Security Directory

E

ESG Business Institute

esg-bi.org

56

The ESG Business Institute operates as a global educational and networking platform dedicated to Environmental, Social, and Governance (ESG) principles. Founded in 2021 and headquartered in Singapore, it serves a medium-sized community of over 5,000 members across more than 35 countries. The organization offers a variety of sustainability courses, certificates, and global events, leveraging partnerships with reputable institutions such as eCornell and Deloitte. The platform is built on the Moodle LMS, providing a structured and scalable learning environment. Technically, the website employs a modern tech stack including Moodle, Bootstrap, YUI, jQuery, and Swiper.js, with Google Tag Manager integrated for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses domain registration protections but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements in security headers and incident response transparency are advised. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. The absence of direct contact emails or phone numbers is noted, with contact primarily via web forms. The website content is safe, professional, and targeted at a general audience interested in ESG education and leadership. Strategically, the ESG Business Institute is well-positioned as a niche educational provider in the ESG domain, with a credible and consistent online presence. Continued focus on security enhancements and transparency will further strengthen trust and compliance.

S

Syndigo LLC

syndigo.com

72

Syndigo LLC is a well-established enterprise founded in 2000, specializing in product experience management solutions for brands and retailers. Their flagship offering, the Syndigo Product Experience Cloud, enables clients to centralize product data, optimize content, and accelerate time to market. Syndigo serves a broad range of industries including retail, manufacturing, consumer packaged goods, and healthcare, positioning itself as a leader in the commerce data platform market with over 12,000 global enterprises connected. The company also recently acquired 1WorldSync, expanding its market reach and capabilities. Technically, Syndigo's website is built on a modern WordPress CMS with a robust tech stack including jQuery, Swiper.js, and other performance-enhancing libraries. Hosted on Amazon infrastructure, the site demonstrates fast loading times, excellent mobile optimization, and good SEO practices. The presence of comprehensive legal and privacy policies, along with a dedicated security policy page, reflects a mature approach to compliance and governance. From a security perspective, Syndigo employs HTTPS with strong domain registration protections but could improve by enabling DNSSEC and publishing a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The website's security posture is strong, supported by domain locking and a professional security policy. Overall, Syndigo presents a low-risk profile with a high degree of business credibility, technical maturity, and compliance readiness. Strategic recommendations include enhancing DNS security, publishing incident response contacts, and expanding security certifications to further bolster trust and resilience.

S

Sardine

sardine.ai

80

Sardine is a technology company specializing in AI-driven risk management, fraud prevention, and compliance solutions targeted at enterprises and financial institutions globally. Their platform consolidates multiple risk workflows, enabling real-time fraud detection and streamlined regulatory compliance such as BSA/AML. The company positions itself as a trusted partner for hundreds of enterprises across more than 70 countries, emphasizing operational efficiency and data unification across risk teams. Technically, the website is built on a modern stack including Webflow CMS, HubSpot marketing and analytics tools, and various tracking and consent management technologies, reflecting a mature digital presence. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response details are not publicly disclosed. The domain WHOIS data is privacy protected, which is typical for tech companies but limits transparency. Overall, Sardine presents a professional, trustworthy, and well-structured online presence suitable for its B2B SaaS market. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure information, and enhancing contact transparency with phone and physical address details.

D

Die Deutschen Auslandshandelskammern

ahk.de

61

Die Deutschen Auslandshandelskammern (AHK) operate as a globally recognized network representing German business interests in over 90 countries with 150 locations. They provide comprehensive support for German companies entering or expanding in foreign markets, including legal, cultural, and market advisory services. The organization is well-positioned as a government-affiliated entity with strong partnerships with key German economic institutions. Technically, the website is built on a modern CMS (Ibexa DXP) with Vue.js components and uses Piwik PRO for analytics, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms, although explicit security policies and incident response details are not publicly disclosed. Overall, the website is professional, trustworthy, and well-aligned with its business mission.

D

Dassault Systèmes

netvibes.com

76

Dassault Systèmes is a leading global technology company specializing in 3D design, engineering, and analytics software solutions. The NETVIBES product is a sophisticated platform for real-time data monitoring and business intelligence, targeting enterprise customers who require comprehensive analytics dashboards. The website reflects a mature digital presence with professional design, clear navigation, and modern technology usage including JavaScript frameworks and CSS utilities. Security posture is strong with HTTPS enforcement and appropriate security headers, although explicit security policies and incident response information are not prominently published. Privacy and cookie policies are comprehensive and GDPR compliant, indicating a commitment to data protection. The absence of WHOIS data limits domain registration trust analysis, but the overall brand and website quality strongly support legitimacy.

F

Feedbackly

feedbackly.com

67

Feedbackly is a technology company specializing in customer experience (CX) software that uniquely integrates emotional analytics through its Emotional Value Index (EVI®). The company offers a SaaS platform combined with consulting and training services to help businesses improve customer satisfaction and increase sales. The website demonstrates a mature digital presence with modern technologies such as WordPress, Elementor, and integrations with HubSpot and Google Tag Manager. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. Privacy compliance is limited due to missing privacy and cookie policies. The domain WHOIS data is missing, which raises concerns about registration transparency but does not detract from the professional business presentation. Overall, Feedbackly presents as a credible mid-sized technology business with a strong focus on CX innovation.

