Security Directory

C

Cushman & Wakefield

cushmanwakefield.com

66

Cushman & Wakefield is a global leader in commercial real estate services, offering a broad portfolio of services including agency leasing, asset services, capital markets, tenant representation, and valuation. Founded in 1917 and headquartered in Chicago, the company operates at an enterprise scale with a workforce of approximately 52,000 employees. The website reflects a mature digital presence with comprehensive content, strong branding, and global reach. Technically, the site uses modern technologies such as jQuery, Google Tag Manager, Vidyard, and Coveo search, and is likely built on the Sitecore CMS platform. Security posture is solid with HTTPS and Content-Security-Policy headers, though some advanced security headers and explicit vulnerability disclosure mechanisms are absent. Privacy compliance is well addressed with cookie consent and privacy policies aligned with GDPR. The WHOIS data is unavailable, which limits domain registration trust analysis, but the overall site professionalism and market presence strongly indicate legitimacy.

K

Kestria ry

kestria.com

68

Kestria ry operates as the world’s largest executive search alliance, connecting boutique executive search firms globally to provide leadership recruitment services across multiple industries and functions. Founded in 2020, the organization has established a strong market position with offices spanning 6 continents, 40+ countries, and 90+ cities, targeting companies seeking executive talent and search firms wishing to join the alliance. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, Bootstrap, jQuery, and Google Maps API, likely running on a Django backend. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Privacy and cookie policies are well implemented with explicit consent mechanisms, indicating good compliance with GDPR. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks DNSSEC and visible security headers. There is no public security policy or incident response information, nor a vulnerability disclosure policy, which are areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, Kestria’s website presents a trustworthy and professional digital presence with strong business credibility and privacy compliance. Strategic enhancements in security policies and technical security controls would further strengthen its posture.

Demcon is a technology company focused on attracting and recruiting technology professionals through its careers website. The site is designed to showcase career opportunities and engage talent interested in technology sectors. The company appears to be medium-sized and founded in 2018, with a consistent domain registration and hosting setup. The technical infrastructure leverages modern JavaScript frameworks such as Nuxt.js, integrates Google Tag Manager and YouTube APIs, and uses Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with cookie consent present but no visible privacy policy or terms of service in the provided content. Overall, the website is professional and functional, but could improve transparency and security practices to enhance trust and compliance.

Jinak o.p.s. is a Czech non-profit organization dedicated to providing social services such as support for independent living, social therapeutic workshops, social rehabilitation, education, and counseling. The website targets individuals seeking social support within the Czech Republic and presents a clear, consistent brand with relevant content for its audience. The organization maintains an active presence with contact information and partner links, indicating a community-focused approach. Technically, the website uses older but functional technologies including jQuery 1.11 and integrates multimedia features like YouTube and text-to-speech services. However, the site lacks modern security headers and cookie consent mechanisms, which are important for GDPR compliance and user trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the website content and contact details suggest a legitimate entity. Overall, the site is functional and professional but would benefit from technical and security improvements.

F

Folie'Flore

folieflore.fr

46

Folie'Flore is a well-established cultural event organizer specializing in an annual floral show held in Mulhouse, France. The event is unique in Europe and has a 25-year history, attracting a large audience with its ephemeral gardens and light shows. The website effectively communicates the event details, history, and partnerships, targeting visitors and cultural enthusiasts. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and Facebook Pixel, ensuring good SEO and user experience with mobile optimization. Security posture is adequate with HTTPS and basic security practices, though improvements in security headers are recommended. Privacy compliance is addressed with a cookie consent banner and a privacy policy, but no explicit GDPR or data protection officer information is found. Overall, the site is professional, trustworthy, and serves its business purpose well.

E

Eiffage

eiffage.ca

63

Eiffage Canada operates as a multiskilled construction group focused on sustainable infrastructure development and local economic contribution. The company is part of the larger Eiffage Group, a well-established European construction and engineering conglomerate. Their Canadian website emphasizes quality, health and safety, environmental responsibility, and strong corporate values. The site targets construction industry clients, local communities, and suppliers in Canada, offering services in maintenance, rehabilitation, and new construction works. Technically, the website is built on the Jahia CMS platform, utilizing modern JavaScript libraries such as jQuery and APIs from YouTube and Vimeo for media integration. It employs Google Analytics and TagCommander for analytics and marketing, alongside OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with comprehensive metadata and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, uses reCAPTCHA for form protection, and displays a security alert warning users about impersonation attempts, reflecting a proactive security posture. However, the absence of WHOIS data for the domain www.eiffage.ca is a notable anomaly, though the website content and external links strongly associate it with the legitimate Eiffage Group. No critical vulnerabilities or exposed sensitive data were detected. Overall, Eiffage Canada's website presents a professional, secure, and compliant digital presence aligned with its business objectives. The main risk lies in the missing WHOIS data, which should be investigated further to ensure domain registration transparency and trustworthiness.

