Security Directory

B

benevol Graubünden

benevol-gr.ch

56

benevol Graubünden is a Swiss non-profit organization dedicated to promoting and facilitating volunteer work within the canton of Graubünden. The organization provides advisory services, volunteer placement, and training courses for both volunteers and organizations. It holds a strong regional presence and is supported by various local partners. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in German. Technically, the site uses modern web technologies including Google Tag Manager, Google Analytics, and a cookie consent management system (CookieYes). Security measures include HTTPS enforcement and bot protection via Cloudflare Turnstile captcha. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and a detailed privacy policy. Contact information and social media presence enhance business credibility. No critical security or compliance issues were detected.

B

benevol Kanton Bern

benevol-be.ch

57

benevol Kanton Bern is a well-established non-profit organization focused on facilitating and supporting volunteer engagement within the Kanton Bern region of Switzerland. The organization provides consulting, networking, training, and digital tools to volunteers, organizations, and municipalities. Their market position is strong regionally, supported by a professional website, clear contact information, and active social media presence. The website demonstrates a high level of digital maturity with modern technologies such as Google Analytics, Google Tag Manager, and Cloudflare Turnstile captcha integrated for security and analytics purposes. Privacy compliance is robust, featuring a detailed cookie consent mechanism and a comprehensive privacy policy in German. Security posture is strong with HTTPS enforced and multiple security headers present, although no explicit security policy or incident response contacts are published. Overall, the website is professional, trustworthy, and well-optimized for user experience and accessibility.

B

benevol Baselland

benevol-baselland.ch

57

benevol Baselland is a regional non-profit organization serving as the competence center for volunteer work in the Basel-Landschaft canton of Switzerland. The organization supports volunteers, associations, and municipalities through consulting, mediation, networking, and digital platforms such as benevol-jobs.ch. Their website reflects a professional and consistent brand image, targeting local community stakeholders and volunteers. The business model focuses on fostering voluntary engagement and providing resources and recognition for volunteer efforts. The organization is well-positioned regionally with partnerships and sponsorships from reputable local entities.

G

Genossenschaft ZFV-Unternehmungen

zfv.ch

62

Genossenschaft ZFV-Unternehmungen is a leading Swiss hospitality and gastronomy cooperative operating over 200 venues including restaurants, hotels, childcare facilities, and event locations. The company emphasizes sustainability, partnerships, and innovation in its business model, targeting a broad audience of guests, partners, and employees. The website is professionally designed using Drupal 11 and Tailwind CSS, with modern tracking and consent management tools such as Google Analytics, Google Tag Manager, and Usercentrics. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response information could be improved. Overall, the domain registration and business information are consistent and trustworthy, reflecting a mature and credible enterprise.

O

Ocean Orchids d.o.o.

oceanorchids.si

43

Ocean Orchids d.o.o. is a Slovenian-based company specializing in the cultivation and retail of orchids and tropical plants, operating both an e-commerce platform and a physical tropical garden attraction. The company has a well-established market presence since 2003, targeting orchid enthusiasts and home gardeners primarily in Slovenia. Their website is built on a modern WordPress and WooCommerce stack, featuring good design, mobile optimization, and SEO practices. The technical infrastructure includes popular plugins for analytics and marketing, with hosting provided by HITROST.COM. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms, though no explicit security policy or incident response information is publicly available. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting a niche retail business model with a focus on customer engagement through blog content and social media.

L

Ljubljanske mlekarne

l-m.si

45

Ljubljanske mlekarne is a leading Slovenian dairy company specializing in the production and wholesale of milk and dairy products. Established in 2007, it maintains strong ties with over 2000 local farms, ensuring product traceability and quality. The company operates a professional website built on WordPress, featuring multiple product brands and comprehensive company information. The technical infrastructure includes modern JavaScript libraries and analytics tools, with hosting supported by Google Cloud DNS services. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. Privacy compliance is well addressed with GDPR-aligned cookie banners and policies. Overall, the website reflects a mature digital presence with good content quality and user experience.