B

B型企業協會 B Lab Taiwan

blab.tw

43

B型企業協會 B Lab Taiwan is a Taiwan-based organization dedicated to promoting B Corporation certification and ESG (Environmental, Social, Governance) sustainability practices. The website serves as an informational and community hub for businesses interested in becoming certified B Corporations and advancing sustainable business practices. It targets enterprises and professionals interested in ESG and corporate responsibility. The organization positions itself as a leading promoter of B Corp certification in Taiwan, offering education, training, and community engagement services. Technically, the website is built on WordPress with common plugins such as Yoast SEO and uses libraries like jQuery and Swiper.js for interactive elements. The hosting provider is Cloudmax Inc., and the site uses HTTPS with a good SSL configuration. The site is moderately performant and optimized for mobile devices, with good SEO metadata and structured data enhancing discoverability. From a security perspective, the site uses HTTPS but lacks visible security headers and does not provide explicit privacy or cookie policies, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. Contact information is available primarily through a contact form and social media channels, but no direct emails or phone numbers were found. Overall, the security posture is adequate but could be enhanced with better privacy compliance and security best practices. The overall risk assessment indicates a trustworthy and professional website with good business credibility but with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, and providing clearer incident response contacts to enhance trust and compliance.

O

Ostendis AG

ostendis.com

70

Ostendis AG operates a Swiss-based cloud e-recruiting platform designed to simplify and optimize recruitment processes for businesses. The company positions itself as a user-friendly, intuitive, and cost-effective solution targeting organizations seeking efficient applicant management. The website is professionally designed using WordPress and Elementor, featuring multilingual support and a clear navigation structure. The presence of customer logos and social media links enhances trust and market credibility. Technically, the site employs modern web technologies and integrates Google Tag Manager for analytics and CookieYes for cookie consent management. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. WHOIS data is unavailable, which raises some concerns about domain registration transparency but does not detract significantly from the business legitimacy based on website content. Overall, the site demonstrates a mature digital presence with room for improvement in privacy and security disclosures.

Q

Qualibroker - Swiss Risk & Care

qualibroker.ch

56

Qualibroker - Swiss Risk & Care is a leading Swiss insurance brokerage firm specializing in insurance, pension provisions, and HR services outsourcing. Positioned as the number one broker in French-speaking Switzerland and the second nationally, the company offers tailored solutions to companies, independent professionals, and individuals. Their services include risk management, employee benefits, actuarial consulting, and administrative outsourcing, supported by a strong compliance and security posture. The website reflects a mature digital presence with multi-language support, professional design, and comprehensive content.

N

Naef Holding S.A.

naef-commercial.ch

48

Naef Commercial Knight Frank is a Swiss real estate company specializing in commercial and investment properties, offering tailored services such as property rental, sales, valuation, and asset management. The company operates primarily in Geneva, Vaud, and Neuchâtel, positioning itself as a key player in the Swiss real estate market. The website reflects a mature digital presence with modern technologies including Vue.js, Google Tag Manager, and a cookie consent mechanism, ensuring good user experience and compliance with privacy regulations. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security and incident response policies are not published. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

F

Finsweet

finsweet.com

72

Finsweet is a specialized Webflow development, design, and product agency established in 2015. The company positions itself as a trusted partner for high growth teams seeking to maximize their website's impact through expert Webflow solutions. Their offerings include design and strategy, web development, SEO, AI and automation, and long-term maintenance services. The website demonstrates strong branding, professional content, and a clear focus on client success, supported by numerous testimonials and partnerships with leading companies such as Dropbox and GitHub. Technically, the website leverages modern web technologies including Webflow CMS, Cloudflare hosting, and various JavaScript libraries for enhanced user experience and performance. The presence of consent management tools and analytics platforms like Google Tag Manager and Visual Website Optimizer indicates a mature digital infrastructure with attention to privacy compliance. The site is fast, mobile-optimized, and accessible, reflecting a high level of technical maturity. From a security perspective, the site uses HTTPS with a valid SSL configuration and employs domain transfer protection. However, DNSSEC is not enabled, and no explicit security policy or incident response contacts are published. The cookie consent mechanism is robust and GDPR compliant, but additional security headers and vulnerability disclosure mechanisms could enhance the security posture. Overall, Finsweet presents a low-risk profile with strong business credibility and technical implementation. Strategic recommendations include enabling DNSSEC, publishing security policies, and enhancing security headers to further improve trust and compliance.

