Security Directory

M

Migros

migros.ch

65

Migros is a leading Swiss retail company offering an extensive online grocery shopping platform with over 12,500 products. The website demonstrates a mature digital presence using modern Angular technology and integrates cookie consent mechanisms via OneTrust, reflecting compliance with privacy regulations. The site is well-optimized for mobile users and provides a professional user experience with clear branding and consistent design. However, explicit privacy policies, terms of service, and contact information are not present in the analyzed HTML snapshot, which could be located elsewhere on the site. From a technical perspective, the infrastructure leverages modern frameworks and external services for fonts, images, and cookie management, indicating a robust and scalable platform. Performance is moderate with good mobile optimization, though accessibility features could be enhanced. Security posture is adequate with HTTPS implied and cookie consent implemented, but lacks explicit security headers and published security policies. Overall, the website is trustworthy and safe for general audiences, with no adult or questionable content detected. The WHOIS data aligns well with the business identity, confirming legitimacy. Strategic improvements include adding explicit privacy and security policies, enhancing accessibility, and publishing vulnerability disclosure information to strengthen compliance and security transparency.

A

AMAG Group AG

cuprapartner.ch

71

The website cuprapartner.ch serves as the official CUPRA partner locator for Switzerland, operated under the AMAG Group AG umbrella, a prominent automotive distributor. It targets consumers interested in CUPRA vehicles by providing a platform to find authorized dealerships and access related services. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, it employs modern web technologies including React, Google Maps API, and tracking tools like Google Tag Manager and Visual Website Optimizer, all integrated with GDPR-compliant cookie consent mechanisms. Security measures are robust, featuring HTTPS, security headers, and no exposed sensitive data, although a dedicated security policy and incident response information are absent. WHOIS data confirms the domain's legitimacy and alignment with the business entity, reinforcing trustworthiness. Overall, the site demonstrates a mature digital presence suitable for its business purpose.

T

ti&m AG

ti8m.com

76

ti&m AG is a Swiss-based technology company specializing in digital solutions and security products, serving clients primarily in Switzerland and the European Union. Positioned as a market leader, the company focuses on innovation projects and digital transformation services. Their website reflects a professional and modern digital presence, emphasizing their expertise and leadership in the technology sector. The company targets business clients seeking advanced digital and security solutions, leveraging certifications such as ISO 27001 to reinforce trust and credibility. The technical infrastructure of the website includes modern web technologies and multiple analytics tools such as Google Analytics, Microsoft Clarity, Hotjar, and LinkedIn Insight Tag, integrated with a consent management platform (OneTrust) to ensure GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital strategy. However, the absence of explicit CMS or hosting provider details limits full infrastructure transparency. From a security perspective, the website enforces HTTPS with strong SSL configuration and employs privacy-conscious tracking practices like IP anonymization. While security headers are implied, explicit implementation details are not fully visible. The presence of ISO 27001 certification suggests a robust internal security framework, though the lack of a dedicated security policy or incident response page indicates room for improvement in transparency and readiness. Overall, the website presents a trustworthy and professional image with good privacy compliance and security posture. The main risk factor is the lack of WHOIS data, which raises questions about domain registration transparency. Strategic recommendations include enhancing security header implementation, publishing detailed security policies, and establishing clear incident response contacts to further strengthen trust and compliance.

B

Bank Cler

cler.ch

76

Bank Cler is a Swiss financial institution focused on providing comprehensive banking services to private customers, including investment strategies and mobile banking solutions. The website reflects a mature digital presence with multilingual support and clear navigation tailored to its target audience. Technically, the site employs modern tracking and consent management tools such as Google Tag Manager and OneTrust, ensuring compliance with privacy regulations. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response information are not publicly detailed. Overall, the site demonstrates professionalism and trustworthiness consistent with a reputable banking entity.

B

Banque Cantonale du Valais

bcvs.ch

64

Banque Cantonale du Valais (BCVs) is a well-established Swiss cantonal bank providing a broad range of financial services including retail and corporate banking, mortgages, wealth management, and digital banking solutions. The website reflects a strong regional focus on the Valais canton with comprehensive service offerings tailored to private individuals and businesses. The digital infrastructure is built on TYPO3 CMS with modern web technologies and includes responsive design and accessibility features, ensuring a positive user experience across devices. Security posture is robust with HTTPS enforcement, security headers, and privacy compliance mechanisms such as cookie consent and a detailed privacy policy. However, explicit security policies and incident response information are not publicly detailed, and no vulnerability disclosure mechanism is present. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with Swiss and EU privacy regulations.

B

Berner Fachhochschule

digisus-lab.ch

61

Berner Fachhochschule's Digital Sustainability Lab is a research and development unit focused on enhancing digital and innovative capabilities within the public sector. The lab offers software development, UI/UX design, data visualization, and consulting services related to digital transformation, open source, and AI. The website reflects a well-established academic institution with a clear mission to foster sustainable digital solutions for public administration. Technically, the site uses modern web technologies including Google Tag Manager and OneTrust for cookie consent, ensuring good performance and compliance with basic privacy standards. Security posture is solid with HTTPS and obfuscated emails, though explicit security policies and vulnerability disclosures are absent. Overall, the site is professional, trustworthy, and serves its target audience effectively.

