Security Directory

The website www.alinaguenter.ch is a professional portfolio site for an individual artist and illustrator based in Switzerland. It showcases various projects including illustrations, graphic design, book design, and exhibition design. The site targets art enthusiasts and potential clients in creative sectors. The business model is primarily service-based, focusing on creative commissions and client work. The website is built on WordPress using the Lay theme, indicating a moderate level of digital maturity with a focus on visual presentation and portfolio management. Mobile optimization is good, and the site loads with moderate performance. Security posture is basic with HTTPS enabled but lacks security headers and formal privacy or cookie policies, which are important for compliance and trust. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the site is safe for general audiences and professionally presented but would benefit from enhanced privacy compliance and security best practices.

N

Nationale Naturlandschaften in Mecklenburg-Vorpommern

natur-mv.de

50

The website www.natur-mv.de serves as an official informational portal for the National Natural Landscapes in Mecklenburg-Vorpommern, Germany. It provides detailed information about various national parks, biosphere reserves, and nature parks in the region, targeting nature enthusiasts, tourists, and visitors interested in environmental conservation and outdoor activities. The site features event announcements, interactive maps, and educational content, positioning itself as a key regional resource for nature-related tourism and conservation awareness. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs modern web technologies such as Leaflet.js for interactive maps and Swiper.js for image sliders. It integrates Matomo analytics with user consent mechanisms, ensuring compliance with privacy regulations. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site uses HTTPS and implements cookie consent banners, reflecting adherence to GDPR requirements. However, explicit security headers and a dedicated security policy or incident response contact are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's regional and governmental nature, supporting its legitimacy. Overall, the site maintains a solid security posture but could benefit from enhanced security header implementation and formal vulnerability disclosure policies. The overall risk assessment is low, with the website presenting a trustworthy, professional, and privacy-conscious platform. Strategic recommendations include adding security headers, publishing a security policy or incident response contact, and considering a vulnerability disclosure framework to further strengthen security and trust.

A

AS Vinmonopolet

vinmonopolet-aret-oppsummert.no

57

Vinmonopolet is a Norwegian government-owned retail monopoly responsible for the sale of alcoholic beverages. This website serves as a 2024 summary of their activities, focusing on responsible alcohol sales, sustainability, and corporate transparency. The site targets Norwegian consumers and stakeholders interested in Vinmonopolet's operations. Technically, the site uses modern web standards, custom fonts, and optimized images, delivering a fast and mobile-optimized experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are absent. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the site is professional, trustworthy, and aligned with the official Vinmonopolet brand.

S

Staysville

staysville.no

52

Staysville is a small hospitality business specializing in serviced hotel apartments located in central Stavanger, Norway. Founded in 2023, it offers modern, fully furnished apartments with hotel-like services for short and long-term stays. The website presents a professional and consistent brand image targeting tourists and business travelers seeking flexible accommodation options. The business model focuses on providing personalized services such as easy self check-in, laundry facilities, and fully equipped kitchens, positioning itself as a niche apartment hotel provider in the Stavanger market. Technically, the website uses modern web technologies including JavaScript, CSS, SVG graphics, Google Tag Manager for analytics, and Cookiebot for GDPR-compliant cookie consent management. The site is mobile-optimized with good SEO and accessibility basics, though some accessibility enhancements could be made. Security posture is strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is evident through a privacy policy and cookie consent mechanism, though terms of service and security policies are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. No WAF or content blocking was detected, allowing full content analysis.

Z

Zinc

zinc.no

57

Zinc is a Norwegian interior architecture firm specializing in creating functional, aesthetic, and identity-driven spaces primarily for commercial and institutional clients. They are part of the Dark Design Group, which includes sister companies Dark Arkitekter and Lark Landskap, indicating a multidisciplinary approach to design and architecture. Their portfolio includes projects for prominent clients such as Aker BP, KPMG, and Accenture, positioning them as a reputable player in the Norwegian interior architecture market. Technically, the website is built on modern web standards, likely using Craft CMS, with optimized images, lazy loading, and custom fonts. The site is mobile-optimized and accessible, with good SEO practices. Security-wise, the site uses HTTPS and includes CSRF tokens, but lacks some security headers and visible privacy or cookie policies, which are areas for improvement. The absence of WHOIS data is a notable concern, reducing the trustworthiness of the domain registration. However, the professional presentation, clear contact information, and social media presence mitigate some of these concerns. Overall, the website reflects a mature digital presence but would benefit from enhanced transparency regarding privacy and security policies.

R

Røroshotellene

roroshotellene.no

53

Røroshotellene is a hospitality business operating in Røros, Norway, offering hotel accommodations, local dining experiences, event hosting, and family-friendly activities. The website positions the company as a regional hospitality provider with a focus on authentic local experiences and tailored events. The digital infrastructure is modern, leveraging JavaScript, CSS, and privacy-respecting analytics (Plausible). The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is good with HTTPS enforced and secure form handling, though some security headers and cookie consent mechanisms are missing. WHOIS data is unavailable, likely due to privacy protection, but the website's professionalism and consistent business information support legitimacy. Overall, the site is well-suited for its target audience of tourists, business clients, and families seeking hospitality services in Røros.