B

BTC d.d.

misijazeleno.si

48

BTC d.d. is a large Slovenian company specializing in sustainable urban development, real estate management, logistics, and innovation ecosystems. The company positions itself as a leader in sustainability with a strong focus on green energy, environmental protection, and social responsibility. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation aimed at business partners, visitors, and the local community. Technically, the site is built on WordPress with modern plugins and SEO tools, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though some security headers could be improved. Privacy compliance is well addressed with visible cookie consent and privacy policies. Overall, BTC d.d. demonstrates high business credibility and trustworthiness supported by multiple awards and certifications.

D

DRUŠTVO DOVES - FEE SLOVENIA

doves.si

51

Društvo DOVES-FEE Slovenia is a Slovenian non-profit organization dedicated to environmental education and sustainable development. As a full member of the international Foundation for Environmental Education (FEE), it operates several recognized environmental programs such as Blue Flag, Eco-Schools, Young Reporters for the Environment, and Green Key within Slovenia. The organization targets schools, hotels, campsites, youth, and environmentally conscious communities, promoting sustainability and environmental awareness. The website reflects a professional and consistent brand presence with clear communication of its mission and programs. Technically, the website is built on WordPress with common plugins like Yoast SEO and SiteOrigin Panels, hosted on servers associated with Hostmachine. It uses HTTPS with a good SSL configuration and includes cookie consent mechanisms compliant with GDPR. The site integrates Google Analytics and ShareThis for tracking and social sharing. Mobile optimization and SEO are well addressed, though accessibility is basic. No critical security headers were detected, and no incident response or security policy information is published. From a security perspective, the site shows a moderate security posture with HTTPS and cookie consent but lacks advanced security headers and explicit incident response contacts. No vulnerabilities or suspicious content were found. WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age matching the organization's history. Overall, the website is a trustworthy and professional platform for a small non-profit environmental organization. Strategic improvements could include enhancing security headers, publishing security policies, and adding incident response contacts to strengthen trust and compliance.

F

Frogblue

frogblue.com

61

Frogblue is a German-based company specializing in smart home and building technology solutions that emphasize simplicity, wireless connectivity, and security. The company targets consumers and businesses interested in modern, flexible smart home systems. Their market position is that of a niche manufacturer with a focus on German engineering quality. The website is professionally designed, multilingual, and optimized for user experience and SEO. Technically, the site is built on WordPress with modern plugins and analytics tools, including GDPR-compliant cookie consent mechanisms and hCaptcha for form security. Security posture is good with HTTPS enforced and privacy-conscious analytics configurations, though explicit security headers could be improved. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues or privacy protection, which slightly reduces trustworthiness. Overall, the site presents a credible and professional business presence in the smart home technology sector.

F

Forcepoint

forcepoint.com

75

Forcepoint is a leading enterprise cybersecurity company specializing in data security and cloud security solutions. The company serves over 10,000 customers globally, including government agencies and large enterprises, providing advanced protection for data across cloud and network environments. Their market position is strong, supported by recognized certifications such as ISO 27001, SOC 2, and FedRAMP, reflecting a commitment to security and compliance. The website clearly communicates their value proposition and key services, targeting security professionals and enterprise clients. Technically, the website is built on modern frameworks including Next.js and React, hosted on Pantheon with robust performance and mobile optimization. The site integrates advanced analytics and marketing tools such as Visual Website Optimizer and Google Analytics, enabling detailed user behavior tracking and optimization. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms implemented. From a security perspective, Forcepoint demonstrates strong security posture with HTTPS enforcement, security headers, and published security policies. The presence of incident response contacts and vulnerability disclosure programs further enhance trust. No critical vulnerabilities or suspicious content were detected. However, the WHOIS data is unavailable or protected, which slightly reduces transparency but does not detract significantly from overall legitimacy. Overall, Forcepoint's website reflects a mature, professional cybersecurity provider with strong technical and security foundations. Recommendations include maintaining up-to-date third-party libraries, enhancing transparency on data retention, and continuing rigorous security audits to sustain trust and compliance.

