Security Directory

R

Regeringen och Regeringskansliet

regeringen.se

69

The website regeringen.se serves as the official digital portal for the Swedish government and its administrative offices, providing comprehensive information about government structure, policies, legal documents, and public communications. It targets the general public, government officials, and stakeholders interested in Swedish governance. The site is well-established with a domain age dating back to 1996, reflecting its longstanding role as a government information resource. Technically, the website employs modern web technologies including JavaScript, Matomo analytics for privacy-conscious tracking, and cookie consent management via Cookietractor. The site is hosted by ExcedoNetworksAB and uses HTTPS, ensuring secure communications. The design is professional, mobile-optimized, and accessible, with clear navigation and structured content. From a security perspective, the site demonstrates good practices such as HTTPS usage and cookie consent mechanisms. However, it lacks DNSSEC for DNS security and does not publish explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The security posture is solid but could be enhanced by adding security headers and formal vulnerability disclosure policies. Overall, the website is trustworthy, professional, and safe for general audiences. It effectively fulfills its role as a government information portal with high content quality and business credibility. Strategic improvements in security transparency and DNS security would further strengthen its posture.

T

Textalk AB

prenly.com

62

Prenly is a digital publishing platform operated by Textalk AB, specializing in transforming PDFs into modern e-papers and distributing various digital content such as newspapers, magazines, podcasts, and interactive features. The platform targets publishers and media companies, particularly in Sweden, where it holds a strong market position with 100% of Sweden’s daily newspapers as clients. The website demonstrates a professional and accessible design, with clear navigation and comprehensive content about its services and history. Technically, Prenly employs modern web technologies including React, Tailwind CSS, and Cookiebot for privacy compliance, ensuring a fast and mobile-optimized user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a notable anomaly, but the strong business branding and parent company association mitigate concerns. Overall, Prenly presents as a credible and mature digital publishing solution with room for enhanced security transparency.

S

Sourcegraph, Inc.

sourcegraph.com

66

Sourcegraph, Inc. is a well-established enterprise technology company founded in 2012, specializing in AI-powered software development tools that automate routine coding tasks and provide advanced codebase search capabilities. Their platform targets enterprise development teams, aiming to improve productivity and innovation through AI agents and contextual code understanding. The website reflects a mature digital presence with excellent design, clear navigation, and comprehensive content focused on their key products such as Cody (AI coding assistant) and Code Search. Technically, the site leverages modern web technologies including Webflow CMS, HubSpot forms, and multiple analytics and marketing tools, hosted behind Cloudflare DNS and CDN services. Security posture is strong with HTTPS enforced and secure cookie practices, though some advanced security headers are not explicitly detected. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. The domain registration data aligns well with the business profile, showing a consistent and legitimate presence. Overall, the website demonstrates high professionalism, trustworthiness, and technical maturity.

G

GitLab Inc.

gitlab.io

70

GitLab Inc. operates the website about.gitlab.com, presenting itself as a leading AI-powered DevSecOps platform that integrates planning, development, security, and operations in a single application. The company targets developers, DevOps, and security teams, offering SaaS and self-managed solutions to accelerate secure software delivery. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation. The technical infrastructure leverages modern JavaScript frameworks such as Vue.js and Nuxt.js, with integrations for privacy compliance and marketing tools, indicating a high level of digital maturity. Security posture is strong, with HTTPS enforced, Content Security Policy implemented, and multiple industry certifications including ISO 27001 and SOC 2. The site also features a vulnerability disclosure program and clear incident response contacts, demonstrating a proactive security culture. Overall, the website and domain are trustworthy and professionally managed, with no critical security or compliance issues detected.

N

Numberly

numberly.com

65

Numberly is a well-established marketing technology company founded in 2005 and operating primarily in France. The company specializes in data-driven marketing solutions including people-based marketing, programmatic advertising, CRM, and big data analytics. Their website reflects a mature digital presence with a professional design and clear business focus on B2B clients seeking to optimize marketing investments. Technically, the site uses modern frameworks such as Vue.js and is hosted with reputable providers, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain protections in place, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, Numberly presents a credible and trustworthy business with a strong market position in marketing technology.

S

Sumo Group, Inc.

breezedoc.com

61

BreezeDoc is a newly founded (2024) SaaS company offering a streamlined e-signature and document signing platform targeted at freelancers, agencies, and small businesses. The platform emphasizes speed, ease of use, and affordability, positioning itself as an alternative to larger competitors like DocuSign. Key services include legally binding e-signatures, reusable templates, document tracking, invoicing, and payment integrations with Stripe and PayPal. The company is part of the Sumo Group, Inc. family and leverages partnerships with AppSumo for marketing and sales. Technically, BreezeDoc is hosted on Amazon AWS infrastructure, uses modern web technologies including Bootstrap 5 and Google Tag Manager for analytics and marketing. The website is well-optimized for mobile devices, has good SEO practices, and loads quickly. Security is generally strong with HTTPS enforced and CSRF tokens in forms, though some security headers are not visibly configured and no explicit cookie consent mechanism is present. From a security and compliance perspective, BreezeDoc lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy policy is present but cookie consent is missing, which may impact GDPR compliance. The domain registration is consistent with the business launch timeline and uses a reputable registrar. No suspicious WHOIS or technical indicators were found. Overall, BreezeDoc presents a professional and trustworthy online presence with solid technical foundations but could improve in privacy compliance and security transparency to enhance trust and regulatory adherence.

