Security Directory

DIFFERENT.VISION is a small Czech Republic based web development agency operated by provocation s.r.o., founded in 2018. The company specializes in creating websites and applications, targeting businesses or individuals seeking web presence and custom applications. The website is minimalistic, providing basic contact information and service description without extensive content or policies. Technically, the site uses modern web standards including HTTPS, Google Fonts, and Google Analytics for tracking. However, it lacks advanced security headers and privacy compliance mechanisms such as cookie consent or privacy policies. The domain registration data is consistent with the business location and entity, indicating legitimacy. Overall, the digital maturity is moderate with room for improvement in security and compliance.

R

Rango Exchange

rango.exchange

68

Rango Exchange is a technology-driven platform specializing in cross-chain decentralized exchange (DEX) and bridge aggregation. It enables users to swap assets across more than 70 blockchains seamlessly, leveraging smart routing over 100+ DEXs and bridges. The platform targets DeFi users, developers, and crypto wallets, offering APIs, SDKs, and widgets for integration. Rango positions itself as a leading universal cross-chain aggregator with a strong ecosystem of partners and investors. Technically, the website is built on modern frameworks like Next.js and React, hosted with Cloudflare DNS, and optimized for performance and mobile use. Security posture is solid with HTTPS, clientTransferProhibited domain status, and cookie consent mechanisms, though some security headers and policies could be more explicit. Privacy compliance is well addressed with comprehensive policies and GDPR adherence. Overall, Rango Exchange presents a professional, trustworthy, and technically mature presence in the DeFi space.

The Stiftung Jugendsozialwerk Blaues Kreuz BL operates as a Swiss non-profit organization providing a broad range of social services focused on youth and community support. Their offerings include employment assistance, housing, leisure activities, school support, and counseling, targeting children, adolescents, and families primarily in the Basel-Landschaft region. The organization maintains a professional online presence with clear navigation, multilingual support in German, and active social media engagement. Technically, the website is built using modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Bootstrap, supported by the webIQ 5.0 framework. It features responsive design optimized for mobile devices and integrates Google Analytics with IP anonymization, reflecting a moderate level of digital maturity. However, some security best practices such as security headers and incident response disclosures are absent. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is justified for a non-profit entity, though it limits transparency. Certifications such as ZEWO and SQS Swiss Made enhance trustworthiness. Overall, the website scores well in content quality, technical implementation, privacy compliance, and business credibility, with an overall AI score of 81. Strategic improvements include adding security headers, publishing a vulnerability disclosure policy, and enhancing accessibility features to further strengthen security posture and compliance.

The website at f24.org currently serves as a placeholder or offline page displaying the Chrome T-Rex runner game, with no visible business-related content or contact information. The domain is registered to One-Check GmbH, a Swiss company established in 2002, indicating a legitimate and longstanding registration. However, the website itself lacks any meaningful content, policies, or security features that would support a professional business presence. From a technical perspective, the site uses basic HTML, CSS, and JavaScript to deliver the offline game experience. There is no evidence of modern frameworks, CMS, or analytics tools. The hosting is provided by hostpoint.ch, a known hosting provider. Mobile optimization and accessibility are basic, and SEO is poor due to lack of metadata and content. Security posture is weak, with no HTTPS enforcement or security headers detected in the provided content. No privacy, cookie, or terms of service policies are present, and no contact or incident response information is available. The WHOIS data is consistent and trustworthy, but the website content does not reflect an active or professional business presence. Overall, the website appears to be either inactive, under construction, or repurposed as a placeholder page. This results in a low AI score and poor trust indicators. Strategic recommendations include developing a proper business website with clear content, implementing security best practices, and publishing necessary compliance policies.

Z

Zindel United

zindel-united.swiss

53

Zindel United is a Swiss-based company specializing in sustainable architectural design and construction services. Their business model focuses on creating resource-conscious and generational building solutions, positioning them as a reputable player in the Swiss real estate and construction sector. The website reflects a medium-sized enterprise with a professional online presence, targeting clients interested in sustainable and innovative building projects. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and cookie consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, though there is room for improvement in implementing additional security headers. Overall, the website is trustworthy, well-structured, and compliant with GDPR and Swiss data protection laws.

The website for gm-elektronik.swiss is currently inaccessible beyond a security challenge page powered by BitNinja.IO, which blocks direct content access. The domain is registered to g+m elektronik ag, a Swiss company established in 2015, consistent with the domain name and country. The website appears to use outdated CMS technologies (Joomla 1.5 and WordPress 2.5) which are known to have multiple security vulnerabilities. No business descriptions, contact information, or compliance policies are visible on the site. The technical infrastructure is basic, hosted on trendhosting-net.ch, with minimal SEO and accessibility features. Security posture is moderate due to the presence of a security challenge but weakened by outdated software and lack of security headers or policies. Overall, the site’s digital maturity is low, and the lack of visible content and policies limits trust and user engagement.

