Security Directory

S

StorifyMe GmbH

storifyme.com

69

StorifyMe GmbH operates a technology platform specializing in mobile-native storytelling formats such as Stories, Shorts, Snaps, and Ads, designed to enhance user engagement and monetization for apps and websites. The company targets a broad range of clients from startups to large enterprises, positioning itself as a leader in visual content creation and distribution. The website demonstrates strong branding, client trust signals, and a comprehensive suite of services aimed at digital marketing and content innovation. Technically, the site leverages modern web technologies including Webflow CMS, GSAP animations, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and HubSpot, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly disclosed. The absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy, but the overall professional presentation and client endorsements support a trustworthy business profile. Strategic recommendations include enhancing security transparency, publishing incident response contacts, and improving direct contact availability to further strengthen trust and compliance.

J

Jooce Digital Agency

jooce.ch

60

Jooce Digital Agency is a small, local digital agency based in Geneva, Switzerland, specializing in web development, IT assistance, and digital solutions tailored for local businesses. The company positions itself as a trusted local partner emphasizing Swiss quality and personalized service. Their website is professionally designed using modern technologies such as React and Next.js, hosted on Vercel, and optimized for performance and mobile devices. Structured data is well implemented to enhance SEO and local business visibility. However, the website lacks critical compliance and security documentation such as privacy policies, cookie consent mechanisms, and incident response information. No contact emails or phone numbers are explicitly provided, which may impact user trust and business credibility. Overall, the site is secure with HTTPS and no visible vulnerabilities, but improvements in privacy compliance and transparency are recommended.

M

MSC Croisières

msccroisieres.fr

76

MSC Croisières is a major cruise line company operating in France, offering vacation cruises in the Mediterranean, Caribbean, Emirates, and worldwide. The website reflects a well-established business with a strong market position and a comprehensive range of cruise-related services including booking management, onboard experiences, and special offers. The parent company is MSC Cruises S.A., indicating a large international presence. Technically, the website uses modern web technologies including Vue.js, Google Tag Manager, and advanced consent management tools, hosted likely on Akamai infrastructure. The site is well-optimized for mobile and SEO, with good user experience and professional design. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not found. WHOIS data is missing, which slightly reduces trust but the overall digital footprint and branding strongly support legitimacy. Strategic recommendations include enhancing security header implementation, publishing incident response contacts, and adding vulnerability disclosure information.

I

Infomaniak Network SA

infomaniak.events

64

Infomaniak Events is an established online platform operated by Infomaniak Network SA, focused on promoting and ticketing a wide range of events including concerts, festivals, theatre, and workshops primarily in Switzerland. The website offers a comprehensive catalog of events with detailed descriptions, dates, and locations, targeting a broad audience interested in cultural and entertainment activities. The business model revolves around event ticket sales and event promotion services, positioning itself as a key regional player in the Swiss event ticketing market. Technically, the website employs modern web technologies including JavaScript, Web Components, and Laravel Livewire framework, ensuring a responsive and user-friendly experience across devices. The site is hosted likely by Infomaniak, a reputable Swiss hosting provider, and uses HTTPS with a valid SSL configuration. While the site shows good SEO and accessibility basics, there is room for improvement in security headers and explicit terms of service documentation. From a security perspective, the site demonstrates a solid posture with HTTPS enforcement and no visible sensitive data exposure. The presence of reCAPTCHA v3 indicates protection against automated abuse. However, the absence of explicit security headers and limited contact information for incident response or data protection officers suggests areas for enhancement. Privacy compliance is well addressed through a comprehensive privacy policy linked to the parent company’s main site, with GDPR compliance evident. Overall, the website presents a trustworthy and professional front with a strong focus on user experience and privacy. The lack of WHOIS registrant data is mitigated by the business’s established brand and consistent content. Strategic recommendations include enhancing security headers, publishing clear terms of service, and providing more explicit contact channels for security and privacy inquiries to further strengthen trust and compliance.

P

Pictet

pictet.com

70

Pictet is a well-established independent investment partnership specializing in wealth management, asset management, and asset servicing. With over 200 years of history, it holds a leading position in the financial services industry, targeting high net worth individuals and institutional clients. The website reflects a mature and professional digital presence, leveraging Adobe Experience Manager as its CMS and integrating advanced analytics and consent management tools. The technical infrastructure is modern and optimized for performance and accessibility, with strong mobile responsiveness and SEO practices. Security posture is robust with HTTPS enforcement and consent mechanisms, although explicit security headers could be further verified. The absence of WHOIS data introduces some uncertainty regarding domain registration transparency, but the overall business credibility and website quality strongly indicate legitimacy. Strategic recommendations include enhancing security header visibility, publishing explicit security policies, and maintaining rigorous third-party script audits.

S

Swissstaffing

swissstaffing.ch

56

Swissstaffing is the national association representing Swiss recruitment agencies, providing industry representation and member services. The website is professionally designed, targeting recruitment agencies and stakeholders in Switzerland. The technical infrastructure includes modern web technologies such as HTML5, CSS3, JavaScript, Google Tag Manager, and Cookiebot for cookie consent management. The site uses HTTPS and implements security best practices including security headers and Google reCAPTCHA. However, explicit privacy policy and terms of service pages are not found in the analyzed content, which is a compliance gap. The site integrates multiple third-party analytics and marketing services, indicating extensive user tracking. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and contact transparency.

