Security Directory

Schulen am Maiengrün is a Swiss educational institution serving the Verbandsgemeinden of Dottikon, Hägglingen, and Hendschiken. The website provides comprehensive information about primary and secondary education offerings, targeting local parents, students, and community members. The institution operates multiple school locations and offers classes from kindergarten through ninth grade. The site is well-branded and consistent with the institution's identity, featuring official logos and clear contact information. Technically, the website is built on WordPress using Elementor and several plugins for SEO, events, and team management. It employs modern web technologies including HTTPS, jQuery, and integrates YouTube videos. The site is moderately performant with good mobile optimization and basic accessibility features. SEO is enhanced by Rank Math PRO and structured data in JSON-LD format. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks advanced security headers and does not publish explicit security or incident response policies. No vulnerabilities or suspicious content were detected. Privacy compliance is adequate with a clear privacy policy and cookie banner. Overall, Schulen am Maiengrün presents a trustworthy, professional online presence appropriate for its educational mission. The site is safe for general audiences, free of adult or questionable content, and provides transparent contact details. Strategic improvements could include enhanced security headers and publishing a formal security policy to strengthen trust and compliance.

A

Allgeier Schweiz

allgeier.ch

52

Allgeier Schweiz is a Swiss-based IT service provider and Microsoft partner specializing in guiding medium and large enterprises through digital transformation. Their key services include cloud adoption, migration, cyber security, Azure managed services, business automation, and data-driven business strategies. The company targets primarily German-speaking Swiss enterprises and positions itself as a trusted partner in IT transformation. The website is professionally designed using WordPress and Elementor, with modern SEO and tracking tools implemented. Security posture is solid with HTTPS and security headers, though explicit privacy and security policies are not published on the site. Overall, the business appears credible and technically mature, with room for improvement in privacy compliance and incident response transparency.

K

K. Lienhard AG

lienhard-ag.ch

49

K. Lienhard AG is a Swiss engineering firm specializing in the planning, documentation, and maintenance of infrastructure for energy and water supply. With over six decades of experience, the company serves utilities and infrastructure operators across Switzerland, offering a broad range of professional services and products. The website reflects a mature market position with clear service offerings and a professional digital presence. Technically, the site is built on WordPress with WooCommerce and integrates privacy-conscious analytics and Google reCAPTCHA for form security. Security posture is solid with HTTPS and no obvious vulnerabilities, though some improvements in security headers and explicit policies could enhance trust. Overall, the site is accessible, well-structured, and compliant with GDPR, though a cookie consent mechanism is missing. Strategic recommendations include enhancing security policies, adding cookie consent, and publishing terms of service to improve compliance and user trust.

E

EWK Energie AG

ewk-energie.ch

56

EWK Energie AG is a local energy distribution company serving the Gemeinde Kölliken in Switzerland. The company provides electricity distribution services, including standard and renewable energy sourced from local hydropower. Their market position is that of a trusted local utility provider with a focus on reliable energy delivery and customer support. The website reflects a professional and consistent brand image, targeting residents and businesses within the community. Technically, the site is built on WordPress using Elementor, with modern web technologies and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is partially addressed with a privacy policy page but no cookie consent mechanism. Overall, the website is trustworthy and functional, supporting the company's business objectives effectively.

G

Gewerbeverein Kölliken Uerkental

gewerbeverein-koelliken.ch

63

Gewerbeverein Kölliken Uerkental is a regional business association serving local companies and members in the Kölliken and Uerkental area of Switzerland. The organization focuses on fostering local business networking, organizing events such as entrepreneur meetings, annual excursions, and initiatives connecting schools with the business community. The website reflects a small-sized, community-oriented business model with a clear local market position and a focus on member services including voucher programs. Technically, the website is built on WordPress using the Elementor page builder and JetEngine plugin, incorporating modern JavaScript libraries like Swiper.js and jQuery. It employs Matomo analytics for user tracking and demonstrates moderate performance with good mobile optimization. However, accessibility and SEO optimizations are basic and could be improved. From a security perspective, the site uses HTTPS with an excellent SSL configuration but lacks several security headers and explicit security policies such as incident response or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy and security practices to improve compliance and user trust. Strategic improvements in security headers, cookie consent, and incident response policies are recommended to strengthen the security posture and regulatory adherence.

G

Gemeinde Dottikon

dottikon.ch

47

Gemeinde Dottikon operates as the official municipal government website for the community of Dottikon in Switzerland. It provides residents and visitors with information about local administration, public services, cultural activities, education, and events. The website is positioned as a local government authority portal, offering key services such as online administrative services, waste disposal information, and event calendars. The target audience primarily includes local citizens and stakeholders interested in municipal affairs. Technically, the website is built on the WordPress CMS platform using the Divi theme and incorporates WooCommerce for transactional or booking functionalities. It leverages common web technologies such as jQuery and Google Maps API for enhanced user experience. The site demonstrates good mobile optimization and SEO practices, with structured data and meta tags properly implemented. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious elements were detected in the provided content. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the website is a trustworthy and professional municipal portal with solid business credibility. Strategic improvements in privacy compliance, security policy transparency, and contact information publication would enhance its security posture and user trust.