B

BALIK Farm (Switzerland) AG

balik-kitchen.ch

48

BALIK Farm (Switzerland) AG operates BALIK Kitchen, a hospitality and retail food service business with multiple urban kitchen bars and shops located in major Swiss cities such as Bern, St. Gallen, Luzern, and Zürich. The website serves as a digital presence to promote their culinary offerings, events, and recipes, targeting general consumers interested in urban dining experiences. The company maintains a consistent brand image and provides clear contact information and social media engagement channels. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates marketing and analytics tools such as Facebook Pixel, Google Analytics, and Mailchimp for newsletter management. The site is hosted behind Cloudflare infrastructure, utilizing Turnstile captcha for bot protection, indicating a moderate level of digital maturity. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses anti-bot measures but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic with a cookie consent banner and a privacy policy page in German, aligned with GDPR requirements. Business credibility is strong with verified contact details and consistent WHOIS data. Overall, the website presents a professional and trustworthy digital front for BALIK Kitchen, with room for improvement in security policy transparency and enhanced privacy compliance. The risk level is low, but strategic enhancements in security headers and incident response readiness are recommended.

S

Strähl Käse AG

straehl.ch

47

Strähl Käse AG is a well-established Swiss cheese manufacturer with over 90 years of family tradition, specializing in a variety of cheese products including raclette and fondue. The company targets both retail consumers and B2B clients, offering customized cheese solutions. Their market position is strong within the Swiss cheese industry, supported by consistent branding and a professional online presence. Technically, the website employs modern web technologies including Facebook Pixel and Google Analytics for marketing and analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of explicit security headers and detailed security policies suggests room for improvement. Overall, the website is trustworthy, professional, and compliant with GDPR requirements, reflecting a credible business entity.

R

RAUSCH

rausch.ch

70

RAUSCH is a Swiss-based company specializing in natural scalp, hair, and body care products. The company leverages proprietary herbal extraction techniques combined with modern active ingredients to deliver effective personal care solutions. Positioned as a trusted natural care brand, RAUSCH targets consumers who value natural and efficacious products. The website operates on the Shopify platform, integrating multiple marketing and analytics tools such as Trustpilot, Klaviyo, and Microsoft Clarity, reflecting a mature digital infrastructure. The site is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms, although a dedicated security policy and incident response information are not publicly available. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, supporting RAUSCH's market position as a reputable natural care brand.

P

Printplus AG

printplus.ch

48

Printplus AG is a Swiss-based software company specializing in industry-specific ERP and management software solutions for printing companies and publishers. The company positions itself as a leading provider in this niche market, offering comprehensive software that supports all organizational processes including order management, calculation, material management, production planning, and CRM. Their product suite includes solutions tailored for different sizes of printing businesses and mobile workforce support. The website is professionally designed, well-structured, and targets business customers in the graphic industry sector primarily in Switzerland. Technically, the website uses modern JavaScript libraries, web fonts, and integrates Matomo analytics for privacy-conscious user tracking. It employs Cloudflare Turnstile captcha for bot protection, indicating a proactive approach to security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Hosting appears to be behind Cloudflare, providing robust SSL/TLS encryption and performance benefits. From a security perspective, the site enforces HTTPS and uses bot mitigation techniques but lacks visible security headers and explicit security or incident response policies. There is no cookie consent mechanism detected, which may pose GDPR compliance risks. No vulnerability disclosure or security.txt files are present. Contact information is clear and comprehensive, enhancing business credibility. Overall, Printplus AG's website reflects a mature business with a solid technical foundation and good security posture, though improvements in privacy compliance and security transparency are recommended to enhance trust and regulatory adherence.

P

Pädagogische Hochschule Thurgau

phtg.ch

61

Pädagogische Hochschule Thurgau (PHTG) is a Swiss educational institution specializing in scientifically grounded teacher training and continuing education for all levels of primary and secondary education. The institution offers a broad range of study programs, professional development courses, and research projects, targeting educators and education professionals. The website reflects a strong regional presence with collaborations such as with the University of Konstanz, emphasizing cross-border educational opportunities. Technically, the website is built on modern web standards, leveraging Google Tag Manager and CookieYes for consent management, and is likely hosted on Wix, as indicated by certain cookies. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms but lacks explicit security policy and incident response information. Overall, the domain registration details align with the institution's identity, supporting legitimacy and trustworthiness.

L

Landqart AG

landqart.com

63

Landqart AG is a Swiss-based manufacturer specializing in security paper products such as banknote substrates and passport papers, serving clients in over 50 countries. The company positions itself as a leader in the security paper manufacturing industry, emphasizing Swiss quality, security, and innovation. The website is professionally designed, multilingual (German primary), and includes comprehensive business contact information and cookie consent mechanisms, reflecting a mature digital presence. Technically, the site uses modern JavaScript, cookie management tools, and Google Analytics with IP anonymization, hosted likely behind Cloudflare. Security posture is good with HTTPS and consent compliance, though explicit security headers and incident response policies are absent. WHOIS data is missing, which raises some legitimacy concerns but the website content and business information strongly indicate a legitimate enterprise. Overall, the site is trustworthy and well-maintained with room for security policy enhancements.