S

Sabre

sabre.com

62

Sabre is a leading software and technology company powering the global travel industry. It offers a comprehensive suite of products and services targeting airlines, travel agencies, hotels, corporate travel buyers, and travel suppliers. The company focuses on modernizing travel retailing, distribution, and fulfillment through innovative technology solutions and a broad partner ecosystem. Sabre's market position is strong, supported by decades of industry experience and a large enterprise footprint. Technically, the website is built on WordPress with modern JavaScript libraries and integrates key analytics and consent management tools such as Google Analytics, Google Tag Manager, Demandbase, and OneTrust. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and external references support its legitimacy. Overall, Sabre's website reflects a well-established enterprise with strong business credibility and a solid technical foundation. Strategic improvements in security header implementation and transparency around security policies would enhance its security posture and trustworthiness.

H

Hospitality Solutions

sabrehospitality.com

59

Hospitality Solutions is a large, established B2B technology provider specializing in hospitality industry solutions, including the SynXis Central Reservation System and a suite of products for retail, distribution, acquisition, operations, and customer success. The company targets hoteliers and hospitality professionals globally, positioning itself as a leading platform for hospitality commerce and distribution. The website demonstrates a mature digital infrastructure built on WordPress, integrating multiple analytics and marketing tools with a strong focus on privacy compliance and user consent. Security posture is generally good with HTTPS and cookie consent mechanisms, though improvements in security headers are recommended. The absence of WHOIS data is a notable concern that impacts trustworthiness but does not negate the professional presentation and operational maturity evident on the site. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, supporting Hospitality Solutions' market position as a trusted technology partner in the hospitality sector.

H

Hospitality Solutions

synxis.com

61

Hospitality Solutions is a technology and service provider specializing in the hospitality industry, offering a comprehensive suite of products and services including central reservation systems, distribution channels, retailing, acquisition, operations, and customer success solutions. Powered by the SynXis platform, it targets hoteliers globally to optimize operations and revenue. The company positions itself as a leading global hospitality commerce and distribution platform provider with enterprise-level reach and a broad product portfolio. Technically, the website is built on WordPress and leverages modern marketing and analytics tools such as Google Tag Manager, Hotjar, Demandbase, Pardot, and Ahrefs. The site is mobile-optimized with good SEO practices and a professional design. Cookie consent mechanisms indicate awareness of privacy regulations, though explicit privacy and terms of service pages were not found in the provided content. Security posture is moderate with HTTPS enforced and no exposed sensitive data, but lacks visible security headers and published security policies or incident response information. The absence of WHOIS data for the domain raises concerns about domain legitimacy or privacy protection usage, which impacts trustworthiness. Overall, the website presents a professional and credible front for a hospitality technology enterprise but would benefit from improved transparency in domain registration, privacy policies, and security disclosures to enhance trust and compliance.

N

NinjaOne

ninjaone.com

73

NinjaOne operates as a leading provider of Unified Endpoint Management (UEM) and IT management software, targeting Managed Service Providers (MSPs) and IT departments. The company offers an all-in-one platform that simplifies IT management with no contracts or platform fees, supported by free onboarding and local support. Their market position is strong, evidenced by high customer ratings and a professional digital presence. Technically, the website is built on WordPress with Elementor and WPML, leveraging a modern tech stack including advanced analytics and marketing tools such as Snowplow, Google Analytics, and multiple advertising pixels. The site is well-optimized for SEO, mobile, and accessibility, providing an excellent user experience. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and headers could be improved. The absence of WHOIS data limits domain trust verification, but the overall professionalism and trust signals mitigate this concern. Strategic recommendations include enhancing security transparency and publishing incident response details to further strengthen trust and compliance.

U

Université de Genève

unige.ch

69

Université de Genève is a prominent public university in Switzerland offering a wide range of academic programs and research activities. The website serves students, researchers, collaborators, and the public with information about faculties, courses, research, and services. The institution maintains a professional online presence with consistent branding and multilingual support. Technically, the website is built on the concrete5 CMS platform and utilizes modern JavaScript libraries such as jQuery, Isotope, and Nivo Slider. It employs Matomo for analytics and OneTrust for cookie consent management, indicating a moderate level of digital maturity and privacy awareness. The site is mobile optimized and provides a good user experience with clear navigation. From a security perspective, the website enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The WHOIS data confirms the domain's legitimacy and consistency with the university's identity. Overall, the website is trustworthy and professionally maintained, with room for improvement in security policy transparency and contact information availability.

Hamilton Watch Company is a well-established luxury watch brand offering a wide range of men's and women's watches that combine American heritage with Swiss precision. The website serves as the official e-commerce platform, showcasing collections such as Khaki, Ventura, and Jazzmaster. The brand is positioned strongly in the luxury retail market and is owned by the Swatch Group, a major player in the watchmaking industry. The site targets watch enthusiasts and general consumers seeking quality timepieces. Technically, the website is built on Magento, leveraging modern web technologies and performance monitoring tools, hosted likely via Akamai CDN, ensuring fast and reliable user experience. The site is mobile-optimized and accessible, with good SEO practices in place. Security posture is strong with HTTPS enforced, security headers implemented, and no visible vulnerabilities. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. However, explicit security policies and incident response information are not published, and no vulnerability disclosure program is evident. Overall, the website is professional, trustworthy, and secure, though it could improve transparency on security and incident handling. The WHOIS data is missing or protected, which slightly reduces trust but is mitigated by the brand's reputation and website quality.