S

Spitex Limmat Aare Reuss AG

spitex-lar.ch

50

Spitex Limmat Aare Reuss AG is a Swiss healthcare provider specializing in outpatient nursing and care services. The company emphasizes professional, high-quality care with a strong focus on collaboration with healthcare professionals and families. Their services include somatic and psychiatric nursing, wound and stoma care, palliative care, dementia care, household services, and additional comfort services. They also invest in education and training, positioning themselves as a regional leader in outpatient care. Technically, the website is built on WordPress with modern analytics and security tools such as Google reCAPTCHA and Plausible Analytics. The site is well-optimized for mobile and SEO, with clear navigation and professional design. Security posture is good with HTTPS and form protections, though some security headers and policies could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the website reflects a trustworthy and professional healthcare organization with a solid digital presence.

Regionales Führungsorgan Baden (RFO Baden) is a regional government entity responsible for coordinating emergency and disaster response measures in the Baden region of the Canton Aargau, Switzerland. The website serves as an information portal for the public and local authorities, providing updates on population protection, safety events, and emergency plans. The organization supports municipalities in managing crises and severe shortages, positioning itself as a key regional coordination body in civil protection. Technically, the website is built on WordPress using WPBakery Page Builder and Yoast SEO for content management and optimization. It employs modern web technologies including Bootstrap for responsive design and Google reCAPTCHA to secure its contact form. The site demonstrates good mobile optimization and basic accessibility features, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site uses HTTPS with an excellent SSL configuration and integrates reCAPTCHA to prevent spam. However, it lacks explicit security headers and does not publish incident response or vulnerability disclosure policies, which are important for transparency and trust. No critical vulnerabilities or suspicious elements were detected. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Overall, RFO Baden's website is a professional, trustworthy platform that effectively supports its governmental mission. Strategic enhancements in security policies, cookie consent, and transparency would further strengthen its security posture and compliance with data protection regulations.

R

Regionale 2025

regionale2025.ch

53

Regionale 2025 is a regional government-backed initiative focused on promoting cultural, spatial, and societal projects in the Limmattal region of Switzerland. The website serves as a platform to showcase around 30 innovative projects supported by 16 municipalities and the cantons of Aargau and Zürich, with a program of events running from May to October 2025. The target audience includes local residents, cultural stakeholders, and visitors interested in regional development and community engagement. The business model is primarily public sector and non-profit, emphasizing regional collaboration and cultural promotion. Technically, the website is built on WordPress with modern plugins such as Gravity Forms for data collection, Instagram Feed Pro for social media integration, and Google reCAPTCHA for form security. It uses Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good accessibility and SEO practices, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies and incident response information, which could be enhanced to improve trust and compliance. Privacy compliance is basic, with a privacy policy present but no cookie consent banner detected. Overall, the website is professional, trustworthy, and well-aligned with its public sector mission. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security and incident response policies, and enhancing security headers to strengthen the security posture further.

P

Prowildtierschutz.ch

prowildtierschutz.ch

51

Prowildtierschutz.ch is a Swiss non-profit organization dedicated to wildlife protection, wild accident prevention, and public education. The website serves as an informational platform targeting the general public and stakeholders interested in wildlife safety and accident prevention. It offers resources such as training, awareness campaigns, and information about wildlife and accident reporting. The organization maintains a moderate market position within the niche of wildlife protection in Switzerland, leveraging social media channels like Facebook, Twitter (X), and YouTube to extend its outreach. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins such as WooCommerce, Yoast SEO, Jetpack, and Complianz GDPR for cookie consent management. The infrastructure is supported by Automattic's CDN and hosting services, ensuring moderate performance and good mobile optimization. SEO practices are well implemented with structured data and meta tags, though accessibility features are basic. From a security perspective, the site enforces HTTPS with good SSL configuration and includes standard security headers. It uses security plugins to mitigate spam and bot activity. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, representing areas for improvement. No critical vulnerabilities or suspicious activities were detected. Overall, the website is safe, professional, and trustworthy, with a clear focus on its mission. The absence of privacy and terms policies, as well as limited visible contact information, slightly reduce its privacy compliance and business credibility scores. Strategic enhancements in these areas would strengthen the site's security posture and user trust.

B

BZB+

bzbplus.ch

46

BZB+ is a Swiss-based consulting and therapy service provider operating since 2017. The website presents information, consulting, and therapy services primarily targeting a German-speaking Swiss audience. The business appears to be a small-sized entity with a focused service offering. The website is built on WordPress using the Divi theme and includes common plugins such as Contact Form 7 and Yoast SEO, indicating a moderate level of digital maturity. However, the Google Analytics plugin is present but not fully configured, suggesting incomplete analytics implementation. Security posture is basic with no detected security headers or advanced security policies, and no privacy or cookie policies are found, indicating gaps in compliance and security best practices. Overall, the website is professional and functional but would benefit from enhanced security measures and privacy compliance to improve trust and regulatory adherence.