A

All About Cookies

allaboutcookies.org

71

All About Cookies is an educational website dedicated to online privacy and digital security, focusing primarily on cookies and their management. Established in 2008, it serves a general audience seeking to understand online tracking and privacy issues. The site offers comprehensive guides and research-based content to empower users to navigate the internet safely. Technically, the website employs modern web technologies including JavaScript, TailwindCSS, and integrates Google Analytics and Tag Manager for analytics and marketing. It is hosted with Cloudflare DNS services, ensuring good performance and security. The security posture is strong with HTTPS enforced, security headers likely present, and active use of security monitoring tools like Sentry. However, there is room for improvement in DNS security by enabling DNSSEC and publishing explicit security policies or incident response contacts. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism that aligns with GDPR requirements. Business credibility is supported by the domain's long registration history and consistent WHOIS data, though direct contact information and formal security policies are not publicly available. Overall, the website is professional, trustworthy, and provides valuable privacy education with a solid technical and security foundation.

F

Fight Chat Control

fightchatcontrol.eu

57

Fight Chat Control is a citizen-led advocacy platform focused on opposing the EU's Chat Control proposal, which mandates scanning of all private digital communications including encrypted messages and photos. The website serves as an informational resource and a tool for EU citizens to contact their representatives to protect digital privacy and encryption rights. The platform positions itself as a non-profit entity advocating for fundamental privacy rights within the European Union. Technically, the website is built with standard web technologies including HTML5, CSS3, and JavaScript, without reliance on a CMS or complex frameworks. The site is mobile-optimized and accessible, with a clear navigation structure and multilingual support. However, there is no evidence of advanced analytics, tracking, or advertising technologies, reflecting a privacy-conscious design. From a security perspective, the site lacks explicit security headers and published security policies or incident response contacts. No cookie consent mechanism is present, which may impact compliance with EU regulations. The absence of contact information and vulnerability disclosure policies limits transparency. Nevertheless, the site is served over HTTPS and does not exhibit signs of WAF blocking or malicious content. Overall, the website presents a low-risk profile with a focus on advocacy and information dissemination. Strategic recommendations include enhancing security headers, implementing cookie consent, publishing security and incident response policies, and providing clear contact information to improve trust and compliance.

T

The FreeBSD Project

freebsd.org

67

The FreeBSD Project is a well-established open source operating system initiative powering servers, desktops, and embedded platforms globally. With over thirty years of continuous development by a large community, it holds a strong market position in the technology sector, particularly among developers and system administrators. The project is supported by the FreeBSD Foundation, which facilitates funding and community engagement. The website reflects a mature digital presence with comprehensive documentation, community resources, and regular security advisories. Technically, the site is built using modern static site generation (Hugo), employs HTTPS, and uses minimal tracking analytics, indicating a privacy-conscious approach. Security posture is strong with no visible vulnerabilities, though some security headers could be added to enhance protection. The absence of WHOIS data limits domain registration trust verification but does not detract from the evident legitimacy and professionalism of the project. Overall, the FreeBSD website demonstrates high quality, trustworthiness, and a strong community focus.

C

Codeberg e.V.

codeberg.org

59

Codeberg e.V. operates a non-profit, community-driven platform providing free Git hosting and related services to support free and open source software projects. Founded in 2018 and based in Berlin, Germany, Codeberg positions itself as a privacy-respecting alternative to commercial code hosting platforms, emphasizing no tracking, no third-party cookies, and user data protection. The platform is powered by Forgejo, a fork of Gitea, with custom modifications to suit community needs. Technically, the website demonstrates a modern and performant infrastructure using open source technologies such as Forgejo, JavaScript, and SVG graphics. The site is mobile optimized, accessible, and SEO friendly, with fast load times and a clean design. The domain registration is consistent with the organization's history and location, and the site uses HTTPS with a valid SSL configuration. However, DNSSEC is not enabled, and some security headers are missing, which could be improved. From a security perspective, Codeberg shows a strong commitment to privacy and security best practices, including CSRF protection and client transfer domain lock. There is no evidence of tracking or advertising, and the site provides clear channels for abuse reporting. While no formal security policy or vulnerability disclosure page is found, the organization maintains transparency and community engagement. Overall, Codeberg presents a trustworthy, professional, and privacy-conscious platform with a solid technical foundation and a clear mission to support the open source community. Strategic improvements in security headers, DNSSEC, and formal security documentation would further enhance its security posture and compliance.

O

Optimizely

idio.co

75

Optimizely is a leading enterprise technology company specializing in digital experience platforms that unify content management, digital commerce, and customer intelligence. The website highlights their product rebranding, with Idio now integrated as Optimizely Recommendations, focusing on real-time content personalization to drive revenue. The company targets businesses seeking to optimize customer touchpoints through experimentation and data-driven insights. Technically, the website leverages modern JavaScript frameworks like React, integrates with Azure Application Insights, and uses multiple marketing and analytics tools including Marketo, Google Analytics, and Microsoft Clarity. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie policies, reflecting a mature digital presence. Security posture is strong with HTTPS enforced and use of nonce attributes in scripts, though explicit security headers and vulnerability disclosure mechanisms could be improved. WHOIS data is unavailable, likely due to privacy protection, but the overall trustworthiness and legitimacy of the domain and business are high based on content and branding.

