Security Directory

H

Hu-manity.co

hu-manity.co

63

Hu-manity.co is a technology company specializing in AI-powered software that enhances data privacy, trust, and transparency for organizations globally. Founded in 2018 and headquartered in Sparta, New Jersey, the company has positioned itself as an innovator in privacy experience software, serving a B2B market with solutions that digitize data consumption policies and integrate identity systems. Their market presence is supported by reputable press coverage and a leadership team with visible professional profiles. The website infrastructure is built on WordPress with modern plugins and frameworks, offering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS enforced and secure form handling, though there is room for improvement in implementing security headers and explicit incident response policies. Overall, the site reflects a trustworthy and professional business with strong privacy compliance indicators, though it lacks explicit security policy disclosures and phone contact information. The domain registration data aligns well with the company's history, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility features.

S

Software Guru

airflowsummit.org

62

Airflow Summit is a specialized event organizer focusing on the Apache Airflow community, hosting an annual conference that attracts developers and industry professionals worldwide. The website presents a professional and well-structured platform promoting the 2025 event in Seattle, featuring detailed information about speakers, sessions, sponsors, and related news. The business operates primarily in the technology sector, leveraging partnerships with major cloud and software companies to enhance its market position. Technically, the website is built using the Hugo static site generator, combined with Bootstrap and modern JavaScript libraries such as Swiper.js for UI components. It employs Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is hosted under a domain registered via Squarespace Domains with DNS managed by Google Domains, ensuring reliable infrastructure. Performance and mobile optimization are good, though accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses domain status protections to prevent unauthorized domain transfers or deletions. However, DNSSEC is not enabled, and no advanced security headers are detected. There is no published security policy or incident response information, and cookie consent mechanisms are absent, indicating partial privacy compliance. No vulnerabilities or exposed sensitive data were found in the content. Overall, the website is trustworthy and professional, with strong business credibility and good technical implementation. The main areas for improvement include enhancing privacy compliance with cookie policies and GDPR indicators, enabling DNSSEC, and publishing security and incident response policies to strengthen user trust and security posture.

H

The domain name hausarztpraxis-deggendorf.de is for sale.

hausarztpraxis-deggendorf.de

58

The website is a professional domain marketplace landing page offering the domain hausarztpraxis-deggendorf.de for sale. It emphasizes secure payment processing, escrow transaction handling, and fast domain transfer services. The site targets domain buyers and investors seeking premium or verified domains. The technical infrastructure leverages Bootstrap for responsive design, Google reCAPTCHA for spam protection, and standard web technologies. While the site lacks explicit company contact emails or phone numbers, it provides comprehensive forms for user interaction and bidding. Security posture is moderate with use of HTTPS and reCAPTCHA but lacks visible security headers. Privacy compliance is supported by accessible privacy policy and terms of service pages. Overall, the site is legitimate and consistent with domain marketplace operations but could improve security header implementation and explicit contact information.

S

sgalinski Internet Services

sgalinski.de

65

sgalinski Internet Services is a specialized digital agency based in Germany focusing on TYPO3 CMS, Symfony-based individual software, Shopware online shops, mobile app development, and SEO/marketing services. The company positions itself as a professional and reliable partner for businesses seeking comprehensive web and software solutions. Their market presence is supported by numerous projects, certifications, and a strong portfolio of services. Technically, the website is built on TYPO3 CMS with modern web technologies, including Google Analytics and Google Ads for marketing and analytics. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, implements a GDPR-compliant cookie consent mechanism, and avoids exposing sensitive data, though it lacks explicit security policy and incident response information. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a credible and secure digital presence for the business.

S

Snap Inc.

snapkit.com

71

Snap for Developers is the official developer portal for Snap Inc., providing comprehensive documentation and resources for developers to build augmented reality experiences and integrate with Snap's products such as Lens Studio, Camera Kit, Snap Kit, and Spectacles. The portal targets developers and technical users interested in leveraging Snap's AR technology and APIs. The website demonstrates a professional and consistent brand presence aligned with Snap Inc.'s corporate identity. Technically, the site is built using modern frameworks such as Docusaurus and integrates analytics tools like Google Analytics and Google Tag Manager. The site is moderately optimized for performance and mobile responsiveness, with good SEO practices and basic accessibility features. However, explicit privacy and cookie policies are not found on the main page, which is a gap in privacy compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries in the HTML content. However, no security headers were detected in the provided data, and there is no visible incident response or security policy information. The WHOIS data for the subdomain is not available, which is typical for subdomains, and does not raise legitimacy concerns. Overall, the security posture is adequate but could be improved with additional headers and clearer privacy disclosures. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers to enhance protection, and providing clear contact information for security and data protection inquiries to improve compliance and trust.