Spielgruppe Ennetbaden is a small local community organization providing playgroup and forest half-day programs for children aged three and above in Ennetbaden, Switzerland. The website serves as an informational portal for parents, highlighting the importance of social play and language development in early childhood. The business operates on a community-based educational model with a focus on nurturing and supporting children's development in a natural environment. Technically, the website is built on WordPress using common frameworks and libraries such as jQuery and Bootstrap. The site is moderately optimized for performance and mobile devices, with a clear navigation structure and good content quality. However, there is room for improvement in accessibility and SEO optimization. The Google Analytics plugin is present but not configured, indicating limited active user tracking. From a security perspective, the site uses HTTPS, which is a positive baseline. However, it lacks important security headers such as Content-Security-Policy and HSTS, which could enhance protection against common web attacks. No privacy or cookie policies are present, which is a compliance gap under GDPR regulations. Contact information is minimal, and no incident response or security policies are disclosed. Overall, the website is functional and serves its informational purpose well but requires enhancements in privacy compliance, security hardening, and transparency to improve trust and regulatory adherence.

R

Ribi + Blum AG

ribiblum.ch

49

Ribi + Blum AG is a Swiss engineering and planning firm specializing in building construction, civil engineering, and transportation planning. The company targets businesses and public sector clients requiring professional engineering services. The website is built on WordPress using the Divi theme and incorporates SEO best practices via the Yoast SEO plugin, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and presents professional content relevant to its industry. However, the absence of explicit privacy, cookie, and terms of service policies, along with no visible security headers, suggests gaps in compliance and security posture. The domain uses WHOIS privacy protection, which is common for small businesses but reduces transparency. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures.

G

Gemeinde Hauenstein-Ifenthal

hauenstein-ifenthal.ch

48

Gemeinde Hauenstein-Ifenthal is a small Swiss municipal government providing local administrative information, community news, and public services through its official website. The site targets residents and visitors, offering details about local authorities, tourism, and community events. The website is built on WordPress using Elementor, reflecting a standard technical infrastructure for small government entities. The site is moderately optimized for mobile and SEO, with a good design and clear navigation. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security practices.

B

BEST SWISS VILLAGES

swisshistorictowns.org

53

BEST SWISS VILLAGES operates a WordPress-based website focused on promoting Swiss historic towns and villages, targeting tourists and cultural enthusiasts interested in heritage sites. The platform offers informational content, news updates, a newsletter, press coverage, and an e-commerce shop. The business is relatively new, having started in 2023, and maintains partnerships with Austrian networks of small historic towns. Technically, the website uses modern WordPress plugins and themes, including WooCommerce and Elementor, hosted on Hoststar. The site is mobile-optimized and SEO-friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks security headers and explicit security policies. No contact emails or phone numbers are provided, which may affect user trust and support. The domain registration is transparent and consistent with the business timeline, enhancing legitimacy. Overall, the website is professional and functional but could improve privacy compliance and security practices.

P

Plakatdyr.dk

plakatdyr.dk

71

Plakatdyr.dk is a Danish e-commerce retailer specializing in posters and home decor products, targeting a broad audience including families and individuals interested in decorative prints. The company has been operational since 2014 and maintains a strong online presence with active social media accounts and a high Trustpilot rating, indicating good market positioning within its niche. The website is built on a modern WordPress and WooCommerce infrastructure, utilizing popular plugins and page builders such as Elementor and Yoast SEO to optimize user experience and search engine visibility. The technical setup includes multiple third-party marketing and analytics tools, with cookie consent managed by Cookiebot, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and some security headers present, though improvements such as enabling DNSSEC and publishing a security policy would enhance trust. Privacy compliance is basic but present, with a privacy and cookie policy accessible and GDPR considerations implied. Overall, the website is professional, trustworthy, and well-structured, with room for enhancement in security and compliance documentation.

M

MedCity News

medcitynews.com

10

MedCity News is a well-established healthcare technology and life sciences news media outlet founded in 2008. It serves healthcare professionals, industry stakeholders, and investors by providing news articles, podcasts, events, and research materials. The website demonstrates a solid market position within its niche, supported by a consistent brand presence and multiple digital channels including social media and newsletters. Technically, the site is built on WordPress with a modern tech stack including Google Analytics, HubSpot, and OneTrust for cookie consent, hosted behind Cloudflare DNS. The site is moderately performant and mobile optimized with good SEO practices. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks some security headers and published security policies. Privacy compliance is basic, with no explicit privacy policy or terms of service found in the provided content. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business. Strategic improvements in privacy transparency and security hardening are recommended to enhance trust and compliance.