C

Cloudinary

cloudinary.com

70

Cloudinary is a leading cloud-based media management platform founded in 2011, specializing in image and video upload, storage, optimization, and delivery via APIs and CDN. The company targets developers, IT teams, marketers, and enterprises across various industries, providing scalable and AI-powered media solutions. The website reflects a mature digital presence with comprehensive product information, strong branding, and clear navigation. Technically, the site leverages modern web technologies including WordPress CMS, Bootstrap framework, and integrates analytics and marketing tools such as Google Analytics and LinkedIn Insight Tag. Security posture is solid with HTTPS enforced and no exposed sensitive data, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR indicators. Overall, Cloudinary demonstrates a high level of professionalism, technical maturity, and business credibility.

T

Touring Club Schweiz (TCS)

tcs.ch

73

Touring Club Schweiz (TCS) is a well-established Swiss mobility club founded in 1909, offering roadside assistance, member benefits, and mobility-related services to a broad Swiss audience. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its members and potential customers. Technically, the site uses modern JavaScript libraries, consent management tools, and analytics platforms, hosted on a secure HTTPS infrastructure with strong security headers and privacy compliance mechanisms. Security posture is solid with no detected vulnerabilities or exposed sensitive data, though explicit security policies and incident response information could be enhanced. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and Swiss data protection standards.

V

Volkswagen AG

volkswagen-newsroom.com

69

Volkswagen Newsroom is a corporate media platform operated by Volkswagen AG, providing press releases, images, videos, and media contacts primarily targeting journalists, bloggers, and media multipliers. The site serves as an official channel for disseminating the latest news and information about Volkswagen's models, technology, and corporate activities. The platform is well-branded, professionally designed, and optimized for accessibility and mobile use, reflecting Volkswagen's strong market position as a leading automotive manufacturer. Technically, the site employs modern web technologies including JavaScript, lazy loading, and Matomo analytics with user consent, ensuring a balance between performance and privacy. Security posture is good with HTTPS enforced and some security headers present, though additional headers could enhance protection. Privacy compliance is robust with clear policies and consent mechanisms. However, WHOIS data is unavailable, which is unusual but does not detract from the site's legitimacy given the corporate branding and content. Overall, the site is trustworthy, professional, and well-maintained.

V

Volkswagen Group

volkswagenag.com

72

Volkswagen Group is a leading global automotive manufacturer with a broad portfolio of brands including Volkswagen, Audi, Porsche, Bentley, Lamborghini, and others. The company is focused on innovation, sustainability, and shaping the future of mobility through its strategic roadmap extending to 2035. The website reflects a mature digital presence with comprehensive corporate information, investor relations, media resources, and career opportunities. Technically, the site employs modern web technologies, including Matomo analytics with user consent, lazy loading images, and responsive design, ensuring good performance and accessibility. Security posture is strong with HTTPS enforced and privacy mechanisms in place, though some security headers could be improved and explicit security policies published. The absence of WHOIS data limits domain registration transparency but the website's professional presentation and official social media presence support its legitimacy. Overall, the site is well-structured, trustworthy, and compliant with privacy regulations.

E

EveryWare AG

everyware.ch

71

EveryWare AG is a well-established Swiss IT service provider specializing in cloud, hosting, datacenter, network, and managed IT services. The company positions itself as a leading provider in Switzerland with over 25 years of experience, offering comprehensive business IT solutions focused on public, hybrid, and private cloud environments. Their services cater primarily to Swiss businesses and IT organizations seeking secure, scalable, and sovereign cloud and IT infrastructure solutions. The website reflects a professional and consistent brand image with detailed service offerings and customer success stories, reinforcing their market position. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized, well-structured, and performs moderately well. Privacy and cookie policies are clearly presented with consent mechanisms in place, demonstrating good compliance with GDPR requirements. However, explicit security policies and incident response contacts are not publicly available, which could be improved. From a security perspective, the site enforces HTTPS and uses privacy-focused tools but lacks visible advanced security headers and a dedicated vulnerability disclosure policy. No vulnerabilities or suspicious content were detected. WHOIS data confirms the legitimacy of the domain registration, consistent with the company’s Swiss identity and business history. Overall, EveryWare AG’s website presents a trustworthy, professional, and compliant digital presence suitable for its target market. Strategic improvements in security transparency and incident response communication would further enhance their security posture and customer trust.

B

bbv Software Services AG

bbv-software.de

59

bbv Software Services AG is a well-established Swiss software and consulting company specializing in digital consulting, software engineering, and digital transformation services. Founded in 1995, the company serves a broad range of clients, focusing on delivering scalable digital businesses, innovative digital experiences, and sustainable software products. Their market position is strong within Switzerland, supported by a medium-sized team and a comprehensive portfolio of services including AI consulting, cloud services, cybersecurity, and data management. The website reflects a professional and consistent brand image with multilingual support and rich content tailored to business clients. Technically, the website is built on WordPress with modern plugins and tools such as WPBakery Page Builder, Google Tag Manager, HubSpot, and LinkedIn Insight Tag. It employs standard web technologies including JavaScript and jQuery, and integrates multiple analytics and marketing tools with a robust cookie consent mechanism ensuring GDPR compliance. The site demonstrates good performance, mobile optimization, and accessibility features. From a security perspective, the site uses HTTPS with strong SSL configuration and employs Google reCAPTCHA to protect forms from spam. While some security headers are not explicitly detected, the overall security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management system. However, the site could improve by publishing explicit security policies and incident response contacts. Overall, bbv Software Services AG presents a trustworthy and professional online presence with strong business credibility, good technical implementation, and solid privacy and security practices. The risk level is low, and the company is well-positioned to maintain compliance and security in its digital operations.