R

RUAG International

ruag.com

66

RUAG International is a large, established technology and manufacturing company specializing in aerospace and defense sectors. The company offers key services including aerostructures manufacturing, space technology, and defense technology, positioning itself as a trusted international player with a strong brand presence. The website reflects a professional corporate identity with clear navigation and relevant content targeted at industry professionals and partners. Technically, the site is built on Drupal CMS, uses modern web technologies such as Google Fonts, Matomo analytics, and Google Maps API, and implements cookie consent mechanisms for privacy compliance. Security posture is good with HTTPS enforced and security headers present, though explicit security policies and vulnerability disclosures are absent. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency but does not detract from the professional presentation of the website. Overall, RUAG International's digital presence is solid but could benefit from enhanced transparency in privacy and security documentation.

B

blue Entertainment Programm AG

bluewin.ch

63

bluewin.ch is a comprehensive Swiss news and entertainment portal operated by blue Entertainment Programm AG, a subsidiary of Swisscom AG. The website offers a wide range of content including national and international news, sports coverage, entertainment, weather updates, email services, and video content. It targets a general audience in Switzerland and maintains a strong market position as a leading media and telecommunications content provider. The business model relies on advertising revenue, subscription services, and integrated digital offerings. The website demonstrates consistent branding and high-quality content presentation.

S

Swisscom AG

swisscom.ch

71

Swisscom AG is the leading telecommunications provider in Switzerland, offering a comprehensive range of services including mobile, internet, and TV subscriptions targeted at residential customers. The company operates an enterprise-grade website with excellent content quality, clear navigation, and strong branding consistency. Their digital infrastructure leverages modern technologies such as Adobe Experience Manager, web components, and advanced tag management systems, reflecting a mature and well-maintained technical environment. Security posture is robust, with HTTPS enforced, modern security headers, and publicly available security policies and incident response contacts. Privacy compliance is strong, featuring comprehensive privacy and cookie policies with consent mechanisms aligned with GDPR requirements. Overall, Swisscom demonstrates high business credibility and trustworthiness, supported by consistent WHOIS data and domain legitimacy.

T

TX Group

tx.group

70

TX Group is a large Swiss enterprise operating across multiple sectors including media, advertising, digital marketplaces, real estate, and social responsibility. The company positions itself as a multi-faceted organization offering innovative perspectives to customers, employees, and stakeholders. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. The technical infrastructure is based on TYPO3 CMS, enhanced with modern tracking and consent management tools such as Google Analytics and OneTrust. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some advanced security headers and explicit security policies are not publicly disclosed. WHOIS data is limited due to TLD restrictions and privacy policies but shows no suspicious indicators. Overall, the website and domain appear legitimate and professionally managed.

A

Airbus

airbus.com

78

Airbus is a global aerospace leader specializing in the design, manufacture, and delivery of commercial aircraft, helicopters, military transports, satellites, and launchers. The company positions itself as a pioneer in sustainable aerospace, emphasizing innovation and environmental responsibility. The website reflects a mature digital presence with comprehensive content targeting industry professionals, customers, investors, and the general public interested in aerospace and sustainability. Airbus maintains a strong market position with a broad portfolio of products and services across multiple aerospace sectors. Technically, the website is built on Drupal CMS and leverages modern web technologies including Video.js for multimedia, Piwik PRO for analytics, and OneTrust for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. External integrations include social media platforms and analytics services, all implemented with privacy compliance in mind. From a security perspective, Airbus employs HTTPS with strong SSL configurations and implements key security headers to protect users. The presence of ISO 27001 certification indicates a commitment to information security management. However, the absence of publicly available incident response contacts and vulnerability disclosure policies suggests areas for improvement. No critical vulnerabilities or exposed sensitive data were detected in the website content. Overall, the website is professional, trustworthy, and aligns well with Airbus's corporate stature. The missing WHOIS data is a notable anomaly but likely due to privacy or registry policies rather than malicious intent. Strategic recommendations include enhancing transparency around security incident response and vulnerability reporting to further strengthen trust and security posture.

Bayer's Switzerland website presents a professional corporate presence for its operations in the Swiss market, covering healthcare, consumer care, and agriculture sectors. The site is well-structured, multilingual, and uses modern web technologies including Drupal 11 and OneTrust for cookie consent management. The content is targeted at a broad audience including consumers, business partners, investors, and job seekers. The website demonstrates a strong brand consistency aligned with Bayer's global identity. Technically, the site is well-implemented with good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and security scripts in place, though explicit security headers could be enhanced. Privacy compliance is partially addressed via cookie consent but lacks a clearly linked privacy policy and terms of service. WHOIS data is unavailable, which slightly reduces trust but is not uncommon for large corporations using privacy services. Overall, the site is trustworthy, professional, and safe for general audiences.