M

MOBOTIX AG

mobotix.com

68

MOBOTIX AG is a German company specializing in high-resolution IP security camera systems and IoT video technology. Established in 1999, the company offers innovative decentralized edge video solutions and software to improve operational efficiency and safety for businesses and organizations across multiple sectors including industry, government, healthcare, and retail. The website is professionally designed, multilingual, and provides comprehensive information about products, services, and partner programs. Technically, the site uses Drupal CMS with modern analytics tools like Google Analytics and Tag Manager, implementing privacy-conscious features such as IP anonymization and cookie consent mechanisms. Security posture is solid with HTTPS enforced, but lacks explicit security headers and published incident response policies. WHOIS data for the domain is missing or unavailable, which is unusual for a .com domain and slightly impacts trustworthiness. Overall, the website is credible, well-maintained, and business-focused, with recommendations to improve security transparency and domain registration visibility.

A

Aarau Regio

aarau-regio.ch

44

Aarau Regio is a regional governmental entity focused on coordinating cooperation and projects within the Aarau region in Switzerland. The website serves as an information portal highlighting current projects, regional cooperation efforts, and news relevant to residents and stakeholders. The organization emphasizes regional development, spatial and traffic planning, and nature and landscape protection. The website is built on the TYPO3 CMS platform and incorporates modern web technologies including jQuery, Owl Carousel, and analytics tools such as Google Analytics and Matomo. While the site is well-structured and professionally designed, it lacks visible cookie consent mechanisms and detailed privacy compliance features, which may pose GDPR compliance challenges. Security posture is moderate with HTTPS enforced but missing advanced security headers and explicit security policies. Overall, the domain registration and WHOIS data align well with the website's governmental nature, indicating legitimacy and trustworthiness.

V

VOI Migros-Partner

voi-migrospartner.ch

68

VOI Migros-Partner operates as a retail partner network for Migros, a major Swiss retailer, offering a range of Migros products including food, beverages, and spirituosen. The website targets general consumers in Switzerland, providing localized content primarily in German. The business model focuses on regional retail partnerships, leveraging Migros branding and product lines to serve local communities. The site demonstrates consistent branding and a professional presentation aligned with Migros standards. Technically, the website employs modern tracking and analytics tools such as Google Analytics, Google Tag Manager, and Qualtrics for marketing and user experience optimization. Cookie consent is implemented with an opt-in mechanism, reflecting good privacy compliance practices. The site is served over HTTPS with basic security headers, though there is room for improvement in security hardening and accessibility. Security posture is moderate, with no critical vulnerabilities detected in the visible content. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests opportunities to enhance transparency and readiness. Privacy compliance is strong, supported by a comprehensive privacy and cookie policy hosted on the Migros privacy domain. Overall, the website presents a low-risk profile with a solid foundation in business credibility and technical implementation. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility features to further strengthen trust and compliance.

P

Podjetniski portal

podjetniski-portal.si

9

Podjetniški portal is a Slovenian business information website targeting potential entrepreneurs, beginner entrepreneurs, and growing companies. It serves as a centralized resource for business-related information and guidance in Slovenia. The domain is well-established since 2006 and is registered through a local registrar, indicating a stable and legitimate online presence. The website uses modern marketing and analytics technologies such as Google Tag Manager, Google Analytics, LinkedIn Insight, and MailerLite, reflecting a moderate level of digital maturity. However, it lacks explicit privacy and cookie policies, which impacts its compliance posture. Security-wise, the site uses HTTPS and reCAPTCHA for form protection but does not implement visible security headers, which could be improved to enhance security. Overall, the website is professional and relevant to its target audience but should address privacy compliance and security best practices to strengthen trust and regulatory adherence.