D

Domaine des Trois Étoiles

trois-etoiles.ch

58

Domaine des Trois Étoiles is a small Swiss vineyard and wine producer located in Peissy, Switzerland, specializing in organic wine production certified by Bio Suisse. The company operates an e-commerce platform hosted on Shopify, offering a selection of wines including Chardonnay, Merlot, Rosé de Gamay, and Amprô. The website is professionally designed with consistent branding and clear navigation, targeting mature wine consumers primarily in the Swiss region. The business model focuses on direct-to-consumer online sales complemented by local events such as the Saint-Martin de Peissy celebration. Technically, the site leverages Shopify's platform and CDN infrastructure, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and use of hCaptcha for form protection, though explicit security headers and vulnerability disclosure mechanisms are absent. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness.

C

Chopard

chopard.com

76

Chopard is a prestigious Swiss luxury brand specializing in high-end watches and jewellery, with a rich heritage dating back to 1860. The website serves as an official platform showcasing their exclusive products and brand story, targeting affluent consumers globally. The site demonstrates a mature digital presence with modern e-commerce capabilities powered by Salesforce Commerce Cloud, integrating personalization and analytics tools such as Google Tag Manager and CQuotient. Security measures include HTTPS enforcement, reCAPTCHA for form protection, and a comprehensive cookie consent mechanism, reflecting a strong commitment to user privacy and data protection. However, the absence of publicly available WHOIS registrant data introduces a minor transparency concern, though the overall brand trust and website professionalism mitigate this risk. Strategic recommendations include publishing explicit security policies and incident response contacts to enhance trust and compliance.

Cartier is a globally recognized luxury jeweller and watchmaker established in 1847, operating a professional e-commerce website targeting luxury consumers primarily in Finland for this localized site. The website offers a comprehensive catalog of fine watches, jewellery, leather goods, and related luxury products, supported by personalized customer service and boutique locators. Technically, the site is built on Adobe Experience Manager, leveraging Akamai CDN and modern JavaScript frameworks, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS, security headers, and secure payment integrations, though no explicit security policy or vulnerability disclosure is present. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The WHOIS data is unavailable publicly, likely due to privacy protection, but the site’s professional presentation and brand consistency support legitimacy. Overall, the site scores highly on content quality, technical implementation, and security, with minor recommendations for enhanced transparency and accessibility.

The International Institute in Geneva (IIG) is a private higher education institution based in Switzerland offering accredited undergraduate, graduate, and doctorate programs primarily in business administration, international relations, computer science, and digital marketing. The institution maintains strong international partnerships, notably with the University of Plymouth in the UK, enabling dual degree offerings. The website is professionally designed with clear navigation and comprehensive program information targeting prospective students and academic professionals. Technically, the site employs modern JavaScript libraries and tracking tools such as HubSpot and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, though security headers and incident response information could be enhanced. Privacy and cookie policies are present and GDPR compliant, reflecting a mature privacy stance. Overall, the website reflects a credible and established educational entity with a strong market position in international higher education.

H

Hotel Eurener Hof Betriebs GmbH

eurener-hof.de

45

Hotel Eurener Hof Betriebs GmbH operates a hospitality business located in Trier, Germany, offering hotel accommodations, multiple restaurants, spa and wellness facilities, and event hosting services. The website positions the company as a regional hospitality provider with a strong focus on quality and guest experience, supported by recognition such as being listed among the Top 50 Hotelrestaurants in Germany for 2025 by OpenTable. The target audience includes tourists, families, and wellness seekers visiting the Mosel region. Technically, the website uses a custom CMS with modern JavaScript, Google Analytics for tracking, and a consent management platform to comply with privacy regulations. The site is mobile optimized and SEO friendly with structured data markup enhancing search visibility. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, providing clear contact information and transparent policies.

L

Landidyll Weinhotel Klostermühle

klostermuehle-saar.de

54

Landidyll Weinhotel Klostermühle is a family-run boutique hotel located in Ockfen/Saar, Germany, specializing in wine tourism and regional culinary experiences. The business offers hotel accommodations, a restaurant with regional specialties, wine tastings from its own vineyard, and various leisure activities such as hiking and cycling. The website reflects a strong regional identity and targets tourists interested in nature and wine culture in the Saar and Mosel regions. The company holds multiple certifications that emphasize quality and accessibility, enhancing its market position as a trusted regional hospitality provider. Technically, the website is built on a modern CMS platform (likely Shopware), utilizing JavaScript frameworks, SVG icons, and video content to deliver a rich user experience. It integrates advanced analytics tools including Matomo and Google Analytics 4, alongside a consent management platform to comply with privacy regulations. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and multilingual support. From a security perspective, the website enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business claims, showing consistent domain registration and no privacy protection, indicating transparency and legitimacy. Overall, the website demonstrates a high level of professionalism, content quality, and compliance with privacy standards, making it a trustworthy digital presence for the hospitality business. Strategic improvements in security headers and incident response disclosures could further enhance its security posture.