B

Bern University of Applied Sciences

bfh.ch

60

Bern University of Applied Sciences (BFH) is a prominent Swiss higher education institution offering a broad range of bachelor's and master's degree programs alongside continuing education courses. The website reflects a well-established educational entity with a clear focus on applied sciences, research, and professional development. The institution targets students, researchers, and professionals seeking advanced education and training. The site is professionally designed with consistent branding and multi-language support, enhancing accessibility and user experience. Technically, the website employs modern tools such as Google Tag Manager for analytics and OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured navigation. However, the CMS platform is not explicitly identified, suggesting a custom or proprietary solution. From a security perspective, the site enforces HTTPS and includes standard security headers, contributing to a strong security posture. No critical vulnerabilities or exposed sensitive data were detected. Nonetheless, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms represents areas for improvement to enhance transparency and trust. Overall, BFH's website demonstrates a high level of professionalism and trustworthiness, suitable for its role as an educational institution. Strategic enhancements in privacy and security documentation would further solidify its compliance and user confidence.

T

Turnitin

turnitin.com

64

Turnitin is a leading technology company specializing in academic integrity and assessment solutions for the global education community. Their platform helps educational institutions improve student outcomes, maximize educator impact, and protect institutional reputations through innovative plagiarism detection and integrity tools. The company targets educational institutions, educators, and students worldwide, positioning itself as a trusted enterprise-level SaaS provider in the education technology sector. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its audience. Technically, the site employs modern frameworks such as Bootstrap and jQuery, integrates Google Tag Manager and reCAPTCHA for analytics and security, and uses OneTrust for cookie consent management. Security posture is strong with HTTPS enforced, security headers implemented, and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, WHOIS data is missing from the VeriSign database, which is unusual and warrants further verification. Overall, Turnitin demonstrates a robust business and technical infrastructure with a high level of trustworthiness and professionalism.

M

moneyland.ch

moneyland.ch

75

moneyland.ch is a well-established Swiss online comparison platform specializing in financial products, insurance, and telecommunications services. It offers independent and free comparison tools targeted at Swiss consumers and businesses, positioning itself as a leading service in the Swiss market. The website features comprehensive content, professional design, and clear navigation, supporting a positive user experience and strong market presence. Technically, the site employs modern JavaScript libraries, Google Tag Manager, OneTrust for cookie consent, and integrates advertising networks responsibly with user consent. Security posture is strong with HTTPS enforcement, security headers, and reCAPTCHA usage, although explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is robust, with clear privacy and cookie policies and a named data protection officer contact. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, moneyland.ch demonstrates a mature digital infrastructure, good security hygiene, and strong compliance, making it a trustworthy and professional online service.

S

SWICA

swica.ch

76

SWICA is a prominent Swiss health insurance provider known for its high customer satisfaction ratings and comprehensive insurance offerings including basic, supplementary, and special insurance products. The company targets private customers primarily within Switzerland and emphasizes telemedicine and customer support services. The website reflects a mature digital presence with modern technologies such as Matomo analytics, Google Tag Manager, and a chatbot for customer interaction. Privacy and cookie policies are well implemented with consent mechanisms, aligning with GDPR requirements. Security posture is strong with HTTPS enforcement and security headers, though explicit security policy and incident response details are not publicly available. Overall, the website is professional, trustworthy, and well-optimized for performance and accessibility.

S

SBB Cargo International

sbbcargo-international.com

54

SBB Cargo International operates as a major rail freight transportation provider in Europe, specializing in secure and timely cargo transport by rail. The company leverages its parent company Swiss Federal Railways' brand and infrastructure to serve logistics customers requiring cross-border and domestic freight solutions. The website reflects a professional business presence with clear service descriptions and a focus on quality and reliability. Technically, the site uses modern tracking and consent management tools such as Google Analytics and OneTrust, and is built on the MoveCMS platform. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and publicly available security policies or incident response information. The absence of WHOIS data for the domain is a concern for domain registration transparency, though the website content and branding suggest legitimacy. Overall, the site scores well on content quality and business credibility but would benefit from enhanced security header implementation and clearer domain registration information.

F

Fortive

fortive.com

75

Fortive is a well-established enterprise specializing in essential technologies for industrial and healthcare sectors, focusing on safety and productivity. The company presents a strong market position with a global team and diversified services including advanced healthcare solutions and intelligent operating solutions. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to investors, job seekers, and industry partners. Technically, the site is built on Drupal 10, hosted on AWS infrastructure, and incorporates modern marketing and analytics tools such as Google Tag Manager and Optimizely. Security posture is solid with HTTPS enforcement and domain management protections, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy compliance is robust with clear policies and cookie consent mechanisms aligned with GDPR standards. Overall, the website is trustworthy, professional, and secure, supporting Fortive's corporate reputation and business objectives.