The domain unloadyourself.com currently serves a 404 Not Found error page with minimal content describing the role of Admiral as a service provider for digital publishers. Admiral provides copyright access control, privacy consent management including GDPR compliance, and supports subscriptions and donations. The website content is minimal and does not represent a standalone business site but rather a service endpoint or placeholder. The technical infrastructure is hosted on Google Cloud Platform with DNS managed by AWS Route53, indicating a modern cloud-based setup. Security posture is adequate with HTTPS enforced and frequent certificate rotation, but lacks DNSSEC and security headers. No forms, contact details, or social media links are present, limiting user engagement and transparency. Overall, the site is safe with no adult or explicit content detected but lacks substantive business or marketing content.

N

NAVEX Global Inc.

ethicspoint.com

73

NAVEX Global operates the EthicsPoint platform, providing anonymous and confidential incident reporting services to organizations worldwide. The website serves as a portal for users to file new reports or follow up on existing ones, emphasizing confidentiality and anonymity. NAVEX Global is positioned as a reputable enterprise-level service provider in the ethics and compliance sector, supported by trust seals such as SAS70 Type II and TRUSTe. The site offers extensive multilingual support, enhancing accessibility for a global audience. Technically, the website uses classic ASP pages with JavaScript and jQuery 3.7.1, indicating a mature but somewhat dated technology stack. The site is moderately optimized for performance and mobile use, with basic accessibility features. Security practices include HTTPS usage and secure form input configurations, though explicit security headers are not evident in the provided data. Privacy and cookie policies are clearly linked, supporting GDPR compliance. The security posture is solid but could be improved by adding security headers, explicit incident response contacts, and vulnerability disclosure mechanisms. The absence of WHOIS data is likely due to privacy protection, which is justified given the nature of the service. Overall, the website is trustworthy and professional, with a good balance of usability and security for its purpose.

M

MCH Group AG

mch-group.com

62

MCH Group AG is a well-established global company specializing in creating unique experiences through art fairs, exhibitions, and live marketing solutions. The company operates internationally with a strong presence in the art and event management sectors, offering services such as Art Basel fairs and innovative marketing platforms. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive business information. Technically, the site employs modern analytics and marketing technologies, including Google Analytics, Hotjar, and OneTrust for cookie consent, hosted likely behind Cloudflare infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies could be improved. The absence of WHOIS registration data is a notable concern, impacting domain legitimacy trust. Overall, the site is professional, secure, and compliant with privacy regulations, serving a broad business and art professional audience.

Luigi's Box is a technology company specializing in secure parcel delivery and collection solutions, primarily serving residential and commercial customers in the United Kingdom. Their business model focuses on providing smart parcel lockers to improve last-mile delivery efficiency and security. The website presents a professional and modern digital presence, leveraging WordPress with performance optimizations and standard tracking tools such as Google Analytics and Tag Manager. Security posture is strong with HTTPS enforcement and appropriate security headers, though there is room for improvement in CSP policies and incident response transparency. The absence of WHOIS data raises some concerns about domain registration legitimacy, but the overall website quality and business information suggest a legitimate and trustworthy operation. Strategic recommendations include enhancing security policies, adding vulnerability disclosure mechanisms, and clarifying domain registration details to improve trust.

S

Studio Piksel

studiopiksel.me

54

Studio Piksel is a technology service provider specializing in AI-powered automation, conversion-ready websites, and client funnels tailored for small and medium-sized businesses (SMBs). Their offerings include booking bots and eCommerce systems designed to help local businesses grow efficiently without excessive costs. The website presents a professional and consistent brand image, targeting SMBs seeking smart growth solutions. Technically, the site is built using the Framer platform, leveraging modern web technologies and JavaScript for interactive and responsive design. While the site is accessible and performs moderately well, it lacks comprehensive privacy and cookie policies, as well as explicit contact information, which are important for trust and compliance. Security-wise, HTTPS is enabled, but the absence of security headers and vulnerability disclosures indicates room for improvement. The WHOIS data is privacy protected or unavailable, which is common for small businesses but reduces transparency. Overall, the site demonstrates moderate security posture and business credibility but should enhance privacy compliance and security best practices to improve trust and regulatory adherence.

D

Domaća trgovina d.o.o.

aromamarketi.me

38

Aroma marketi is a medium-sized retail grocery business operating in Montenegro under the legal entity Domaća trgovina d.o.o. The company operates multiple market brands and offers a range of services including retail sales, loyalty programs, delivery, and employment opportunities. The website is well-structured, professionally designed, and targets general consumers in the region. Technically, the site is built on WordPress with modern tracking tools such as Google Tag Manager and Facebook Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks advanced security headers and DNSSEC. Privacy compliance is limited, with no visible cookie consent or comprehensive privacy policy disclosures. Overall, the website is trustworthy and functional but could improve in privacy and security practices.