L

Lightstone (Pty) Ltd

lightstoneauto.co.za

63

Lightstone Auto is a South African company specializing in automotive market intelligence, data analytics, and finance and insurance platforms for the motor industry. Established in 2014, it offers a range of services including vehicle verification, market statistics, and risk management solutions. The company targets automotive dealerships and industry professionals, leveraging proprietary data and analytics to provide insights and forecasting. The website reflects a mature digital presence with a professional design and clear navigation, built on an ASP.NET platform and hosted behind Cloudflare DNS services. The technical infrastructure includes modern JavaScript libraries and tracking tools such as Google Analytics and Hotjar, supporting moderate user tracking and marketing analytics. Security posture is generally good with HTTPS enabled and no visible sensitive data exposure; however, the absence of security headers and cookie consent mechanisms indicates room for improvement in compliance and defense-in-depth strategies. Overall, the website is trustworthy and professionally maintained, though enhancing privacy compliance and security policies would strengthen its risk profile.

Amplify360 is a South African digital marketing agency specializing in social media advertising, Google My Business management, Google Ads, SEO, design, copywriting, and web design services. The company emphasizes building strong client relationships to help businesses generate leads and thrive in the digital space. The website is professionally designed with good mobile optimization and uses modern marketing and analytics technologies such as Facebook Pixel and Google Tag Manager. Security posture is adequate with HTTPS enabled and cookie consent implemented, though security headers and explicit security policies are absent. WHOIS data is unavailable, likely due to privacy protection, which is common for this business type but slightly reduces trust. Overall, the website presents a credible and professional digital marketing service provider with room for improvement in transparency and security best practices.

D

Deutsche Automobil Treuhand GmbH

datgroup.com

60

Deutsche Automobil Treuhand GmbH (DAT) operates an international website providing automotive data and software solutions with a history spanning approximately 90 years. The company targets automotive professionals, fleet managers, repair shops, and insurers with products such as vehicle valuation, repair cost estimation, claims management, and telematics. The website reflects a mature business with a broad international footprint through multiple subsidiaries. Technically, the site is built on TYPO3 CMS, employs modern JavaScript frameworks, and integrates a consent management platform (Usercentrics) and self-hosted analytics (Matomo), indicating a good level of digital maturity. Security posture is strong with HTTPS enforcement and nonce-based content security, though some security headers and explicit policies are absent. The absence of WHOIS data for the domain reduces trust in domain registration transparency but does not detract from the professional presentation and business legitimacy evident on the site. Overall, the site is well-structured, privacy compliant, and professionally maintained.

I

iX Online

ix.co.za

53

iX Online is a South African digital marketing and web development company specializing in the automotive dealership sector. Established in 2001, it offers a comprehensive suite of services including vehicle stock management, lead generation, SEO, social media marketing, and website design tailored for dealerships. The company holds recognized certifications such as Google Partner and Meta Business Partner, reinforcing its market credibility. Their national footprint and integration with leading dealer accounting systems position them as a key player in the South African automotive digital marketing space. Technically, the website employs modern web technologies including jQuery, Bootstrap, and various marketing and analytics tools like Google Analytics and Facebook Pixel. The site is mobile-optimized, accessible, and features interactive elements such as forms with CAPTCHA and consent mechanisms, indicating a mature digital infrastructure. Performance is moderate with good SEO practices. From a security perspective, the site enforces HTTPS, uses spam protection on forms, and provides clear privacy and cookie policies compliant with POPIA and GDPR principles. However, explicit security headers are not detected, and incident response information is absent, suggesting areas for improvement. The WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is justified given the business type. Overall, iX Online demonstrates a strong business and technical foundation with good security and privacy practices. Strategic enhancements in security headers and incident response transparency would further strengthen their posture.

Paddle is a UK-based enterprise SaaS company specializing in revenue delivery platforms for software businesses. Their platform integrates payment processing, subscription management, tax compliance, and analytics to enable SaaS companies to scale globally with ease. The website reflects a mature, well-established business with a strong market position in the SaaS payments sector. Technically, the site uses modern frameworks such as Next.js and React, combined with HubSpot for marketing and analytics, indicating a high level of digital maturity and performance optimization. Security posture is strong with HTTPS, security headers, and secure form handling, although explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable platform for its target audience.

A

Airbase Inc.

airbase.io

61

Airbase Inc., now a part of Paylocity, offers an integrated cloud-based platform that combines payroll and non-payroll spend management to provide businesses with real-time financial visibility and control. The company targets enterprises seeking unified HR and financial solutions, leveraging Paylocity's established market presence to enhance its offerings. The website reflects a mature digital presence with professional branding and comprehensive service descriptions aligned with its business model. Technically, the site is built on WordPress with modern JavaScript frameworks and analytics tools, ensuring good performance and user experience across devices. Security posture is strong with HTTPS enforcement, security headers, and error monitoring via Rollbar, though some compliance aspects like cookie consent and public security policies could be improved. WHOIS data is unavailable, likely due to privacy protection, but the overall legitimacy is supported by consistent branding and parent company association. Strategic recommendations include enhancing privacy compliance mechanisms and publishing security policies to bolster trust and regulatory adherence.

A

AvantLink

avantlink.com

69

AvantLink operates a mature and reputable affiliate marketing platform, serving advertisers and publishers with advanced tracking, reporting, and a quality-focused network. The company has a strong market position supported by over 20 years of operation and a commitment to customer service. Technically, the website is built on WordPress with modern SEO and analytics integrations, hosted on AWS infrastructure. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC and security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, AvantLink presents a trustworthy and professional digital presence with room for minor security enhancements.