H

HOCH Health Ostschweiz

kssg.ch

72

HOCH Health Ostschweiz is a prominent healthcare provider network in Eastern Switzerland, encompassing several hospitals including Kantonsspital St.Gallen and others. The organization offers comprehensive hospital care, specialized clinics, and patient services, positioning itself as a regional leader in healthcare. The website reflects a professional and user-friendly digital presence, leveraging modern web technologies such as Astro framework, Google Tag Manager for analytics, and OneTrust for cookie consent management. Security posture is strong with HTTPS enforcement, appropriate security headers, and no visible vulnerabilities. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site demonstrates a mature digital infrastructure suitable for a large healthcare entity.

T

Tomáš Klus s.r.o.

klubklus.cz

43

The website klubklus.cz serves as the official fan club platform for Czech artist Tomáš Klus, providing exclusive multimedia content, online concerts, and community engagement features. The business operates under Tomáš Klus s.r.o., a small media entity focused on delivering unique fan experiences through membership and content subscription. The site is well-branded and targets Czech-speaking fans, leveraging social media and digital marketing tools to enhance reach. Technically, the site employs modern JavaScript frameworks and integrates Google Analytics and Facebook Pixel for tracking. It uses HTTPS with a valid SSL certificate, ensuring secure communications. However, the absence of security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. The site is mobile-optimized with good design and navigation, though SEO and accessibility could be enhanced. From a security perspective, the site shows a moderate posture with no visible vulnerabilities or exposed sensitive data. The lack of WHOIS data due to privacy protection slightly reduces trust but is common for small entertainment businesses. No incident response or security policies are publicly disclosed, which could be addressed to improve transparency. Overall, klubklus.cz is a legitimate, well-maintained fan club website with a solid business model and moderate technical maturity. Strategic improvements in privacy compliance, security headers, and public security policies would enhance its trustworthiness and user confidence.

S

SimpleMining.net

simplemining.net

76

SimpleMining.net is a specialized technology company providing a Linux-based GPU mining operating system with a cloud dashboard for cryptocurrency mining management. The platform targets cryptocurrency miners and GPU rig operators, offering an easy deployment and monitoring solution that supports multiple mining algorithms and modern GPUs. The website demonstrates a modern technical infrastructure using Next.js and Cloudflare services, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, although the absence of a privacy policy and terms of service reduces privacy compliance scores. No direct contact information or incident response details are provided, which could impact user trust and support. Overall, the website is professional and trustworthy, with room for improvement in compliance and transparency.

F

Forschungsinstitut für biologischen Landbau FiBL, Bio Suisse

bioaktuell.ch

62

Bioaktuell.ch is a well-established Swiss platform dedicated to supporting organic farmers by providing comprehensive information, advisory services, and educational content. Affiliated with the Forschungsinstitut für biologischen Landbau FiBL and Bio Suisse, it holds a leading position in the Swiss organic agriculture sector. The website targets Swiss organic farmers and stakeholders, offering multilingual content in German, French, and Italian to serve the diverse Swiss population. The business model focuses on information dissemination and community support rather than direct commercial transactions. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including JavaScript and CSS, with integrations for push notifications via Signalize and analytics through eTracker. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. Performance is moderate, with a clean and professional design that supports user experience and navigation clarity. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security headers and a published security or incident response policy suggests room for improvement in security posture. The WHOIS data is consistent with the website's claims, showing transparent registration without privacy protection, which is appropriate for this type of organization. Overall, Bioaktuell.ch presents a trustworthy, professional, and compliant platform with a strong focus on organic farming in Switzerland. Strategic enhancements in security policies, accessibility, and transparency around incident response would further strengthen its position and trustworthiness.

V

Vertical Aviation International

verticalavi.org

68

Vertical Aviation International (VAI) is a well-established membership organization dedicated to advocating for the vertical flight industry globally. With over 75 years of history, VAI serves as a leading voice providing safety initiatives, education, advocacy, and community engagement for professionals in vertical aviation. The website reflects a professional and comprehensive digital presence, leveraging WordPress CMS with modern SEO and analytics tools. The technical infrastructure is solid, hosted via reputable providers, and includes standard security practices such as HTTPS and domain status protections. However, there are opportunities to enhance security by enabling DNSSEC and implementing additional security headers. Privacy compliance is addressed with visible privacy and cookie policies, though GDPR compliance could be improved with more explicit statements. Overall, VAI's website demonstrates a strong market position and trustworthy online presence suitable for its industry and audience.

