company appears to be a small-sized entity founded in 2025, with no parent or subsidiary companies identified. The website branding is consistent and content quality is good, though trust indicators such as certifications or testimonials are absent. Technically, the website is built on WordPress CMS, utilizing common libraries such as jQuery, FontAwesome, and Slick Carousel. Hosting is supported by Cloudflare DNS services, though DNSSEC is not enabled. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and good SEO optimization via Yoast SEO plugin. However, no advanced security headers are detected, and no explicit SSL configuration details are available from the data. From a security perspective, the site lacks key policies such as privacy, cookie, and terms of service, which impacts compliance posture. No incident response or security contact information is provided. The WHOIS data reveals inconsistencies, notably a domain creation date set in the future relative to content dates, which raises legitimacy concerns. DNSSEC absence and lack of security headers further reduce the security posture. No adult or unsafe content is present, and no WAF or blocking mechanisms were detected, allowing full content access. Overall, the website presents a functional and content-rich platform with moderate technical maturity but notable gaps in security and privacy compliance. Strategic improvements in security policies, WHOIS data accuracy, and contact transparency are recommended to enhance trust and compliance.

P

Pengajaran Muda Indonesia

gurumuda.id

54

Pengajaran Muda Indonesia is an educational initiative focused on empowering young teachers in Indonesia through training, collaboration, and innovative teaching methods. The website serves as an information hub and news platform related to education and government social services. Technically, the site is built on WordPress with common plugins like Yoast SEO and uses Cloudflare DNS for domain resolution. The site is mobile optimized and has good SEO practices but lacks advanced accessibility features and security headers. Security posture is moderate with HTTPS enabled but missing DNSSEC and security policies. The domain is very recently registered under a digital business registrar, which slightly reduces trust. Overall, the site is functional and professional but would benefit from improved privacy compliance and security transparency.

P

Panti Rukmi Merawat dengan Hati, Membangun Masa Depan

pantirukmi.id

44

Panti Rukmi is a newly established Indonesian non-profit organization focused on providing shelter and care for vulnerable populations including children and the elderly. The website serves as an informational platform to communicate their mission and services to the local community. The organization appears to be in early stages, with domain registration in August 2025 and content dated October 2025. Technically, the website is built on WordPress with common plugins such as Yoast SEO and uses Cloudflare for DNS management, indicating a basic but modern infrastructure. Security posture is moderate with HTTPS enabled but lacks advanced DNS security and security headers. Privacy and compliance documentation are absent, which is a gap for trust and regulatory adherence. Overall, the site is accessible, well-structured, and provides relevant content for its audience but requires improvements in security and compliance to enhance credibility and protection.

K

Kbri Singapura Indonesia

kbrisingapura.id

53

Kbri Singapura Indonesia operates as an official government portal providing information and services related to passport renewal and immigration for Indonesian citizens in Singapore. The website serves as a digital interface to facilitate access to embassy services, targeting Indonesian nationals and the general public requiring consular assistance. The business model is centered on government service delivery and information dissemination, positioning itself as a trusted source for official embassy-related processes. Technically, the website is built on WordPress CMS, utilizing common plugins such as Yoast SEO for search engine optimization and standard JavaScript libraries like jQuery and Slick Carousel for UI enhancements. The site is hosted behind Cloudflare DNS services, ensuring reliable DNS resolution, though the actual hosting provider is not explicitly identified. The website demonstrates moderate performance with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS, ensuring encrypted communication. However, it lacks DNSSEC, security headers, and visible incident response or vulnerability disclosure mechanisms. No privacy or cookie policies are present, which may impact compliance with data protection regulations. The absence of explicit contact information and security policies suggests room for improvement in transparency and user trust. Overall, the website is functional and professional, serving its intended government service role effectively. Strategic enhancements in security headers, privacy compliance, and contact transparency would strengthen its security posture and user confidence.