EVENTIM.Tixx operates as a SaaS digital platform specializing in ticketing, merchandising, and CRM solutions tailored for sports and event organizers. The company targets sports clubs, federations, arenas, and festival organizers, offering a comprehensive suite of services including software, hardware, and marketing support. With over 20 years of market experience and a broad customer base, EVENTIM.Tixx holds a strong position in the event technology sector in Germany. The website reflects a professional and well-structured digital presence with extensive client references and testimonials, reinforcing its market credibility. Technically, the website is built on TYPO3 CMS and integrates modern web technologies such as Google Tag Manager and Swiper.js for enhanced user experience. The site is mobile-optimized, SEO-friendly, and implements GDPR-compliant privacy and cookie policies with consent management. However, no explicit security policy or incident response information is published, which could be improved to enhance transparency and trust. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS registration data is a notable anomaly, reducing trust slightly despite the professional appearance and client endorsements. Overall, the website demonstrates a mature digital infrastructure and business model but would benefit from improved transparency in security and domain registration details. Strategically, the company should focus on publishing clear security policies, incident response contacts, and clarifying domain registration information to strengthen trust and compliance posture.

V

Volkswagen Financial Services Schweiz AG

vw-nutzfahrzeuge-versicherung.ch

59

Volkswagen Financial Services Schweiz AG operates a specialized insurance website providing comprehensive vehicle insurance solutions tailored for Volkswagen commercial vehicle owners in Switzerland. The site emphasizes partnership with Zurich Versicherungs-Gesellschaft AG and offers premium insurance packages, customer support, and claims services. The business model focuses on insurance brokerage and customer service within the transportation and financial sectors, targeting Volkswagen Nutzfahrzeuge customers. The website is well-branded, consistent, and professionally designed, reflecting a medium-sized enterprise with a strong market position in its niche. Technically, the website is built on the Umbraco CMS platform, utilizing modern JavaScript libraries such as Swiper.js and LazySizes for enhanced user experience. It integrates Google Analytics and Facebook Pixel for tracking and marketing purposes, managed via Google Tag Manager. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security practices include HTTPS enforcement and nonce usage in scripts, though explicit security headers and cookie consent mechanisms are absent. From a security perspective, the website maintains a good posture with no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies and incident response contacts, which could be improved to enhance trust and compliance. The WHOIS data aligns well with the website's business claims, confirming legitimacy and consistent domain registration details. Overall, the website presents a trustworthy and professional front for Volkswagen Financial Services Schweiz AG's insurance offerings, with room for improvement in privacy compliance and security transparency to meet higher standards and regulatory requirements.

D

Datwyler IT Infra

datwyler.com

68

Datwyler IT Infra is a well-established provider of IT and OT infrastructure solutions, specializing in data centres, fibre networks, and intelligent building systems. The company operates globally, offering a broad range of services including managed services, software solutions, and turnkey projects. Their market position is strong, supported by comprehensive governance and sustainability commitments. Technically, the website employs modern technologies such as Craft CMS, Google Tag Manager, and Imgix for image delivery, ensuring a responsive and professional user experience. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the website reflects a mature digital presence aligned with corporate standards.

D

Un immense MERCI à vous toutes et tous! | Diabolo Festival

diabolofestival.ch

42

Diabolo Festival is a small-scale cultural event organizer based in Switzerland, focusing on live arts performances and workshops for children and families. The website serves as an informational portal for the festival, highlighting past editions and upcoming events. The business operates in a niche market segment, targeting families and arts enthusiasts with a community-driven approach. Technically, the website employs common front-end libraries such as jQuery, Bootstrap, and Swiper.js, providing a responsive and visually engaging user experience. However, the site lacks advanced CMS integration and structured data markup, which could enhance SEO and content management. Security posture is basic, with no evident security headers or privacy policies, and the SSL configuration status is unknown from the provided data. Contact information is available but limited, and no incident response or vulnerability disclosure mechanisms are present. Overall, the website is functional and professional but would benefit from improved security and privacy compliance measures.

M

Morges-sous-Rire Festival

morges-sous-rire.ch

42

Morges-sous-Rire Festival is a well-established cultural event based in Morges, Switzerland, focusing on comedy and entertainment. The festival has a long history, with the upcoming 38th edition scheduled for June 2026. It offers a variety of services including live shows, concerts, food trucks, and artisanal markets, targeting a broad general audience interested in cultural festivals. The website reflects a professional and consistent brand image with good content quality and navigation. Technically, the site uses common web technologies such as jQuery, Bootstrap, and Swiper.js, providing a responsive and moderately performant user experience. However, there is room for improvement in accessibility and SEO optimization. Security posture is moderate; HTTPS is used but no explicit security headers or policies are present. Privacy and cookie policies are missing, which impacts compliance and user trust. The site integrates Google Analytics and Tag Manager for user tracking, but lacks clear privacy compliance indicators. Overall, the website is credible and trustworthy but would benefit from enhanced security and privacy practices.