F

Flight Safety Foundation

aviation-safety.net

60

The Aviation Safety Network (ASN) is a specialized information service focused on aircraft accidents and civil aviation safety issues. It operates as an exclusive service of the Flight Safety Foundation, a reputable organization in the aviation safety sector. ASN provides comprehensive accident databases, investigation details, safety statistics, and monthly email digests, targeting aviation professionals, researchers, and safety analysts worldwide. The website demonstrates a consistent brand identity aligned with its parent organization and maintains a professional presence with active social media channels. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, and Google Charts for data visualization. It integrates Google Analytics for user tracking and offers a moderate level of mobile optimization and accessibility. While the site is functional and well-structured, it lacks some modern security headers and explicit cookie consent mechanisms, which are important for compliance and user trust. From a security perspective, the site uses HTTPS, ensuring encrypted communication, but does not visibly implement advanced security headers or publish detailed security policies. The absence of WHOIS registrant data limits domain trust assessment, though the affiliation with Flight Safety Foundation and the quality of content provide strong legitimacy signals. No critical vulnerabilities or exposed sensitive data were detected. Overall, ASN presents a trustworthy and authoritative resource in the aviation safety domain with room for improvement in privacy compliance and security best practices. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

T

test

madlove.cz

52

Madlove is a small creative agency based in Prague specializing in design and advertising services. The website presents a professional portfolio showcasing various projects, targeting businesses and organizations seeking creative agency solutions. The company positions itself as a local creative service provider with a focus on quality design and effective advertising. Technically, the website uses modern JavaScript frameworks, Google Analytics, and Google Tag Manager for tracking and marketing purposes. The site is mobile optimized and accessible with good SEO practices. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and published privacy or security policies. WHOIS data is missing, which reduces domain transparency and trustworthiness. Overall, the website is functional and professional but would benefit from improved compliance documentation and enhanced security practices.

I

Indep s.r.o.

indep.cz

56

Indep s.r.o. is an independent production agency based in Prague, Czechia, specializing in event management and audiovisual production. The company offers a range of services including corporate events, public space events, and professional audiovisual and photography production. Their business model focuses on personalized client relationships and creative, high-quality event execution. The website is professionally designed using the Squarespace platform, with good mobile optimization and clear navigation. Technical infrastructure is modern but lacks some security headers and privacy policy documentation. Security posture is generally good with HTTPS enabled and cookie consent implemented, though improvements are recommended in security headers and privacy transparency. Overall, the website presents a trustworthy and professional image consistent with a small, specialized service provider in the event production industry.

N

Nakup na Dobro

nakupnadobro.cz

56

Nakup na Dobro is a Czech Republic-based e-commerce business specializing in sustainable and meaningful gifts. The website offers a variety of eco-friendly products, including gift packages, food items, fashion, and household goods, targeting consumers interested in socially responsible shopping. The business positions itself as a niche leader in sustainable gifts within its regional market. Technically, the website is built on the Shoptet e-commerce platform, utilizing common web technologies such as JavaScript, jQuery, and integrates marketing and analytics tools like Google Analytics, Facebook SDK, and LinkedIn Insight Tag. The site demonstrates good digital maturity with responsive design and cookie consent mechanisms, reflecting GDPR compliance. Security posture is solid with HTTPS enforced and CSRF protections in forms, though some security headers are missing and some libraries are outdated, suggesting room for improvement. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not detract significantly from the site's legitimacy. Overall, Nakup na Dobro presents a professional, trustworthy online retail presence with a focus on sustainability and social impact.

Gastromapa Lukáše Hejlíka is a Czech gastronomic map service that has discontinued its web presence in favor of mobile applications available on Android and iOS platforms. The website serves primarily as a redirect and informational page encouraging users to download the mobile apps. The business appears small and focused on providing gastronomic location services within the Czech Republic. The website content is minimal and basic, with limited business information and no visible privacy or cookie policies. Technically, the site uses modern web standards and Google Tag Manager for analytics but lacks advanced security headers and comprehensive compliance documentation. The security posture is moderate with HTTPS enabled but missing several best practices. The absence of WHOIS data reduces domain trustworthiness and raises concerns about domain registration transparency. Overall, the site is functional but limited in content and security maturity.

V

VITAMIN 2

vitamin2.ch

57

Vitamin 2 is a full-service advertising agency based in Eastern Switzerland, specializing in branding, design, web development, marketing, and communication services. The website showcases a professional portfolio with multimedia content and a strong client base, positioning the company as a reputable regional player in the media sector. The technical infrastructure is modern, leveraging frameworks like Livewire and Alpine.js, and integrates Google Tag Manager and Cloudflare Turnstile for performance and security. Security posture is solid with HTTPS and bot protection, but lacks visible privacy and cookie policies, as well as incident response contacts, which are important for compliance and trust. Overall, the site is well-designed, mobile-optimized, and user-friendly, reflecting a high level of digital maturity.

A

Audika

audika.be

73

Audika is a prominent hearing care provider operating in Belgium and multiple international markets, offering free hearing tests, premium hearing aids, and trial services. The company is part of the Demant group, a recognized leader in hearing healthcare. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content tailored to individuals seeking hearing solutions. Technically, the site employs modern JavaScript libraries, analytics tools, and a cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and standard security headers, though there is room for improvement in public security policies and incident response transparency. Overall, the site demonstrates a trustworthy and compliant presence in the healthcare sector.