E

Eiffage

eiffage-aevia.com

56

Eiffage Ævia is a specialized subsidiary of the Eiffage Group focused on the conservation, maintenance, and improvement of civil engineering infrastructure and heritage. The company offers both services and products tailored to the construction and repair of civil engineering works, leveraging specialized equipment and in-house developed systems. The website reflects a professional B2B orientation targeting infrastructure professionals and stakeholders in the energy, transportation, and real estate sectors. Technically, the site uses modern JavaScript libraries, integrates Google reCAPTCHA for form security, and employs OneTrust for cookie consent management, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and visible security alerts, though some security headers are missing and no explicit incident response contacts are published. The domain WHOIS data is unavailable, which raises some concerns about domain registration legitimacy, but the strong branding and affiliation with the reputable Eiffage Group mitigate these concerns. Overall, the website is professional, secure, and compliant with privacy regulations, serving its target audience effectively.

B

Bosch Energy and Building Solutions

go-to-bosch.com

56

Bosch Energy and Building Solutions is a large, well-established business entity operating in Germany, specializing in integrated building technologies including security systems, energy efficiency, building automation, and digital services. The website reflects a professional and comprehensive digital presence with strong Bosch branding, targeting commercial building operators, planners, and partners. The company offers a broad portfolio of services and maintains active engagement through events and webinars. Technically, the site uses modern web technologies, including Google Tag Manager and custom Bosch frameworks, with good mobile optimization and accessibility. Security posture is solid with HTTPS and consent management, though some security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the strong brand presence and professional content. Overall, the site is trustworthy, well-maintained, and compliant with GDPR regulations.

F

F5, Inc.

f5.com

77

F5, Inc. is a well-established enterprise technology company specializing in application delivery, security, and multicloud networking solutions. Founded in 1996 and headquartered in Seattle, USA, F5 serves a global enterprise audience including IT professionals and security teams. The company offers a broad portfolio of services such as application delivery controllers, API security, bot management, and DDoS protection, positioning itself as a leader in the technology sector. The website reflects this with professional design, comprehensive content, and clear navigation tailored to enterprise users. Technically, the website leverages modern technologies including Adobe Experience Manager CMS, Tealium tag management, and Adobe Helix RUM for performance monitoring. It integrates third-party platforms like YouTube and Coveo for media and search functionality. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure supporting a global user base. From a security perspective, F5 demonstrates strong posture with HTTPS enforcement, multiple security headers, and recognized certifications such as ISO 27001 and SOC 2. The presence of a vulnerability disclosure program and incident response contacts further underscores their commitment to security and compliance. No vulnerabilities or suspicious content were detected in the analysis. Overall, the website and business exhibit high trustworthiness and professionalism. The absence of WHOIS data is mitigated by consistent business information and strong security and privacy practices. Strategic recommendations include maintaining up-to-date third-party components, enhancing transparency on data retention, and continuing proactive security monitoring to sustain their leadership position.

D

DATENKNOTEN

datenknoten.at

47

DATENKNOTEN is a small Austrian IT service provider focused on delivering creative IT concepts and remote support services primarily to customers in the Gasteinertal region. The website presents a professional and consistent brand image with clear navigation and German language content. The technical infrastructure relies on common web technologies such as Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. Security measures include cookie consent with opt-out for analytics and IP anonymization, but lack explicit security headers and documented security policies. Overall, the website is accessible, functional, and compliant with basic privacy regulations, though it could benefit from enhanced security practices and more transparent contact information.

G

Golf Eichenheim - Kitzbühel

eichenheim.com

48

Golf Eichenheim - Kitzbühel operates a prestigious 18-hole championship golf course located in the scenic Kitzbühel Alps, Austria. Established in 2000, it offers a comprehensive golf and hospitality experience including memberships, a golf school, pro shop, and partnerships with local hotels such as the Grand Tirolia. The website is professionally designed, SEO optimized, and provides detailed information about memberships and services, targeting golf enthusiasts and business clients. Technically, the site runs on WordPress with modern plugins and includes multimedia content, though some performance and accessibility improvements are possible. Security posture is solid with HTTPS and cookie consent, but lacks some security headers and a published privacy policy. The absence of WHOIS data raises concerns about domain registration legitimacy, though the business presence and content suggest a legitimate operation. Strategic recommendations include publishing privacy and terms policies, enhancing security headers, and verifying domain registration details.

M

MG Motor

mgmotor.pl

9

MG Motor Poland operates as a regional automotive brand offering a diverse portfolio of vehicles including gasoline, hybrid, plug-in hybrid, and fully electric models. The website is professionally designed, targeting Polish consumers interested in MG vehicles, providing detailed model information, pricing, and promotional offers. The brand is a subsidiary of SAIC Motor, a major automotive company, and is establishing a growing presence in the Polish market with increasing vehicle registrations and dealer network expansion. Technically, the website employs modern web technologies such as responsive design, WebP images, Google Tag Manager, and YouTube APIs, ensuring a good user experience across devices. However, some security best practices like security headers and explicit privacy and cookie policies are missing or not detected in the provided content, which could be improved to enhance compliance and user trust. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but the absence of security headers and lack of visible privacy compliance measures represent areas for enhancement. The WHOIS data is unavailable from the Polish registry, which slightly reduces domain trustworthiness, though the professional branding and content suggest legitimacy. Overall, MG Motor Poland's website is a solid digital presence for an automotive brand with room for improvement in privacy compliance and security hardening to align with best practices and regulatory requirements.