H

HerzogsPark GmbH & Co. KG

herzogspark.de

54

HerzogsPark GmbH & Co. KG operates a 4-star superior hotel located in Herzogenaurach near Nürnberg, Germany. The hotel specializes in business and seminar accommodations, offering modern event spaces, themed rooms inspired by sports heritage, wellness facilities, and dining options. The website reflects a well-established hospitality business targeting both corporate clients and leisure travelers, including sports teams and families. The company maintains a strong market position with trust certifications and a best price guarantee, enhancing customer confidence. Technically, the website is built on a modern stack likely powered by Shopware CMS, incorporating JavaScript frameworks such as Swiper.js for UI components and Google Analytics for visitor tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices. Consent management is implemented via a recognized platform, ensuring GDPR compliance. From a security perspective, the site enforces HTTPS and integrates cookie consent mechanisms. While some security headers are not explicitly visible, the overall posture is strong with no evident vulnerabilities or exposed sensitive data. The domain registration data aligns with the business identity, supporting legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant, providing a positive user experience and strong business credibility. Strategic recommendations include enhancing security headers, continuous monitoring of third-party scripts, and maintaining up-to-date privacy practices to adapt to evolving regulations.

S

SAVOY

savoy.de

54

SAVOY is a luxury hotel located in the heart of Cologne, Germany, offering upscale accommodation, spa and wellness services, dining, and event facilities. The website reflects a strong market position in the hospitality sector, targeting discerning travelers seeking premium experiences. The digital infrastructure employs modern web technologies including Matomo analytics and a consent management platform, indicating a mature approach to user privacy and data collection. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

N

Nils Henkel

nils-henkel.com

54

Nils Henkel is a renowned culinary expert specializing in modern vegetable cuisine with a strong focus on sustainability and seasonal ingredients. The business operates primarily in the hospitality sector in Germany, offering cookbooks, consulting services, cooking courses, and restaurant kitchen concept development. The website reflects a professional and consistent brand image with rich content and clear contact information. Technically, the site uses modern JavaScript frameworks, a custom CMS, and integrates consent management and Google Analytics, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and consent mechanisms, but lacks explicit security headers and incident response information. The absence of WHOIS data raises concerns about domain registration legitimacy, though the active and professional online presence mitigates some risk. Overall, the site scores well on content quality, privacy compliance, and business credibility, with recommendations to improve security headers and verify domain registration.

H

Hotel Weingut Weis

hotel-weis.de

54

Hotel Weingut Weis is a family-owned 4-star hotel located in the Ruwertal region near Trier, Germany, offering accommodation, wellness spa services, culinary experiences, and wine tourism through its own winery. The website is professionally designed, well-structured, and targets tourists seeking relaxation, cultural activities, and wine enjoyment. Technically, the site uses modern web technologies including Shopware CMS, Google Analytics 4, and consent management platforms, ensuring GDPR compliance and a good user experience across devices. Security posture is solid with HTTPS and consent mechanisms, though some security headers and policies could be improved. Overall, the domain and website content align with a legitimate hospitality business with strong trust indicators and no suspicious elements.

B

BODY BALANCE Physiotherapie

physiotherapie-bodybalance.de

40

BODY BALANCE Physiotherapie operates modern physiotherapy practices in Leipzig and Zwenkau, Germany, offering a broad range of therapeutic services including manual therapy, neurological treatments, and wellness massages. The business targets patients seeking professional physiotherapy and rehabilitation services, positioning itself as a trusted local healthcare provider with strong partnerships in the medical and academic sectors. The website is professionally designed, mobile-optimized, and provides clear, comprehensive information about services, locations, and contact options. Technically, the site is built on WordPress with modern SEO and cookie management plugins, hosted on kasserver.com, and employs HTTPS with good security practices. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Security posture is solid with no visible vulnerabilities, though some security headers could be improved. Overall, the website reflects a credible, trustworthy healthcare business with a strong digital presence.

P

PerNaturam GmbH

pernaturam.de

56

PerNaturam GmbH operates a German-based e-commerce platform specializing in natural animal nutrition and supplements for dogs, cats, horses, and poultry. The company emphasizes natural ingredients, quality control, and veterinary recommendations, positioning itself as a trusted provider with over 30 years of experience. The website supports multiple languages and offers rich educational content including blogs, podcasts, and webinars, enhancing customer engagement and expertise sharing. Technically, the site employs modern analytics tools such as Matomo and Google Analytics with consent management, ensuring compliance with privacy standards. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though some security headers could be improved. Contact information is clearly presented, but formal privacy policies and terms of service were not found in the provided content. Overall, the site is professional, trustworthy, and well-structured, serving a niche retail market effectively.

D

Denkmalz Disibodenberger Kapellenbrauerei GmbH

denkmalz.de

52

Denkmalz Disibodenberger Kapellenbrauerei GmbH operates a niche hospitality and retail business focused on craft beer production and event hosting in a historic chapel in Bad Sobernheim, Germany. The website serves as a digital storefront and information portal for their brewery, event location, and online shop. The company targets a general adult audience with a focus on mature customers due to alcohol sales. Technically, the site is built on the Shopware e-commerce platform, leveraging modern JavaScript libraries and consent management tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, featuring clear contact details and legal disclosures.