A

Aspelin Eiendom

aspelineiendom.no

59

Aspelin Eiendom is a well-established Norwegian real estate company founded in 1977, specializing in complex urban development projects aimed at creating attractive city environments and spaces. The company holds a strong market position supported by numerous industry awards and a professional digital presence. Their website reflects a mature digital infrastructure with modern technologies, responsive design, and privacy-conscious analytics. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which aligns with corporate best practices. Overall, the company demonstrates professionalism, trustworthiness, and compliance with privacy regulations.

The website www.koelliker-saibene.ch is a small personal or hobbyist site operated by Annemarie Koelliker and Roberto Saibene, showcasing travel photography and accompanying Tonbildshows (audio-visual presentations) from various countries. The site targets travel enthusiasts and photography lovers, offering galleries and photo books. Technically, the site is built on the Jimdo Creator platform, leveraging Jimdo's hosting and CDN infrastructure. It uses HTTPS and includes a cookie consent mechanism, but lacks advanced security headers and formal security or privacy policies. No contact emails or phone numbers are provided, limiting direct communication. The site is accessible without WAF or blocking mechanisms and contains no adult or questionable content. Overall, the site is functional and professionally presented for its niche but could improve in security and compliance documentation.

Golf Lipperswil AG operates a well-established 4-star superior 27-hole golf course located in the canton of Thurgau, Switzerland. The website presents a comprehensive overview of the club's offerings including golf facilities, academy programs, restaurant services, and membership options. The business targets golf enthusiasts and visitors seeking quality golfing and hospitality experiences. The site is built on TYPO3 CMS, featuring modern web technologies and a cookie consent mechanism, reflecting a moderate to good level of digital maturity. Security posture is solid with HTTPS enforced and session management for members, though security headers and incident response policies are absent. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, user-friendly, and trustworthy, with no signs of malicious content or blocking mechanisms.

V

Verrückt Auf Morgen - Ideen Für Mehr Nachhaltigkeit

verrueckt-auf-morgen.de

52

The website 'Verrückt Auf Morgen' is a German-language platform focused on sustainability, climate protection, nature conservation, and environmental education. It aims to educate visitors about projects in biosphere reserves and encourage the implementation of sustainable ideas. The site appears to be a small-scale initiative founded around 2022, with content updated as recently as 2025. The target audience is the general public interested in environmental topics. Technically, the website is built on WordPress using the Elementor page builder, featuring custom fonts and responsive design. The site includes appropriate meta tags and structured data for SEO but lacks advanced analytics or advertising integrations. Performance is moderate, and mobile optimization is good. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There are no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies indicates compliance gaps with GDPR. No incident response or security contact information is provided. Overall, the website is safe and professional but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and providing clear contact information for security and data protection matters.

P

Phineas Harper

turncoats.world

58

Phineas Harper's website is a professionally designed Squarespace site promoting a series of cultural debate events called Turncoats, focusing on architecture, urbanism, and social issues. The site targets a niche audience interested in public discourse and cultural critique, primarily in the UK. Technically, the site uses modern web technologies and is hosted on Squarespace, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and Google reCAPTCHA Enterprise integration, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is legitimate and trustworthy but could improve compliance and security practices.

L

Loxton Walk

loxtonwalk.com

47

Loxton Walk is a newly developed commercial real estate destination located in Marylebone, London, offering flexible retail and restaurant spaces across multiple units. The website presents a professional and modern digital presence, leveraging contemporary web technologies such as SvelteKit and Google Maps API to enhance user experience. However, the absence of WHOIS registration data raises concerns about the domain's legitimacy or registration status. The site lacks critical compliance documents such as privacy and cookie policies, and no direct contact information is provided, which may impact user trust and regulatory compliance. Security posture is moderate with HTTPS implied but no explicit security headers detected. Overall, the site appears to be in a development or pre-launch phase, requiring improvements in transparency and security to fully establish credibility.

B

Baumeister

baumeister.de

48

The website www.baumeister.de represents a German-language site branded as 'Baumeister'. The content and metadata suggest it is related to construction or a similar sector, though explicit business descriptions are not present in the provided data. The site uses WordPress CMS with Astra theme and incorporates SEO and performance optimization plugins such as Yoast SEO and WP Rocket. A cookie consent mechanism is implemented via BorlabsCookie, indicating some level of privacy compliance awareness. However, no explicit privacy policy, terms of service, or contact information are found in the analyzed content, which limits transparency and user trust. Technically, the site is moderately optimized for performance and mobile responsiveness but lacks visible security headers and detailed security policies. The domain WHOIS data shows consistent DNS name servers aligned with German hosting providers, supporting legitimacy, though registrant details are minimal. Overall, the site is functional and professional but would benefit from enhanced privacy disclosures and security practices.