A

Audika Italia

audika.it

73

Audika Italia operates as a specialized healthcare provider focusing on hearing care services, including free hearing tests and the provision of modern hearing aids with trial options. The company holds a strong market position in Italy, supported by its parent company Demant, a recognized entity in the hearing healthcare sector. The website reflects a mature digital presence with professional design, clear navigation, and compliance with European privacy regulations. Technically, the site leverages modern JavaScript frameworks, Google Tag Manager, and optimization tools like Visual Website Optimizer, indicating a commitment to performance and user experience. Security posture is solid with HTTPS enforcement and GDPR-compliant cookie consent mechanisms, although formal security and incident response policies are not publicly disclosed. Overall, the site is trustworthy, well-maintained, and suitable for its healthcare audience.

A

Audika New Zealand

audika.co.nz

59

Audika New Zealand is a healthcare service provider specializing in hearing aids, hearing tests, and audiologist consultations. The company operates multiple clinics across New Zealand and offers flexible payment options, positioning itself as a trusted provider in the hearing care market. The website is professionally designed, mobile-optimized, and provides clear pathways for booking appointments and accessing services. Technically, the site employs modern marketing and analytics tools such as Google Tag Manager, Hotjar, and Visual Website Optimizer, indicating a mature digital marketing strategy. Security posture is strong with HTTPS enforced and appropriate security headers, though the absence of a public security policy and incident response information suggests room for improvement. WHOIS data is not publicly available, likely due to privacy protection, but the website content and branding strongly support legitimacy. Overall, the site presents a low-risk profile with good business credibility and compliance with privacy standards.

H

Hidden Hearing Limited

hiddenhearing.ie

76

Hidden Hearing Limited operates as a leading hearing healthcare provider in Ireland, offering services such as hearing aids, hearing tests, and earwax removal through over 85 clinics. The company benefits from a strong market position supported by a professional website with consistent branding and a comprehensive digital presence including social media and structured data. The website demonstrates a mature technical infrastructure leveraging modern technologies such as Sitecore CMS, Google Tag Manager, and Visual Website Optimizer, with integrated address lookup and consent management systems. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, although explicit security headers and incident response information could be improved. Overall, the business presents a trustworthy and professional online presence aligned with healthcare industry standards.

Wellenberg Wind AG operates a regional wind energy project in the canton of Thurgau, Switzerland, focusing on the development and operation of wind turbines to generate renewable energy for local households. The website provides detailed project timelines, community engagement updates, and contact information for key personnel, reflecting a transparent and community-oriented business approach. Technically, the site uses modern web technologies with responsive design and includes a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response details are absent. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, presenting a low-risk profile with room for improvement in security policy transparency and terms of service availability.

E

EKT Energie AG

ekt-energie.ch

59

EKT Energie AG is a Swiss energy services company specializing in intelligent electricity procurement, portfolio management, and ecological energy solutions. The company positions itself as a leading provider of electricity services across Switzerland, targeting businesses seeking optimized and sustainable energy sourcing. Their website is professionally designed using TYPO3 CMS, featuring clear navigation and content relevant to their core services. The technical infrastructure includes modern web technologies and Google Tag Manager for analytics and marketing purposes. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, the website demonstrates a mature digital presence with good privacy compliance and trust indicators such as ISO certifications. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

T

The Naked Watchmaker

thenakedwatchmaker.com

59

The Naked Watchmaker is a specialized online platform dedicated to providing in-depth educational content and insights into the art and craft of watchmaking. It offers a variety of services including detailed watch deconstructions, interviews with horological experts, book reviews, and an e-commerce shop selling watch-related products. The website targets watch enthusiasts, collectors, and professionals interested in horology. Technically, the site is built on the Squarespace platform, leveraging modern web technologies and integrating Google Analytics and Tag Manager for visitor tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, the website enforces HTTPS but lacks some advanced security headers such as HSTS and CSP, which are recommended for enhanced protection. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and ownership transparency. Overall, the site is trustworthy and professional but would benefit from improved domain registration transparency and enhanced security headers.

N

Neue Zürcher Zeitung AG

nzz.ch

69

Neue Zürcher Zeitung AG operates the website www.nzz.ch, a leading Swiss news media outlet providing comprehensive news, background reports, opinions, and coverage across various sectors including sports, digital, and economy. The website targets a general audience primarily in Switzerland and delivers high-quality journalistic content in German. The business model is centered on digital news publishing with a strong market position in Swiss media. Technically, the website employs modern JavaScript frameworks such as Vue.js, integrates consent management platforms, and uses trusted third-party analytics and advertising services. The site is well-optimized for mobile and SEO, with good performance and accessibility features. Security posture is strong with HTTPS enforcement, content security policies, and no visible vulnerabilities or exposed sensitive data. However, explicit privacy policies, terms of service, and security incident response information are not clearly found, which slightly impacts privacy compliance and security transparency. Overall, the website is professional, trustworthy, and technically mature, with recommendations to enhance privacy disclosures and security communication.