B

Bellevue Hotelbetriebs GmbH

bellevue-boppard.de

54

Bellevue Hotelbetriebs GmbH operates a well-established hospitality business located in Boppard am Rhein, Germany. The company offers upscale hotel accommodations, gastronomy, wellness, event hosting, and regional tourism experiences. The website reflects a strong market position as a premium family-run hotel with a tradition dating back to 1887, targeting tourists and travelers seeking quality services in the Mittelrhein region. The digital presence is professional, with clear navigation, multi-language support, and comprehensive content about their offerings. Technically, the website leverages modern web technologies including Shopware CMS, JavaScript libraries such as Swiper and Flatpickr, and integrates Google Analytics and Tag Manager for analytics. The site is mobile optimized and includes a consent management platform for GDPR compliance. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies, and contact information is readily available. The WHOIS data aligns with the business information, indicating a legitimate and trustworthy domain registration. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements could include enhancing security headers and publishing incident response information to further strengthen security posture and trust.

M

Möbel Preiss GmbH & Co. KG

moebel-preiss.de

57

Möbel Preiss GmbH & Co. KG operates a medium-sized retail and e-commerce business specializing in furniture, kitchens, and home decoration based in Kastellaun, Germany. The company offers a broad product range including living room, bedroom, kitchen furniture, lighting, and home accessories, supported by a large physical showroom and an online shop with secure payment options. Their market position is that of a regional leader with a strong local presence and growing digital footprint. The website reflects a professional and user-friendly design with clear navigation and relevant content targeting general consumers interested in home furnishings. Technically, the website employs modern JavaScript libraries and tracking technologies such as Google Analytics 4, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, all managed with user consent mechanisms. The site uses a proprietary or custom CMS framework named Website22 and demonstrates good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and integrates cookie consent management, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed HTML content. Privacy compliance is strong with comprehensive privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Recommendations include enhancing security headers, publishing a security policy, and improving accessibility to further strengthen the security posture and user experience.

A

Appenzeller Druckerei AG

trauer-zirkular.ch

61

The website trauer-zirkular.ch is an e-commerce portal operated by Appenzeller Druckerei AG, specializing in funeral and mourning print materials such as mourning circulars, thank you cards, and funeral meal cards. The site targets individuals in Switzerland seeking personalized funeral print products, offering a streamlined and personal ordering experience. The business operates in a niche market with a clear focus on quality and customer service. Technically, the website employs a custom or Websale-based e-commerce platform with modern web technologies including JavaScript, CSS, and AJAX. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Performance is moderate, and SEO and accessibility features are basic but adequate for the target audience. From a security perspective, the site enforces HTTPS, uses CSRF tokens in forms, and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and does not provide a public security policy or incident response contact. No vulnerabilities or suspicious activities were detected in the analysis. Overall, the website presents a trustworthy and professional front for a small specialized business. Strategic recommendations include enhancing security headers, publishing a security policy, and expanding contact information to improve trust and compliance further.

S

Solveva

actus.cloud

58

Actus by Solveva is a specialized software provider offering actuarial modelling and pricing tools primarily for the insurance and reinsurance sectors. The company positions itself as a leading partner with nearly two decades of experience, delivering modular and customizable software solutions to improve underwriting productivity and profitability. The website reflects a professional and consistent brand image with clear contact information and a focus on business clients in the finance industry. Technically, the website employs standard modern web technologies including HTML5, CSS3, JavaScript, and jQuery, with Google Fonts for typography. The site is moderately optimized for performance and mobile devices but lacks advanced frameworks or CMS platforms. No analytics or tracking tools are detected, indicating a privacy-conscious approach or minimal user tracking. From a security perspective, the domain is well-managed with domain locks in place, but the website lacks published privacy and cookie policies, security headers, and incident response information. SSL configuration details are not provided, and DNSSEC is not enabled, which suggests room for improvement in security hardening and compliance. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.

H

Hoststar - Multimedia Networks AG

hoststar.ch

73

Hoststar - Multimedia Networks AG is a Swiss-based web hosting and domain registration provider established since 2013. The company offers a wide range of hosting solutions including shared hosting, reseller hosting, virtual servers, SSL certificates, and security services such as SiteLock and VPN. Their market position is that of a reputable mid-sized hosting provider serving individuals and businesses primarily in Switzerland. The website is professionally designed with good content quality and clear navigation, targeting customers seeking reliable and affordable hosting services. Technically, the website is built on Drupal CMS and integrates multiple third-party marketing and analytics tools including Google Analytics, Facebook Pixel, Intercom, and SalesManago. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and security headers. HTTPS is properly implemented, ensuring secure communications. From a security perspective, the site follows basic best practices such as HTTPS and offers security-related products. However, it lacks visible security policies, incident response contacts, and comprehensive security headers. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of explicit privacy and cookie policies, which is a notable compliance gap. Overall, the website is trustworthy and legitimate, supported by consistent WHOIS data showing transparent Swiss company ownership and an appropriate domain age. The risk level is moderate, primarily due to privacy compliance shortcomings and limited security policy disclosures. Strategic recommendations include implementing clear privacy and cookie policies, enhancing security headers, and publishing incident response information to improve trust and compliance.