A

Allies and Morrison

alliesandmorrison.com

71

Allies and Morrison is a London-based architectural and urbanist practice focused on designing beautiful buildings and shaping enduring places with attention to detail and context uniqueness. The firm serves clients interested in architecture, urban planning, and sustainable development, positioning itself as a reputable medium-sized player in the real estate and design sector. Their website showcases a comprehensive portfolio of projects, research, and talks, reflecting a mature and professional business model. Technically, the website employs modern web technologies including Google Analytics with IP anonymization, Imgix for image delivery, and JavaScript ES6, ensuring fast performance and excellent mobile optimization. The site is well-structured with good SEO and accessibility features, although no CMS or hosting provider details are explicitly identified. From a security perspective, the site uses HTTPS with a good SSL configuration and secure form handling for newsletter subscriptions. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No vulnerability disclosures or incident response contacts are published, representing an area for improvement. Overall, the website is professional, trustworthy, and safe for general audiences. The absence of WHOIS data is a notable anomaly but does not detract significantly from the site's credibility given the quality of content and contact transparency. Strategic recommendations include implementing security headers, adding cookie consent, publishing security policies, and improving WHOIS transparency to strengthen trust and compliance.

Eric Parry Architects Ltd is a well-established architectural practice founded in 2000, with studios in London and Singapore. The company specializes in sustainable and creative architectural design, serving clients in commercial, cultural, healthcare, and hospitality sectors. Their website reflects a professional and consistent brand image, showcasing a portfolio of projects and providing clear contact information. The business targets clients seeking high-quality architectural services and maintains a reputable market position with an international presence. Technically, the website is built on WordPress with modern JavaScript libraries such as Glide.js and LazySizes, offering good mobile optimization and user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and published security policies. Overall, the website is trustworthy, compliant with GDPR, and free from suspicious content or vulnerabilities.

A

Arkitektur- og designhøgskolen i Oslo (AHO)

aho.no

72

Arkitektur- og designhøgskolen i Oslo (AHO) is a leading international scientific college specializing in education and research in architecture, design, and landscape architecture. The institution targets students, researchers, and professionals in these fields, offering a range of study programs and fostering collaboration with industry and public sectors. The website reflects a well-established educational entity with a strong market position in Norway and internationally. Technically, the site is built on the Vortex CMS platform, hosted on infrastructure associated with the University of Oslo, and employs modern web technologies with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and published security policies are absent. Privacy compliance is well addressed with comprehensive policies and GDPR adherence. Overall, the site is professional, trustworthy, and content-rich, supporting the institution's credibility and reputation.

N

Norske arkitekters landsforbund

arkitektur.no

67

Arkitektur.no is a well-established Norwegian architecture media portal operated by Norske arkitekters landsforbund. It provides comprehensive news, project showcases, opinion pieces, and job listings targeted at architects and design professionals in Norway. The website demonstrates a strong market position within the Norwegian architecture sector, supported by consistent branding and professional content. Technically, the site employs modern web technologies including Vue.js, hCaptcha for form security, and integrates advertising via Adnuntius. The site is mobile-optimized, accessible, and SEO-friendly, ensuring a positive user experience. Security posture is solid with HTTPS enforcement and CAPTCHA protection, although explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, compliant with GDPR, and maintains good privacy practices.

S

Snøhetta

snohetta.com

58

Snøhetta is a globally recognized transdisciplinary architecture and design firm focused on creating meaningful places that connect societies and the environment. Their website showcases a broad portfolio of projects across architecture, landscape, interior, product, and brand experience disciplines, targeting clients and partners in the design and real estate sectors. The digital infrastructure is modern, leveraging lazy loading, video loops, and a likely Craft CMS backend, hosted on a CDN for performance. Security posture is moderate with HTTPS and CSRF tokens present but lacking explicit security headers and formal privacy or cookie policies. The absence of WHOIS data reduces domain trustworthiness, though the professional content and social media presence support legitimacy. Overall, the site is well-designed and user-friendly but would benefit from enhanced privacy compliance and security transparency.

B

Dein City-Guide & Stadt-Magazin mit Aktivitäten für Basel | BaselLive

basellive.ch

57

BaselLive.ch is a local media platform serving as a city guide and lifestyle magazine for Basel, Switzerland. It provides curated content including event listings, cultural stories, shopping guides, and culinary tips targeting residents and visitors interested in exploring Basel. The platform leverages social media channels and newsletters to engage its audience and promote city activities. Technically, the website uses modern web technologies with JavaScript modules, CSS, and integrates advertising via AdButler and analytics through Plausible and Google Tag Manager. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, the site enforces HTTPS and uses asynchronous script loading but lacks explicit security headers and formal privacy or cookie policies. No contact emails or phone numbers are explicitly provided, and no vulnerability disclosure or incident response information is found. Overall, the website is safe, trustworthy, and well-positioned as a local media outlet but would benefit from enhanced privacy compliance and security transparency.