X

Xpeer Medical education

xpeer.app

50

Xpeer Medical education is a Spain-based company providing accredited medical education videos accessible globally through a mobile app and online platform. It holds unique accreditation by the European Union of Medical Specialists (UEMS), offering free courses in multiple languages and specialties to healthcare professionals worldwide. The platform supports continuing medical education (CME/CPD) credits and serves a community of over 100,000 users across 40 countries. The business model includes free access for individuals and tailored business solutions for organizations seeking to distribute accredited content. Technically, the website is built on WordPress with Elementor, leveraging modern analytics tools such as Google Analytics and PostHog, and implements Google reCAPTCHA Enterprise for bot protection. The site is mobile-optimized, SEO-friendly, and includes cookie consent mechanisms compliant with GDPR. Performance is moderate with good accessibility and professional design. From a security perspective, the site enforces HTTPS, uses multiple security headers, and avoids exposing sensitive data. However, it lacks a dedicated security policy and incident response contact information, and does not publish a vulnerability disclosure program. Overall, the security posture is strong but could be enhanced with additional transparency and formal policies. The overall risk assessment is low, with no signs of malicious activity or vulnerabilities. Strategic recommendations include publishing a security policy, establishing incident response contacts, and implementing a vulnerability disclosure program to further enhance trust and compliance.

G

GEN - Genetic Engineering and Biotechnology News

genengnews.com

70

GEN - Genetic Engineering and Biotechnology News is a specialized media outlet providing up-to-date news, analysis, webinars, and podcasts focused on genetic engineering and biotechnology. It serves professionals and researchers in the healthcare and biotech sectors, positioning itself as a trusted source of industry information. The website is professionally designed, mobile-optimized, and uses modern technologies including WordPress CMS, HubSpot forms, and Google Analytics for digital maturity. Security posture is strong with HTTPS enforcement, security headers, and anti-bot measures like Google reCAPTCHA Enterprise, though it lacks a published security policy or incident response information. The absence of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional content and branding. Strategic recommendations include enhancing security transparency and implementing a vulnerability disclosure policy.

C

CAP TODAY

captodayonline.com

61

CAP TODAY is a specialized online publication serving the pathology and laboratory medicine community, offering articles, product guides, webinars, and event information. The website is built on WordPress and integrates multiple third-party services for analytics and advertising, reflecting a moderate level of digital maturity. The content is professionally presented, targeting healthcare professionals in pathology and laboratory management. Security posture is generally good with HTTPS and no visible vulnerabilities, but lacks explicit security policies and privacy compliance documentation. The absence of WHOIS registration data raises concerns about domain registration transparency, though the site appears legitimate and active. Strategic recommendations include enhancing privacy and security disclosures and verifying domain registration details to improve trust.

U

UofL Health

uoflhealth.org

71

UofL Health is a large, not-for-profit academic health system serving Kentucky and Indiana, operating multiple hospitals, medical centers, and physician practices. The website reflects a professional healthcare provider platform with a focus on patient services, appointments, and community engagement. The technical infrastructure is based on WordPress with modern web technologies including Bootstrap and JavaScript libraries, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and security headers, though DNSSEC is not enabled and no explicit vulnerability disclosure or incident response policies are published. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is trustworthy and well-positioned for its audience but could improve transparency and compliance documentation.

M

Newsletter-Tool fürs professionelle E-Mail Marketing

mailfino.com

63

Mailfino.de is a German-language website offering a newsletter tool tailored for professional email marketing. The site targets businesses and professionals seeking effective email marketing solutions. The business model appears to be SaaS-based, leveraging WordPress with Elementor and WooCommerce for content management and e-commerce capabilities. The website demonstrates good design quality and user experience, with moderate technical performance and SEO optimization. However, it lacks visible privacy, cookie, and terms of service policies, as well as contact information and security policies, which impacts its overall trustworthiness and compliance posture. No WAF or blocking mechanisms were detected, indicating full accessibility of the site content.

M

Millenium

millenium-btc.si

55

Millenium is a Slovenian sports and wellness center offering fitness, tennis, sauna, and guided exercise classes. The website reflects a well-established local business with a clear focus on quality services and customer satisfaction. The company has been operating since at least 2014, supported by consistent domain registration data. Technically, the website is built on WordPress with modern plugins and SEO tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie management. Overall, the site is professional, trustworthy, and well-positioned in its market niche.

Zahraniční Kasina is a Czech-language affiliate and review website specializing in international online casinos, targeting Czech players interested in gambling abroad. The site provides detailed reviews, bonus information, payment methods, legal considerations, and responsible gaming advice. It operates as an informational platform without direct gambling services, leveraging affiliate marketing links to casino operators. The website is built on WordPress with modern technologies such as Google Tag Manager and Microsoft Clarity for analytics and user behavior tracking. Hosting and DNS services are managed via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS and SSL encryption, though some security headers and privacy compliance mechanisms like cookie consent are missing. The domain is newly registered in 2024, consistent with the site's content and business model. Overall, the site presents a professional and trustworthy resource for Czech players seeking international casino options.