V

Volkswagen Schweiz

volkswagen.ch

72

Volkswagen Schweiz operates as the official Swiss website for Volkswagen, providing comprehensive information on current vehicle models, offers, customer portals, services, and accessories. The company is a large, well-established player in the Swiss automotive market, supported by its parent company Volkswagen AG and subsidiaries such as AMAG Import AG. The website targets both private and business customers, offering vehicle sales, financing, leasing, and digital services including e-mobility solutions. Technically, the site is built on Adobe Experience Manager with React components, leveraging modern web technologies and performance optimizations. Security posture is strong with HTTPS, security headers, and consent mechanisms implemented, though explicit security policy and incident response information are not publicly detailed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

S

Suzuki Schweiz

suzuki.ch

42

Suzuki Schweiz operates as the official Swiss web presence for Suzuki, focusing on promoting and linking to its automobile, motorcycle, and marine product lines. The website serves primarily as a gateway to specialized subdomains dedicated to each product category, targeting consumers and enthusiasts in Switzerland. The business model centers on brand representation and product information dissemination within the transportation sector. Technically, the site employs standard HTML5, CSS, and JavaScript technologies, including the Jssor Slider for visual content and Google Tag Manager for analytics and marketing. The site is moderately optimized for mobile devices and performance but lacks advanced SEO and accessibility features. Security posture is basic; while HTTPS is presumed, no security headers or explicit security policies are present, and no contact or incident response information is provided. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms, which may pose GDPR compliance risks. Overall, the domain registration aligns well with the brand's Swiss presence, indicating legitimacy and trustworthiness.

C

CH Regionalmedien AG

telezueri.ch

61

TeleZüri is a regional media company operating in Zurich, Switzerland, providing local news, television programming, and event coverage. The website offers live streaming, video news articles, and advertising opportunities, targeting residents interested in Zurich regional content. The business is positioned as a key regional media player under the parent company CH Regionalmedien AG. Technically, the website uses modern JavaScript frameworks, integrates with Kaltura for video delivery, and employs consent management and advertising networks to monetize content. Security posture is strong with HTTPS, security headers, and privacy compliance, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving a general audience with safe content.

Z

Zürcher Kantonalbank

frankly.ch

71

frankly is a digital pension solution platform developed by Zürcher Kantonalbank, a major Swiss universal bank. The platform focuses on providing simple, fully digital retirement planning services including pillar 3a and vested benefits accounts. The website positions frankly as an easy, secure, and cost-effective solution for Swiss residents to manage their pension savings via app or web. The business model leverages digital transformation to reduce costs and improve user experience in the financial services sector. Technically, the website is built on Adobe Experience Manager, uses modern web standards, and integrates Adobe Analytics and OneTrust for tracking and consent management. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. However, explicit privacy policy and terms of service documents are not directly found on the homepage HTML, and no direct contact information is exposed, which slightly reduces privacy compliance and business credibility scores. Overall, frankly presents a professional, trustworthy, and technically sound digital financial service platform.

S

Swisscanto

swisscanto.com

76

Swisscanto operates as a Swiss financial services provider specializing in investment funds with a strong emphasis on sustainable investment products. The website targets private investors in Switzerland, offering a broad portfolio including ETFs, index funds, thematic investments, and real estate products. The company positions itself as a reputable and established player in the Swiss finance market, focusing on financial fitness and sustainability. Technically, the website is built on Adobe Experience Manager, leveraging modern JavaScript and SVG graphics, and implements a cookie consent mechanism compliant with GDPR. The site is well-structured, mobile-optimized, and professionally designed, providing a positive user experience. Security-wise, the site enforces HTTPS and uses consent management tools, though explicit security headers could be further verified. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional presentation and content. Overall, Swisscanto's digital presence reflects a mature and trustworthy financial institution with room for minor security enhancements.

M

Mautic

mautic-vr.ch

44

The website at mautic-vr.ch/s/login serves as a login portal for the Mautic marketing automation platform. It targets users such as marketers and administrators who utilize Mautic's services. The site is minimalistic, focusing on user authentication without providing extensive business or policy information. The technical infrastructure is based on the Mautic CMS platform, utilizing JavaScript and Froala editor libraries. The site shows basic mobile optimization and accessibility but lacks SEO optimization and comprehensive metadata. Security measures include CSRF tokens and password input masking; however, no explicit security headers or HTTPS status were provided, indicating room for improvement in security posture. Privacy and compliance policies are absent from this page, limiting transparency and GDPR compliance indicators. Overall, the site is functional but basic in content and security maturity.

T

TheMapleBrothers I Snacks, Cerealien & mehr I Ahornsirup

themaplebrothers.ch

62

The website www.themaplebrothers.ch is a small business site hosted on the Wix platform, targeting a German-speaking Swiss audience. The site appears to be in early stages or minimal content mode, with no explicit privacy, cookie, or terms of service pages detected. The technical infrastructure relies on Wix's Thunderbolt framework and includes standard polyfills and Facebook Pixel for marketing tracking. Security posture is moderate with HTTPS assumed and some script-based security hardening, but lacks explicit security policies or headers. Overall, the site shows basic digital maturity with room for improvement in privacy compliance and business transparency.