I

IG Rottaler Ernte

erntefest.ch

47

The website erntefest.ch represents the IG Rottaler Ernte, a small regional organization dedicated to organizing the annual Rottaler Erntefest, a cultural and culinary event celebrating the Rottaler region in Switzerland. The site provides information about the event, its history, partners, and sponsors, targeting local audiences interested in regional traditions and products. The business model is community and non-profit focused, emphasizing regional culture and local product promotion. Technically, the website is built with basic HTML, CSS, and JavaScript without a detected CMS or advanced frameworks. It offers moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. Security posture is minimal with no detected HTTPS enforcement or security headers, and no incident response or vulnerability disclosure information is provided. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the site is trustworthy and consistent with its regional cultural mission but would benefit from improved security and privacy practices.

T

Tarifverbund A-Welle

a-welle.ch

10

Tarifverbund A-Welle operates as a regional public transportation tariff association in Switzerland, providing ticketing, subscriptions, zone plans, and travel information services primarily for the A-Welle region. The website is professionally designed and targets general public users including commuters and travelers within the region. The business model focuses on facilitating public transport access through digital and physical ticketing solutions, supported by partnerships such as SwissPass. Technically, the website is built on TYPO3 CMS, employs modern web technologies, and integrates Google Tag Manager for analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a moderate to good performance profile. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing security transparency and incident response readiness to further strengthen trust and compliance.

P

planval AG

planval.ch

57

Planval AG is a Swiss consultancy specializing in sustainable development, policy design, and knowledge management for municipalities, regions, and businesses. Their website presents a professional and consistent brand image with clear contact information and multiple office locations in Switzerland. The company targets stakeholders involved in societal, ecological, and economic challenges, offering services that guide complex projects to successful outcomes. Technically, the website uses modern JavaScript frameworks (Vue.js), service workers, and responsive design, providing a moderate performance and good mobile optimization. SEO and accessibility are basic but adequate. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking formal security policies and headers. Overall, the site is trustworthy, safe, and compliant with GDPR, with no detected vulnerabilities or suspicious content. The WHOIS data aligns well with the business claims, reinforcing legitimacy. Strategic improvements could focus on enhancing security policies, incident response transparency, and accessibility features.

M

Maison de la Tourbière

mdt-ne.ch

60

Maison de la Tourbière is a small Swiss ecotourism establishment focused on scientific, cultural, and hospitality services dedicated to the study, promotion, and protection of peatlands. The website is professionally designed using the Wix platform, providing a good user experience with clear content relevant to its target audience interested in environmental conservation and ecotourism. The technical infrastructure is modern and leverages Wix's Thunderbolt framework, ensuring moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though explicit security headers and privacy policies are missing, representing areas for improvement. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

The website m2mserver.de is currently a minimal landing page with very limited content, primarily displaying the domain name in a styled header. There is no substantive business description, contact information, or interactive elements. The WHOIS data indicates the domain is registered with German name servers, consistent with the .de TLD, but lacks detailed registrant information. The absence of privacy policies, cookie consent mechanisms, and terms of service suggests the site is either under development or serves as a placeholder. From a technical perspective, the site uses basic HTML and CSS without any detected scripts, frameworks, or CMS platforms. Performance and mobile optimization are basic, with no advanced SEO or accessibility features. Security posture is minimal with no visible security headers or SSL configuration details provided. No analytics or tracking technologies are present, indicating minimal data collection or user tracking. Security-wise, the site does not exhibit any blocking mechanisms such as WAF or security challenges, and no vulnerabilities or exposed sensitive data were detected. However, the lack of security best practices and compliance documentation represents a risk if the site were to handle sensitive data or user interactions in the future. Overall, the site scores low on content quality, privacy compliance, and security posture, reflecting its minimalistic nature. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, providing clear contact information, and enhancing technical SEO and accessibility to improve trust and user experience.

O

Oslo Architecture Triennale

oslotriennale.no

50

Oslo Architecture Triennale is a cultural institution organizing architecture-related exhibitions, journals, films, and urban labs primarily targeting architects, urban planners, cultural institutions, and the general public interested in architecture and urbanism. The website presents a professional and consistent brand image with rich content and partnerships with reputable organizations. Technically, the site uses modern web technologies including Google Analytics and Imgix for image optimization, though it still relies partially on deprecated Universal Analytics. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy and cookie policies. No WHOIS data is publicly available due to privacy protection, which is common for Norwegian domains and does not raise immediate concerns. Overall, the website is trustworthy and professionally maintained but would benefit from improved privacy compliance and security best practices.