D

Domains By Proxy, LLC (registrar privacy proxy)

mneplay.me

51

MNE Play is a digital OTT streaming platform primarily serving the Montenegrin public media service RTCG and local broadcasters. It offers live TV and radio streaming, video on demand, and catch-up services accessible globally via internet and dedicated apps on multiple platforms including Android, iOS, smart TVs, and streaming devices. The platform is positioned as the official digital extension of RTCG, targeting general audiences interested in Montenegrin media content. Technically, the website is built on modern web technologies including Next.js and React, leveraging CDN-hosted media assets and optimized image formats like WebP. The platform supports a wide range of devices and operating systems, indicating a mature digital infrastructure. Performance is moderate with good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections such as clientDeleteProhibited status. However, DNSSEC is not enabled and security headers are absent, which are areas for improvement. Privacy compliance is partially met with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism. Contact information is limited to an email address for OTT support. Overall, MNE Play presents a professional and trustworthy media streaming service with solid business credibility and technical foundation. Strategic enhancements in security headers, DNS security, and privacy consent mechanisms would strengthen its security posture and compliance. The platform is safe for general audiences and does not contain adult or explicit content.

I

Inbox IT Solutions

itsinbox.com

47

Inbox IT Solutions is a medium-sized technology company specializing in IT services and software products such as content management systems, media management software, time tracking, and banner management systems. The company has a solid market presence with over 20 years of experience, more than 50 employees, and a broad client and partner base. Their website reflects a professional business focus, targeting other businesses seeking IT solutions and partnerships. Technically, the website employs a modern and diverse technology stack including Java, JavaScript frameworks, Microsoft technologies, and Linux platforms, indicating a mature and versatile infrastructure. The site is mobile optimized and well-structured, though some accessibility features could be improved. Security-wise, the website uses HTTPS but lacks advanced security headers and published security policies, which lowers its security posture. No privacy or cookie policies are present, indicating compliance gaps. Overall, the website is functional and professional but would benefit from enhanced privacy and security measures to improve trust and compliance.

H

風俗広告の法律とルール：安心して利用するために

helplinesnetworkni.com

30

The website helplinesnetworkni.com is a Japanese language informational site focused on the laws and rules surrounding adult entertainment advertising. It appears to serve a niche audience interested in legal compliance within the adult services sector. The site is built on WordPress and uses common web technologies and external ad and analytics services. While the domain is mature and registered with a reputable registrar, the site lacks key privacy and contact information, which impacts its trustworthiness and compliance posture. Security practices are basic, with HTTPS enabled but no DNSSEC or security headers detected. The content is adult-oriented, targeting an adult audience, and the site uses multiple advertising and tracking services.

I

Iterate

iteratehq.com

73

Iterate is a technology company specializing in Customer Insights Management (CIM) through a SaaS platform that enables businesses to collect, analyze, and act on customer feedback via mobile, email, and web surveys. The company is positioned as a leading provider in this niche, serving thousands of customers including well-known brands. Their platform integrates with popular business tools and offers AI-powered features to enhance insights extraction. Technically, the website employs modern web technologies, including Bootstrap, jQuery, and various analytics and marketing tools, hosted behind Cloudflare DNS. Security posture is strong with HTTPS enforcement and recognized certifications such as SOC2, GDPR, CCPA, and HIPAA, though some improvements are recommended in DNSSEC and security headers. Privacy compliance is generally good with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism and explicit incident response contacts. Overall, the website is professional, trustworthy, and well-optimized, with moderate user tracking and good business credibility.

S

Schibsted Sverige

klart.se

66

Klart.se is a leading Swedish weather information portal operated under the Schibsted media group. It provides comprehensive weather forecasts, maps, warnings, pollen and ski weather information targeted primarily at the Swedish-speaking general public. The site integrates with major advertising networks and partners such as Aftonbladet, leveraging a robust digital infrastructure. Technically, the site uses modern JavaScript libraries and tracking tools with good mobile optimization and SEO practices. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, Klart.se presents a professional, trustworthy, and content-rich platform with a high level of business credibility and technical maturity.

The website profolkhogskola.se currently serves a security challenge page that blocks direct access to its main content. This page includes a browser integrity check and an automatic redirect, indicating the presence of a Web Application Firewall or similar security mechanism, likely provided by BitNinja. Due to this blocking, detailed content and business information are not accessible, limiting the ability to fully assess the company's offerings or market position. The domain is registered since 2018 with BeebyteAB, consistent with the hosting provider, suggesting legitimacy but no further registrant details are available. Technically, the site uses outdated CMS technologies including Joomla 1.5 and WordPress 2.5, which are no longer supported and pose security risks. The site lacks visible security headers, HTTPS information, and modern SEO or accessibility features. The presence of a security challenge page improves protection but also limits user experience and content accessibility. From a security perspective, the site shows some basic best practices such as browser integrity checks and automatic redirects, but the lack of DNSSEC, outdated CMS versions, and absence of privacy or cookie policies are notable weaknesses. No contact or business information is presented, reducing trust and compliance posture. Overall, the site scores low on content quality, privacy compliance, and business credibility due to these factors. Strategically, the site should prioritize upgrading its CMS platforms, enabling HTTPS with proper SSL certificates, implementing comprehensive privacy and cookie policies, and improving transparency with contact and business information. Enhancing security headers and DNSSEC would further strengthen its security posture. Until these improvements are made, the site remains limited in trustworthiness and user engagement potential.