V

VSIA "Latvijas Vēstnesis"

lv.lv

57

VSIA "Latvijas Vēstnesis" operates as the official publisher of the Republic of Latvia, providing authoritative access to official publications and legal acts. The organization supports legal awareness and development of legal thought through its multiple portals and the "Jurista Vārds" journal. The website serves a broad audience including Latvian citizens, legal professionals, and government entities, positioning itself as a trusted and official source of legal information in Latvia. The business model revolves around official publication services, legal information dissemination, subscription services, and advertising within its legal journal and portals. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates third-party libraries such as Google Analytics for tracking, Swiper.js for sliders, and Flatpickr for date inputs. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Privacy and cookie policies are implemented with GDPR compliance in mind. From a security perspective, the site enforces HTTPS and uses CSRF tokens, but lacks some advanced security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain WHOIS data aligns with the official nature of the entity, showing consistent registration and no privacy protection, enhancing trustworthiness. Overall, the website is a high-quality, professional, and secure platform serving an essential government function. Strategic improvements in security headers and transparency around incident response could further enhance its security posture and trust.

M

Microsoft Corporation

powerapps.com

74

Microsoft Corporation operates the website providing Power Apps, a component of the Microsoft Power Platform, enabling users to build AI-powered applications for enterprise and professional use. The website is localized in Finnish and targets business users, developers, and IT professionals seeking modern application development tools integrated with AI capabilities. Microsoft holds a dominant market position in enterprise software and cloud services, supported by a broad ecosystem of products and subsidiaries.

V

Virgin Voyages

virginvoyages.com

59

Virgin Voyages operates as a premium adults-only cruise line offering luxury, almost all-inclusive cruise vacations primarily targeting adult travelers seeking unique and boutique cruise experiences. The website reflects a mature digital infrastructure with advanced personalization and A/B testing capabilities, leveraging modern JavaScript frameworks and multiple third-party marketing and analytics tools. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data limits domain trust verification, but the branding and external references strongly support legitimacy. Overall, the site presents a professional, secure, and user-friendly platform aligned with Virgin Group's standards.

V

Virgin Balloon Flights

virginballoonflights.co.uk

56

Virgin Balloon Flights is a well-established UK-based company specializing in hot air balloon rides and related experience gifts. Positioned as the UK's leading passenger balloon rides operator, the company offers flights from over 100 locations nationwide. Their business model focuses on selling adventure experiences and gift vouchers through a professionally designed and user-friendly website. The company demonstrates strong branding consistency and trust indicators including CAA certification and a long operational history since 1994. Technically, the website employs modern web technologies such as HTMX, Alpine.js, Google Tag Manager, and integrates marketing and analytics tools like Mailchimp and Ahrefs Analytics. The site is mobile-optimized, SEO-friendly, and provides a smooth user experience. While HTTPS is enforced, the site could improve security posture by implementing additional HTTP security headers. From a security perspective, the website shows good practices including secure forms, cookie consent management, and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies or incident response information is noted. The WHOIS data for the www subdomain is unavailable due to domain naming rules, but the overall legitimacy of the domain and business is supported by consistent branding and contact information. Overall, Virgin Balloon Flights presents a low-risk profile with a strong market position and a mature digital presence. Strategic recommendations include enhancing security headers, publishing security policies, and continuous monitoring of third-party scripts to maintain security and compliance.

Virgin Atlantic Airways Limited is a major UK-based international airline specializing in passenger air travel primarily to the US and other global destinations. The company is part of the Virgin Group and operates with a strong brand presence and a focus on customer experience, including onboard amenities such as food, drinks, entertainment, and WiFi. The website reflects a mature digital presence with modern technologies and excellent design quality. The technical infrastructure leverages Next.js and React frameworks, hosted likely on Akamai's CDN, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement, comprehensive security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website and business demonstrate high professionalism and trustworthiness.

M

Multisistema Riga SIA

ms.lv

55

Multisistema Riga SIA operates the website ms.lv, an established Latvian online retailer specializing in computer hardware, electronics, and related accessories. The company has a strong local presence with a physical store located at KR.VALDEMĀRA IELA 25/4, Rīga, and offers a broad range of products including Apple devices, computer components, and office supplies. The website targets general consumers and businesses seeking technology products in Latvia. The business model is primarily e-commerce with additional service offerings such as technical support and repair services.

E

Europuls.eu

europuls.eu

60

Europuls.eu operates as an online catalog and rating system for European internet resources, providing users with categorized listings and popularity statistics. The website targets European internet users and website owners seeking to discover and evaluate online resources across various sectors. The business model relies on advertising revenue through multiple ad networks and Google Adsense, supported by a GDPR-compliant consent management platform. The site has been operational since at least 2009, indicating a stable presence in its niche market. From a technical perspective, Europuls.eu employs standard web technologies including JavaScript, Google Fonts, and Google Adsense scripts. The site uses HTTPS and integrates a comprehensive consent management platform to comply with GDPR requirements. However, the design and user experience are basic, with moderate mobile optimization and limited accessibility features. Performance is moderate, and SEO practices are basic but present. Security posture is adequate with HTTPS enabled and GDPR consent mechanisms in place, but lacks advanced security headers and explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is transparent and consistent with the website's claims, registered through a reputable registrar without privacy protection, enhancing trustworthiness. Overall, Europuls.eu presents a functional and compliant online directory service with room for improvement in design, security best practices, and contact transparency. The site is safe for general audiences and does not contain adult or questionable content.