F

Feratel Medien Technologien AG

feratel.ch

67

Feratel Medien Technologien AG is a Swiss-based technology company specializing in tourism and media solutions. The company offers a range of B2B services including marketing, upselling, service platforms, data strategies, communication, and interface development. Positioned as an established player in the DACH region, Feratel targets tourism industry professionals and media companies with a comprehensive suite of technology-driven services. The website reflects a professional and consistent brand image with clear navigation and good content quality. Technically, the website is built on TYPO3 CMS and integrates modern tools such as Cookiebot for consent management and Google Tag Manager for analytics. The site is mobile optimized and employs standard web technologies including JavaScript and CSS. Performance is moderate with good SEO and basic accessibility features. Security is well addressed with HTTPS enforcement and multiple security headers, though explicit security and incident response policies are not publicly documented. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. The site uses extensive tracking and marketing tools but manages user consent effectively. Overall, the website demonstrates a high level of trustworthiness and professionalism. Strategically, Feratel should consider publishing explicit security and incident response policies to enhance transparency and trust. Accessibility improvements and regular audits of third-party scripts would further strengthen the security and user experience. The domain registration data aligns well with the business claims, supporting legitimacy and credibility.

Davos Klosters is a prominent tourism organization promoting holidays and outdoor activities in the Swiss Alps, specifically in the Graubünden region. The website offers comprehensive information and booking options for skiing, hiking, biking, and cultural events, targeting tourists seeking alpine experiences. The company holds a strong market position as a leading alpine destination with a professional online presence and integrated e-commerce capabilities. Technically, the site is built on modern frameworks like Nuxt.js and Vue.js, ensuring fast performance, mobile optimization, and good SEO practices. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, although dedicated security and incident response policies are not explicitly found on the site. Privacy compliance is addressed with visible privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy, professional, and well-aligned with its business goals.

M

Musik Basel

musik.bs

56

Musik Basel is a regional media platform focused on providing news, event information, and venue details related to the music scene in Basel, Switzerland. The website targets music enthusiasts and residents interested in cultural events and music news within the Basel region. It operates primarily as a content publishing platform with a focus on local music culture and events. Technically, the website is built using modern web technologies including the Nuxt.js framework and Vue.js, with integrations such as Google Tag Manager and Google Maps API for enhanced user experience and analytics. The site demonstrates good mobile optimization, SEO practices, and a professional design consistent with its regional media focus. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes standard security headers, indicating a solid security posture. However, it lacks a cookie consent mechanism despite using tracking scripts, and there is no publicly available security policy or incident response information. No vulnerabilities or suspicious content were detected. Overall, Musik Basel presents a trustworthy and professional online presence for its niche audience. Strategic improvements in privacy compliance and transparency around security policies would further enhance its credibility and user trust.

L

LiveSurface

livesurface.com

64

The website 'LiveSurface' presents a professional front focused on product visualization and design tools, as indicated by the page title and styling. However, the absence of WHOIS registration data raises concerns about the domain's legitimacy or recent registration status. The technical infrastructure includes use of Google Tag Manager for analytics, but lacks visible security headers and privacy compliance documentation. No contact information or business details are provided, limiting trust and transparency. Overall, the site appears functional and visually coherent but lacks critical security and compliance elements.

K

Kniv-Web GmbH

kniv-web.ch

65

Kniv-Web GmbH is a Swiss-based digital agency specializing in web design, e-commerce solutions, SEO, and online marketing services. With over 25 years of experience, the company targets small and medium-sized businesses primarily in the March and Höfe districts of Switzerland. Their service offerings include professional website development, progressive web apps, online shops, branding, and video production, positioning them as a comprehensive digital partner for local businesses. Technically, the website leverages modern web technologies including PWA capabilities, Google Fonts, and integrates with analytics and cookie consent management tools. Hosting is provided by a Swiss company, Worldsoft AG, ensuring local infrastructure alignment. The site is mobile-optimized, SEO-friendly, and demonstrates good performance and accessibility standards. From a security perspective, the site enforces HTTPS and employs a robust cookie consent mechanism compliant with GDPR. However, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional, trustworthy, and compliant digital presence with strong business credibility. Strategic enhancements in security transparency and formal incident response processes would further strengthen their security posture and client trust.

W

Worldsoft AG

worldsoft.ch

68

Worldsoft AG is a well-established Swiss technology company specializing in comprehensive web project solutions including domain registration, website building, email marketing, online shops, CRM, and hosting services. With over 25 years of experience, the company targets businesses and professionals seeking integrated digital tools to enhance their online presence. Their market position is strengthened by strong customer satisfaction, certifications, and a broad product portfolio. Technically, the website demonstrates a modern and performant infrastructure using proprietary CMS technology, progressive web app features, and integration with third-party widgets for enhanced user engagement. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a published security policy or incident response contacts, which are recommended for further strengthening the security posture. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR adherence. Overall, the risk assessment is low with no indications of malicious activity or content safety concerns. Strategic recommendations include implementing security headers, publishing a vulnerability disclosure policy, and enhancing transparency around incident response to further build trust and resilience.