A

Asuransi Allianz Indonesia

asuransiallianz.id

43

Asuransi Allianz Indonesia presents itself as an insurance service provider offering life, health, and investment insurance products targeted at families in Indonesia. The website is built on WordPress with Yoast SEO plugin, indicating a moderate level of digital maturity. The site content is well-structured and professionally branded, but lacks critical compliance documents such as privacy and cookie policies, as well as contact information. The domain WHOIS data raises concerns due to a future creation date and registrant mismatch, impacting trustworthiness. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the website is functional and informative but requires improvements in compliance, transparency, and security to enhance credibility and trust.

S

Sahaalah Indonesia

sahaalah.id

54

Sahaalah Indonesia operates a niche halal tourism website offering syariah-compliant travel packages and comfortable bus transportation primarily targeting Muslim families, schools, and communities in Indonesia. The website is built on WordPress with standard SEO optimizations and uses Cloudflare DNS services. The digital maturity is moderate with good content quality and mobile optimization but lacks advanced security configurations and privacy compliance features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers. No privacy or cookie policies are published, and no direct contact information is provided, which limits trust and compliance. The domain is newly registered in 2025, consistent with the website's content timeline, but WHOIS registrant data shows the registrar as registrant, which is common but slightly reduces trust.

K

Kantor Kesehatan Pelabuhan

kkpsurabaya.id

45

Kantor Kesehatan Pelabuhan Surabaya operates as a government health authority providing essential health and quarantine services at the main port of Surabaya, Indonesia. The website serves as an informational portal detailing their mission to monitor health conditions of passengers, crew, and goods to prevent infectious disease spread. The site targets the general public and stakeholders involved in port health and safety. Technically, the website is built on WordPress with common plugins such as Yoast SEO and jQuery, hosted behind Cloudflare DNS but lacks DNSSEC. The site is moderately optimized for performance and mobile use, with good SEO practices but basic accessibility features. Security posture is adequate with HTTPS enabled but lacks security headers and DNSSEC, and no privacy or cookie policies are present, indicating compliance gaps. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the domain registration is legitimate and consistent with the website's purpose and content timeline. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and security.

C

Call-Up Communication & Design

call-up.ch

50

Call-Up Communication & Design is a Swiss-based web design agency specializing in affordable and professional web solutions for small and medium-sized enterprises (KMU) across Switzerland. With over 20 years of experience and more than 650 customer projects completed, the company offers a comprehensive range of services including web design, CMS implementation (notably Contao), e-commerce solutions, hosting, SEO, and online marketing. Their market position is that of a trusted local agency with a strong portfolio and client references. Technically, the website is built on modern web standards with a CMS backend, uses common JavaScript libraries, and is mobile optimized with good SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though some security headers and explicit policies are missing. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and well-aligned with the business claims. Recommendations include enhancing privacy compliance with cookie consent, publishing a security policy, and adding incident response contacts to improve trust and compliance.

G

Gedtrans

gedtrans.com

60

Gedtrans operates a specialized SaaS platform focused on transport document management, targeting transport subcontractors and orderers primarily in France and Europe. The platform facilitates the collection, verification, and real-time tracking of legal transport documents, helping clients comply with regulatory obligations and streamline their operational processes. With over 12,000 customers annually and a 5-year market presence, Gedtrans positions itself as a leader in its niche. Technically, the website is built on WordPress with modern frameworks like Bootstrap and jQuery, integrating essential tools such as Google reCAPTCHA for form security and Matomo for analytics. The site demonstrates good mobile optimization, SEO practices, and GDPR compliance through cookie consent mechanisms and a comprehensive privacy policy. From a security standpoint, the site enforces HTTPS and employs standard best practices, though it lacks explicit HTTP security headers and a published security policy or incident response plan. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain introduces a minor trust concern but does not detract significantly from the overall legitimacy given the professional presentation and business consistency. Overall, Gedtrans presents a secure, compliant, and professionally managed online presence suitable for its business domain, with recommendations to enhance security headers and incident response transparency to further strengthen trust and resilience.