The website www.stops.lt provides comprehensive public transport route schedules and trip planning services primarily for Vilnius, Lithuania. It offers detailed information on bus, trolleybus, express bus, and night routes, targeting local commuters and visitors. The site supports multiple languages and includes interactive features such as maps and route planners. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, and integrates third-party analytics and social media SDKs. While the content quality and user experience are good, the site lacks visible privacy and cookie policies, which impacts compliance with GDPR and privacy best practices. Security posture is moderate with no evident advanced security headers or policies, and WHOIS data for the domain is unavailable, which raises concerns about domain registration transparency. Overall, the site is functional and informative but would benefit from enhanced security and privacy measures.

C

Coinranking B.V.

coinranking.com

61

Coinranking B.V. operates a comprehensive cryptocurrency market data platform providing real-time prices, rankings, and analytics for a wide range of cryptocurrencies. Established in 2017 and based in the Netherlands, the company targets crypto investors, traders, and enthusiasts by offering detailed market insights and API services. The platform is well-positioned in the crypto data market with a medium-sized operation and a consistent brand presence. Technically, the website leverages modern web technologies including the Astro framework, HTMX for dynamic content loading, and integrates with Google Tag Manager and AdButler for analytics and advertising. Hosting is managed via AWS DNS infrastructure, ensuring reliable performance and scalability. The site is fast, mobile-optimized, and accessible with good SEO practices. From a security perspective, the site enforces HTTPS and employs domain transfer protection, but lacks DNSSEC and explicit security headers. No dedicated security policy or incident response information is publicly available, and no vulnerability disclosure program is evident. Privacy compliance is strong with clear cookie consent mechanisms and comprehensive privacy and terms of service documentation. Overall, Coinranking demonstrates a mature digital presence with strong content quality and business credibility. Security posture is adequate but could be improved with additional headers and transparency. The site is safe for general audiences and does not contain adult or explicit content.

S

Steiner Optics

steiner-optics.com

72

Steiner Optics is a specialized manufacturer and retailer of high-quality optics products targeting hunting, tactical, marine, and adventure markets. The website presents a professional and consistent brand image with a focus on quality optics equipment. The technical infrastructure is based on Drupal 10 CMS, integrating modern analytics tools such as PostHog and Google Analytics, and employs cookie consent mechanisms to comply with privacy regulations. Security posture is good with HTTPS enabled and partial security headers, though improvements are recommended for full compliance and protection. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trustworthiness despite the professional website presentation. No adult or questionable content is present, making the site safe for general audiences.

S

Sweden Abroad

swedenabroad.se

56

Sweden Abroad is an official Swedish government website providing comprehensive information about Sweden's embassies and consulates worldwide. It serves Swedish citizens abroad with travel advice and assistance information, as well as non-Swedish citizens interested in traveling or moving to Sweden. The site is well-positioned as a trusted government resource with a large global footprint through its network of over 100 foreign missions. Technically, the website employs modern web technologies including Google Tag Manager, Cookiebot for consent management, and Microsoft Application Insights for telemetry, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, ensuring a good user experience across devices. Security-wise, the site enforces HTTPS and uses privacy-compliant tracking mechanisms, though it could improve by adding explicit security headers and publishing a security policy or vulnerability disclosure. Overall, the website demonstrates a strong security posture and high trustworthiness consistent with its government affiliation.

S

Summit

globalgoalssummit.cz

50

Global Goals Summit 2024 is a professionally organized event focused on sustainability and the UN Sustainable Development Goals, hosted in Prague by Asociace společenské odpovědnosti in partnership with DVTV and other reputable organizations. The website demonstrates a mature digital presence with detailed speaker profiles, program schedules, ticketing options, and strong partner engagement. Technically, it is built on WordPress with modern tracking and analytics tools, optimized for mobile and accessibility. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear GDPR and cookie policies. Overall, the site is trustworthy and well-positioned in its niche.

T

test

giving-tuesday.cz

58

Giving Tuesday Czechia is a well-established non-profit platform promoting global generosity and good deeds, organized locally by the Association of Social Responsibility. The website provides comprehensive information about the movement, ways to participate, and showcases registered charitable challenges and activities. The platform targets a broad audience including individuals, families, NGOs, schools, municipalities, and businesses. Technically, the site uses modern web technologies including Google Tag Manager, Facebook Pixel, and Typekit fonts, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and a detailed privacy policy page. WHOIS data is unavailable, which slightly reduces trustworthiness, but the professional content and social media presence mitigate concerns. Overall, the site is a credible and effective tool for promoting charitable engagement in Czechia.