Worldsoft AG operates as a technology company specializing in smart internet business solutions, likely centered around content management systems and web services. The website currently displays a maintenance message with minimal content, including a user login form and a company contact email. The business appears to target other businesses or users seeking internet business solutions, positioning itself as a specialized provider in this niche. Technical infrastructure is basic, with HTML and CSS usage and no advanced frameworks or analytics detected. The site lacks modern security features such as HTTPS enforcement and security headers, which lowers its security posture. The absence of privacy and cookie policies indicates non-compliance with common data protection standards. Overall, the website presents a basic digital presence with room for significant improvements in security, compliance, and content richness.

Z

zinnobergruen gmbh

bestarchitects.de

50

The website bestarchitects.de represents the 'best architects award', a prestigious European architecture award recognizing outstanding architectural achievements. The site serves architects, industry professionals, and enthusiasts by providing award results, news, and a bookshop for related publications. The business model centers on award organization and publication sales, positioning itself as a recognized authority in the European architecture sector. Technically, the site is built on depage CMS with modern web standards, includes responsive design, and uses Google Analytics for visitor insights. Security posture is solid with HTTPS, CSRF protection on forms, and cookie consent mechanisms, though it lacks explicit security headers and published security policies. Overall, the site is professional, trustworthy, and compliant with GDPR, but could improve transparency on security and incident response. No blocking or WAF interference was detected, allowing full content access and analysis.

B

Beer Merz AG

beermerz.ch

61

Beer Merz AG is a small architecture firm based in Basel, Switzerland, specializing in architectural design, building renovations, and project competitions. The website presents a professional portfolio of projects primarily focused on real estate and urban development. The firm targets a general audience interested in architectural services within the Basel region. Technically, the website is built using React and modern JavaScript, with a custom CMS or framework. It shows moderate performance and good mobile optimization but lacks some accessibility features. Security posture is moderate; HTTPS is implied but no explicit security headers were detected. Cookie consent is implemented, and Google Analytics is used for tracking. However, no explicit contact information, terms of service, or security policies are present on the site. The domain uses privacy protection for WHOIS data, which is justified for this business type. Overall, the website is professional and trustworthy but could improve in security and compliance transparency.

Truwant + Rodet + is a small architecture and design studio based in Basel, Switzerland, specializing in innovative architectural projects, competitions, research studios, and exhibitions. Their portfolio includes a variety of projects primarily in Switzerland with some international collaborations, emphasizing adaptive reuse, artistic installations, and academic design studios. The website reflects a professional and artistic brand image targeting architecture professionals, clients, and academic institutions. Technically, the website employs modern JavaScript frameworks such as Alpine.js and GSAP, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks security headers and formal privacy or cookie policies. The presence of Google Analytics without a configured tracking ID and absence of privacy compliance mechanisms indicate areas for improvement. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security practices.

PilzCoach Badenweiler is a small, specialized business focused on mushroom coaching, education, and related product sales in the Badenweiler region of Germany. The company offers mushroom identification workshops, educational outreach to schools and kindergartens, and sells mushroom-related books and products. Their market position is niche and local, targeting mushroom enthusiasts and nature lovers. The website is built on the One.com Web Editor platform and hosted by One.com, featuring a moderate technical infrastructure with basic SEO and mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is basic but present, with cookie consent and privacy policy pages available. Overall, the website is professional, trustworthy, and content-rich for its niche audience.

O

ostseepilze.de

ostseepilze.de

47

The website ostseepilze.de is currently inaccessible, returning a 403 Forbidden error with a generic Jimdo error page. The site appears to be hosted on the Jimdo platform, a DIY website builder service, but contains no business-specific content, contact information, or policies. The lack of accessible content and security features severely limits the ability to assess the business or security posture. Technically, the site uses Jimdo's hosting and CSS assets but lacks HTTPS confirmation and security headers. No analytics or tracking scripts are present, indicating minimal digital maturity. The security posture is weak due to the absence of HTTPS and security best practices. Overall, the site appears to be inactive or under construction, resulting in a low trust and credibility score.

K

Kieler Pilzfreunde e.V.

kieler-pilzfreunde.de

56

Kieler Pilzfreunde e.V. is a small non-profit association based in Germany focused on mushroom education, conservation, and community engagement. The website provides information about mushroom identification, courses, exhibitions, and artistic projects involving fungi. It targets mushroom enthusiasts, nature lovers, and local community members including adults and children. The business model relies on memberships, donations, and event participation. Technically, the website is built using Incomedia WebSite X5 CMS with jQuery and standard web technologies. The site has moderate performance and basic mobile optimization. SEO is reasonably addressed with meta tags and structured navigation. However, there is no visible cookie consent mechanism or advanced accessibility features. From a security perspective, the site lacks visible security headers and explicit HTTPS confirmation in the provided data, which lowers its security posture. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic with a privacy policy present but no cookie banner. No incident response or security policies are published. Overall, the website is functional and trustworthy for its non-profit educational purpose but would benefit from improved security practices, HTTPS verification, and enhanced privacy compliance to strengthen user trust and regulatory adherence.