P

Luxury Patek Philippe Replica Watches | Swiss Made, Buy Online

patekphilippereplica.io

59

The website www.patekphilippereplica.io operates as an e-commerce platform specializing in the sale of replica Patek Philippe luxury watches. It targets consumers interested in affordable luxury watch replicas, offering a broad catalog with multi-language support and a modern user interface. The business model is focused on direct online sales with no visible physical presence or detailed company information. Technically, the site employs a modern JavaScript framework (Vue.js) with supporting libraries such as Axios and Element UI, ensuring a responsive and user-friendly experience across devices. The site is secured with HTTPS and implements several security headers, indicating a good baseline security posture. However, the absence of WHOIS transparency and lack of explicit contact information reduce the overall trustworthiness. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is functional and professionally designed but lacks some critical trust and compliance elements.

M

MCH Group AG

swissbau.ch

73

Swissbau is a leading trade fair platform in Switzerland for the construction and real estate industry, operated by MCH Group AG. It serves as a major event connecting industry professionals, exhibitors, and partners to showcase innovations and trends. The website demonstrates a mature digital presence with good content quality, professional design, and clear navigation. Technically, it employs modern web technologies, security best practices including HTTPS and security headers, and integrates multiple analytics and marketing tools with user consent mechanisms. However, explicit security policies and incident response contacts are not prominently published, and no vulnerability disclosure program is evident. Overall, the site is trustworthy, GDPR compliant, and well-positioned in its market segment.

S

smartconext AG

smartconext-bau.ch

56

smartconext AG operates a digital platform focused on the Swiss construction and real estate market, providing filtered construction project data, digital application dossiers, and API integrations to facilitate efficient project acquisition for handworkers, manufacturers, and industry players. The company positions itself as a market leader in Switzerland with a comprehensive suite of services tailored to different customer segments. Technically, the website is built on SilverStripe CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Google Analytics, and reCAPTCHA for bot protection. The site is mobile optimized and presents a professional user experience with clear navigation and relevant content. Security posture is good with HTTPS enforced and bot mitigation, but lacks explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is trustworthy and professionally maintained, with room for improvement in compliance and security transparency.

T

TOI TOI AG

toitoi.ch

65

TOI TOI AG is a leading Swiss company specializing in the rental of mobile sanitation solutions including portable toilets, sanitary containers, and related accessories. Positioned as the market leader in Switzerland, the company serves both business and private customers with a comprehensive product range and a customer portal for enhanced service. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in multiple languages tailored for the Swiss market. Technically, the site is built on the Shopware CMS platform, leveraging modern web technologies and Google Tag Manager for analytics and marketing, with appropriate consent mechanisms in place. Security posture is strong with HTTPS enforcement, secure forms, and standard security headers, although incident response contact details and vulnerability disclosure information are not explicitly provided. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the site.

G

Giardina Society

giardina.ch

61

Giardina Society operates a prominent garden living event in Switzerland, recognized as the largest and most important in its sector. The website serves as an information and registration platform for exhibitors and visitors, showcasing event details, images, and related content. The technical infrastructure employs modern web technologies including JavaScript frameworks, Google Tag Manager, and OneTrust for cookie consent, indicating a mature digital presence. Security posture is strong with HTTPS and security headers implemented, though explicit privacy and terms policies are missing. Overall, the site is professional, well-branded, and trustworthy, targeting garden enthusiasts and industry participants.

W

Work-ID AG

skills-manager.ch

50

Work-ID AG operates the Skills-Manager platform, a B2B SaaS solution focused on effective competence management by enabling companies to identify and manage employee skills and talent pools. The website is professionally designed, targeting HR professionals and companies seeking to optimize recruiting and internal talent management. Technically, the site is built on WordPress with modern web technologies including Bootstrap, jQuery, and Google reCAPTCHA for security. SEO and accessibility are well implemented, and the site is mobile optimized. Security posture is solid with HTTPS enforced, security headers present, and a cookie consent mechanism in place, though a dedicated security policy and incident response information are absent. Overall, the domain registration aligns with the business identity, indicating legitimacy and trustworthiness.

C

Canonical, Ltd.

netplan.io

71

Canonical Netplan is a specialized utility developed by Canonical, Ltd. for simplifying network configuration on Linux systems through YAML-based abstraction. Positioned as part of the Ubuntu ecosystem, Netplan targets system administrators and cloud deployment professionals seeking streamlined network setup. The website reflects a professional and consistent brand image aligned with Canonical's reputation. Technically, the site employs modern web standards with JavaScript and CSS, and integrates Google Tag Manager for analytics. While the site is accessible and well-structured, it lacks explicit privacy and terms of service policies, and does not expose contact information or security policies. Security posture is moderate with HTTPS implied but missing security headers and DNSSEC. Overall, the domain registration is consistent and trustworthy, reinforcing the legitimacy of the business and website.

C

Canonical Ltd

charmed-kubeflow.io

74

Canonical Ltd operates the website canonical.com, providing enterprise-ready MLOps solutions centered around Charmed Kubeflow, a fully supported AI and machine learning platform deployable on any cloud or infrastructure. The company is a well-established leader in open source Linux and cloud infrastructure, with a strong market position and a comprehensive portfolio of services including security subscriptions and consulting. The website demonstrates a mature technical infrastructure with modern web technologies, fast performance, and excellent mobile optimization. Security posture is strong with HTTPS enforcement and domain locking, though DNSSEC is not enabled and explicit security policies are not published. Privacy compliance is limited on this page, lacking visible privacy and cookie policies. Overall, the site is professional, trustworthy, and safe for general audiences.