R

Recisio

jamzone.com

69

Jamzone is a professional music backing tracks platform operated by Recisio, offering a large catalog of studio-quality tracks with advanced features such as multitrack mixing, tempo and pitch control, and offline mode. The platform targets musicians, educators, and live performers, positioning itself as a leading solution in the music backing tracks market. Technically, the website uses modern web technologies including Google Tag Manager, Facebook Pixel, and YouTube APIs, delivering a fast, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit incident response contacts are missing. Privacy compliance is partially met with a comprehensive privacy policy but lacks cookie consent mechanisms. The absence of WHOIS data for the domain is a notable concern, though the website's professionalism and branding suggest legitimacy. Strategic recommendations include improving security headers, adding cookie consent, and publishing vulnerability disclosure information.

E

Embed Private YouTube Video

embedprivatevideo.com

49

Embed Private YouTube Video is a small technology-focused business founded in 2017 that provides a specialized service and WordPress plugin enabling website owners to securely embed private YouTube videos. The company targets website owners and businesses requiring private video sharing solutions, positioning itself as a niche provider in this space. The website content is well-structured, professional, and consistent with the business model, offering clear service descriptions and customer testimonials that enhance trust. Technically, the website is built on WordPress and leverages common web technologies including jQuery, YouTube iframe API, and Google Fonts. The site is hosted under a domain registered with GoDaddy.com, LLC, with a stable registration status and no privacy protection, indicating transparency. Performance and mobile optimization are good, though accessibility is basic. SEO practices are adequately implemented with proper metadata and structured data. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers such as Content-Security-Policy or Strict-Transport-Security. There is no visible security policy or incident response information, and no cookie consent mechanism is present, which may impact privacy compliance. The use of Facebook Pixel indicates moderate user tracking. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with room for improvement in security best practices and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response policies to enhance trust and compliance.

E

Emirates Group

emiratesgroupcareers.com

64

The Emirates Group Careers website serves as a comprehensive employment portal for the Emirates Group, a major global airline and aviation services provider headquartered in the United Arab Emirates. The site offers detailed information on career opportunities across various sectors including airline operations, corporate roles, IT, and more. It highlights employee benefits, company awards, and promotes a diverse and inclusive work environment. The website is professionally designed with a strong brand presence and multimedia content that enhances user engagement. Technically, the site employs modern web technologies including Google Tag Manager, Google Analytics, Hotjar for user behavior analytics, and integrates YouTube content. It is optimized for mobile devices and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, though some security headers could be improved for enhanced protection. The WHOIS data for the domain is unavailable, indicating possible privacy protection or a new registration. Despite this, the website content and external references strongly support the legitimacy of the site as an official Emirates Group platform. No critical security vulnerabilities or compliance issues were detected. Overall, the site presents a secure, user-friendly, and trustworthy platform for prospective employees. Strategic recommendations include enhancing security headers, maintaining up-to-date privacy compliance, and improving contact information visibility to strengthen user trust and engagement.

V

Virgin Money Foundation

virginmoneyfoundation.org.uk

67

Virgin Money Foundation is a UK-based non-profit organization affiliated with Virgin Money UK, focused on supporting and transforming communities for the better. The website presents a professional and consistent brand image aligned with Virgin Money, targeting UK communities and charitable organizations. The business model centers on charitable grants and social impact initiatives, positioning the foundation as an established player in the UK non-profit sector. Technically, the website employs modern JavaScript libraries, Adobe DTM for tag management, and Evidon for consent management, indicating a mature digital infrastructure. The site is HTTPS secured and includes meta tags for SEO and social media integration, though no CMS or hosting provider details are evident. Performance and mobile optimization are moderate to good, with basic accessibility features. From a security perspective, the site enforces HTTPS and uses consent management scripts to comply with GDPR. However, the absence of a full Content-Security-Policy header, security.txt, and explicit incident response policies suggests room for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS lookup failed due to domain naming rules, which raises some trust concerns, but the website content and branding mitigate these to an extent. Overall, the website is professional and trustworthy but would benefit from enhanced transparency in privacy, security policies, and contact information to improve compliance and user trust.