J

Jogos de Cassino e Apostas Esportivas na Bet7k: jogo seguro no Brasil

plinko-official.com

56

The website plinko-official.com is a specialized content platform focused on the Plinko gambling game developed by Spribe. It provides detailed information about the game, including how to play, features, strategies, and legal considerations. The site targets adult online casino players interested in Plinko and related games. It offers demo and real money play links, supported by structured data and SEO optimizations to enhance visibility. Technically, the site is built on WordPress with common plugins like Yoast SEO and uses modern web technologies including HTTPS, Cloudflare DNS, and push notifications via OneSignal. Mobile optimization is excellent, ensuring a smooth user experience across devices. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and incident response documentation. Privacy compliance is basic with privacy and cookie policies present but no explicit GDPR consent mechanisms. Business credibility is moderate due to lack of direct contact information and terms of service. Overall, the site is professional and trustworthy for its niche but could improve security and compliance transparency.

K

Kiowa Casino

kiowacasino.com

60

Kiowa Casino operates a regional casino and hospitality business in Oklahoma, offering a wide range of gaming options including over 900 slot machines, table games such as poker and blackjack, and premium dining experiences like the Morning Star Steakhouse. The business also provides hotel accommodations and runs a rewards club to engage customers. The website reflects a mature digital presence with a modern WordPress CMS, Elementor page builder, and integration of SEO and analytics tools. The site is well-structured, visually appealing, and mobile optimized, targeting adult casino visitors in the Oklahoma region. Security posture is adequate with HTTPS and no visible vulnerabilities, though improvements in DNSSEC and security policy disclosures are recommended. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and aligned with the business's market position.

O

OpenExchange

open-exchange.net

65

OpenExchange is a professional service provider specializing in managed virtual meetings and events for corporate clients, including investor relations, corporate engagement, and institutional banking sectors. Founded in 2011, the company has established a strong market presence with a medium-sized operation based in the United States. Their website reflects a mature digital infrastructure leveraging WordPress CMS, integrated marketing and analytics tools such as HubSpot, Google Tag Manager, and multiple tracking pixels, indicating a sophisticated approach to customer engagement and data collection. Security posture is solid with HTTPS enabled, domain transfer protection, and some security best practices observed, though there is room for improvement in DNSSEC and explicit security policies. Overall, the website is professional, well-branded, and trustworthy, targeting business audiences seeking high-quality virtual event solutions.

A

Avenir Conseil France

avenir-conseil.fr

10

Avenir Conseil France is a specialized consulting and training firm focusing on the deployment of business information systems and supporting organizational digital transformation. The company positions itself as a bridge between IT and engineering/manufacturing sectors, offering services including project management, change management, training, operations, and user support. Their subsidiary or agency, edufactory, enhances their digital learning capabilities. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site uses WordPress with modern plugins and frameworks, including Yoast SEO, Bootstrap, Google Tag Manager, and Google Analytics, with a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which is common for consulting firms. Overall, the site demonstrates a credible and professional business presence with moderate risk due to limited public domain registration transparency.

G

GEN energija

jek2.si

53

The website jek2.si represents the JEK2 nuclear energy project, a strategic initiative by GEN energija to develop a modern, reliable, and environmentally friendly electricity supply in Slovenia. The site serves as an information hub for the public, stakeholders, and government entities, providing news, project details, and educational content. It positions itself as a key player in Slovenia's energy future, emphasizing nuclear energy's role alongside renewables to achieve climate neutrality. Technically, the website is built on WordPress with a modern tech stack including Google Fonts, Google Analytics, and multilingual support via WPML. It is hosted behind Cloudflare DNS and CDN services, ensuring good performance and security. The site employs HTTPS with strong SSL configuration and uses reCAPTCHA v3 to secure its contact form. Privacy and cookie policies are present and GDPR compliant, reflecting a mature approach to data protection. However, no explicit security policy or incident response contacts are published. Overall, the site is professional, trustworthy, and well-maintained, with a strong focus on transparency and public engagement.

M

mynewsletter.rocks

mynewsletter.rocks

60

mynewsletter.rocks is a German-based SaaS company offering a simple and user-friendly email marketing application tailored for small businesses. The platform enables users to send newsletters effortlessly without prior technical knowledge, positioning itself as a niche player in the email marketing sector focused on the German-speaking market. The website is professionally designed, multilingual, and integrates e-commerce capabilities via WooCommerce, indicating a mature digital infrastructure. The technical stack leverages WordPress with modern plugins and Cloudflare for hosting and security, ensuring fast performance and reliable uptime. Security posture is strong with HTTPS, comprehensive cookie consent mechanisms, and use of Cloudflare's protective services. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website and business appear legitimate and trustworthy, with good compliance to GDPR and privacy standards.