B

balneotec GmbH

balneotec.de

67

balneotec GmbH is a specialized service provider in the hospitality sector focused on premium hotel modernization and renovation, particularly hotel bathrooms and rooms. The company positions itself as a holistic solution provider offering aesthetic, hygienic, and sustainable renovations tailored to hotel brands. Their market position is supported by strategic partnerships with well-known manufacturers and craftsman groups, enhancing their service quality and regional capacity. The website reflects a professional and consistent brand image with comprehensive content targeting hoteliers and hotel owners seeking modernization services. Technically, the website is built on WordPress using modern plugins such as Elementor, Rank Math SEO, and UberMenu, ensuring good SEO and user experience. The site is mobile-optimized and performs moderately well, with a clean technical stack and no blocking security mechanisms detected. Privacy and cookie policies are well implemented, indicating good GDPR compliance. From a security perspective, the site enforces HTTPS and includes standard security headers, but lacks a dedicated security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be improved with explicit security disclosures and vulnerability handling mechanisms. The overall risk assessment is low with a high trustworthiness rating. Strategic recommendations include publishing a security policy, adding vulnerability disclosure information, and enhancing accessibility features to further strengthen compliance and user trust.

F

FutureLog AG

futurelog.com

63

FutureLog AG operates a professional, cloud-based procure-to-pay software platform tailored specifically for the hospitality industry. Their solutions cover ordering, invoicing, inventory, recipe management, and business intelligence, positioning them as a market leader in hospitality procurement software. The website is well-designed, mobile-optimized, and provides comprehensive resources and customer success stories, reflecting a mature digital presence. Technically, the site uses TYPO3 CMS with integrations for analytics and cookie consent, ensuring good performance and compliance. Security posture is strong with HTTPS and ISAE 3402 certifications, though some security headers and incident response details could be improved. The absence of WHOIS data for the domain is a notable anomaly that warrants further verification. Overall, FutureLog presents a credible and professional business with a strong focus on compliance and customer trust.

F

Fédération Fribourgeoise des Entrepreneurs

cppf-pbkf.ch

50

The Commission Professionnelle Paritaire Fribourgeoise du Secteur Principal de la Construction (CPPF) operates as a regional federation representing construction sector entrepreneurs in the canton of Fribourg, Switzerland. The organization provides key services including labor conventions, collective agreements, work calendars, salary scales, and professional cards, targeting construction professionals and companies within the region. The website serves as an information hub with news updates, downloadable resources, and partner information, positioning the CPPF as a trusted authority in its sector. Technically, the website is built on the Neos CMS platform leveraging the Flow PHP framework, with modern JavaScript libraries such as Swiper.js and Google Analytics integrations. The site is mobile-optimized with good SEO practices and structured data usage, reflecting a moderate to good level of digital maturity. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site enforces HTTPS and uses anonymized IP tracking in analytics, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic with a privacy policy and cookie consent mechanism present, though GDPR compliance indicators are limited. Overall, the website is professional, trustworthy, and safe for general audiences. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, expanding privacy and incident response disclosures, and continuing to monitor third-party scripts for vulnerabilities to improve security posture and compliance.

The analyzed content corresponds to a Chrome internal error page (chrome-error://chromewebdata/) rather than a public website. It primarily serves as an offline or error display with embedded Chromium game scripts (the T-Rex runner game). There is no business-related content, contact information, or policies present. The page is minimal and intended for browser internal use only, lacking any SEO, marketing, or user engagement features. Technically, it uses standard web technologies such as HTML5, CSS3, and JavaScript with Canvas API for the embedded game. Security posture is minimal due to the nature of the page, with no HTTPS or security headers applicable. Privacy compliance and business credibility cannot be assessed as no relevant data is present. Overall, this is not a public-facing website but an internal browser error page.

F

Franz Kaldewei GmbH & Co. KG

kaldewei.pl

55

Franz Kaldewei GmbH & Co. KG operates the website www.kaldewei.pl, presenting itself as a manufacturer of high-quality steel enamel bathroom products including bathtubs, shower surfaces, and washbasins. The company targets a general audience interested in bathroom fixtures and offers tools such as an online bathroom planner. The website is built on the TYPO3 CMS platform and integrates modern technologies including Google Tag Manager, Google reCAPTCHA, and Usercentrics for consent management, reflecting a moderate to advanced digital maturity. Security posture is solid with HTTPS enforced and use of CAPTCHA for forms, though explicit security headers and a published security policy are absent. Privacy compliance is partially addressed via a cookie consent mechanism but lacks a clearly linked privacy policy or terms of service. Overall, the domain registration is consistent with the business identity, indicating legitimacy and trustworthiness.

F

Franz Kaldewei GmbH & Co. KG

kaldewei.co.uk

52

Franz Kaldewei GmbH & Co. KG operates the website www.kaldewei.co.uk, offering high-quality bathroom products including bathtubs, showers, and washbasins made from steel enamel. The company targets a broad audience interested in premium bathroom solutions and provides tools such as an online bathroom planner to enhance customer engagement. The website is professionally designed, multilingual, and integrates modern web technologies including TYPO3 CMS, Google Analytics, and Usercentrics for consent management. Despite the lack of WHOIS data for the exact domain due to Nominet UK naming restrictions, the website content and branding strongly align with the established company, indicating legitimacy. Security measures include HTTPS, reCAPTCHA for forms, and cookie consent mechanisms, but there is room for improvement in security headers and published policies. Overall, the site demonstrates a good balance of business presence and technical maturity with moderate privacy compliance.