L

lafree.ch - Site évangélique d'information

eglisesfree.ch

50

The website eglisesfree.ch serves as the official online presence for the Fédération romande d'Églises évangéliques (FREE), a non-profit federation of evangelical churches in French-speaking Switzerland. It provides news, event information, resources, and community support tailored to evangelical communities. The site is well-structured, content-rich, and targets a specific religious audience with relevant services such as podcasts, theological commissions, and youth programs. The business model is non-profit and community-focused, with partnerships to support its mission. Technically, the site is built on Joomla CMS using the Helix3 framework, integrating common web technologies like jQuery, Google Analytics, and YouTube embeds. The site is mobile-optimized and performs moderately well, with good SEO practices. However, it lacks some advanced accessibility features and security headers that could enhance its robustness. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. No vulnerability disclosure or security.txt files are present, and security headers are missing, indicating room for improvement in security posture. The WHOIS data aligns well with the website's identity, supporting legitimacy. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices to reduce risk and improve user trust.

The Schweizerische Pfingstmission (SPM) operates as a Swiss non-profit umbrella organization for autonomous Christian churches, focusing on promoting biblical values, youth work, and global mission projects. Their website reflects a clear organizational mission with accessible contact information and multilingual support (German and Italian). The site is built on a WordPress platform with modern UIkit styling and integrates multimedia content such as videos and image sliders to engage visitors. Technically, the infrastructure is stable with standard web technologies and moderate performance. Security posture is adequate with HTTPS enforced and secure login mechanisms, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional and trustworthy, serving its community effectively.

A

APOMEDICA Pharmazeutische Produkte

magnesium-sport.at

45

The website magnesium-sport.at represents APOMEDICA Pharmazeutische Produkte's brand Dr. Böhm® Magnesium Sport®, specializing in mineral supplements tailored for sports and active lifestyles. The site targets athletes and fitness enthusiasts in Austria, emphasizing product quality, doping-free certification, and exclusive pharmacy distribution. The business holds a solid niche position in the healthcare supplement market with a focus on magnesium and potassium products that support muscle function and recovery. Technically, the website is built on WordPress with the Avada theme and uses common plugins such as Revolution Slider and Google Tag Manager. The site is mobile-optimized, SEO-friendly, and delivers moderate performance. Security posture is adequate with HTTPS enforced but lacks some advanced security headers and uses an older jQuery version, which could be improved. Privacy compliance is well addressed with a clear privacy policy, cookie consent mechanism, and GDPR adherence. Contact information is primarily via a contact form, with no direct emails or phone numbers publicly listed. The site integrates social media channels and maintains trust through doping-free certifications and transparent product information. Overall, the website is professional, trustworthy, and well-suited for its target audience, though security enhancements and explicit incident response policies could further strengthen its posture.

House of Energy is a medium-sized German company specializing in integrated building services engineering, including sanitary, heating, ventilation, and electrical systems. With approximately 200 employees and multiple locations, it holds a solid market position in the construction sector, focusing on quality and customer satisfaction. The website is built on WordPress with modern plugins and demonstrates good technical maturity, including GDPR compliance and cookie consent mechanisms. Security posture is good with HTTPS and reCAPTCHA usage, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and trustworthy online presence.

L

liverelations gmbh

liverelations.at

48

liverelations gmbh operates a German-language website focused on corporate magazines and event organization, targeting corporate clients primarily in Austria. The website is built on WordPress using the Enfold theme and integrates modern web technologies such as Google Fonts, YouTube embeds, and Google reCAPTCHA for bot protection. While the site is functional and moderately optimized for mobile, it lacks explicit privacy and cookie policy pages, though a cookie consent mechanism is present. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but missing security headers and absence of a published security policy reduce overall security maturity. No contact emails or phone numbers are directly visible on the homepage, which may impact user trust and compliance. Overall, the site is a small media business with basic digital maturity and moderate security and privacy compliance.

W

Wiener Kaiserwiesn

kaiserwiesn.at

58

Wiener Kaiserwiesn is a well-established event organizer hosting the annual Oktoberfest-style festival in Vienna, Austria. The website provides comprehensive information about the event, including schedules, ticket sales, partner acknowledgments, and multimedia content. The business targets local and international visitors interested in traditional and party music festivals. Technically, the website is built on WordPress with a modern theme and plugins, supporting multilingual content and SEO best practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies are absent. Overall, the site is professional, trustworthy, and well-maintained, supporting a medium-sized hospitality business.

M

Meinplatz

meinplatz.ch

36

Meinplatz.ch is an online platform dedicated to providing current offers in housing, work, and day structure for adult people with disabilities in Switzerland. It serves as a centralized resource for institutions offering these services and includes information about advisory centers for personalized support. The platform targets a niche audience within the disability support sector and positions itself as a trusted resource in this domain. Technically, the website leverages modern web technologies such as SvelteKit, Google Fonts, and Google Tag Manager, ensuring a responsive and accessible user experience. Security measures include HTTPS enforcement and standard security headers, contributing to a good security posture. However, the absence of visible privacy and cookie policies, as well as lack of explicit contact information, indicates compliance gaps that should be addressed to enhance trust and regulatory adherence. Overall, the website is professional and functional but would benefit from improved privacy compliance and clearer contact channels.