M

Maine Beer Company

mainebeercompany.com

67

Maine Beer Company is a small craft brewery based in Freeport, Maine, founded in 2009 by brothers David and Daniel Kleban. The company emphasizes ethical business practices and environmental responsibility, reflected in their motto “Do what’s right.” Their offerings include IPAs, pale ales, a tasting room experience, and merchandise sales. The website targets adult consumers interested in craft beer and sustainability. Technically, the site uses modern JavaScript libraries such as Alpine.js and Swiper.js, is hosted behind Cloudflare DNS, and integrates Google Analytics for user tracking. The site is mobile optimized with good SEO practices but lacks some advanced accessibility features. Security posture is moderate with HTTPS enforced and domain locks in place, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Overall, the website is professional, trustworthy, and aligned with the business's market position.

J

Jumpman Gaming Ltd.

jumpmangaming.com

66

Jumpman Gaming Ltd. is a B2B iGaming company established in 2010, positioning itself as a leading innovator in the casino network industry. The company offers custom-built casino brands and affiliate software solutions, targeting multinational partners and casino networks. The website reflects a professional and consistent brand image with good content quality and clear navigation, catering primarily to business clients in the technology sector of iGaming. Technically, the site is built on WordPress, utilizing common web technologies such as jQuery, Google Analytics, and reCAPTCHA for user tracking and security. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is strong with HTTPS enforced and some security headers present, but could be improved with additional headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies, and no explicit GDPR compliance indicators were found. The lack of WHOIS data for the domain raises concerns about domain legitimacy and reduces overall trustworthiness. Strategic recommendations include enhancing privacy compliance, publishing security and incident response policies, and improving contact transparency to strengthen business credibility and user trust.

P

Paylocity

paylocity.com

83

Paylocity is an enterprise SaaS provider specializing in unified human capital management (HCM), payroll, finance, and IT solutions. Their platform targets midsized to large businesses seeking to consolidate HR and payroll functions into a single cloud-based system. The company emphasizes automation, compliance, employee engagement, and global payroll capabilities. The website demonstrates a mature digital infrastructure leveraging Adobe Experience Manager, HubSpot, Pardot, and OneTrust for marketing, analytics, and privacy compliance. Security posture is strong, with ISO 27001 and SSAE 18 SOC certifications and enterprise-grade hosting. However, the absence of WHOIS registration details is unusual but likely due to registry or privacy policies rather than malicious intent. Overall, Paylocity presents a professional, trustworthy, and comprehensive platform for workforce management.

N

NextRoll

nextroll.com

70

NextRoll is a technology company specializing in marketing and advertising solutions, offering data-driven platforms to help businesses optimize their marketing efforts. The website presents a professional and consistent brand image, targeting business customers seeking advanced marketing technology. The technical infrastructure includes multiple third-party marketing and analytics tools such as Segment, Heap, Marketo, and AdRoll, indicating a mature digital marketing ecosystem. However, the absence of visible privacy and cookie policies, combined with the lack of WHOIS registration data, suggests gaps in transparency and privacy compliance. Security posture is moderate with no detected security headers and unknown SSL configuration, which could be improved to enhance trust and protection. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and security hardening.

T

Tugboat Institute

tugboatinstitute.com

60

Tugboat Institute is a specialized community organization dedicated to supporting Evergreen leaders and private companies that aim for enduring success. The website offers a variety of services including newsletters, membership programs, growth tools, and recognition awards to help business leaders build lasting, profitable companies. The market position is niche, targeting CEOs and presidents of private, profitable businesses. Technically, the site is built on WordPress with a modern tech stack including WooCommerce and various JavaScript libraries, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and use of reCAPTCHA, but lacks some security headers and explicit privacy and cookie policies. The absence of WHOIS data reduces domain trustworthiness, though the professional content and branding mitigate some concerns. Overall, the site is well-designed and functional but would benefit from enhanced privacy compliance and security transparency.

T

TrackJS

remotejs.com

49

RemoteJS is a specialized web service offering remote JavaScript debugging capabilities, enabling developers to connect to remote browser sessions and interactively debug their applications in real-time. It is a free service provided by TrackJS LLC, a company known for JavaScript error monitoring solutions. The website positions itself as a niche tool within the web development and debugging ecosystem, targeting JavaScript developers and engineers who require advanced remote debugging tools. The business model appears to be a value-added free service complementing TrackJS's commercial offerings, enhancing their market presence in developer tooling. Technically, the website employs modern web technologies including JavaScript, TrackJS error monitoring scripts, and performance monitoring via Request Metrics. The site uses HTTPS and includes structured data for SEO. The design is professional and mobile-optimized with clear navigation and relevant content. However, some technical aspects such as DNSSEC are not enabled, and no CMS or hosting provider is explicitly identified beyond the registrar. Performance is moderate, and accessibility is basic. From a security perspective, the site benefits from HTTPS and uses TrackJS for error monitoring, which is a positive security practice. However, it lacks visible security headers, published privacy or cookie policies, terms of service, and incident response information. No contact emails or phone numbers are provided, which limits direct communication channels. The domain WHOIS data is consistent and legitimate, with no privacy protection masking registrant details, and the domain age aligns with the business timeline. Overall, the website is trustworthy and professional but has compliance gaps regarding privacy and cookie policies and could improve security posture by adding security headers and incident response disclosures. Strategic recommendations include publishing privacy and cookie policies with consent mechanisms, adding terms of service, enabling DNSSEC, and improving security headers to enhance trust and compliance.