T

TablePress

tablepress.org

72

TablePress is a well-established WordPress plugin provider specializing in creating and managing tables easily and efficiently on WordPress websites. The company offers a freemium business model with premium plans that enhance functionality and support. The website is professionally designed, highly accessible, and optimized for mobile devices, targeting WordPress users who need advanced table features without coding. Technically, the site leverages WordPress CMS, modern JavaScript libraries like DataTables, and is hosted with Cloudflare DNS and registrar services, ensuring good performance and security. Security posture is strong with HTTPS enforced and multiple security headers present, though DNSSEC is not enabled. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and credible with strong user testimonials and a clear market position as a leading WordPress table plugin.

A

ALTEN France

alten.fr

63

ALTEN France is a leading global engineering and IT services company that supports clients in innovation, R&D, and IT systems both in France and worldwide. The company offers a broad range of services including engineering services, IT services, cybersecurity, artificial intelligence, and data management. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to corporate clients and professionals in technology sectors. Technically, the site is built on WordPress with modern frameworks and includes robust privacy and cookie consent mechanisms. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. WHOIS data is unavailable due to privacy protection but the domain appears legitimate and active. Overall, ALTEN France demonstrates a solid business and technical foundation with good compliance and trust indicators.

S

Subjekt d.o.o.

subjekt.eu

51

Subjekt d.o.o. is a Croatian consulting company specializing in connecting culture, tourism, sport, and local communities with EU funding opportunities. Founded in 2018 and based in Rijeka, it has a niche market position focusing on EU fund projects such as Erasmus+, Interreg, Creative Europe, and the European Social Fund. The company is part of the Impuls savjetovanja d.o.o. group since 2023, enhancing its professional capacity. The website reflects a professional and consistent brand image with clear messaging targeted at organizations seeking EU funding support in relevant sectors. Technically, the website is built on WordPress with modern technologies including Bootstrap 5, jQuery, and SEO plugins, delivering good performance and mobile optimization. Security posture is solid with HTTPS and hCaptcha integration, though security headers and formal security policies could be improved. Privacy compliance is partial with a cookie consent mechanism but lacking a visible privacy policy. Contact is primarily via a contact form, with no explicit emails or phone numbers publicly listed. Overall, the website is trustworthy and professionally maintained, suitable for its business purpose.

Z

Zaslon Digital Signage

zaslon-signage.com

46

Zaslon Digital Signage is a small business specializing in unique digital signage systems tailored for public transport vehicles. The company appears to be positioned as a niche B2B technology provider targeting public transport operators. Their website is built on WordPress using the Kadence theme and Kadence Blocks plugins, optimized with Yoast SEO, indicating a moderate level of digital maturity. The technical infrastructure is hosted on Neoserv with basic security configurations including HTTPS but lacks advanced DNS security features such as DNSSEC. Security posture is adequate but could be improved by implementing security headers and vulnerability disclosure mechanisms. Privacy compliance is currently weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced security and compliance measures.

Impuls savjetovanje is a professional consulting firm specializing in securing and managing EU funds, international cooperation projects, education, and sustainability advisory services. The company has a strong market presence in Croatia and the surrounding region, demonstrated by its extensive portfolio of over 400 successful projects and partnerships with recognized organizations. Their website reflects a mature digital infrastructure built on WordPress with modern frameworks and plugins, ensuring a responsive and user-friendly experience. Security measures such as HTTPS, hCaptcha, and GDPR-compliant cookie consent are implemented effectively, indicating a solid security posture. However, the absence of publicly available WHOIS data due to privacy protection is noted but justified given the business nature. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

F

FIDIC For Global Goals

climatechangecharter.world

47

The website 'FIDIC For Global Goals' serves as a campaign platform focused on addressing climate change challenges within the industry by bringing together stakeholders to collaborate on sustainability goals. The site presents itself professionally with clear messaging, calls to action, and countdown timers highlighting key climate targets such as SDGs 2030 and Net Zero 2045. Technically, the site is built on WordPress using the Divi theme and includes common plugins for cookie consent and social sharing. While the site uses HTTPS and has a cookie consent mechanism, it lacks visible privacy and terms of service pages, security headers, and explicit contact information, which are areas for improvement. The WHOIS data is privacy protected, which is typical for non-profit initiatives, and no suspicious patterns were detected. Overall, the site demonstrates a moderate level of digital maturity and security posture but would benefit from enhanced transparency and security best practices.

I

iConsult d.o.o.

iconsult.si

45

iConsult d.o.o. is a Slovenian consulting firm specializing in tax, legal, and financial advisory services primarily targeting medium and large enterprises. Established in 2020 as the successor to Taxgroup, the company leverages a team of over 15 experienced professionals, including licensed valuators and legal experts. Their integrated service offering addresses complex business challenges in finance, law, and taxation, positioning them as a trusted advisor in the Slovenian market. The website is built on WordPress with modern technologies such as WPBakery Page Builder and Yoast SEO, indicating a mature digital infrastructure. Hosting is provided by a reputable Slovenian provider, NEOSERV.si. The site demonstrates good mobile optimization, SEO practices, and user experience, with clear navigation and professional branding. Security posture is solid with HTTPS enforced, presence of key security headers, and secure form handling. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR consent mechanisms. However, the site lacks a publicly available security policy and incident response information, which could enhance trust and preparedness. Overall, the website and business present a low-risk profile with strong credibility and professionalism. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure to further strengthen security transparency and compliance.