A

Accruent, LLC

accruent.com

75

Accruent, LLC is an established enterprise software company specializing in people, facilities, and asset management solutions. Founded in 1995 and operating as a subsidiary of Fortive, Accruent offers a comprehensive suite of SaaS products targeting workplace management, real estate, maintenance, energy, and engineering document management sectors. Their market position is strong, supported by a professional website with excellent content quality and clear branding. The company targets large organizations requiring integrated management of their built environments and assets. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies including Font Awesome, Google Tag Manager, Microsoft Clarity, and Optimizely for analytics and optimization. The site is well-optimized for SEO, mobile responsive, and performs well with fast loading times. Security best practices are observed with HTTPS enforcement and appropriate security headers, although a dedicated security policy page and incident response contacts are not explicitly found. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms in place, indicating GDPR awareness. Business credibility is high with clear contact information, social media presence, and trust indicators such as structured data and professional design. Overall, Accruent presents a low-risk profile with strong digital maturity and business credibility. Recommendations include publishing a dedicated security policy, incident response information, and vulnerability disclosure program to further enhance trust and compliance.

C

CrowdStrike

humio.com

85

CrowdStrike is a leading cybersecurity company specializing in cloud-native endpoint protection, threat intelligence, and next-generation SIEM solutions such as Falcon LogScale. The company targets enterprise customers and security operations centers, offering advanced detection, search, and resolution capabilities to uncover security and reliability issues proactively. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to security professionals. Technically, the site leverages Adobe Experience Manager CMS, Adobe analytics, and OneTrust for privacy compliance, demonstrating a modern and well-maintained infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, complemented by detailed privacy and cookie policies aligned with GDPR requirements. WHOIS data is unavailable, likely due to privacy protection, but the overall trust indicators and business credibility remain high. The site is not blocked by WAF or security challenges, allowing full content access and analysis.

K

KPMG International

kpmg.com

71

KPMG International is a globally recognized professional services firm offering a broad range of services including audit, tax, advisory, AI, ESG, legal, and technology consulting. The website reflects a mature, enterprise-level organization with a strong market position among the Big Four accounting firms. The site targets business professionals, enterprises, and government entities worldwide. Technically, the website is built on Adobe Experience Manager, hosted via Akamai, and uses modern web technologies including Adobe Helix RUM for performance monitoring and OneTrust for cookie consent management. The site is well-structured, mobile-optimized, and SEO-friendly with comprehensive navigation and rich structured data. Security posture is good with HTTPS enforced and cookie consent implemented, though DNSSEC is not enabled and security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found. The domain WHOIS data confirms a long-established and legitimate registration consistent with the business history of KPMG. Overall, the website demonstrates high professionalism, trustworthiness, and compliance readiness.

F

Fortinet

fortinet.com

75

Fortinet is a globally recognized leader in cybersecurity solutions and services, delivering comprehensive protection across the digital attack surface including devices, data, and applications. The company targets enterprises and IT professionals with a broad portfolio of network security products and a Security Fabric platform. The website reflects Fortinet's market position with professional branding, clear messaging, and extensive social media presence. Technically, the website employs modern web technologies including Adobe Experience Manager CMS, Adobe Launch for tag management, New Relic for performance monitoring, and OneTrust for cookie consent management. The site is well-optimized for performance, mobile responsiveness, and SEO, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security monitoring tools, and implements privacy and cookie policies compliant with GDPR. However, explicit security headers and dedicated security or incident response pages are not evident, suggesting room for improvement in transparency and security communication. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. The absence of WHOIS data is noted but likely due to privacy or registry policies rather than malicious intent. Strategic recommendations include enhancing security header implementation, publishing a vulnerability disclosure policy, and providing clearer incident response contacts.

I

Italia.it

italia.it

72

Italia.it is the official tourism website for Italy, providing comprehensive travel information, destination guides, events, and planning resources to tourists worldwide. The website is positioned as a government-backed portal aimed at promoting Italy's rich cultural and natural heritage to a global audience. It targets travelers seeking detailed and reliable information about Italian cities, regions, and tourist attractions. The business model is focused on tourism promotion and information dissemination rather than direct commercial transactions.

Getty Images Germany operates as a leading digital media licensing platform offering a vast library of high-resolution stock photos, editorial images, videos, and music. The website targets professional users in media, marketing, and creative industries, providing a comprehensive and well-branded user experience. Technically, the site employs modern JavaScript frameworks such as AngularJS and React, integrates Google reCAPTCHA for bot protection, and uses AWS for hosting, reflecting a mature and scalable infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy page are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with no indications of malicious or adult content.

Q

QAD

qad.com

71

QAD is a well-established enterprise software provider specializing in cloud-based manufacturing and supply chain solutions. Their website presents a comprehensive portfolio of services including Adaptive ERP, Quality Management, Supply Chain Planning, and Connected Workforce solutions, targeting manufacturing enterprises globally. The site is professionally designed, well-structured, and optimized for user experience and SEO. Technically, the website leverages modern analytics and marketing tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, Hotjar, and Marketo, integrated within a Liferay CMS platform. Privacy compliance is evidenced by the presence of a comprehensive privacy policy and cookie consent mechanism via OneTrust. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though explicit security headers and vulnerability disclosure mechanisms could be improved. The absence of WHOIS data is a notable anomaly that slightly impacts trust but does not detract from the overall professionalism and legitimacy of the site.