S

Sex Toy Collective

sextoycollective.com

61

Sex Toy Collective operates a niche adult e-commerce and educational platform focused on sex toy reviews and related content. The website targets adult consumers seeking product recommendations and sexual wellness education. The business appears small and specialized, with a consistent brand presence and professional content quality. Technically, the site is built on WordPress with common frameworks and libraries, hosted behind Cloudflare DNS, and uses HTTPS with a good SSL configuration. However, it lacks some advanced security headers and explicit privacy and cookie policies, which are important for compliance and user trust. No contact information or incident response details are publicly available, which limits transparency. Overall, the site is functional and moderately secure but would benefit from enhanced privacy compliance and security best practices.

P

Prop Data (Pty) Ltd

propdata.net

73

Prop Data (Pty) Ltd operates a specialized internet marketing platform dedicated to the real estate sector, offering integrated solutions for listing management, digital marketing, and lead generation. The company positions itself as a trusted partner to over 20,000 real estate professionals and agencies, emphasizing a comprehensive PropTech ecosystem with strategic partnerships. Their website demonstrates a mature digital presence leveraging HubSpot CMS and modern web technologies, delivering a professional user experience with rich multimedia content and clear navigation. Security posture is strong with HTTPS enforcement and privacy compliance, though explicit security policies and incident response details are absent. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Overall, Prop Data presents as a credible and professional business with room for improvement in transparency and security disclosures.

P

Podcastics

podcastics.com

66

Podcastics is a specialized podcast hosting and management platform offering a comprehensive suite of services including unlimited hosting, detailed analytics, customizable audio players, and monetization tools. The platform targets podcasters seeking an all-in-one solution with flexible subscription plans and a free trial. Technically, the website is built on a modern stack using IPS Community Suite CMS, integrates Google Tag Manager for analytics, and leverages Amazon Web Services for hosting audio files, ensuring reliable performance and global distribution. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and incident response policies are not publicly documented. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the professional presentation and detailed content suggest a trustworthy business. Privacy and cookie policies are present and GDPR compliant, enhancing user trust.

K

Knight Frank

knightfrank.ph

67

Knight Frank Philippines, represented by the domain santos.knightfrank.ph, is a localized branch of the global Knight Frank real estate consultancy brand. The company specializes in a broad range of real estate services including commercial and residential sales, leasing, property management, valuation, investment advisory, and facilities management. The website reflects a professional and comprehensive digital presence with clear navigation, service descriptions, and integration with global Knight Frank resources. Technically, the site is built on ASP.NET WebForms with modern fonts and scripts, and it employs Google reCAPTCHA for form security. Privacy and cookie policies are clearly stated and GDPR compliant, enhancing trust and legal compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the website is well-positioned to serve property buyers, investors, and tenants in the Philippines with a trusted global brand backing.

M

Marcy Sàrl

mensis.ch

43

MENSIS, operated by Marcy Sàrl, is a Swiss-based manufacturer and retailer specializing in sanitary towel and tampon dispensers, along with organic menstrual protection products. Their offerings target schools, professional establishments, and businesses, emphasizing health and ecological sustainability through certified organic cotton products. The company provides additional services such as subscription deliveries and rental of dispensers, positioning itself as a niche player in the sustainable menstrual hygiene market in Switzerland. The website reflects a professional and consistent brand image with clear contact details and social media presence, enhancing credibility. Technically, the website is built on the PrestaShop CMS platform, utilizing modern web technologies including jQuery, Bootstrap 4, Slick Carousel, and FontAwesome. The site is mobile-optimized with good SEO practices and moderate performance. Analytics and marketing tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag are implemented, indicating a moderate level of user tracking. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security or incident response policies, which are areas for improvement. The cookie consent mechanism is present, but a privacy policy page is missing, representing a compliance gap with GDPR standards. Overall, the website is trustworthy and professionally maintained, with a solid business foundation and good technical implementation. Strategic improvements in privacy compliance and security transparency would enhance its security posture and regulatory adherence.

L

Le Romandie Music Club

leromandie.ch

61

Le Romandie Music Club operates a well-established concert venue and cultural space in Lausanne, Switzerland, focusing on contemporary music and cultural events. The website presents a professional and consistent brand image with clear event programming and ticketing options, targeting a general audience interested in live music and cultural activities. The business model is that of a non-profit association, active since 2004, with a strong local market position as a cultural hub. Technically, the website uses modern frontend technologies such as Alpine.js and integrates popular analytics and tracking tools like Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is enforced and CSRF tokens are present, but the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and security posture. Overall, the domain registration details align well with the business claims, supporting the site's legitimacy.