C

Canonical Ltd

microcloud.is

74

Canonical Ltd is a well-established technology company specializing in open source cloud infrastructure solutions, prominently featuring their MicroCloud product which offers lightweight, scalable cloud deployments for edge and private cloud environments. The company holds a strong market position with a comprehensive portfolio including Ubuntu OS, OpenStack, Kubernetes, and enterprise-grade support services. Their website reflects a mature digital presence with professional design, clear navigation, and rich content tailored to enterprise customers seeking scalable cloud infrastructure solutions. Technically, the site employs modern web technologies, optimized for performance and mobile responsiveness, though some security enhancements such as DNSSEC and explicit security headers could be improved. Security posture is solid with HTTPS and domain protection statuses, but lacks visible incident response and vulnerability disclosure information. Overall, the website demonstrates high business credibility and trustworthiness, though privacy compliance could be enhanced by adding explicit privacy and cookie policies. Strategic recommendations include improving privacy transparency, enabling DNSSEC, and publishing security policies to further strengthen trust and compliance.

M

Moneyhouse

moneyhouse.ch

61

Moneyhouse is a Swiss-based business information platform specializing in commercial register and economic data for over 630,000 active Swiss companies. It offers a freemium subscription model with premium access to detailed company and person dossiers, credit reports, and API integration services. The platform is positioned as a leading source for Swiss business data, supported by its parent company Neue Zürcher Zeitung AG, a reputable media organization. The website is professionally designed, multilingual, and targets SMEs and business professionals seeking reliable economic information. Technically, the site uses modern JavaScript frameworks, Google Tag Manager for analytics, and consent management tools to comply with privacy regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, Moneyhouse demonstrates a mature digital presence with good privacy compliance and business credibility.

I

Infopro Digital Schweiz GmbH

infopro-digital.ch

54

Infopro Digital Schweiz GmbH is a Swiss-based B2B media and data solutions provider specializing in the construction industry. The company offers a range of services including media publications, marketing platforms, and a comprehensive construction project database, positioning itself as a leading information provider in the Swiss construction sector. The website is professionally designed, targeting industry professionals and businesses within Switzerland. Technically, the site employs modern JavaScript libraries, Google Analytics, and Google Tag Manager for tracking, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. Privacy compliance is partially met with a privacy policy page but lacks visible cookie consent mechanisms. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

I

Infopro Digital Schweiz GmbH

docu.ch

54

Infopro Digital Schweiz GmbH is a Swiss-based B2B media and data solutions provider specializing in the construction industry. The company offers media, marketing, and data solutions tailored to the Swiss construction sector, positioning itself as a leading information provider with extensive reach and a large construction project database. The website reflects a professional and consistent brand image targeting business customers in the construction industry. Technically, the site employs modern JavaScript libraries and tracking tools such as Google Tag Manager and Google Analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and avoids exposing sensitive data but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy of the website.

The domain boundlessveil.com currently serves a 404 Not Found error page with no accessible business content. The domain is registered with NameCheap, Inc. since August 2022 and is hosted on Google Cloud Platform. The page content indicates it is used by Admiral (getadmiral.com) to provide copyright access control services for digital publishers, but no direct business information or contact details are available on this domain. The technical infrastructure is basic, serving only static content with no forms or tracking scripts. Security practices mentioned relate to Admiral's service rather than this domain specifically. Overall, the website lacks substantive content, privacy policies, or contact information, resulting in a low trust and credibility score.

R

Registry Services, LLC

steam.tv

63

SteamTV is a digital streaming platform focused on broadcasting esports events, particularly for the game CS:GO, integrated within the Steam ecosystem. Operated under Valve Corporation, it leverages Akamai CDN for content delivery and provides community interaction features such as chat. The platform targets gamers and esports enthusiasts, offering live event streaming and integration with Steam user accounts. The website content is minimal, primarily embedding login and chat functionality, with limited visible business or policy information. Technically, the site uses modern web technologies including JavaScript, HTML5, and CSS3, served via Akamai CDN ensuring fast performance and global availability. The platform is optimized for Windows and web browsers with basic mobile responsiveness and accessibility. However, SEO and content richness are limited due to minimal visible content and metadata. From a security perspective, the site enforces HTTPS and domain registration includes protective domain status flags. However, it lacks DNSSEC, security headers, and visible security or privacy policies, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies impacts compliance posture. Overall, SteamTV presents a moderately trustworthy and technically sound platform for esports streaming but would benefit from enhanced transparency in privacy, security policies, and user communication to improve compliance and user trust.

V

Valve Corporation

steamgames.com

68

Valve Corporation operates Steam, a leading digital distribution platform for video games and software. The website serves a global audience of gamers and developers, offering game sales, community features, and hardware products like the Steam Deck. The platform is well-established with a strong market position and a comprehensive service offering. Technically, the site uses modern web technologies, including jQuery and Akamai CDN, ensuring fast performance and mobile responsiveness. Security posture is strong with HTTPS enforcement and security headers, though visible cookie consent and explicit security policies could be improved. Overall, the site demonstrates high professionalism and trustworthiness, supporting a large enterprise-scale operation.