FlectraHQ operates as an open-source ERP and CRM software provider, offering a comprehensive suite of business management tools including sales, marketing, accounting, inventory, and human resources modules. The company targets businesses seeking customizable and integrated ERP/CRM solutions, positioning itself as a niche player in the open-source software market since its domain registration in 2016. The website content is well-structured, detailing extensive features and industry applications, reflecting a mature product offering. Technically, the website is built on the Flectra CMS/framework, utilizing modern web technologies such as Bootstrap and FontAwesome, with Cloudflare DNS services and Tawk.to live chat integration. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with deferred loading of JavaScript assets. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. No privacy or cookie policies were found, indicating gaps in privacy compliance. No incident response or vulnerability disclosure information is published, which could impact trust and security readiness. Overall, the website is professional and content-rich, with moderate security posture and privacy compliance. Strategic improvements in security headers, privacy policies, and incident response transparency would enhance trust and compliance.

Sportschule Tennis Academy GmbH operates a specialized tennis training and facility business in Switzerland, targeting a broad audience from toddlers to seniors and from beginners to top athletes. The website presents core services including a tennis academy and indoor tennis halls with multiple courts and an indoor golf facility. The business is positioned as a local sports education and facility provider with a small company size and a focused service offering. Technically, the website is built on the Flectra CMS platform, utilizing modern web technologies such as Google Analytics and Google Tag Manager for user tracking. The site is moderately optimized for mobile devices and has basic SEO and accessibility features. Performance is moderate with no critical technical issues detected. However, the site lacks advanced security headers and explicit privacy or cookie policies. From a security perspective, HTTPS is enabled and CSRF tokens are present in scripts, indicating some security awareness. Nonetheless, the absence of security headers, privacy policies, and incident response contacts represents gaps in compliance and security maturity. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is functional and moderately professional but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

S

SN-Verlag Michael Steinert

holzforummagazin.de

54

Holz-Forum Magazin is a specialized German media publication focusing on daily news and developments in the wood industry and construction sectors. Operated by SN-Verlag Michael Steinert, it offers digital news, magazine issues, subscriptions, and advertising services targeting professionals in these industries. The website demonstrates a consistent brand presence and provides comprehensive contact information for editorial, advertising, and reader services. Technically, the site employs modern web standards with HTTPS, uses Matomo for privacy-conscious analytics, and integrates a newsletter subscription service via Rapidmail. However, it lacks a visible cookie consent mechanism and security headers, which are areas for improvement. The security posture is generally good with no visible vulnerabilities or exposed sensitive data. Overall, the site is professional, trustworthy, and well-positioned within its niche market.

G

GRAUTHOFF Türengruppe

grauthoff.com

52

GRAUTHOFF Türengruppe is a medium-sized German manufacturing company specializing in high-quality doors and door systems. With over 65 years of tradition, the company offers a broad product range including real wood, lacquered, CPL, and glass doors, targeting both end consumers and business clients. The website demonstrates a strong market position with professional branding, interactive tools such as a product finder, and virtual showroom tours. Technically, the site is built on WordPress with AMP technology, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS and secure forms, though explicit security policies and incident response details are absent. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. However, the absence of WHOIS domain registration data raises some concerns about domain legitimacy, warranting further verification. Overall, the site is professional, trustworthy, and well-optimized, supporting the company's business objectives effectively.