I

Index Exchange

casalemedia.com

63

Index Exchange operates as a global supply-side platform specializing in digital advertising technology, enabling premium digital media companies to monetize their ad inventory efficiently. The company positions itself as a leader in accelerating the evolution of ad technology, targeting publishers and advertisers seeking transparent and accountable advertising solutions. The website reflects a mature enterprise-level business with a professional design and comprehensive content describing its services and market focus. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO and Google Tag Manager. It employs security best practices including HTTPS and multiple security headers, indicating a strong digital maturity. The site is mobile-optimized and accessible, though accessibility features could be enhanced further. From a security perspective, the site demonstrates good posture with no evident vulnerabilities or exposed sensitive data. However, the absence of a public security policy and incident response contact details suggests room for improvement in transparency and readiness. The WHOIS data is unavailable, which slightly reduces trustworthiness but does not negate the professional appearance and operational security observed. Overall, Index Exchange presents a low-risk profile with strong business credibility and technical implementation. Strategic recommendations include publishing detailed security policies, incident response information, and vulnerability disclosure mechanisms to further enhance trust and compliance.

P

PowerReviews

powerreviews.com

58

PowerReviews is a specialized technology company focused on leveraging user-generated content (UGC) such as ratings, reviews, images, and videos to help brands and retailers increase conversions and improve product experiences. The company operates a comprehensive B2B SaaS platform offering multiple services including UGC syndication, product sampling, community engagement, and analytics. Owned by Syndigo, PowerReviews positions itself as a market leader in the UGC space with a strong emphasis on data-driven insights and customer success. Technically, the website is built on WordPress with Elementor, utilizing modern SEO and analytics tools such as Google Analytics, Microsoft Clarity, and HubSpot. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although no explicit security policy or incident response contacts are published. The domain WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but is common for enterprises. Overall, the website is professional, well-structured, and compliant with privacy regulations, targeting brands and retailers seeking to enhance their e-commerce performance through UGC.

B

B型企業協會 B Lab Taiwan

blab.tw

43

B型企業協會 B Lab Taiwan is a Taiwan-based organization dedicated to promoting B Corporation certification and ESG (Environmental, Social, Governance) sustainability practices. The website serves as an informational and community hub for businesses interested in becoming certified B Corporations and advancing sustainable business practices. It targets enterprises and professionals interested in ESG and corporate responsibility. The organization positions itself as a leading promoter of B Corp certification in Taiwan, offering education, training, and community engagement services. Technically, the website is built on WordPress with common plugins such as Yoast SEO and uses libraries like jQuery and Swiper.js for interactive elements. The hosting provider is Cloudmax Inc., and the site uses HTTPS with a good SSL configuration. The site is moderately performant and optimized for mobile devices, with good SEO metadata and structured data enhancing discoverability. From a security perspective, the site uses HTTPS but lacks visible security headers and does not provide explicit privacy or cookie policies, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. Contact information is available primarily through a contact form and social media channels, but no direct emails or phone numbers were found. Overall, the security posture is adequate but could be enhanced with better privacy compliance and security best practices. The overall risk assessment indicates a trustworthy and professional website with good business credibility but with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, adding security headers, and providing clearer incident response contacts to enhance trust and compliance.

I

ifage

ifage.ch

57

The website www.ifage.ch represents the Fondation pour la formation des adultes à Genève, a well-established non-profit organization focused on adult continuing education and professional certification in Geneva, Switzerland. The foundation offers a broad range of courses including languages, management, IT, and industry-specific training, positioning itself as a key player in adult education within the region. The site demonstrates a professional and consistent brand presence with recognized certifications and trust signals, targeting adult learners and professionals seeking skill development and certification. Technically, the website is built on WordPress with WooCommerce and Visual Composer, leveraging modern web technologies and integrating essential marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized with good SEO practices and a comprehensive cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced, security headers present, and secure payment integration via PostFinance. However, explicit privacy and security policies are not found in the provided content, indicating areas for improvement in compliance documentation. Overall, the website is trustworthy, professionally maintained, and aligned with its educational mission.

O

Ostendis AG

ostendis.com

70

Ostendis AG operates a Swiss-based cloud e-recruiting platform designed to simplify and optimize recruitment processes for businesses. The company positions itself as a user-friendly, intuitive, and cost-effective solution targeting organizations seeking efficient applicant management. The website is professionally designed using WordPress and Elementor, featuring multilingual support and a clear navigation structure. The presence of customer logos and social media links enhances trust and market credibility. Technically, the site employs modern web technologies and integrates Google Tag Manager for analytics and CookieYes for cookie consent management. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. WHOIS data is unavailable, which raises some concerns about domain registration transparency but does not detract significantly from the business legitimacy based on website content. Overall, the site demonstrates a mature digital presence with room for improvement in privacy and security disclosures.