U

Umnia - ročno izdelane sveče

lumnia.si

38

Lumnia.si is a Slovenian e-commerce website specializing in handmade decorative candles made from 100% natural soy wax. The company targets consumers looking for eco-friendly, artisanal candles suitable for gifts and special occasions such as weddings and baptisms. The website is built on WordPress with WooCommerce, leveraging modern plugins and integrations such as Mailchimp and TranslatePress for multilingual support. The technical infrastructure is solid, hosted by NEOSERV.si, and the site demonstrates good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and standard security headers present, though no explicit security policy or incident response information is published. Privacy compliance is basic but includes a privacy policy and cookie consent mechanism. WHOIS data shows inconsistencies with a future domain creation date, which may indicate outdated or placeholder WHOIS information but does not detract from the website's apparent legitimacy. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

W

Webtasy, d.o.o.

odiseja.si

51

Odiseja Ljubljana is a cultural and entertainment venue located in Ljubljana, Slovenia, offering cinema, concerts, and various events. The website presents a professional and well-structured digital presence built on WordPress with Elementor and Yoast SEO, targeting a general audience interested in cultural activities. The domain is registered with a Slovenian registrar, consistent with the business location and sector. Technically, the site uses modern web technologies and is hosted with Cloudflare DNS, ensuring good performance and security basics. However, the site lacks explicit privacy and cookie policies, as well as security and incident response disclosures, which are important for compliance and trust. Tracking via Google Analytics and Tag Manager is present, indicating moderate user data collection.

B

Boom Box |

boombox.eu

55

The website boombox.eu appears to be a small-scale business or project using WordPress with the Divi theme. The site is technically mature with modern technologies such as Google Tag Manager, Cookiebot for cookie consent, and marketing tools like ConvertKit. However, the site lacks visible business descriptive content, contact information, and formal privacy or terms of service pages, which limits its transparency and user trust. The security posture is moderate with cookie consent implemented and tracking minimized, but no advanced security headers or incident response information is present. Overall, the site is accessible and functional but would benefit from enhanced compliance and transparency to improve trust and security.

A

Artur

artur.com

50

Artur is a Slovenian-based company providing customer satisfaction and feedback management solutions primarily through its SaaS platform. The website presents a professional and consistent brand image, targeting businesses that want to better understand and engage their customers. The technical infrastructure is built on WordPress with Elementor and Yoast SEO, hosted on DigitalOcean, and includes modern web technologies and cookie consent management. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the website is well-maintained and trustworthy but could improve in security and compliance documentation.

Z

Zaslon

zaslon.si

41

Zaslon.si operates the largest network of digital advertising screens in Slovenia, primarily installed on public transport buses in Ljubljana, Maribor, and Celje. The company offers a variety of advertising formats including full-screen ads, masked ads, event announcements, and promotional banners, targeting public transport users. The website is built on WordPress with SEO optimization and integrates Google Analytics for traffic monitoring. While the site is professionally designed and mobile optimized, it lacks critical privacy and cookie policies, which are essential for GDPR compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the website presents a credible business with room for improvement in privacy and security transparency.

The website www.iths.org is currently inaccessible due to a security block imposed by the Wordfence plugin, which restricts access from the visitor's area for security reasons. This prevents any meaningful content or business information from being accessed or analyzed. The WHOIS data is unavailable due to a malformed request or privacy protection, limiting the ability to verify domain registration details or legitimacy. The site lacks visible privacy, cookie, or terms of service policies, and no contact information is provided on the block page. Technically, the site uses WordPress with Wordfence for security, but the block page indicates potential access control issues or geo-restrictions. Overall, the site’s security posture cannot be fully assessed, and the lack of accessible content results in a low trust and credibility score.

U

University of Washington

uw.edu

56

The University of Washington's official website serves as a comprehensive portal for students, faculty, staff, alumni, and the public, providing detailed information on academics, research, admissions, news, and campus resources. The site reflects the institution's status as a leading public research university in the United States, with a strong emphasis on education and community engagement. The website's content is well-structured, professionally designed, and highly relevant to its target audience. Technically, the site is built on WordPress CMS and leverages a modern technology stack including jQuery, Backbone.js, and multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and Crazy Egg. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate, likely due to the extensive use of third-party scripts. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data in its HTML content. However, there is a lack of visible security headers and no public security or incident response policies detected. The WHOIS data is unavailable, which is typical for .edu domains, but this reduces transparency slightly. Privacy compliance is adequate with a comprehensive privacy policy, though no explicit cookie consent mechanism was detected. Overall, the website is trustworthy, professional, and safe for general audiences. Strategic recommendations include enhancing security headers, implementing a cookie consent mechanism, publishing a security.txt file, and auditing third-party scripts regularly to maintain security and compliance.