H

Health Food Manufacturers' Association

hfma.co.uk

50

The Health Food Manufacturers' Association (HFMA) is a UK-based trade association representing companies in the health food and supplement manufacturing sector. The website serves as an informational and advocacy platform for its members, providing industry representation and support. The domain is well-established, dating back to 1999, indicating a mature presence in the market. Technically, the site is built on WordPress using the Elementor page builder, with standard web technologies and fonts loaded from trusted sources. Google Tag Manager is employed for analytics, reflecting moderate digital maturity. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published policies, which are areas for improvement. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency to improve compliance and user trust.

Zucchetti is a leading Italian company specializing in software, hardware, and related services for businesses, professionals, and public administration. The website presents a professional and business-focused digital presence, targeting primarily Italian enterprises and professionals. The company positions itself as a market leader in Italy with a comprehensive offering. Technically, the website employs a proprietary CMS with JavaScript frameworks such as MooTools and jQuery, and integrates Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and SEO-friendly, though some modern security headers are missing. Security posture is solid with HTTPS and consent mechanisms but lacks explicit published security policies or incident response information. Overall, the site is safe, professional, and trustworthy with no adult or questionable content detected.

Feller AG is a well-established Swiss company specializing in electrical installation products and smart building technologies, operating since 1909. The company holds a leading market position in Switzerland, offering a broad range of products including switches, sockets, home automation solutions, and connected building services. Their website reflects a professional and consistent brand image, targeting both professional installers and private customers. Technically, the site uses modern JavaScript frameworks, integrates Azure Application Insights and Google Tag Manager for analytics and monitoring, and implements cookie consent mechanisms, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and monitoring tools in place, though explicit security headers and policies are not fully visible. Privacy compliance is moderate due to the absence of a clearly accessible privacy policy and terms of service. Overall, the site is safe, professional, and trustworthy with no signs of malicious content or blocking mechanisms.

T

Thomann Nutzfahrzeuge AG

thomannag.com

67

Thomann Nutzfahrzeuge AG is a Swiss-based company specializing in commercial vehicles including trucks, buses, and transporters from major brands such as Renault Trucks, Volvo Trucks, Mercedes-Benz, and others. With 30 years of experience and multiple locations across Switzerland, the company offers a comprehensive range of services including sales, rental, maintenance, driver training, and proprietary software solutions (Thomann Plus) to optimize fleet management. The website reflects a mature business with a clear market position targeting commercial vehicle operators and fleet managers. Technically, the website is built on Concrete CMS and employs modern web technologies including JavaScript and SVG graphics. It is mobile-optimized and includes SEO best practices. The site uses HTTPS with a good SSL configuration, though DNSSEC is not enabled. Cookie consent mechanisms and privacy policies are implemented, indicating good privacy compliance. However, explicit security policies and incident response contacts are not found, which could be improved. Security posture is solid with HTTPS and cookie consent, but lacks advanced security headers and vulnerability disclosure mechanisms. The WHOIS data is consistent with the business identity, though the domain is newly registered in 2024, which may indicate a recent domain acquisition or rebranding. No adult or questionable content is present, making the site safe for general audiences. Overall, the website is professional, trustworthy, and well-structured, supporting the company's business goals effectively. Strategic improvements in security transparency and DNS security could enhance trust and resilience.

T

tanneschaffhausen gmbh

tanneschaffhausen.ch

48

tanneschaffhausen gmbh operates a traditional hospitality business located in the old town of Schaffhausen, Switzerland. The company emphasizes social inclusion by employing people with disabilities and offers services including a wine tavern, a shop, serviced studios, and event hosting. The business holds the Naturparkwirt certification, reflecting its commitment to regional and natural values. The website is well-structured, mobile-optimized, and provides clear information about the business, its offerings, and community engagement. Technically, the site uses modern JavaScript frameworks like Alpine.js and includes a cookie consent mechanism, but lacks explicit security headers and incident response policies. The security posture is good with HTTPS enforced and no visible vulnerabilities. Overall, the website presents a trustworthy and professional image suitable for its local hospitality market.

O

Ostschweizer Verein für das Kind

ovk.ch

54

The Ostschweizer Verein für das Kind (OVK) is a well-established non-profit organization based in Switzerland, dedicated to supporting the healthy psychological and physical development of children in the preschool age group. With over 100 years of history, OVK offers a range of advisory services including mother and father counseling, parenting coaching, and family accompaniment programs. The organization targets families, parents, and early childhood professionals, providing multilingual consultation and community events. The website reflects a professional and trustworthy presence with clear contact information and a strong emphasis on privacy compliance. Technically, the website employs modern web technologies including JavaScript, CSS, and Bootstrap framework, with a cookie consent mechanism powered by CookieYes. The site is mobile-optimized, accessible, and SEO-friendly, ensuring a good user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some recommended security headers are not explicitly confirmed. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent banner with granular controls. Overall, the website demonstrates a mature digital infrastructure suitable for a non-profit organization, with strong business credibility and user trust. There are no indications of malicious content or security risks. However, the absence of a publicly stated security policy or incident response contact is a minor gap. Strategic recommendations include enhancing security headers and publishing incident response information to further strengthen trust and compliance.