E

Enigma SA

enigma.swiss

56

Enigma SA is a Swiss-based digital marketing agency with a regional presence in Geneva, Bern, and Zurich. The company offers a comprehensive suite of digital marketing services including strategy, design, branding, digital trading, and growth hacking. The website reflects a professional business model targeting businesses seeking digital marketing expertise in Switzerland. The company was founded in 2016, consistent with the domain registration date, and maintains a consistent brand presence online. Technically, the website is built on WordPress with modern JavaScript frameworks like Svelte and uses Cloudflare for DNS management. It integrates multiple marketing and analytics tools such as Google Analytics, HubSpot, Facebook Pixel, and Bing Ads, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS, has domain transfer locks, and uses Cloudflare DNS, but could improve by enabling DNSSEC and adding more HTTP security headers. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. However, explicit terms of service and security policies are not found. Overall, the website is trustworthy, professionally maintained, and compliant with key privacy regulations.

M

Magazine Présences Grenoble

presences-grenoble.fr

54

Magazine Présences Grenoble is a regional economic media outlet affiliated with the Chamber of Commerce and Industry (CCI) Grenoble. It provides news, event information, business rankings, and resources primarily targeting business professionals, entrepreneurs, and economic stakeholders in the Grenoble region. The website is built on Drupal 10 and integrates modern technologies including Google APIs, YouTube API, Matomo analytics, and Google DoubleClick advertising. It features a professional design with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the website's affiliation with CCI Grenoble and professional presentation support its legitimacy. Overall, the site is a credible and valuable resource for its target audience.

S

skills.lab

skills-lab.com

74

skills.lab is a specialized company offering high-tech football training systems that combine digital gamification with objective measurement and talent development. Positioned as a world market leader, the company serves football players, coaches, and clubs with innovative products such as the skills.lab Arena, Studio, and Cube. The website is professionally designed, mobile-optimized, and provides comprehensive content about their offerings and partnerships with notable football clubs. Technically, the site is built on WordPress with modern JavaScript libraries and integrates video content and analytics tools. Security posture is good with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies could enhance trust. Overall, the domain registration is consistent and legitimate, supporting the company's credibility.

S

Students Go West

studentsgowest.com

65

Students Go West is an Austrian agency specializing in securing sports scholarships for athletes at US universities. Established in 2018, it holds a leading market position in Austria for this niche. The website is built on WordPress with Elementor and integrates modern technologies such as CookieYes for consent management and analytics tools like Google Analytics and Hotjar. The site is well-designed, mobile-optimized, and provides clear navigation and relevant content for its target audience of student-athletes. Security posture is good with HTTPS enabled and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the professional presentation and consistent branding support business credibility. Privacy policy and terms of service pages are not clearly found, indicating room for compliance improvement.

A

ALSO Schweiz AG

also.ch

73

ALSO Schweiz AG operates a comprehensive B2B technology distribution platform serving approximately 120,000 resellers with hardware, software, and IT services from over 700 vendors. The company is positioned as a leading technology provider in Europe, offering a broad portfolio including cloud services, cybersecurity, virtualization, and AI solutions. The website reflects a mature digital infrastructure with modern technologies and integrated marketing and analytics tools, supported by a consent management platform ensuring GDPR compliance. Security posture is strong with HTTPS enforcement and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Overall, the site demonstrates professionalism, trustworthiness, and a clear business focus on B2B technology distribution and services.

A

ALSO Finland Oy

also.fi

65

ALSO Finland Oy operates a large B2B marketplace focused on technology products and IT services, serving approximately 120,000 resellers with offerings from over 700 suppliers across 1,450 product categories. The company positions itself as a key regional distributor and service provider in Finland's technology sector, providing hardware, software, cloud, and digital services. The website reflects a mature digital infrastructure with a custom CMS, modern JavaScript libraries, and integration of multiple analytics and marketing tools, including Webtrekk, Google Ads, Facebook Pixel, and LinkedIn Insight Tag, all managed with a GDPR-compliant consent mechanism. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit incident response information are absent. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by the professional presentation and extensive business content. Overall, the site is well-structured, user-friendly, and targeted at B2B technology resellers and partners.

L

Lexus

discoverlexus.com

60

DiscoverLexus.com serves as a global lifestyle and brand marketing platform for Lexus, a premium automotive brand. The website focuses on delivering luxury and lifestyle content that aligns with Lexus's market positioning as a leader in the transportation sector. The site targets luxury vehicle enthusiasts and Lexus customers worldwide, providing brand storytelling and vehicle-related information. The business model centers on brand engagement and lifestyle marketing rather than direct sales. The domain age and WHOIS data support the legitimacy and maturity of the brand presence online. Technically, the website employs modern frontend technologies including Vue.js and Nuxt.js, with a CMS likely based on Statamic. Hosting is supported by Microsoft Azure DNS infrastructure. The site demonstrates good mobile optimization and SEO practices, with cookie consent managed by Cookiebot. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and enforces domain transfer protection. However, DNSSEC is not enabled, and security headers are not detected in the provided data. There is no visible privacy policy or terms of service, which are critical for compliance and user trust. No incident response or vulnerability disclosure mechanisms are found. The site integrates Google Tag Manager for analytics and tracking, balanced with a cookie consent mechanism. Overall, the website is professionally designed and trustworthy, with a strong brand presence. To enhance security posture and compliance, it is recommended to publish privacy and terms policies, enable DNSSEC, implement security headers, and provide clear contact information for incident response. These steps will improve user trust, regulatory compliance, and resilience against threats.