B

Blis

blis.com

69

Blis is a technology company specializing in location data and analytics, providing businesses with consumer behavior insights to enhance marketing effectiveness. The company operates a professional and well-structured website built on WordPress with modern technologies such as Elementor and Bootstrap, hosted on AWS infrastructure. The site employs Google Tag Manager and LinkedIn Insight for analytics and marketing tracking, alongside Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and domain transfer protection enabled; however, the absence of DNSSEC and security headers suggests room for improvement. Privacy compliance is partial, with cookie consent mechanisms present but lacking explicit privacy and terms of service pages. Overall, the website reflects a credible and established business with a solid technical foundation but could enhance transparency and security practices.

SPORTO.si is a professionally maintained website representing the SPORTO conference, a leading sports marketing and sponsorship event in Slovenia and the wider region. The site provides comprehensive information about the event, including speakers, program, awards, partners, and ticketing. The business model revolves around event organization, sponsorship, and industry networking. The website uses a modern WordPress infrastructure with Elementor and several plugins to deliver a rich user experience. While the site is well-designed and content-rich, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. The security posture is good with HTTPS enabled and no visible vulnerabilities, but security headers are missing. Tracking and marketing scripts from Google, Facebook, and LinkedIn are used, indicating moderate user tracking. Overall, the site is trustworthy and professional but could improve privacy compliance and security best practices.

Horfam d.o.o. is a Croatian company specializing in lighting solutions, offering a broad range of lighting products and services including design and project planning. Established in 2000, the company positions itself as a provider of modern, ecological, and energy-efficient lighting technologies tested in demanding applications. The website is built on WordPress, leveraging popular plugins such as Yoast SEO and Google Analytics, and includes a cookie consent mechanism compliant with GDPR requirements. Security measures include HTTPS and Google reCAPTCHA, but lack explicit security policies or vulnerability disclosures. The domain registration data aligns well with the company's claims, indicating legitimacy and trustworthiness.

E

ENERGY PLUS d.o.o.

energyplus.hr

44

ENERGY PLUS d.o.o. is a Croatian company established in 2005 specializing in professional LED lighting, industrial machinery production, and renewable energy solutions such as photovoltaic systems. The company targets industrial and business clients seeking modern lighting and machinery solutions. Their website reflects a stable, small-sized manufacturing business with consistent branding and clear service offerings. Technically, the website is built on WordPress using the Divi theme, with standard libraries like jQuery and MediaElement.js, hosted likely under Croatian infrastructure. The site is moderately performant, mobile-optimized, and accessible at a basic level. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and documented security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve in compliance and security transparency.

C

celebration.sk

celebration.sk

35

Celebration.sk is a Slovak online magazine providing news and articles on culture, sports, and general interest topics. The website targets a general audience interested in Slovak and international news, cultural updates, and lifestyle content. It operates as a small media business with a content publishing model, leveraging WordPress CMS and common web technologies to deliver its services. The site is well-branded and consistent in its presentation, with a focus on accessible and relevant content for its audience. Technically, the website uses a modern WordPress setup with Yoast SEO for search optimization, Bootstrap for responsive design, and jQuery for interactivity. The site loads moderately fast and is mobile-optimized, providing a good user experience. However, there is room for improvement in accessibility and security headers implementation. From a security perspective, the site uses HTTPS with a good SSL configuration and includes a cookie consent banner, indicating some level of privacy compliance. However, it lacks visible privacy policies, terms of service, security policies, and incident response contacts, which are important for compliance and trust. No critical vulnerabilities or WAF protections were detected, but security headers are missing, which could improve the site's security posture. Overall, Celebration.sk is a legitimate, small-scale media website with good content quality and technical implementation but needs to enhance its privacy, security, and compliance documentation to improve trust and regulatory adherence.

K

Konzervatívny inštitút M. R. Štefánika

konzervativizmus.sk

45

Konzervatívny inštitút M. R. Štefánika is a Slovak non-profit conservative think tank established in 2003. The organization focuses on research, policy analysis, publications, and educational projects aimed at promoting conservative values and ideas within Slovakia. The website serves as a platform for disseminating articles, hosting events, and engaging with the public and supporters. It maintains an active presence on social media platforms such as Facebook, YouTube, and LinkedIn. The organization targets Slovak-speaking audiences interested in conservative political thought and policy discussions. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, FontAwesome, and various plugins for content management, social media integration, and newsletter subscriptions. The site is hosted on servers associated with the PLAT-0008 registrar and uses HTTPS with a good SSL configuration. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented. From a security perspective, the site uses HTTPS and has a cookie consent mechanism in place, indicating GDPR compliance. However, advanced security headers are not explicitly detected, and no published security or incident response policies are found. No vulnerabilities or suspicious activities are evident in the provided content. The WHOIS data confirms a consistent and legitimate domain registration matching the organization's profile. Overall, the website presents a professional and trustworthy online presence for a small non-profit think tank. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen the site's security posture and compliance.