V

Valve Corporation

steamcommunity.com

64

Steam Community, operated by Valve Corporation, is a leading digital platform that facilitates community engagement for gamers worldwide. It offers a rich ecosystem of user-generated content, game hubs, discussions, and marketplace features, supporting millions of users. The platform is tightly integrated with the Steam digital store, providing seamless access to game-related content and social features. The website demonstrates a mature and scalable technical infrastructure leveraging Akamai CDN and modern JavaScript libraries, ensuring fast and responsive user experiences across devices. Security posture is strong with HTTPS enforcement, domain locking, and reputable registrar usage, although DNSSEC is not enabled. Privacy and terms policies are comprehensive and GDPR compliant, though a cookie consent mechanism is not visibly implemented on the community site. Overall, Steam Community is a highly credible and professionally maintained platform with excellent content quality and user engagement.

P

Pensionärernas riksorganisation

pro.se

67

PRO (Pensionärernas riksorganisation) is a well-established Swedish non-profit organization focused on improving the lives of pensioners through community engagement, advocacy, and member services. The website reflects a mature digital presence with a professional design, clear navigation, and relevant content targeted at Swedish retirees. The organization offers a variety of services including membership benefits, educational opportunities, and a popular pensioners' magazine. Technically, the site is built on the SiteVision CMS platform, utilizing modern JavaScript frameworks such as React and jQuery, and demonstrates good mobile optimization and accessibility. Security posture is moderate with cookie consent mechanisms in place but lacks explicit security policies and advanced DNS security features like DNSSEC. WHOIS data confirms the domain's legitimacy and long-standing presence since 1997, consistent with the organization's profile. Overall, the website is trustworthy, compliant with GDPR, and provides a positive user experience for its target audience.

J

Job & Karriere Blog

jobundkarriereblog.ch

46

Job & Karriere Blog is a professional online platform providing valuable career advice, job market insights, and related content primarily targeting German-speaking professionals and job seekers in Switzerland. The website offers a range of articles on topics such as salary negotiation, job market trends, resume writing, and work-life balance, positioning itself as a niche content provider in the career development space. Technically, the site is built on WordPress, leveraging modern web technologies including Bootstrap, jQuery, and Google Tag Manager for analytics and marketing. The site demonstrates good digital maturity with responsive design, SEO optimization, and accessibility considerations. Security-wise, the website enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements, though it lacks explicit security headers and a published security policy. Overall, the site is legitimate, professionally maintained, and safe for general audiences, with no detected vulnerabilities or suspicious indicators.

O

openSUSE Contributors

opensuse.org

63

openSUSE is a well-established open source community project that develops free Linux operating systems for desktops, servers, and containers. The website reflects a mature and professional presence with comprehensive resources, community engagement, and industry sponsorship. The target audience includes Linux users, developers, and IT professionals seeking stable and rolling release Linux distributions. The business model is community-driven with sponsorship support, emphasizing open source principles and free software availability. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with Matomo analytics for privacy-conscious user tracking. The site is well-structured, mobile-optimized, and accessible, providing a positive user experience. However, some security best practices such as explicit security headers and cookie consent mechanisms could be improved. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. The absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms suggests room for enhancement in security transparency and readiness. The WHOIS data is unavailable or privacy-protected, which is typical for open source projects and does not raise immediate concerns given the strong trust signals on the site. Overall, openSUSE.org presents a trustworthy, professional, and community-focused platform with good technical implementation and moderate security posture. Strategic improvements in security policy publication and privacy compliance mechanisms would further strengthen its position.

F

Fedora Project

fedoraproject.org

61

The Fedora Project is a well-established, community-driven open source initiative focused on developing Fedora Linux, a versatile and innovative platform for hardware, cloud, and container environments. The project targets open source enthusiasts, developers, and users seeking a cutting-edge Linux distribution. The website reflects a mature and professional community with extensive resources, documentation, and contributor tools. Technically, the site leverages modern web technologies such as Nuxt.js and SVG graphics, delivering a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS and domain protection statuses, though improvements like DNSSEC and published security policies could enhance trust. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the Fedora Project website demonstrates high business credibility and technical maturity, supporting its position as a leading open source Linux distribution platform.

F

FreshPorts -- The Place For Ports - Most recent commits

freshports.org

69

FreshPorts.org is a specialized online portal dedicated to tracking and displaying the most recent commits to the FreeBSD ports tree. It serves the FreeBSD community, including developers and system administrators, by providing detailed commit information, package updates, and links to official FreeBSD repositories. The site also includes affiliate marketing through Amazon Associates and solicits donations to support its operations. Technically, the website uses standard web technologies including HTML, CSS, JavaScript, and integrates Google Analytics for visitor tracking. The site is accessible without any WAF or blocking mechanisms, indicating open availability to users. Security-wise, the site uses HTTPS and links to official FreeBSD resources, but lacks advanced security headers and formal privacy or cookie policies, which are areas for improvement. The WHOIS data for the domain is malformed and incomplete, limiting the ability to fully verify domain legitimacy, though the content and commit links strongly suggest a legitimate community resource. Overall, the site is functional and relevant to its niche audience but would benefit from enhanced privacy compliance and security best practices.