บ

บริษัทสยามฟอเรสทรี จำกัด

siamforestry.com

66

Siamforestry is a leading Thai company specializing in forestry products, including eucalyptus wood, biomass fuel, and related agricultural products. The company operates under the SCG Packaging group, serving both domestic and international markets with a focus on sustainable forestry practices and innovation in wood species development. Their business model includes purchasing, cultivating, and supplying wood and biomass to industries such as pulp and paper. The website reflects a professional and consistent brand image with clear contact information and certifications that enhance trust. Technically, the site uses modern web technologies and includes comprehensive privacy and cookie consent mechanisms, indicating a mature digital presence. Security posture is solid with HTTPS and security headers, though explicit security policies and incident response details are absent. The lack of WHOIS data for the domain is a notable concern for domain legitimacy verification but does not detract from the overall business credibility. Strategic recommendations include publishing security policies, incident response contacts, and improving accessibility compliance to further strengthen trust and compliance.

O

OMAX Corporation

omax.com

73

OMAX Corporation, a subsidiary of Hypertherm, is a well-established manufacturer specializing in abrasive waterjet cutting machines and related precision cutting technologies. The company targets industrial and manufacturing sectors requiring high-precision machining solutions. Their website reflects a mature digital presence with professional design, structured data, and multi-language support, indicating a global market reach. Technically, the site leverages Drupal CMS and integrates multiple analytics and advertising platforms, including Google Tag Manager, Bing UET, and New Relic, demonstrating a modern and data-driven infrastructure. Security posture is generally good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent, representing an area for improvement. The WHOIS data is notably missing or inaccessible, which raises some concerns about domain registration transparency, but the overall business credibility remains high due to the association with Hypertherm and consistent branding. Strategic recommendations include enhancing security transparency, publishing privacy and incident response policies, and verifying domain registration details to strengthen trust.

A

Anchor Fluid Systems

anchorfluidsystems.com

71

Anchor Fluid Systems operates as a specialized manufacturer focusing on hydraulic hoses, couplings, and ferrules for industrial fluid systems. The company targets industrial and commercial customers requiring high-quality hydraulic components. The website reflects a medium-sized manufacturing business with a consistent brand presence and professional content. Technically, the site is built on Adobe Experience Manager CMS, integrating modern tools such as Google Tag Manager and OneTrust for cookie consent, indicating a moderate level of digital maturity. The website is accessible, mobile-optimized, and provides a clear navigation structure, although some SEO and accessibility features could be improved. Security posture is moderate; while HTTPS is implied, no explicit security headers or incident response policies are published. The absence of WHOIS registration data is a significant concern, impacting domain legitimacy and trust. Overall, the site is professional but would benefit from enhanced transparency and security practices.

C

Caterpillar Fluid Transfer Solutions, Inc.

anchorcoupling.com

75

Caterpillar Fluid Transfer Solutions, Inc. operates the Anchor Coupling brand, specializing in manufacturing high-quality hydraulic hose assemblies and couplings. The company emphasizes engineering excellence, comprehensive testing, and customer responsiveness, serving industrial and energy sectors globally. Their website reflects a medium-sized manufacturing business with a consistent brand presence and professional content. Technically, the site is built on Adobe Experience Manager, uses modern JavaScript libraries, and integrates Google Tag Manager and OneTrust for analytics and cookie consent, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and cookie consent implemented, but lacks explicit security headers and detailed security policies. The absence of WHOIS data for the domain is a notable concern, potentially impacting trust and legitimacy perceptions. Overall, the site is professional, accessible, and safe, but would benefit from enhanced transparency in security and compliance documentation.

P

Peck Tech Consulting Ltd.

pecktech.com

74

Peck Tech Consulting Ltd. is a specialized mining technology solutions provider based in Montreal, Canada, operating as a wholly owned subsidiary of Caterpillar Inc. The company focuses on advanced sensing, monitoring, control technologies, and drill autonomy solutions for both open-pit and underground mining. With over 30 years of industry experience and a multidisciplinary team, Peck Tech bridges OEMs, mining customers, OTMs, and R&D groups to deliver innovative mining technology solutions. The website reflects a professional and consistent brand presence aligned with Caterpillar's standards, targeting mining industry stakeholders and technology adopters.

T

Tangent Energy Solutions, Inc.

tangentenergy.com

72

Tangent Energy Solutions, Inc. is a market-proven Energy as a Service (EaaS) company specializing in distributed power solutions. Their offerings combine an industry-leading technology platform, Tangent AMP®, with expert insights and managed services to optimize economic returns from distributed energy resources. The company targets energy providers, industrial customers, and municipal utilities, positioning itself as a key player in the energy sector with a focus on innovative energy management solutions. Technically, the website is built on Adobe Experience Manager (AEM) CMS, integrating OneTrust for cookie consent and Google Tag Manager for analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are missing. The technical infrastructure reflects a moderate level of digital maturity with room for improvement in security and privacy compliance. From a security perspective, the site uses HTTPS and cookie consent mechanisms but lacks explicit privacy policies, terms of service, and security.txt files. No critical vulnerabilities were detected, but the absence of WHOIS registration data raises concerns about domain legitimacy. Overall, the security posture is moderate, with recommendations to enhance header security and publish comprehensive privacy and security policies. The overall risk assessment indicates a generally trustworthy and professional website with moderate technical and security maturity. Strategic improvements in domain registration transparency, privacy compliance, and security best practices will strengthen trust and reduce risk.