U

Universe

universe.com

66

Universe is a large-scale online event ticketing and management platform that enables event organizers to create, manage, and sell tickets for general admission and timed-entry events. The platform is integrated with Ticketmaster, leveraging a vast distribution network and marketing expertise to expand event reach globally. Universe offers advanced tools for customer data ownership, checkout customization, and marketing optimization, targeting event hosts and ticket buyers worldwide. Technically, Universe employs modern web technologies including Webflow CMS, Google Tag Manager, Transifex for localization, and ContentSquare for UX analytics. The site is well-optimized for performance, mobile responsiveness, and accessibility, hosted on AWS Cloudfront CDN. Security is robust with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not publicly detailed. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is comprehensive, with clear privacy and cookie policies and GDPR adherence. However, the absence of WHOIS registration data for the domain www.universe.com is unusual and warrants further investigation to confirm domain legitimacy. Overall, the site presents a professional, trustworthy, and user-friendly experience with strong business credibility. Strategic recommendations include enhancing security transparency by publishing a security policy and incident response contacts, implementing additional security headers, and clarifying domain registration details to improve trust and compliance visibility.

The website worldsnowcross.com serves as the official digital platform for the FIM Snowcross World Championship, a winter motorsport event organized by Infront Moto Racing. It provides comprehensive event information, including calendars, ticketing links, news updates, photo galleries, and video highlights. The site targets snowcross fans, athletes, and winter sports enthusiasts, positioning itself as a key source for championship-related content. Technically, the site is built on WordPress with modern plugins and themes, hosted with OVH and DNS on Azure, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain registration protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced compliance and security practices.

H

Harsch

harsch.ch

46

Harsch is a specialized moving company based in Geneva, Switzerland, offering local, national, and international moving services, including the transport and storage of artworks. The company positions itself as a professional and reliable service provider in the transportation sector, targeting individuals and businesses requiring specialized moving solutions. The website is built on WordPress and incorporates modern web technologies and marketing tools, reflecting a moderate to advanced digital maturity. Security measures include HTTPS enforcement and a comprehensive cookie consent mechanism, although explicit security policies and incident response contacts are not present. Overall, the website demonstrates a good security posture with room for improvement in security headers and transparency. The domain registration data aligns well with the business profile, supporting legitimacy and trustworthiness.

G

Global-e

global-e.com

69

Global-e is an enterprise-level e-commerce platform specializing in enabling merchants and shoppers worldwide to engage in cross-border commerce seamlessly. The company positions itself as a leading global e-commerce enabler, offering localized shopping experiences, payment, and compliance services. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to merchants and shoppers globally. Technically, the site is built on WordPress with Elementor and integrates multiple modern marketing and analytics tools such as Google Analytics, HubSpot, Facebook Pixel, and Cookiebot for privacy compliance. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies could be improved. The absence of WHOIS data reduces transparency but does not significantly detract from the overall legitimacy given the professional web presence. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and auditing third-party scripts for vulnerabilities.

M

Magnite

springserve.com

66

Magnite is a leading independent sell-side advertising company specializing in helping media owners maximize advertising revenue across multiple channels including Connected TV (CTV), streaming, online video, display, and audio. The company positions itself as a global technology platform offering advanced brand protection, targeting, and programmatic advertising solutions. Their website reflects a mature enterprise with comprehensive content, strong branding, and a clear focus on media owners and advertisers as their primary audience. Technically, the site is built on WordPress with modern marketing and analytics tools such as Google Tag Manager, Marketo, LinkedIn Insight, and Hotjar, indicating a digitally mature infrastructure. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though security headers could be improved. Privacy compliance is well addressed with detailed privacy and cookie policies and GDPR adherence. Overall, the domain WHOIS data is unavailable, likely due to privacy protection, which is common in this industry but slightly reduces transparency. The website is professional, trustworthy, and well-optimized for SEO and mobile use.

P

PAPA RHEIN Hotel & Spa

paparheinhotel.de

54

PAPA RHEIN Hotel & Spa is a modern hospitality business located in Bingen am Rhein, Germany, offering upscale accommodation, spa services, dining, and event hosting. The hotel emphasizes a unique urban style combined with regional cultural elements, targeting leisure travelers, families, and wellness guests. The website reflects a strong market position with multiple awards and a professional digital presence. Technically, the site uses modern web technologies including Angular components, jQuery UI, and Swiper.js, with integrated analytics and consent-based tracking. Security posture is solid with HTTPS and some security headers, though improvements like CSP and security.txt are recommended. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

S

SAVOY

savoy.de

54

SAVOY is a luxury hotel located in the heart of Cologne, Germany, offering upscale accommodation, spa and wellness services, dining, and event facilities. The website reflects a strong market position in the hospitality sector, targeting discerning travelers seeking premium experiences. The digital infrastructure employs modern web technologies including Matomo analytics and a consent management platform, indicating a mature approach to user privacy and data collection. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

N

Nils Henkel

nils-henkel.com

54

Nils Henkel is a renowned culinary expert specializing in modern vegetable cuisine with a strong focus on sustainability and seasonal ingredients. The business operates primarily in the hospitality sector in Germany, offering cookbooks, consulting services, cooking courses, and restaurant kitchen concept development. The website reflects a professional and consistent brand image with rich content and clear contact information. Technically, the site uses modern JavaScript frameworks, a custom CMS, and integrates consent management and Google Analytics, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and consent mechanisms, but lacks explicit security headers and incident response information. The absence of WHOIS data raises concerns about domain registration legitimacy, though the active and professional online presence mitigates some risk. Overall, the site scores well on content quality, privacy compliance, and business credibility, with recommendations to improve security headers and verify domain registration.