G

Gesamtverband Deutscher Holzhandel e. V. (GD Holz)

azubi-competition.de

34

The website azubi-competition.de is operated by the Gesamtverband Deutscher Holzhandel e. V. (GD Holz), a German wood trade association. It promotes a video competition aimed at apprentices in the wood trade sector, focusing on climate protection themes. The site is well-structured, professionally designed, and targets a niche audience of trainees and industry stakeholders. The business model is non-profit and educational, supporting industry awareness and engagement. The website uses modern WordPress technologies with Elementor and Astra theme, hosted on kasserver.com. It demonstrates good digital maturity with mobile optimization and SEO best practices. Security posture is solid with HTTPS and no obvious vulnerabilities, though some security headers and policies could be improved. Privacy compliance is good with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and aligned with its business purpose.

O

OPmobility

opmobility.com

61

OPmobility is an enterprise-level automotive supplier specializing in sustainable and connected mobility solutions. The company positions itself as a leader in the automotive sector, offering a range of products and services including exterior and lighting components, modules, fuel systems, hydrogen and fuel cell technologies, and software solutions. The website targets industry professionals, partners, investors, and customers interested in innovative and sustainable automotive technologies. Technically, the website is built on WordPress using modern frameworks such as Bootstrap and Divi Builder, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks visible security headers and explicit security policies. The absence of WHOIS data reduces transparency but the professional presentation and comprehensive privacy compliance indicate a legitimate business. Overall, the site is well-structured and trustworthy, though improvements in security disclosures and contact information visibility are recommended.

G

GedMouv

gedmouv.com

63

GedMouv is a specialized B2B platform offering shared traceability solutions for the transport and logistics industry, enabling real-time data exchange and delivery tracking among customers, carriers, and drivers. The company operates under the parent entity B2PWeb and targets transport companies, freight forwarders, and shippers primarily in France. The website is professionally designed using WordPress with modern technologies such as Bootstrap, jQuery, and slick carousel, and integrates multiple analytics and marketing tools with GDPR-compliant consent mechanisms. Security posture is solid with HTTPS and reCAPTCHA usage, though improvements in HTTP security headers and explicit security policies are recommended. The absence of WHOIS data for the domain raises some concerns about domain legitimacy, but the overall business presence and content quality support a trustworthy profile.

M

M. DESAX AG

mdesaxag.ch

54

M. DESAX AG is a Swiss family-owned company established in 1999 specializing in the sale, rental, and installation of construction elevators and transport platforms. The company serves the Swiss construction and event markets with a broad product range including transport platforms, material elevators, and rope winches. Their market position is solid with a large rental fleet and references from significant projects, indicating reliability and expertise. Technically, the website uses a proprietary CMS (admiralCX) with modern technologies such as jQuery, FontAwesome, Google Analytics, and Cookiebot for cookie consent management. The site is well-structured, mobile-optimized, and provides clear contact information. Security posture is good with HTTPS and standard security headers, but lacks explicit security policies or incident response contacts. Privacy compliance is supported by a detailed cookie consent mechanism, though no dedicated privacy policy page was found in the provided content. Overall, the website is professional, trustworthy, and suitable for its target audience.

M

Motionmill webdesign Antwerpen

motionmill.com

53

Motionmill is a well-established web and communication agency based in Antwerp, Belgium, specializing in WordPress web design, branding, marketing, storytelling, and business solutions. The company positions itself as a full-circle 360° marketing agency targeting businesses seeking growth through digital and offline channels. The website reflects a professional and consistent brand image with clear service offerings and a focus on client results. Technically, the site is built on WordPress with modern frameworks and performance optimizations, hosted by WPorters. Security posture is solid with HTTPS enforced and domain registration showing legitimacy and longevity. Privacy compliance is well implemented with cookie consent and GDPR-aligned policies. However, explicit security policies and incident response contacts are not publicly available, which could be improved. Overall, the site is trustworthy, user-friendly, and well-optimized for SEO and mobile devices.