R

Radbazar

radbazar.at

58

Radbazar operates as a specialized online marketplace focused on the buying and selling of used bicycles and related accessories in Austria. The platform also provides additional value through a magazine offering trends and tips related to cycling. Positioned as a leading marketplace in its niche, Radbazar targets private bicycle buyers and sellers, as well as bicycle dealers, offering a comprehensive service ecosystem. The business model centers on facilitating peer-to-peer and dealer transactions with buyer protection and insured shipping to enhance trust. Technically, the website employs modern web technologies including Laravel Livewire, Alpine.js, Tailwind CSS, and integrates Google Tag Manager and a privacy consent SDK to manage user data and compliance. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms with partner transparency, though it lacks explicit security policies or incident response contacts. Overall, Radbazar presents a professional, trustworthy, and compliant online presence with moderate technical sophistication and a solid security posture.

S

SERV – Swiss Export Risk Insurance

serv-ch.com

70

SERV is a Swiss government-backed export risk insurance provider that supports Swiss companies in managing risks associated with export transactions and expanding into new markets. The website presents a professional and comprehensive digital presence, leveraging TYPO3 CMS and modern web technologies to deliver a user-friendly experience. The site is well-optimized for SEO, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and use of Google Tag Manager for controlled script loading. No critical vulnerabilities or exposed sensitive data were detected. However, the WHOIS data for the domain is unavailable, which is inconsistent with the active and professional website presence and warrants further investigation. Overall, the website demonstrates a high level of trustworthiness and compliance with privacy regulations, making it a reliable resource for its target audience.

A

Altenburg-Garage AG

altenburg-garage.ch

54

Altenburg-Garage AG is a well-established automobile dealership and service provider located in the Kanton Aargau region of Switzerland. Founded in 1977, the company represents multiple licensed car brands including Cupra, Mitsubishi, Seat, Suzuki, and VW. Their business model encompasses new and used car sales, leasing, professional car servicing, and a car wash facility, targeting local customers seeking quality automotive products and services. The website reflects a strong market position with comprehensive offerings and a focus on customer satisfaction. Technically, the website is built on WordPress with modern technologies such as Bootstrap, Swiper.js, and Google Tag Manager for analytics. It is optimized for mobile devices, loads quickly, and follows good SEO and accessibility practices. The presence of structured data and social media integration further enhances its digital maturity. From a security perspective, the site uses HTTPS with good SSL configuration and secure form handling. However, it lacks explicit security headers and a dedicated security or incident response policy page. Privacy compliance is partially addressed with clear privacy and cookie policies, though a cookie consent mechanism is missing. No vulnerabilities or suspicious activities were detected in the content. Overall, Altenburg-Garage AG’s website demonstrates high professionalism, trustworthiness, and business credibility. Strategic improvements in security headers and privacy consent mechanisms would further strengthen its security posture and compliance standing.

Jsabelle Forrer is a small Swiss-based design service provider specializing in graphic, web, and app design as well as illustration. The website presents a professional design with clear focus on delivering quality design experiences to consumers. The technical infrastructure is based on BaseKit CMS and hosted by Hoststar, utilizing modern web fonts and iconography. However, the site lacks critical privacy and cookie policies, contact information, and security disclosures, which impacts its compliance and trustworthiness. Security posture is minimal with no detected security headers or incident response information. Overall, the website is functional and professional but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

Appenzeller Druckerei AG is a regional printing and media services company based in Eastern Switzerland, specializing in offset and digital printing, specialized printing techniques, and media production. Their website reflects a well-structured business with multiple service offerings including print shops, editorial services, and digital publication solutions. The company targets businesses and individuals in the Ostschweiz region, positioning itself as a trusted local provider with multiple physical locations and a professional online presence. Technically, the website is built on the Contao CMS platform, utilizing modern web technologies such as jQuery, FontAwesome, and responsive design elements, ensuring good user experience and mobile optimization. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and incident response information suggests room for improvement. Privacy compliance is partially met with a privacy policy and terms of service present, but lacking a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives.

G

Gammeter Media AG

gammetermedia.ch

47

Gammeter Media AG is a regional communication solutions provider based in Switzerland's Engadin region. They specialize in print, content creation, photography, video production, and web design services tailored to local businesses and organizations. The company positions itself as a trusted partner offering end-to-end communication solutions from concept to final product. Technically, the website is built on TYPO3 CMS with modern frontend technologies including JavaScript frameworks and Google services for analytics and security. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though formal security policies and incident response contacts are not published. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

F

firstvoucher

firstvoucher.com

59

firstvoucher.com is a German-based e-commerce platform specializing in providing businesses with an online voucher and ticket sales system. The company targets a broad range of businesses, from small cafes to large hotel groups, enabling them to sell vouchers and tickets online with automated processes for issuance, personalization, and redemption. The website is professionally designed, content-rich, and includes customer testimonials and logos, indicating a strong market presence with over 3000 customers. Technically, the site uses modern web technologies including JavaScript libraries, tracking and analytics tools, and a consent management platform to comply with privacy regulations. Security posture is good with HTTPS enforced and privacy-conscious analytics configurations, though some security headers are missing and no explicit security policies are published. The WHOIS data is unavailable, which raises concerns about domain registration transparency, but the active and professional website mitigates some risk. Overall, the site is trustworthy and well-positioned in its niche, but domain registration details should be verified for full assurance.