D

Denkmalz Disibodenberger Kapellenbrauerei GmbH

denkmalz.de

52

Denkmalz Disibodenberger Kapellenbrauerei GmbH operates a niche hospitality and retail business focused on craft beer production and event hosting in a historic chapel in Bad Sobernheim, Germany. The website serves as a digital storefront and information portal for their brewery, event location, and online shop. The company targets a general adult audience with a focus on mature customers due to alcohol sales. Technically, the site is built on the Shopware e-commerce platform, leveraging modern JavaScript libraries and consent management tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, featuring clear contact details and legal disclosures.

M

Möbel Preiss GmbH & Co. KG

moebel-preiss.de

57

Möbel Preiss GmbH & Co. KG operates a medium-sized retail and e-commerce business specializing in furniture, kitchens, and home decoration based in Kastellaun, Germany. The company offers a broad product range including living room, bedroom, kitchen furniture, lighting, and home accessories, supported by a large physical showroom and an online shop with secure payment options. Their market position is that of a regional leader with a strong local presence and growing digital footprint. The website reflects a professional and user-friendly design with clear navigation and relevant content targeting general consumers interested in home furnishings. Technically, the website employs modern JavaScript libraries and tracking technologies such as Google Analytics 4, Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, all managed with user consent mechanisms. The site uses a proprietary or custom CMS framework named Website22 and demonstrates good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and integrates cookie consent management, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed HTML content. Privacy compliance is strong with comprehensive privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Recommendations include enhancing security headers, publishing a security policy, and improving accessibility to further strengthen the security posture and user experience.

E

Eagle Valais

eaglevalais.ch

51

Eagle Valais is a specialized aerial work and transport company based in the Valais region of Switzerland, operating since 2002. The company offers a broad range of services including aerial work such as transport of materials, assembly, forest services, firefighting support, avalanche triggering, and media production via photo and film. Additionally, they provide passenger experiences like panoramic flights, VIP flights, parachutist drops, heliski, and operate a certified flight school (FHATO). Their market position is that of a trusted local expert with a professional online presence and active social media engagement. Technically, the website is built on WordPress using Elementor and several modern plugins, with good SEO practices and mobile optimization. The site employs HTTPS and cookie consent mechanisms, indicating a baseline of privacy compliance. Analytics are implemented via Google Analytics and SumoMe, with moderate user tracking. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and a public security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website presents a professional and trustworthy image with room for improvement in privacy policy publication and enhanced security headers. The risk level is low, but adding formal security and privacy documentation would strengthen compliance and trust.

F

Fédération Fribourgeoise des Entrepreneurs

cppf-pbkf.ch

50

The Commission Professionnelle Paritaire Fribourgeoise du Secteur Principal de la Construction (CPPF) operates as a regional federation representing construction sector entrepreneurs in the canton of Fribourg, Switzerland. The organization provides key services including labor conventions, collective agreements, work calendars, salary scales, and professional cards, targeting construction professionals and companies within the region. The website serves as an information hub with news updates, downloadable resources, and partner information, positioning the CPPF as a trusted authority in its sector. Technically, the website is built on the Neos CMS platform leveraging the Flow PHP framework, with modern JavaScript libraries such as Swiper.js and Google Analytics integrations. The site is mobile-optimized with good SEO practices and structured data usage, reflecting a moderate to good level of digital maturity. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site enforces HTTPS and uses anonymized IP tracking in analytics, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic with a privacy policy and cookie consent mechanism present, though GDPR compliance indicators are limited. Overall, the website is professional, trustworthy, and safe for general audiences. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, expanding privacy and incident response disclosures, and continuing to monitor third-party scripts for vulnerabilities to improve security posture and compliance.

F

FORMAT Lingua Sagl

formatlingua.ch

62

FORMAT Lingua Sagl is a Swiss-based language service provider established in 1999, offering translation services and language training courses for individuals and companies. The company holds EduQua certification and collaborates with recognized professional training centers, positioning itself as a trusted local player in the education sector. Their website is professionally designed, mobile-optimized, and provides clear information about their services and contact details. Technically, the site uses modern web technologies including Bootstrap, FontAwesome, Google Fonts, and Google reCAPTCHA v3 for security. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website reflects a credible and professional organization with good digital maturity.