B

Bauhaus Universität Weimar

bauhaus4.eu

59

Bauhaus4EU is a European University Alliance hosted by Bauhaus Universität Weimar, offering a broad range of interdisciplinary courses and academic activities across ten European universities. The alliance focuses on innovative education in sustainability, digital transformation, culture, and leadership, targeting students, academics, and university staff. The website is built on TYPO3 CMS and uses modern web technologies to provide a rich user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced but lacks some security headers and cookie consent mechanisms. The domain WHOIS data is privacy protected under EURid policy, which is typical for .eu domains and does not indicate suspicious activity. Overall, the website is trustworthy, professional, and well-positioned as an educational alliance platform.

Studierendenwerk Thüringen is a public law institution dedicated to supporting students in Thuringia, Germany, by providing essential services such as student housing, university dining facilities, financial aid administration, counseling, and cultural programs. The organization serves multiple universities in the region and is a key player in the local education support ecosystem. The website reflects a well-structured and professional digital presence with clear navigation and comprehensive service information tailored to its student audience. Technically, the site employs modern web technologies including Bootstrap, jQuery, and ConsentFriend for cookie management, hosted on Robhost servers. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a detailed privacy policy and cookie consent banner adhering to GDPR requirements. Overall, the site is trustworthy, accessible, and professionally maintained, supporting the organization's mission effectively.

Gemeinde Riehen operates as the official municipal government website for the community of Riehen in Switzerland. It provides residents and visitors with comprehensive information about local services, cultural events, education, environmental initiatives, and political administration. The site positions itself as a trusted source for community engagement and municipal governance. Technically, the website is built on the Weblication® CMS platform, utilizing common web technologies such as jQuery and FontAwesome, and demonstrates good mobile optimization and accessibility. Security posture is adequate with HTTPS enabled and secure form handling, but lacks advanced security headers and explicit privacy and cookie policies, which are areas for improvement. Overall, the website is professional, trustworthy, and serves its public sector role effectively, though it should enhance privacy compliance and security transparency to meet modern standards.

T

Transpolis

transpolis.fr

55

Transpolis is a specialized transportation safety and innovation center based in France, offering services such as crash testing, vehicle testing, sensor development, and simulation. The company operates two proving grounds and holds ISO 9001 certification as well as official Euro NCAP laboratory status, positioning it as a reputable player in the automotive safety testing market. The website is built on WordPress with Elementor, leveraging modern web technologies and providing a good user experience with mobile optimization and clear navigation. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although privacy policy and terms of service documents are missing, representing compliance gaps. Overall, the website reflects a professional and trustworthy business with room for improvement in privacy transparency and incident response disclosures.

S

Syndicat du Pneu

syndicatdupneu.org

53

The Syndicat du Pneu website represents a well-established French trade association dedicated to the tire industry, active since 1929. It serves as a representative body for manufacturers, distributors, wholesalers, and equipment suppliers within France. The website provides industry-related information and resources, targeting professionals in the tire sector. The business model is centered on advocacy, networking, and industry representation, positioning the Syndicat du Pneu as a key stakeholder in the French tire market. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search optimization and Burst Statistics for analytics. The site demonstrates good mobile optimization and moderate performance. The technical infrastructure is modern and standard for professional association websites, with no major technical debt or outdated components detected. From a security perspective, the site enforces HTTPS and uses standard security practices, though it lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong, with GDPR-aligned privacy and cookie policies and consent mechanisms in place. However, WHOIS data is privacy protected, limiting domain registration transparency. Overall, the website is professional, secure, and compliant, with a low risk profile. Strategic recommendations include enhancing security headers, publishing incident response policies, and improving WHOIS transparency to bolster trust further.