L

Libera Chat

libera.chat

63

Libera Chat operates as a community-driven IRC network focused on providing a platform for free and open-source software (FOSS) projects and peer-directed communities. The website clearly communicates its mission and services, targeting FOSS communities globally. The business model relies on donations, sponsorships, and merchandise sales, positioning Libera Chat as a key player in the open-source collaboration space. Technically, the website is built using Jekyll, serving static content with modern HTML5, CSS3, and JavaScript, ensuring fast performance and good mobile responsiveness. Security posture is strong with HTTPS enforced, though some security headers are missing and no vulnerability disclosure policy is published. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and transparent with community engagement through published meeting minutes and reports.

A

AMSilk

amsilk.com

57

AMSilk is a biotechnology company specializing in sustainable silk protein innovation aimed at revolutionizing various industries with biogenius materials. The website presents a professional image with clear branding and a focus on sustainable biotech solutions. The technical infrastructure is based on WordPress CMS with modern web technologies and includes a cookie consent mechanism via Cookiebot, indicating some level of privacy awareness. However, the absence of a publicly accessible privacy policy and terms of service, as well as missing WHOIS registration details, slightly detracts from the overall trustworthiness. Security posture is moderate with room for improvement in security headers and explicit data protection policies. Overall, the website is functional, well-designed, and targets industry professionals interested in biotech materials.

A

Automotive News

autonews.com

67

Automotive News is a leading media organization specializing in automotive industry news, including coverage of car manufacturers, dealerships, electric vehicles, and market trends. The website offers a rich content experience with news articles, data centers, events, digital editions, and multimedia such as videos and podcasts. It targets automotive professionals, dealerships, manufacturers, and enthusiasts, operating under the parent company Crain Communications. The site demonstrates a mature digital infrastructure with modern technologies like React, Adobe DTM, and various analytics and marketing tools, ensuring a fast and mobile-optimized user experience. Security posture is strong with HTTPS, security headers, and consent management, though explicit contact and security policy details are limited on the site. WHOIS data is missing or unavailable, which is unusual but the site’s branding and content quality strongly support its legitimacy. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable source for automotive industry information.

A

AppSumo

sumo.com

63

AppSumo is a well-established e-commerce platform founded in 2010 that specializes in offering lifetime deals and discounts on software and digital products targeted primarily at entrepreneurs, small businesses, and marketers. The platform has positioned itself as a leading marketplace in the technology and e-commerce sectors, providing a wide range of productivity, marketing, and content tools without monthly fees. The website demonstrates excellent content quality, professional design, and a consistent brand experience, supported by a large user base and positive trust indicators such as high Google ratings and money-back guarantees. Technically, AppSumo leverages a modern technology stack including React and Next.js frameworks, integrates multiple marketing and analytics tools such as Klaviyo, Facebook Pixel, Google Tag Manager, and Stripe for payments. The site is hosted on infrastructure associated with Amazon Registrar, Inc., likely AWS, ensuring reliable performance and fast loading times. Mobile optimization and accessibility are well implemented, contributing to a positive user experience. From a security perspective, the website enforces HTTPS, employs domain status protections to prevent unauthorized changes, and uses asynchronous loading of third-party scripts to minimize risk. However, DNSSEC is not enabled, and there is no publicly available dedicated security policy or vulnerability disclosure program. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, AppSumo presents a low-risk profile with a strong business credibility and technical foundation. Strategic recommendations include enabling DNSSEC, publishing a dedicated security policy and incident response contacts, and establishing a vulnerability disclosure program to further enhance trust and security posture.

Y

Yandex

yandex.com

76

Yandex is a leading technology company specializing in intelligent products and services powered by machine learning, with a strong market position primarily in Russia and expanding globally. Their offerings include a fast internet search engine, on-demand transportation services, navigation products, and various mobile applications. The company has a long history since 1997 and is publicly listed on NASDAQ, indicating a mature and established business. Technically, the website employs modern JavaScript technologies, performance monitoring, and error tracking, reflecting a high level of digital maturity. Security posture is generally good with HTTPS enforced and domain transfer protections, but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of explicit privacy and cookie policies on the main page. Overall, the website is professional, trustworthy, and well-branded, but could improve transparency and security disclosures to enhance user trust and compliance.

T

Telegram

telegram.org

72

Telegram is a globally recognized cloud-based messaging platform offering fast, secure, and powerful communication services across mobile and desktop devices. The website reflects a mature and professional digital presence with comprehensive content about its services, including multi-device synchronization, encrypted messaging, and an open API. The platform targets a broad general audience seeking secure and versatile messaging solutions. Technically, the site is well-implemented using modern web technologies such as Bootstrap and SVG graphics, hosted on reliable infrastructure with Google Cloud DNS. The website is mobile-optimized and provides a seamless user experience with clear navigation and rich multimedia content. Security posture is strong with HTTPS enforced and domain protections in place, although some improvements such as enabling DNSSEC and publishing explicit security policies could enhance trust further. Privacy compliance is good with a clear privacy policy, but lacks cookie consent mechanisms and terms of service links. Overall, Telegram.org demonstrates high business credibility and technical maturity with minimal security or compliance gaps.