A

Altenburg-Garage AG

altenburg-garage.ch

54

Altenburg-Garage AG is a well-established automobile dealership and service provider located in the Kanton Aargau region of Switzerland. Founded in 1977, the company represents multiple licensed car brands including Cupra, Mitsubishi, Seat, Suzuki, and VW. Their business model encompasses new and used car sales, leasing, professional car servicing, and a car wash facility, targeting local customers seeking quality automotive products and services. The website reflects a strong market position with comprehensive offerings and a focus on customer satisfaction. Technically, the website is built on WordPress with modern technologies such as Bootstrap, Swiper.js, and Google Tag Manager for analytics. It is optimized for mobile devices, loads quickly, and follows good SEO and accessibility practices. The presence of structured data and social media integration further enhances its digital maturity. From a security perspective, the site uses HTTPS with good SSL configuration and secure form handling. However, it lacks explicit security headers and a dedicated security or incident response policy page. Privacy compliance is partially addressed with clear privacy and cookie policies, though a cookie consent mechanism is missing. No vulnerabilities or suspicious activities were detected in the content. Overall, Altenburg-Garage AG’s website demonstrates high professionalism, trustworthiness, and business credibility. Strategic improvements in security headers and privacy consent mechanisms would further strengthen its security posture and compliance standing.

G

Gammeter Media AG

gammetermedia.ch

47

Gammeter Media AG is a regional communication solutions provider based in Switzerland's Engadin region. They specialize in print, content creation, photography, video production, and web design services tailored to local businesses and organizations. The company positions itself as a trusted partner offering end-to-end communication solutions from concept to final product. Technically, the website is built on TYPO3 CMS with modern frontend technologies including JavaScript frameworks and Google services for analytics and security. The site is well-structured, mobile-optimized, and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though formal security policies and incident response contacts are not published. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

Y

Yieldify

yieldify.com

73

Yieldify is a medium-sized ecommerce personalization SaaS company, now part of Epsilon Accelerate, serving over 1000 global brands with AI-powered marketing and customer journey optimization solutions. Their platform offers lead capture, promotions, email remarketing, and advanced audience segmentation, supported by expert client services. The website demonstrates a mature digital presence with modern technologies, strong SEO, and comprehensive privacy compliance including GDPR. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, but the site’s professionalism and parent company association support legitimacy. Overall, Yieldify presents a trustworthy and well-established business in the ecommerce personalization market.

A

Adcubum AG

adcubum.com

68

Adcubum AG is a leading Swiss software company specializing in core insurance systems for the health and accident insurance sectors. Recently acquired by the Helsana Group, Adcubum continues to operate independently, providing modular, cloud-capable software solutions such as Syrius ad.Cloud. The company targets insurance providers in Switzerland, emphasizing digital transformation and operational efficiency. The website reflects a mature digital presence with modern technologies including React and Next.js, hosted on Vercel, and integrates comprehensive cookie consent and privacy compliance mechanisms. Security posture is strong with HTTPS, security headers, and CSRF protections in place. However, WHOIS data is unavailable, which slightly impacts transparency but does not detract from the overall legitimacy given the business context and parent company ownership. The site is well optimized for performance, mobile use, and SEO, with clear branding and professional content. No critical security vulnerabilities or compliance gaps were detected in the analyzed content.

C

Charity Monitoring Worldwide

charitymonitoringworldwide.org

61

Charity Monitoring Worldwide (CMW) is a global non-profit association dedicated to advancing transparency and accountability in the charitable sector. It operates through independent member organizations across 20 countries, providing rigorous charity assessments to empower donors and promote trust. The website presents a professional and consistent brand image, highlighting its mission, member network, and recognized certifications. Technically, the site is built on WordPress with Elementor and Yoast SEO, featuring modern web technologies and good mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The domain WHOIS data is unavailable, limiting trust from a registration perspective, but the website content and certifications support legitimacy. Overall, the site is well-positioned as a trusted resource for charity monitoring worldwide.

G

Gammeter Media AG

webkit-smart.ch

50

Webkit Smart, operated by Gammeter Media AG, is a Swiss-based company offering subscription-based professional website creation and management services targeted at small and medium businesses. Their offerings include tiered subscription plans with personal training, SEO audits, and additional multimedia services. The company emphasizes local support, cost transparency, and ease of content management for clients. Technically, the website is built on TYPO3 CMS with modern frontend libraries and integrates Google Analytics and reCAPTCHA for analytics and security. The security posture is solid with HTTPS, daily backups, and cookie consent mechanisms, though some security headers could be improved. Overall, the website is professional, well-structured, and trustworthy, with clear contact information and social media presence.

global office Franchise AT GmbH is a medium-sized Austrian company specializing in outsourced telephone answering and customer service solutions. Established in 2012, the company offers a broad range of services including inbound and outbound call handling, backoffice support, and industry-specific packages for sectors such as hospitality, government, and automotive. Their 24/7 service model and high customer satisfaction position them as a reliable partner for businesses seeking to enhance customer communication and operational efficiency. Technically, the website is built on the Contao CMS platform, leveraging modern JavaScript libraries and responsive design, providing a good user experience across devices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Privacy compliance is partially met with a privacy policy present but no visible cookie consent mechanism. Overall, the website reflects a professional and trustworthy business presence with room for improvement in security and privacy transparency.

global office GmbH is a German-based telecommunications service provider specializing in hybrid inbound and outbound telephone services that combine human agents with AI-powered voicebots. With over 16 years of experience and a network of more than 450 agents across 55+ locations, the company targets public authorities, medium-sized businesses, hotels, and auto dealerships. Their service model emphasizes personalized customer communication and integration with client systems for messaging and appointment scheduling. Technically, the website is built on the Contao CMS platform, hosted by Hetzner, and incorporates modern JavaScript libraries and widgets such as ProvenExpert for customer reviews. The site is mobile-optimized and presents a professional user experience with good content quality. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and formal privacy or cookie policies, indicating room for compliance improvement. Overall, the domain and hosting align with the business claims, supporting legitimacy. The website scores well on business credibility and technical implementation but should enhance privacy compliance and security best practices.