O

Open New Media GmbH

reisen-fuer-alle.de

44

Reisen für Alle is a specialized platform operated by Open New Media GmbH, focusing on providing verified and certified barrier-free travel and leisure offers in Germany. The website targets seniors, families, wheelchair users, and people with disabilities, positioning itself as a niche leader in accessible tourism. It offers certification services, detailed listings, and partner programs to promote inclusive travel experiences. Technically, the site uses a proprietary CMS (netUpdater CMS) with modern JavaScript libraries such as jQuery and Bootstrap, hosted on Colt network infrastructure. The site is well-structured, mobile-optimized, and includes a comprehensive cookie consent mechanism, reflecting a mature digital presence. Security-wise, HTTPS is enforced, and no critical vulnerabilities or exposed sensitive data were detected, though security headers could be improved and explicit security policies added. Overall, the website demonstrates a strong commitment to accessibility, privacy compliance, and user experience, making it a trustworthy resource in its domain.

W

Wide Agency

wideagency.ch

63

Wide Agency is a Swiss-based digital communication agency specializing in creating and managing digital strategies that strengthen brands and enhance business growth. The company offers a range of services including design systems, Drupal and Wordpress development, digital marketing, change management, and strategic creation. The website reflects a professional and consistent brand image with multilingual support, targeting businesses seeking comprehensive digital solutions. Technically, the site is built on Drupal 8, uses modern JavaScript libraries, and integrates marketing and analytics tools such as Google Tag Manager and Pardot. Security posture is good with HTTPS and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is well-structured, accessible, and compliant with GDPR, indicating a mature digital presence.

Manage2sail.com is an established online platform specializing in regatta and sailing event management, primarily serving sailing clubs, sailors, and regatta organizers across Europe. The platform offers key services such as event scheduling, regatta management, and integrates live tracking powered by a third-party service, TracTrac. The business operates under ST Software s.r.o., founded in 2013, indicating a mature presence in its niche market. The website supports multiple languages, enhancing accessibility for its international audience. From a technical perspective, the website is built on a Microsoft ASP.NET MVC framework, hosted likely on Microsoft Azure infrastructure, and employs standard web technologies including HTML5, CSS, JavaScript, and jQuery. The site demonstrates moderate performance and basic mobile optimization, with a clean and consistent design that supports good user experience and navigation clarity. Security posture is moderate; the site uses HTTPS but lacks advanced security headers such as Content-Security-Policy or HSTS. DNSSEC is not enabled for the domain, representing a minor security gap. No explicit security or incident response policies are published, and no cookie consent mechanism is present, which impacts privacy compliance. WHOIS data shows a consistent and legitimate domain registration with appropriate domain status protections. Overall, the website is functional and professional with a clear business focus but would benefit from enhanced security practices and improved privacy compliance to strengthen trust and regulatory adherence.

B

BCGE

tourduleman.ch

61

The website bcge.tourduleman.ch is an informational site related to BCGE, a Swiss banking institution, and the Tour du Léman rowing event. It serves to promote or provide information about the event and the bank's involvement. The site is built on WordPress using common plugins such as Yoast SEO and Gravity Forms, with tracking via Google Tag Manager and bot protection via reCAPTCHA. The technical infrastructure is standard for a small to medium-sized event or corporate promotional site, with moderate performance and good mobile optimization. However, the site lacks visible privacy and cookie policies, contact information, and security policies, which impacts its privacy compliance and security posture. No WAF or blocking mechanisms were detected, and the content is safe for general audiences. The absence of detailed WHOIS data limits domain trust analysis. Overall, the site is functional and professional but could improve in privacy, security, and transparency aspects.

G

Gourmet Brothers

gourmetbrothers.ch

57

Gourmet Brothers is a Swiss-based event catering company specializing in professional, private, and wedding events in Geneva. The company offers contemporary, creative, and refined cuisine tailored to various event types, positioning itself as a local leader in hospitality services. The website reflects a well-maintained digital presence with integrated marketing and analytics tools, including HubSpot, Google Analytics, and Cookiebot for GDPR compliance. Technically, the site is built on WordPress with modern plugins and scripts, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS enabled and cookie consent implemented, though some security headers and policies could be improved. Overall, the domain registration data aligns with the business claims, indicating legitimacy and transparency. The site is free from adult or questionable content, targeting a general audience interested in catering services.

The Fondation internationale pour la recherche en paraplégie (IRP) is a Swiss-based non-profit organization dedicated to advancing research in paraplegia and tetraplegia. The foundation supports scientific projects, offers research grants and fellowships, and organizes events to raise awareness and funds. Their website is professionally designed, multilingual, and targets researchers, donors, and patients interested in spinal cord injury research. The foundation holds a reputable position in the healthcare non-profit sector with clear contact and event information.

O

Office cantonal des assurances sociales

ocas.ch

64

The Office cantonal des assurances sociales (OCAS) of Geneva is a government entity responsible for managing and coordinating key social insurance schemes including old-age and survivors insurance, disability insurance, family allowances, and loss of earnings allowances. The website serves as an official portal providing comprehensive information, e-government services, and assistance to various stakeholders such as employers, employees, independents, students, and medical professionals. The site is well-positioned as the authoritative source for social insurance in the Geneva canton. Technically, the website is built on Drupal 11, leveraging modern web technologies including Matomo and Google Tag Manager for analytics, with a focus on privacy and accessibility. The site is mobile-optimized, well-structured, and uses recognized accessibility tools, reflecting a mature digital infrastructure suitable for a government agency. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced transparency and security posture. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable resource for its target audience. Strategic improvements in security policy transparency and security headers would further strengthen its security maturity.