S

Spielfeld Gesellschaft

spielfeld-gesellschaft.de

10

Spielfeld Gesellschaft is a German non-profit platform focused on fostering social cohesion and integration within the Niedersachsen region. Supported by the Niedersächsische Lotto-Sport-Stiftung, it offers community engagement through events, podcasts, newsletters, and networking opportunities. The website reflects a clear mission to connect people and ideas for an open society. Technically, the site uses modern JavaScript modules, Matomo analytics with cookies disabled, and good accessibility and SEO practices, though some improvements in cookie consent and security headers are recommended. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks published security policies or incident response contacts. Overall, the site is professional, trustworthy, and safe for general audiences.

N

NDK Wurzen

leerstellen-lkl.de

47

The website leerstellen-lkl.de is a well-structured non-profit project focused on documenting cases of right-wing violence in the Leipzig district. It provides a digital memorial and educational resource through a web documentary, peer networks, and workshops primarily targeting youth and affected communities. The project is funded by reputable organizations and operated by NDK Wurzen, indicating a credible and mission-driven initiative. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, ensuring a responsive and user-friendly experience, though some improvements in accessibility and SEO could be made. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance. Overall, the site is trustworthy, professional, and safe for general audiences.

K

kollygujer

kollygujer.ch

48

kollygujer.ch is a website representing a small creative studio or agency based in Switzerland, focusing on showcasing creative work, offering a shop, and sharing content such as gossip and about pages. The business model appears to be service-oriented with an e-commerce component. The website uses basic web technologies including HTML, CSS, JavaScript, and the p5.js library for interactive graphics. The site is moderately optimized for performance and mobile use but lacks advanced SEO and accessibility features. Security posture is minimal with no detected security headers or privacy policies, and no evidence of HTTPS was found in the provided data. Contact information is limited to a single email address and an Instagram social media link. The domain WHOIS is privacy protected, which is common and justified for small creative businesses. Overall, the website is functional but basic in design and security.

W

Weyell Zipse

weyellzipse.ch

44

Weyell Zipse is a Swiss architecture studio specializing in architectural design, competitions, exhibitions, and academic guest critiques. The firm has a strong presence in Switzerland and Germany, with a portfolio including schools, residential buildings, and public spaces. Their market position is that of an established, award-winning practice engaged in both professional projects and academic discourse. Technically, the website is built on WordPress with modern JavaScript libraries, offering good mobile optimization and accessibility. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in compliance and security transparency.

S

Sparkasse Hannover

sparkasse-hannover.de

68

Sparkasse Hannover is a prominent regional bank serving Hannover and its surrounding region, offering a broad spectrum of financial services including online banking, investment products, insurance, real estate financing, and personalized advisory services. The website reflects a mature digital presence with comprehensive content tailored to private, corporate, and young customers. The bank holds recognized certifications and awards, underscoring its market leadership and customer service excellence. Technically, the site is built on Adobe Experience Manager, leveraging modern web technologies and providing a responsive, accessible user experience. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers could be better documented. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

H

Hannoversche Volksbank eG

hannoversche-volksbank.de

63

Hannoversche Volksbank eG is a regional cooperative bank in Germany focused on providing local banking and financial services. The website reflects a professional and consistent brand presence, targeting local customers with a clear business model centered on cooperative banking. The digital infrastructure uses modern web technologies including Angular framework and integrates marketing consent management and analytics tools such as Adobe Launch and OneTrust. Security posture is solid with HTTPS enforced and monitoring scripts in place, though explicit security headers and published security policies are absent. Privacy compliance is partially addressed via cookie consent mechanisms but lacks visible privacy and terms of service documentation. Overall, the website is trustworthy and well-positioned in its market segment, with room for improvement in transparency and security documentation.

Radpass Hannover is a small, community-focused organization dedicated to promoting cycling sports and organizing cycling events in Hannover, Germany. The website serves as a hub for event information, registration links, and showcases partner cycling clubs. Technically, the site is built on WordPress with modern plugins for gallery display, GDPR compliance, and lightweight analytics. The site is well-optimized for performance and mobile devices, with good SEO and accessibility features. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or compliance gaps were detected. Overall, the site presents a trustworthy and professional image suitable for its local community audience.