LibreriadelSanto.it is an established Italian online bookstore specializing in Catholic religious books, articles, and media. The website offers a broad catalog exceeding 100,000 items including new, used, and ebook formats. It targets Italian-speaking customers interested in religious literature and related products. The business operates an e-commerce model with customer support and a clear focus on religious retail. Technically, the site uses a mix of legacy and modern technologies including jQuery, Google Tag Manager, and Iubenda for privacy compliance. The site is hosted on Amazon Cloudfront CDN, ensuring reasonable performance and availability. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. WHOIS data aligns well with the business profile, indicating legitimacy and transparency. Overall, the site is professional, privacy-conscious, and well-positioned within its niche market.

L

Landessportbund Berlin e.V.

familiensportfest-berlin.de

42

The website familiensportfest-berlin.de represents the Landessportbund Berlin e.V., promoting the Familiensportfest Berlin, a family-oriented sports festival held across various districts in Berlin. The event aims to engage families and local communities in diverse sports activities, fostering health, inclusion, and community spirit. The organization holds a strong regional presence with partnerships across Berlin's sports federations and clubs. Technically, the site is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and Font Awesome, integrating accessibility tools and Matomo analytics for privacy-conscious user tracking. Security posture is solid with HTTPS and some privacy measures, though explicit security headers and policies are absent. Contact information is comprehensive, supporting business credibility. Overall, the site is professional, accessible, and trustworthy, serving its community-focused mission effectively.

S

Stiftung Deutsche Sporthilfe

sporthilfe.de

54

Stiftung Deutsche Sporthilfe is a well-established non-profit organization dedicated to supporting young and elite athletes in Germany. With a history dating back to 1967, it plays a pivotal role in private sports funding, contributing significantly to Germany's international sports successes. The website reflects a professional and comprehensive presentation of their services, partnerships, and events, targeting donors, sponsors, and sports enthusiasts. Technically, the site is built on TYPO3 CMS with modern integrations such as Google Tag Manager, reCAPTCHA, and consent management, ensuring a good digital maturity level. Security posture is strong with HTTPS, secure forms, and privacy compliance, though explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy, well-branded, and provides a positive user experience with clear navigation and rich content.

ÖKK is a Swiss insurance company specializing in providing health insurance products tailored to private clients. The company positions itself as a reliable and sensible insurance provider with a focus on customer needs. The website reflects a professional and consistent brand image, targeting private clients primarily within Switzerland. The business model revolves around offering various insurance models and supplementary services to meet diverse client requirements. Technically, the website employs modern web technologies including JavaScript frameworks, font services, and third-party consent management tools, ensuring a responsive and user-friendly experience. Security-wise, the site enforces HTTPS, implements strong security headers, and uses reCAPTCHA to protect forms, although it lacks a dedicated security policy or incident response page. Overall, the website demonstrates a mature digital presence with good privacy compliance and trustworthy business information.

G

Gebäudeversicherung Bern (GVB)

fachstelle-naturgefahren.ch

63

The Fachstelle Naturgefahren website represents a specialized division of the Gebäudeversicherung Bern, focusing on natural hazard protection and building insurance within the Canton of Bern, Switzerland. It offers advisory services, hazard maps, and support for protective measures such as automated hail protection systems. The organization holds a strong regional market position as the mandatory building insurer and provides additional voluntary insurance products through affiliated entities. The website targets property owners and professionals seeking to mitigate natural hazard risks.

G

GARANT Türen und Zargen GmbH

garant.de

57

GARANT Türen und Zargen GmbH is a German manufacturer specializing in interior and functional doors, offering a wide range of products including premium door edges and digital configurator tools. The company targets architects, planners, carpenters, dealers, and end customers, positioning itself as an established player within the manufacturing sector under the Arbonia Group umbrella. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates analytics and social media effectively. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security policies or incident response information. Overall, the site is compliant with GDPR and provides comprehensive contact details, supporting business credibility and trust.