T

Théâtre de Beausobre

beausobre.ch

54

Théâtre de Beausobre is a well-established Swiss cultural venue located in Morges, attracting over 42,000 visitors per season to attend a diverse program of approximately 60 performances including theatre, dance, music, and circus. The website reflects a mature digital presence with a professional design, clear navigation, and mobile optimization, supporting ticket sales and subscriptions through a partnered external platform. Technically, the site leverages WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant, and serves its audience effectively.

S

Société Nautique de Genève

nautique.ch

64

Société Nautique de Genève is a prestigious and historic non-profit nautical sports club based in Switzerland, founded in 1872. It is the largest club in Switzerland with over 4500 members and a significant presence in European nautical sports. The club promotes various water sports, supports athletes, organizes regattas and events, and offers training and membership services. The website reflects a mature digital presence with a modern WordPress-based infrastructure, including WooCommerce for e-commerce and various plugins for enhanced user experience. Privacy and cookie compliance are well implemented, with a clear privacy policy and consent mechanism. Security posture is strong with HTTPS, security headers, and error monitoring via Sentry, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for its audience.

V

Ville de Genève

geneve.ch

72

The website www.geneve.ch is the official digital presence of the City of Geneva, Switzerland. It serves as a comprehensive portal for municipal information, including administrative procedures, city news, cultural events, and public services. The site targets residents, tourists, businesses, and associations, providing clear and accessible content in French with multilingual support via Weglot. The business model is that of a public sector municipal government, focusing on transparency and citizen engagement. Technically, the site is built on Drupal 10, leveraging modern web technologies such as Google Tag Manager for analytics and Weglot for translations. The site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with room for optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms, though some security headers are not explicitly detected. From a security and compliance perspective, the site includes a comprehensive privacy policy and cookie consent banner aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly available. WHOIS data confirms the domain's legitimacy and consistency with the official City of Geneva identity, supporting high trustworthiness. Overall, the website is professional, trustworthy, and well-maintained, serving its public sector role effectively. Strategic improvements could include publishing explicit security policies and enhancing security headers to further strengthen the security posture.

S

SEAT

seatpartner.ch

70

The website seatpartner.ch serves as an official SEAT partner locator for the Swiss market, providing users with information about SEAT dealerships and services. It is designed primarily for consumers interested in SEAT vehicles and related services within Switzerland. The site leverages modern web technologies including React and Google Maps API to deliver a functional and visually consistent user experience aligned with the Volkswagen Group branding. However, the content quality is basic, focusing mainly on dealership location without extensive additional information or resources. Technically, the site is well-structured with HTTPS enabled and uses custom fonts and icons to maintain brand identity. Security headers and privacy compliance mechanisms such as privacy and cookie policies are notably absent, representing compliance and security posture gaps. No contact information or incident response details are visible, limiting user support and transparency. Overall, the domain registration aligns well with the brand and market claims, indicating legitimacy and trustworthiness. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance the site's security posture and user trust.

M

Mautic

mautic-vr.ch

44

The website at mautic-vr.ch/s/login serves as a login portal for the Mautic marketing automation platform. It targets users such as marketers and administrators who utilize Mautic's services. The site is minimalistic, focusing on user authentication without providing extensive business or policy information. The technical infrastructure is based on the Mautic CMS platform, utilizing JavaScript and Froala editor libraries. The site shows basic mobile optimization and accessibility but lacks SEO optimization and comprehensive metadata. Security measures include CSRF tokens and password input masking; however, no explicit security headers or HTTPS status were provided, indicating room for improvement in security posture. Privacy and compliance policies are absent from this page, limiting transparency and GDPR compliance indicators. Overall, the site is functional but basic in content and security maturity.

B

balneotec GmbH

balneotec.de

67

balneotec GmbH is a specialized service provider in the hospitality sector focused on premium hotel modernization and renovation, particularly hotel bathrooms and rooms. The company positions itself as a holistic solution provider offering aesthetic, hygienic, and sustainable renovations tailored to hotel brands. Their market position is supported by strategic partnerships with well-known manufacturers and craftsman groups, enhancing their service quality and regional capacity. The website reflects a professional and consistent brand image with comprehensive content targeting hoteliers and hotel owners seeking modernization services. Technically, the website is built on WordPress using modern plugins such as Elementor, Rank Math SEO, and UberMenu, ensuring good SEO and user experience. The site is mobile-optimized and performs moderately well, with a clean technical stack and no blocking security mechanisms detected. Privacy and cookie policies are well implemented, indicating good GDPR compliance. From a security perspective, the site enforces HTTPS and includes standard security headers, but lacks a dedicated security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be improved with explicit security disclosures and vulnerability handling mechanisms. The overall risk assessment is low with a high trustworthiness rating. Strategic recommendations include publishing a security policy, adding vulnerability disclosure information, and enhancing accessibility features to further strengthen compliance and user trust.