S

SPM Oil & Gas

spmoilandgas.com

72

SPM Oil & Gas is a global provider specializing in surface frac solutions for the oil and gas industry, supported by the reputable Caterpillar brand. Their website presents a professional and well-structured digital presence built on Adobe Experience Manager, featuring comprehensive product and service offerings tailored to industry professionals and customers. The technical infrastructure includes modern web technologies and compliance tools such as OneTrust for cookie consent and Google Tag Manager for analytics. Security posture is moderate with HTTPS usage and cookie consent, but lacks visible security headers and explicit security policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the strong brand association mitigates some risk. Overall, the website is functional, professional, and targeted at a B2B industrial audience.

S

Solar Turbines

solarturbines.com

72

Solar Turbines is a globally recognized enterprise specializing in energy solutions, particularly in converting natural gas into sustainable and cost-effective power. As a subsidiary of Caterpillar Inc., it holds a strong market position with a focus on industrial and governmental clients. The website reflects a professional B2B business model offering gas turbine engines, carbon reduction technologies, and modular power generation solutions. The digital infrastructure is built on Adobe Experience Manager, indicating a mature and scalable platform. The site employs modern technologies including Google Tag Manager and OneTrust for analytics and privacy compliance. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not publicly detailed. Overall, the website is well-designed, trustworthy, and compliant with privacy regulations, supporting the company's enterprise stature and market leadership.

P

Perkins

perkins.com

75

Perkins is a globally recognized manufacturer of diesel and gas engines, providing reliable power solutions across various industries including industrial, marine, and electric power sectors. The website reflects a mature digital presence with professional design, clear navigation, and a focus on sustainability and advanced power solutions. Technically, the site leverages Adobe Experience Manager as its CMS, integrates Google Tag Manager for analytics, and employs OneTrust for cookie consent management, indicating compliance awareness. Security posture is moderate with HTTPS implied but lacking visible security headers or explicit security policies in the provided content. The absence of WHOIS data for the domain is a notable gap, though the website content and branding strongly suggest legitimacy. Overall, the site is safe, business-focused, and well-structured, serving a large enterprise audience.

M

MaK Marine

mak-catmarine.com

68

MaK Marine operates a professional website focused on marine engine products and services, primarily targeting the Asia and Middle East markets. The company appears affiliated with Caterpillar Inc., leveraging strong branding and regional market presence. The website is built on Adobe Experience Manager, incorporating modern technologies such as Google Tag Manager and OneTrust for privacy compliance. The site offers comprehensive content with good navigation and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks explicit security headers and incident response information. WHOIS data is unavailable or inconsistent, which raises some concerns about domain registration transparency but does not negate the professional appearance and functionality of the site. Overall, the website is trustworthy and business credible but would benefit from improved transparency and security practices.

F

FG Wilson

fgwilson.com

72

FG Wilson is a globally recognized manufacturer and provider of diesel power generators, specializing in prime and backup power solutions. The company operates a professional website built on Adobe Experience Manager, showcasing a broad product range and supporting tools such as dealer locators and parts identification. The site targets industrial and commercial customers requiring reliable power generation equipment. Technically, the website employs modern technologies including Google Tag Manager and OneTrust for analytics and cookie consent, respectively. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security policies or vulnerability disclosure information. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website presents a professional and trustworthy digital presence with room for improvement in published security and privacy documentation.

C

Caterpillar Inc.

cat.com

64

Caterpillar Inc.'s website at www.cat.com serves as a global selector portal directing users to region and language-specific content. The company is a leading global manufacturer in the heavy equipment and industrial machinery sector, with a strong market position and a broad international dealer network. The website infrastructure is built on Adobe Experience Manager, leveraging modern web technologies including Google Tag Manager for analytics and OneTrust for cookie consent management. The site demonstrates good digital maturity with responsive design and clear navigation. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response information are not publicly disclosed. Privacy compliance is robust, featuring comprehensive privacy and cookie policies aligned with GDPR requirements. Overall, the site reflects a professional and trustworthy corporate presence with room for improvement in transparency around security and direct contact information.

S

Sandoz Pharmaceuticals AG

mysandoz.ch

54

Sandoz Pharmaceuticals AG operates a professional customer portal targeting healthcare professionals and customers in Switzerland. The website provides secure login options including native Sandoz password authentication and integration with Swiss-rx-login, facilitating access to pharmaceutical services and information. The site is well-branded and consistent with the company's healthcare industry positioning. Technically, the website uses modern analytics tools such as Google Analytics and Matomo, and employs OneTrust for cookie consent management, reflecting a mature approach to privacy compliance. However, explicit privacy policies and terms of service are not directly found on the landing page, which could be improved for transparency. Security practices include CSRF protection on forms and HTTPS usage, but lack visible HTTP security headers and published security policies or incident response contacts. Overall, the website is professional, secure, and compliant with cookie consent regulations, but could enhance its security posture and privacy disclosures to better align with best practices.