P

PRÜM-Türenwerk GmbH

pruem-schreinerwebsite.info

57

PRÜM-Türenwerk GmbH is a German manufacturer specializing in a wide range of door products including interior doors, functional doors, and premium edge solutions. The company targets architects, planners, dealers, and end customers, providing both physical products and digital tools such as a door configurator and dealer locator. The website reflects a medium-sized manufacturing business with a strong market presence in Germany and is part of the Arbonia Group. Technically, the site is built on TYPO3 CMS with modern frontend technologies and integrates analytics and tracking tools responsibly with cookie consent mechanisms. Security posture is solid with HTTPS and cookie management, though explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

P

PRÜM-Türenwerk GmbH

pruem-mtb.de

55

PRÜM-Türenwerk GmbH operates a professional B2B digital marketing and sales platform focused on door manufacturing and design, serving architects, planners, carpenters, and specialist dealers primarily in Germany. The website leverages TYPO3 CMS and modern web technologies to provide interactive tools such as brochures and visualization programs, positioning itself as a digital enabler within the Arbonia Group. The site demonstrates good content quality, consistent branding, and a clear target audience. Technically, the infrastructure is solid with HTTPS, cookie consent management, and integration of analytics tools like Google Analytics, Facebook Pixel, and eTracker, reflecting a mature digital presence. Security posture is good but could be improved by adding explicit security headers and incident response contacts. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-suited for its business purpose.

C

CLEPA

clepa.eu

55

CLEPA is a prominent European association representing automotive suppliers, advocating for sustainability, innovation, and competitiveness within the European automotive supply chain. The organization targets industry stakeholders and policymakers, positioning itself as a key player in the transportation and manufacturing sectors. The website reflects a professional and consistent brand image, with clear business information and active social media presence. Technically, the website is built on WordPress and leverages modern web technologies including JavaScript libraries, Google Tag Manager, and Ajax Search Pro for enhanced user experience. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. Performance is moderate, with a well-structured front-end and use of CDN resources. From a security perspective, the site enforces HTTPS, includes essential security headers, and shows no signs of exposed sensitive data or vulnerabilities. However, it lacks a public security policy or vulnerability disclosure mechanism, which could enhance transparency and trust. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, CLEPA's website presents a low-risk profile with strong business credibility and a solid security posture. Strategic improvements in security transparency and accessibility could further strengthen its digital maturity and stakeholder trust.

P

PRÜM-Türenwerk GmbH

tuer.de

57

PRÜM-Türenwerk GmbH is a German manufacturer specializing in a wide range of door products including interior doors, functional doors, and premium surface assortments. The company targets architects, planners, carpenters, dealers, and end customers, offering both physical products and digital tools such as a door configurator and dealer search. As part of the Arbonia Gruppe, PRÜM holds a solid market position with recognized awards like the WOODY AWARDS 2021, reflecting its industry reputation. Technically, the website is built on TYPO3 CMS with integration of modern JavaScript libraries and analytics tools such as Google Analytics, Facebook Pixel, and Etracker. The site demonstrates good mobile optimization, SEO practices, and a comprehensive cookie consent mechanism aligned with GDPR requirements. Hosting appears stable with consistent nameservers and HTTPS enforced. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The security posture is solid but could be enhanced by adding security headers and formal incident response information. Overall, the website is professional, trustworthy, and compliant with privacy regulations. The business is credible with transparent contact information and a consistent brand presence. Strategic recommendations include publishing security policies, enhancing security headers, and providing incident response contacts to further strengthen trust and compliance.

F

Fondation Beyeler

fondationbeyeler.ch

51

Fondation Beyeler is a well-established Swiss museum specializing in modern and contemporary art, located in Riehen/Basel. The institution offers a rich program of exhibitions, educational workshops, events, and a museum shop, targeting art enthusiasts, families, and educators. The website reflects a mature digital presence with multilingual support and comprehensive visitor information. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates various third-party services for analytics and marketing. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

BOSS Corporation

boss.info

70

BOSS Corporation operates a comprehensive global website showcasing its world-leading product lineup of guitar effects processors, multi-effects, loop stations, and related audio equipment. The brand is well-established in the music technology industry, targeting musicians and audio professionals worldwide. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Kentico CMS, Adobe Analytics, and OneTrust for privacy compliance. Security posture is solid with HTTPS enforced and a vulnerability disclosure policy publicly available, though explicit security headers could be improved. The absence of WHOIS data is likely due to privacy protection and does not detract from the site's legitimacy given its strong brand presence and professional content. Overall, the site demonstrates a mature digital infrastructure with moderate user tracking balanced by privacy mechanisms.

R

Roland Corporation

roland.com

76

Roland Corporation operates a comprehensive global website showcasing its leadership in manufacturing and distributing electronic musical instruments and related audio equipment. The company targets musicians, producers, and audio professionals with a broad product portfolio including keyboards, synthesizers, guitars, percussion, and digital recording tools. The website demonstrates a mature digital presence with rich multimedia content, clear navigation, and integration of modern web technologies such as Adobe Analytics and OneTrust for privacy compliance. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response contact details could be improved. The absence of WHOIS data reduces domain registration transparency but does not detract from the evident legitimacy of the brand and its digital assets. Overall, the site reflects a professional, enterprise-grade digital footprint aligned with Roland's market position.