F

Febetra

febetra.be

45

Febetra is a well-established Belgian federation representing transporters and logistics service providers, founded in 1996. The organization provides professional assistance, legal support, and information services to its members, positioning itself as a key player in the Belgian road transport sector. The website reflects this professional stature with comprehensive content, clear navigation, and multiple contact channels. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates essential tools such as Google Analytics and Tag Manager for analytics and marketing. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

B

Börsenvereinsgruppe

boersenvereinsgruppe.de

57

The Börsenvereinsgruppe website serves as the digital presence for a key organization supporting the German book industry. It provides comprehensive information about the group's mission to foster cultural, economic, and legal frameworks for the book market, alongside education and event services. The site targets professionals, career entrants, apprentices, and students interested in the book sector. Technically, the website employs modern web technologies including Bootstrap and FontAwesome, is hosted by Anexia, and features responsive design and accessibility considerations. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and headers. The domain registration is consistent and trustworthy, with no privacy protection masking ownership, aligning well with the organization's transparency. Overall, the site is professional, content-rich, and trustworthy, supporting the group's role as a central industry stakeholder.

M

MVB GmbH

isni-service.de

59

MVB GmbH operates as an official ISNI agency providing services to uniquely identify authors and creators in the book trade, enhancing product visibility. The company holds a strong market position within the German media and publishing sector, offering key services such as ISNI search and registration, metadata management, and related book trade solutions. The website reflects a professional and consistent brand image targeting publishers, authors, and book trade professionals. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and integrates third-party services such as Google Tag Manager and CookieFirst for consent management. Hosting is managed via Anexia, indicated by the nameservers. The site is mobile optimized with good SEO practices and moderate performance. From a security perspective, the site enforces HTTPS and uses consent mechanisms for cookies, but lacks explicit security headers and publicly available security policies or incident response information. No vulnerabilities or suspicious content were detected. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR. Overall, the website is trustworthy and professionally maintained with a high legitimacy score. Strategic improvements include implementing security headers, publishing a security policy, and adding a security.txt file to enhance transparency and incident response readiness.

S

Home

swiss-sailing-league.ch

9

The Swiss Sailing League website serves as an informational and promotional platform for a niche sports league focused on sailing activities in Switzerland. The site primarily provides basic content about the league and links to its social media channels. The technical infrastructure is based on Joomla CMS with standard web technologies such as FontAwesome and Google Fonts. HTTPS is properly configured, and basic security measures like CSRF tokens are implemented, indicating a reasonable security posture for a small organization. However, the site lacks critical compliance elements such as privacy and cookie policies, contact information, and security headers, which limits its overall trustworthiness and compliance standing. There are no signs of malicious content or blocking mechanisms, and the content is safe for general audiences.

S

Stadt Uster

uster.ch

61

Stadt Uster operates as the official municipal government website for the city of Uster, Switzerland. It provides comprehensive information and services to residents, businesses, and visitors, including online administrative services, event announcements, and local news. The site targets a broad audience within the community and supports civic engagement through accessible contact and feedback channels. The business model is centered on public service delivery and community information dissemination. Technically, the website employs modern web technologies including Matomo for analytics, ES modules for JavaScript, and a Swiss-based CMS platform (i-web). The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting appears to be local to Switzerland, enhancing data sovereignty and compliance. From a security perspective, the site enforces HTTPS, uses secure login forms, and implements privacy and cookie policies with user consent mechanisms. However, it lacks a dedicated security policy or incident response contact information, and no advanced security headers were detected. No vulnerabilities or suspicious content were found, indicating a solid security posture appropriate for a government website. Overall, Stadt Uster's website is a trustworthy, professional, and well-maintained digital presence for the municipality. It effectively balances user experience, privacy compliance, and security, though it could benefit from enhanced transparency around security policies and incident response procedures.

E

Eidgenössischer Jodlerverband

ejv.ch

47

The Eidgenössischer Jodlerverband is a Swiss non-profit association dedicated to promoting traditional Swiss yodeling and related cultural activities. The organization offers educational courses, organizes events and festivals, and provides resources such as a music club for its members and the wider community interested in Swiss folk music. The website reflects a focused cultural mission with a clear target audience of choirs, instructors, and enthusiasts. The business model is typical for a non-profit cultural association, relying on membership, events, and educational offerings. The site positions itself as a key national entity in the Swiss folk music scene.