C

Caterpillar Inc

caterpillar.com

67

Caterpillar Inc is a global leader in manufacturing construction and mining equipment, diesel and natural gas engines, industrial turbines, and diesel-electric locomotives. The company operates as an enterprise-sized business with a strong market position and a broad portfolio of subsidiaries and brands. Their website reflects a mature digital presence with comprehensive content targeting industrial and commercial clients worldwide. Technically, the site is built on Adobe Experience Manager, uses modern web technologies, and implements cookie consent and tracking via OneTrust and Google Tag Manager. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response information are not publicly disclosed. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, likely due to registry restrictions.

S

Salesforce

salesforceliveagent.com

70

Salesforce is a leading enterprise technology company specializing in CRM software and AI-powered business solutions. The website showcases a comprehensive portfolio of products including AI autonomous agents (Agentforce), sales, service, marketing, commerce, analytics, and integration platforms. Salesforce holds a dominant market position as the #1 CRM provider globally, serving a wide range of business sizes from small to enterprise. The site is professionally designed with excellent content quality, clear navigation, and strong branding consistency. Technically, the site leverages modern web technologies, performance optimizations, and integrates multiple third-party services for analytics and marketing. Security posture is strong with HTTPS, security headers, and compliance certifications such as ISO 27001 and SOC 2. Privacy compliance is robust with GDPR-aligned policies and cookie consent mechanisms. The WHOIS data is unavailable likely due to registry restrictions, but the website's trust signals and brand reputation strongly support legitimacy. Overall, the site represents a mature, secure, and business credible digital presence.

M

Mepha Pharma AG / Teva Pharma AG

mepha.ch

68

Mepha Pharma AG and Teva Pharma AG operate a professional pharmaceutical website targeting both the general public and medical professionals in Switzerland. The site offers comprehensive health information, product catalogs, and controlled access to specialized content via secure login portals. The business is positioned as a leading generics and pharmaceutical provider in the Swiss market, supported by a strong parent company, Teva Pharmaceutical Industries Ltd. The website demonstrates a mature digital presence with modern tracking and consent mechanisms, reflecting compliance with GDPR and privacy best practices. Technical infrastructure includes Microsoft Application Insights and Google Tag Manager, with a custom or enterprise CMS platform. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for user experience and compliance.

M

Manitowoc Ice

manitowocice.com

9

Manitowoc Ice is a well-established manufacturer specializing in commercial ice machines, operating under the Pentair corporate umbrella. The website presents a professional and consistent brand image, targeting commercial customers requiring ice machine solutions. The digital infrastructure leverages modern web technologies including ASP.NET, jQuery, and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. Privacy and cookie policies are implemented with GDPR compliance in mind, supported by a OneTrust consent mechanism. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though some security headers could be improved. The absence of WHOIS registration data is a notable anomaly that impacts domain trustworthiness, suggesting a need for verification of domain ownership. Overall, the website is functional, secure, and professionally maintained, supporting the business's market position effectively.

L

Leica Camera

leica-camera.com

64

Leica Camera is a globally recognized manufacturer specializing in high-end cameras, lenses, and precision mechanical instruments. The company targets professional photographers, photography enthusiasts, and hunters with a premium product portfolio including cameras, sport optics, and related accessories. The website reflects a mature digital presence with a professional design, consistent branding, and integration of modern web technologies such as Drupal CMS, Google Tag Manager, and OneTrust for cookie consent management. Hosting is provided via Amazon AWS infrastructure, ensuring reliable performance and scalability. Security posture is strong with HTTPS enforced and domain transfer restrictions in place, although DNSSEC is not enabled and no explicit security or incident response policies are published on the site. Privacy compliance is partially addressed through cookie consent mechanisms denying ad and analytics storage by default, but no explicit privacy policy or terms of service were detected in the analyzed content. Overall, the website is trustworthy, professional, and safe for general audiences, with room for improvement in transparency around privacy, security policies, and contact information.

Mira Showers UK is a well-established retail brand specializing in showers, taps, shower parts, and accessories, targeting UK consumers and trade professionals. The website reflects a professional e-commerce platform with a clear focus on bathroom products, supported by a parent company, Kohler Co., which enhances its market credibility. The site is well-branded, consistent, and provides comprehensive product information and customer engagement through social media and third-party review platforms. Technically, the website employs modern JavaScript frameworks and integrates multiple third-party services such as New Relic for monitoring, OneTrust for cookie consent, and Bazaarvoice for customer reviews. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with good SSL configuration and includes standard security headers. Privacy and cookie policies are present and GDPR compliant, with active consent mechanisms. However, there is no publicly available security policy or incident response contact, and no vulnerability disclosure program is evident, which could be areas for improvement. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include publishing a security policy, establishing a vulnerability disclosure process, enhancing accessibility, and continuous monitoring of third-party scripts to maintain security posture.