A

Association Valaisanne des Banques

banques-valais.ch

49

The Association Valaisanne des Banques is a regional banking association in Switzerland focused on representing and promoting the interests of banks in the Valais region. The website serves as an informational and promotional platform highlighting banking careers, apprenticeship opportunities, and news relevant to the local banking sector. The site features partnerships with major Swiss banks, reinforcing its credibility and regional influence. Technically, the website uses modern web technologies including jQuery, Bootstrap, and tracking pixels from major platforms, indicating a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-structured, serving its target audience effectively.

G

Gammeter Media AG

gammeterweb.ch

48

Gammeter Media AG is a Swiss-based small technology company specializing in custom web design solutions, including individually programmed websites, template-based Webkit Smart sites, e-commerce platforms, SEO marketing, progressive web apps, and digital magazines. The company targets businesses and organizations seeking tailored digital presence enhancements. Their market position is that of a regional digital agency with a strong focus on personalized service and technical innovation. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and Google services for analytics and security. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and reCAPTCHA integration, though it lacks explicit security headers and published security policies. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and social media presence. The WHOIS data aligns well with the business claims, indicating legitimacy and transparency.

Rotorplace operates as a specialized e-commerce platform dedicated to helicopter and aerospace parts, offering a comprehensive catalog of engines, transmissions, avionics, electrical systems, fuel and hydraulic components, airframe parts, and safety accessories. The platform targets aerospace professionals and MRO providers, positioning itself as a niche supplier within the transportation sector. The website demonstrates a professional design with clear navigation and multi-language and currency support, indicating a medium-sized business with a focus on the French market. Technically, Rotorplace leverages modern technologies including the Sylius e-commerce platform, Bootstrap framework, and Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience, although accessibility features are basic and SEO optimization is moderate. Security posture is adequate with HTTPS usage implied, but lacks explicit security headers and formal privacy or cookie policies, which are critical for compliance and trust. The absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency, warranting further investigation. Overall, Rotorplace presents a functional and professional online presence with room for improvement in privacy compliance and security best practices.

E

ENAIP Internationaler Bund GmbH

enaip-ib.ch

62

ENAIP Internationaler Bund GmbH operates the website www.enaip-ib.ch, providing adult education and vocational training primarily in Luzern and Zürich, Switzerland. The company offers a broad range of courses including construction trades, language courses, IT, and company-specific training. The website reflects a well-established educational institution with over 48 years of experience and eduQua certification, indicating quality standards in Swiss adult education. The target audience is adults seeking professional development and continuing education in the region. Technically, the website uses modern frameworks such as Bootstrap and integrates Google reCAPTCHA and Altcha CAPTCHA for security. The presence of Google Analytics and Google Adsense indicates moderate user tracking and advertising practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is comprehensive and transparent, including phone, email, physical addresses, and social media channels. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

M

Monoplan AG

monoplan.ch

50

Monoplan AG is a professional interdisciplinary design firm specializing in architecture, interior, graphic, and product design, with a strong focus on project management and international experience. The company serves clients primarily in the real estate and hospitality sectors, offering a broad range of services from concept studies to brand development. Their market position is supported by a well-maintained portfolio and active social media presence. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for mobile and SEO, and secured with HTTPS. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is generally good with HTTPS and cookie consent, but lacks published security policies or incident response information. Overall, the website is professional and trustworthy, but domain registration verification is recommended.

F

Fédération Fribourgeoise des Entrepreneurs

ffe-fbv.ch

53

The Fédération Fribourgeoise des Entrepreneurs (FFE-FBV) is a regional business federation based in Switzerland, primarily serving the construction and manufacturing sectors. The organization offers a range of services including professional training (initial, continuing, and advanced), administrative and technical support, labor market organization, and advocacy for its members. The website reflects a well-established entity with a clear market position supported by recognized certifications such as eduQua and ISO 9001. Their target audience includes entrepreneurs, construction professionals, trainees, and local businesses within the Fribourg region. The business model is membership-based, focusing on providing value-added services and fostering professional development.