F

FORMAT Lingua Sagl

formatlingua.ch

62

FORMAT Lingua Sagl is a Swiss-based language service provider established in 1999, offering translation services and language training courses for individuals and companies. The company holds EduQua certification and collaborates with recognized professional training centers, positioning itself as a trusted local player in the education sector. Their website is professionally designed, mobile-optimized, and provides clear information about their services and contact details. Technically, the site uses modern web technologies including Bootstrap, FontAwesome, Google Fonts, and Google reCAPTCHA v3 for security. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website reflects a credible and professional organization with good digital maturity.

Jsabelle Forrer is a small Swiss-based design service provider specializing in graphic, web, and app design as well as illustration. The website presents a professional design with clear focus on delivering quality design experiences to consumers. The technical infrastructure is based on BaseKit CMS and hosted by Hoststar, utilizing modern web fonts and iconography. However, the site lacks critical privacy and cookie policies, contact information, and security disclosures, which impacts its compliance and trustworthiness. Security posture is minimal with no detected security headers or incident response information. Overall, the website is functional and professional but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

D

Deimos AG

deimos.ch

60

Deimos AG is a Swiss technology company specializing in the development of high-quality software applications and IT system integrations. The company targets businesses and organizations seeking tailored IT integration, web and software applications, AI solutions, and business analysis with UX design. Their market position is that of a specialized, small-sized player focused primarily on the Swiss market, offering niche services such as API gateways and AI chatbots leveraging modern AI frameworks like LangChain and OpenAI's ChatGPT. Technically, the website is built on a modern CMS platform with integration of popular libraries and services such as jQuery, FontAwesome, Vimeo, and Google Tag Manager, demonstrating a moderate to good level of digital maturity and performance. Security posture is solid with HTTPS enforced and no exposed sensitive data, though the absence of security headers and incident response information suggests room for improvement. Overall, the website is professional, well-branded, and trustworthy, with clear contact information and compliance with GDPR indicated by privacy and cookie policies. No critical vulnerabilities or suspicious patterns were detected, supporting a high legitimacy score.

A

Abacus Research AG

abacus.ch

79

Abacus Research AG is a well-established Swiss company specializing in ERP and business software solutions, serving over 65,000 companies with a broad partner network. Their website reflects a mature digital presence built on TYPO3 CMS, incorporating modern web technologies and a clear focus on user experience and accessibility. The company demonstrates strong compliance with privacy regulations, including GDPR, through comprehensive privacy and cookie policies with active consent mechanisms. Security posture is robust with HTTPS enforcement and no visible vulnerabilities, though incident response details and vulnerability disclosure mechanisms could be improved. Overall, the website and business presence indicate a trustworthy and professional organization with a strong market position in the Swiss technology sector.

R

Rasandt Consulting & Technology GmbH

flugerfassung-app.de

59

The Flugerfassung App website represents a specialized service offering a flight logging application tailored for pilots affiliated with Vereinsflieger.de and FlightcenterPLUS. The business is operated by Rasandt Consulting & Technology GmbH, targeting a niche market of aviation enthusiasts and flight schools in Germany. The app facilitates automatic flight data capture using GPS technology, simplifying flight documentation and integration with partner platforms. Technically, the website is built on WordPress with Elementor and OceanWP theme, providing a modern and responsive user experience. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

G

GANGL Dienstleistungen

gangl.de

42

Gangl.de is a specialized software developer focused on Microsoft Outlook and Exchange add-ins, serving a broad user base with over 600,000 active users. Established in 1999, the company holds a market-leading position in the D-A-CH region, offering productivity-enhancing tools tailored for business and individual users. Their product portfolio includes email management, calendar optimization, and collaboration features, supported by a dedicated development team and comprehensive customer support. The website reflects a professional and well-structured digital presence, with strong branding and clear communication of services.

T

Transports Publics du Chablais

tpc.ch

53

Transports Publics du Chablais (TPC) is a regional public transportation provider serving 23 communes in the Chablais region of Switzerland. The company offers train and bus services and supports tourism-related mobility. The website is professionally designed using WordPress with Elementor and Astra theme, providing good user experience and clear navigation. It targets local commuters and tourists with relevant content in French. The technical infrastructure includes modern web technologies and integrates marketing and analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. Security posture is adequate with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are not published. Contact information and physical address are clearly provided, enhancing business credibility. No privacy policy or terms of service pages were found, indicating room for compliance improvement.

T

TÜV Austria

tuev.at

66

TÜV Austria operates as the sole Technical Inspection Association in Austria, providing services in safety, quality assurance, innovation, and training across more than 34 countries. The company is positioned as a leading service provider in the energy and transportation sectors, offering technical inspection, certification, and educational services to business clients. The website reflects a mature digital infrastructure built on WordPress with modern libraries such as Mapbox GL JS and Leaflet for mapping, and integrates SEO best practices via Yoast SEO. Security posture is solid with HTTPS enforced and CAPTCHA protections on forms, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is limited due to missing privacy and cookie policies, which impacts overall compliance scoring. The site is professional, well-branded, and trustworthy, with no signs of blocking or WAF interference.