E

Eurexpo Lyon | Lyon events

eurexpo.com

63

The website www.gl-lyonevents.com/fr/eurexpo-lyon serves as an informational platform focused on events at Eurexpo Lyon, a major event venue in Lyon, France. The site appears to target event organizers and attendees interested in Lyon-based events, providing venue details and event-related content. The business model centers on event promotion and support services, although explicit business details and company information are not disclosed on the site. Technically, the site is built on Drupal 10 CMS and integrates modern web technologies including YouTube APIs, lazy loading for images, Matomo analytics, and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized and includes accessibility features, contributing to a moderate user experience and performance level. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or terms policies, which are important for compliance and trust. The WHOIS data for the domain is unavailable, raising concerns about domain legitimacy and transparency. Overall, the site is functional but would benefit from enhanced security practices, clearer business disclosures, and compliance documentation to improve trust and credibility.

S

Sportversicherungskasse

sportversicherungskasse.ch

57

The Sportversicherungskasse (SVK) is a specialized non-profit insurance provider serving active members of the Swiss Gymnastics Federation (STV) since 1919. It offers accident and liability insurance tailored to the needs of gymnasts and their clubs, emphasizing rapid financial and advisory support in case of accidents during STV activities. The website reflects a mature, well-established organization with a clear focus on its niche market within Switzerland. Technically, the website is built on the TYPO3 CMS platform, integrating modern web technologies such as Google Tag Manager and YouTube APIs for enhanced user engagement and analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience with clear navigation and professional design. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, it lacks explicit security policies and incident response contact information, which could be improved to enhance trust and compliance. No critical vulnerabilities or suspicious activities were detected. Overall, the SVK website demonstrates a solid digital presence with good privacy compliance and business credibility. Strategic enhancements in security transparency and incident response readiness are recommended to further strengthen its security posture and stakeholder confidence.

N

Nora Vögeli Grafik Design

noravoegeli.com

60

Nora Vögeli Grafik Design is a small, professional design atelier based in Zürich, Switzerland, specializing in art direction, graphic design, branding, and spatial design. The website showcases a comprehensive portfolio of projects including corporate design, event branding, publications, and digital applications, targeting clients seeking creative design services primarily in the Zürich region. Technically, the site is built on the Squarespace platform, leveraging modern web technologies such as HTTPS with HSTS, Google Fonts, and YouTube embeds, providing a moderate performance and good mobile optimization. Security posture is solid with HTTPS and HSTS, but lacks additional security headers and formal privacy or cookie policies. The absence of WHOIS data limits domain legitimacy verification, though the professional presentation and content quality suggest a legitimate business. Overall, the site is well-designed and functional but would benefit from enhanced privacy compliance and clearer contact information to improve trust and security.

S

Swiss Olympic

swissolympic.ch

63

Swiss Olympic is the umbrella organization for Swiss sports and serves as the National Olympic Committee of Switzerland. It supports and strengthens its members, including 83 national sports federations and 30 partner organizations, representing approximately 18,300 clubs and 2.2 million active sports participants. The organization is well-established with a strong market position and recognized trust indicators such as ISO 9001:2015 certification and partnerships with major national and international brands. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience of sports organizations, athletes, and partners. Technically, the website employs modern JavaScript libraries including jQuery, Slick Carousel, JWPlayer, and integrates Google Analytics and Tag Manager for analytics. Accessibility tools like Eye-Able are implemented, and the site is mobile-optimized with good SEO practices. Performance is moderate, with no critical technical issues detected. However, no CMS or hosting provider details were identified. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security policy pages, incident response contacts, and security headers such as Content-Security-Policy. No vulnerabilities or exposed sensitive data were found. The WHOIS data shows privacy protection consistent with organizational privacy needs, and no suspicious patterns were detected. Overall, the website is secure, professional, and compliant with privacy regulations, with room for improvement in formal security disclosures and enhanced security headers. The risk level is low, and the site effectively supports the organization's mission and stakeholder engagement.

G

GOP Entertainment-Group

variete.de

49

GOP Entertainment-Group operates a network of variety theaters across Germany, offering live shows featuring artists, comedians, and entertainers. The company targets a broad audience including families and general entertainment seekers, positioning itself as a leading player in the German hospitality and live entertainment sector. The website is built on TYPO3 CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and TikTok Pixel, demonstrating a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response information. Overall, the site is professional, content-rich, and trustworthy, supporting a large-scale entertainment business.

I

iart ag

fluxdock.io

47

Fluxdock is a Swiss-based business offering modular and flexible workspace rentals located in the urban Dreispitz area near Basel. The company targets SMEs and organizations seeking agile, collaborative project spaces with options for short-term and long-term rentals. The website presents a professional and consistent brand image with clear service descriptions and partner affiliations. Technically, the site uses modern frontend technologies such as Bootstrap, jQuery, and Swiper.js, and is mobile-optimized with moderate performance. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks DNSSEC and security headers, and does not have an active cookie consent mechanism. The WHOIS data aligns well with the business identity, supporting legitimacy. Overall, the site is trustworthy and business credible but could improve privacy compliance and security best practices.