The website lsb-nds.net serves as the official portal for the LandesSportBund Niedersachsen, a regional sports association in Germany. It primarily facilitates members in applying for funding and accessing educational and administrative services related to sports. The site targets members of the LandesSportBund Niedersachsen and operates as a non-profit government-related entity. The business model focuses on providing digital access to sports-related funding and educational resources within the Niedersachsen region. Technically, the website employs basic web technologies including HTML5, CSS, and JavaScript, with a custom MD5-based challenge-response login mechanism. The infrastructure is moderate in performance and mobile optimization, with hosting linked to InterNetX GmbH and DNS servers under htp-tel.de. However, the site lacks modern security enhancements such as DNSSEC and security headers, and uses outdated cryptographic methods for authentication. From a security perspective, while the domain registration is consistent and legitimate, the use of MD5 hashing and absence of DNSSEC and security headers present vulnerabilities. No explicit privacy or cookie consent mechanisms are implemented, though a privacy policy is linked externally. The site is accessible without WAF or blocking mechanisms, but improvements in security posture and privacy compliance are recommended. Overall, the website is functional and serves its intended audience but would benefit from modernization of security practices, enhanced privacy compliance, and improved technical implementation to strengthen trust and resilience against threats.

L

Laurids Jensen Photographer

lauridsjensen.com

48

Laurids Jensen operates a professional photography portfolio website showcasing editorial, commissioned, and moving image works. The business is positioned as a niche creative service provider in the media industry, targeting clients and collaborators in the art and editorial sectors. The website content is well-structured and visually oriented to highlight the photographer's work, with a consistent branding approach and good user experience. Technically, the website is built using standard web technologies including HTML5, CSS, JavaScript, and jQuery, hosted by cyon.ch. It employs Google Analytics and Google Tag Manager for visitor tracking but lacks advanced CMS or frameworks. The site is mobile optimized with moderate performance and basic accessibility features. However, there is room for improvement in SEO and technical modernization. From a security perspective, the site uses HTTPS and has domain transfer protections enabled but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, and no incident response contacts are provided, indicating gaps in compliance and security readiness. The use of tracking scripts without visible consent mechanisms also raises privacy concerns. Overall, the website is a legitimate, small-scale professional portfolio with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security headers, and incident response readiness would enhance trust and reduce risk.

A

Alena Stählin

alenastaehlin.ch

61

Alena Stählin is a Swiss graphic designer operating a small design studio specializing in publications, branding, posters, exhibition design, and web design. The business targets clients primarily in the cultural, educational, and artistic sectors, including museums, schools, institutions, and individual professionals. The website presents a professional portfolio with clear contact information and showcases multiple awards and notable clients, indicating a reputable market position within its niche. Technically, the website is built using modern web technologies, specifically the SvelteKit framework, and demonstrates good mobile optimization and user experience. However, there is a lack of visible security headers, privacy policies, and cookie consent mechanisms, which indicates room for improvement in compliance and security posture. From a security perspective, the site uses HTTPS (implied by the URL), but no additional security policies or incident response contacts are provided. No forms or data collection mechanisms were detected, reducing immediate data protection risks. The absence of privacy and cookie policies, however, may pose compliance risks under GDPR or similar regulations. Overall, the website is professional and trustworthy in terms of business credibility and content quality but requires enhancements in privacy compliance and security best practices to reduce risk and improve user trust.

S

Swiss Golf Bubikon

swissgolfbubikon.ch

10

Swiss Golf Bubikon is a well-established golf club and training facility located in Bubikon, Switzerland, serving golf enthusiasts ranging from beginners to active players and corporate clients. The website highlights their key offerings including a golf school, a 9-hole golf course, a driving range equipped with modern Toptracer technology, event hosting services, and club memberships. The business has a strong regional presence and a history dating back to 1989, positioning itself as a quality provider in the hospitality and sports sector within the Zürcher Oberland region. Technically, the website is built on WordPress with Yoast SEO plugin integration, featuring modern web technologies such as HTML5, CSS, JavaScript, and embedded multimedia content including YouTube videos. The site is mobile-optimized and demonstrates good SEO practices, although some improvements in accessibility and security headers could be made. Analytics are implemented via a custom independent analytics plugin, tracking user interactions moderately. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks advanced security headers and a dedicated security policy or incident response information. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Contact information is comprehensive and clearly presented, enhancing business credibility. Overall, the website is professional, trustworthy, and well-suited for its target audience. Strategic recommendations include enhancing security headers, implementing cookie consent for GDPR compliance, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen the site's security posture and user trust.

P

Promotionsverband BW

promotionsverband-bw.de

60

The Promotionsverband BW website represents an academic consortium focused on managing doctoral promotion rights for applied sciences universities in Baden-Württemberg, Germany. The site provides information about the organization’s role in supervising doctoral projects through its 24 member institutions. The business model is non-profit and education-oriented, targeting academic professionals and institutions. The website is built on the Wix platform, leveraging Wix Thunderbolt framework and standard web technologies. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in transparency and security practices.