M

Monoplan AG

monoplan.com

49

Monoplan AG is a professional interdisciplinary design firm specializing in architecture, interior design, branding, and project management with a strong international presence. The company showcases a portfolio of projects primarily in the real estate and hospitality sectors, targeting businesses and clients seeking creative and comprehensive design solutions. The website is well-structured, visually appealing, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress using modern libraries such as jQuery and Swiper.js, with SEO enhancements via Yoast plugin. Security posture is good with HTTPS enabled and cookie consent implemented, though security headers and explicit security policies are absent. The WHOIS data is missing, which raises concerns about domain registration legitimacy despite the professional appearance and valid contact information. Overall, the site demonstrates a solid business and technical foundation but would benefit from improved transparency in domain registration and enhanced security practices.

W

WIGL

wigl.ch

60

WIGL operates as a specialized digital learning platform focused on personalized education and professional development, primarily targeting the hospitality and gastronomy sectors in Switzerland. The platform supports lifelong learning through interactive tools such as digital content, e-portfolios, quizzes, and instructional videos. The company positions itself as an innovative player in the education technology space, leveraging modern web technologies and a user-friendly interface to enhance learning experiences. Technically, the website is built on WordPress with Elementor and Yoast SEO, incorporating modern JavaScript libraries like Lottie and Swiper for animations and interactive elements. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, explicit security headers are not detected, and no formal security or incident response policies are published. Cookie consent is managed via CookieYes, indicating GDPR awareness. No vulnerability disclosure or security.txt files are present, suggesting an area for improvement. Overall, the website is professional, trustworthy, and well-aligned with its business goals. The domain registration details support legitimacy, and the site maintains a strong presence with testimonials and social media integration. Strategic recommendations include enhancing security headers, publishing security policies, and implementing a vulnerability disclosure mechanism to strengthen trust and compliance.

Swiss Deluxe Hotels operates as a luxury hotel association and marketing platform specializing in exclusive 5-star hotels in Switzerland. The website positions itself as a premier source for discerning travelers seeking high-end hospitality experiences. The business model focuses on promoting member hotels and facilitating bookings, targeting affluent clientele interested in luxury accommodations. The market position is strong within the Swiss luxury hospitality sector, emphasizing service quality and tradition. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript libraries such as Swiper.js, and integrates analytics and tracking tools like Google Analytics, Hotjar, Microsoft Application Insights, and Cookiebot for cookie consent management. Hosting appears to be on Microsoft Azure, indicating a robust cloud infrastructure. The site is mobile optimized with good SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and published privacy or security policies. No direct contact information or incident response channels are provided, which limits transparency. The absence of WHOIS data for the domain raises concerns about domain legitimacy, though the professional site and use of reputable third-party services mitigate some risk. Overall, the website presents a professional and trustworthy front for a luxury hospitality business but would benefit from enhanced transparency through published privacy policies, contact details, and security best practices. Verification of domain registration and addition of security headers are recommended to strengthen trust and compliance.

K

Katara Hospitality Switzerland AG

burgenstockcollection.com

50

The Bürgenstock Collection is a prestigious luxury hospitality brand with a rich Swiss heritage dating back to 1859. It operates several iconic hotels and resorts across Switzerland and London, offering premium accommodations, spa and wellness services, culinary experiences, and leisure activities. The brand targets discerning travelers seeking unique and high-end hospitality experiences. Technically, the website employs modern JavaScript frameworks such as Vue.js and integrates analytics and cookie consent tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain registration protections, though some security headers and DNSSEC are absent. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-positioned in the luxury hospitality market.

H

Helinetwork International

helinetwork.com

55

Helinetwork International is a well-established company specializing in the global procurement and distribution of civilian and military helicopter spare parts since 1995. The company holds official distributor partnerships with major aerospace manufacturers such as SAFRAN Helicopter Engine, Collins Aerospace, and Thales Avionics, positioning itself as a trusted supplier in the helicopter maintenance and repair market. Their services include new parts supply, standard exchange, MRO, consignment, and expertise, targeting helicopter operators and aerospace professionals worldwide. Technically, the website is built on a modern WordPress CMS platform using Elementor and several SEO and UI enhancement plugins. The site is mobile-optimized, has good SEO practices, and includes a cookie consent mechanism indicating GDPR compliance. However, no advanced security headers were detected, and no explicit security or incident response policies are published. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent, but lacks visible security headers and vulnerability disclosure information. The WHOIS data is unavailable or privacy protected, which reduces domain trust verification, although the website content and certifications support legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, but could improve its security posture by adding security headers, publishing security policies, and providing clearer domain registration transparency.

C

Controller Akademie AG

controller-akademie.ch

49

Controller Akademie AG is a leading Swiss educational institution specializing in continuing education for controlling, accounting, and management professionals. Founded by reputable organizations Kaufmännischer Verband Zürich and SwissAccounting, it offers a broad range of courses including preparation for federal diplomas, CAS programs, and seminars focused on digitalization and practical finance skills. The website reflects a strong market position with comprehensive, professionally presented content targeting finance professionals seeking career advancement. Technically, the site is built on WordPress with modern libraries and is well-optimized for mobile and SEO, though some improvements in security headers and cookie consent are recommended. Security posture is solid with HTTPS and obfuscated emails, but lacks explicit security policies and incident response contacts. Overall, the site is trustworthy, professional, and well-aligned with its business goals.