K

Kabi d.o.o.

kabi.info

68

Kabi d.o.o. is a Slovenian technology company specializing in web development, IT maintenance, CRM solutions, and security products. Established in 1994, it serves primarily Slovenian businesses with a comprehensive portfolio including website and e-commerce development, business software platforms like BananaCloud, and security partnerships such as WithSecure. The company maintains a strong local presence with multiple client references and certifications, including the F-Secure Gold Partner status. Technically, the website employs modern analytics tools like Google Analytics and Matomo, uses a custom CMS (Bananadmin), and implements cookie consent mechanisms, reflecting a moderate to good digital maturity level. Security posture is solid with HTTPS and CAPTCHA protections, though improvements in security headers and published policies are recommended. Overall, the website is professional, well-structured, and trustworthy, though WHOIS data is unavailable, which slightly impacts transparency.

L

Lekarna Soča

lekarna-soca.si

61

Lekarna Soča operates as a specialized online pharmacy based in Slovenia, offering a wide range of healthcare products including medicines, medical aids, nutritional supplements, and mother and child care items. The website is well-structured, targeting general consumers, patients, and individuals requiring medical supplies, with a business model centered on e-commerce retail and home delivery services. The company has been established since 2011, indicating a mature presence in the market. Technically, the website leverages the Magento e-commerce platform with integrations such as Google Analytics, Facebook Pixel, and Google reCAPTCHA to enhance user experience and security. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is solid with HTTPS enforced and standard security practices in place, but could be improved by adding explicit security headers and publishing a security policy. Privacy compliance is strong with a clear privacy and cookie policy and consent mechanism aligned with GDPR requirements. Overall, the website is professional, trustworthy, and secure, with no critical vulnerabilities detected.

S

Stiftung UNIA

unia.swiss

57

Stiftung UNIA operates as a major Swiss trade union representing employees across various sectors. The organization focuses on negotiating collective labour agreements, providing legal advice and protection to its members, and advocating for fair working conditions and social justice. The website serves as an information portal for workers in Switzerland, offering guides, membership information, and resources related to employment rights. Technically, the site is built on TYPO3 CMS and integrates modern analytics and marketing tools such as Google Analytics, Facebook Pixel, and Mouseflow, with appropriate consent mechanisms in place. Security posture is solid with HTTPS enforced and domain registration protections, though DNSSEC is not enabled and some security headers are missing. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its target audience.

F

Föderation der Schweizer Psycholog:innen (FSP)

psychologie.ch

55

The Federation of Swiss Psychologists (FSP) operates a comprehensive and professionally designed website serving as the largest professional association for psychologists in Switzerland. The site offers key services including a psychologist directory, training information, job offers, membership services, and news updates. The target audience includes psychologists, patients, and the general public interested in psychology-related services within Switzerland. The business model focuses on professional association services and community engagement. Technically, the website employs modern JavaScript frameworks such as Alpine.js and Livewire, integrates multiple analytics and tracking tools, and demonstrates excellent mobile optimization and SEO practices. Security posture is strong with HTTPS enforcement, CSRF protection, and bot mitigation via hCaptcha, although explicit security policies and incident response contacts are not published. Overall, the website is trustworthy, compliant with GDPR, and reflects a mature digital presence appropriate for a large healthcare association.

W

WNL

wnl.tv

62

WNL is a Dutch media broadcaster specializing in news, political commentary, and societal programming. The website serves as a digital platform for delivering news articles, video content, and podcasts to a Dutch-speaking audience. It also promotes membership support to sustain its operations. The site is well-integrated with the Dutch Public Broadcasting (NPO) infrastructure, indicating a reputable and established presence in the media sector. Technically, the website employs modern frameworks such as Laravel with Livewire, Alpine.js, and Swiper.js for a responsive and interactive user experience. Hosting and DNS are managed via Cloudflare, ensuring reliable performance and security. Security posture is strong with HTTPS enforced and CSRF protections in place, although some security headers could be explicitly confirmed and DNSSEC is not enabled. Privacy compliance is partial; while a cookie consent mechanism is present, no explicit privacy policy or terms of service were found in the provided content. Business credibility is high given the consistent WHOIS data, official social media presence, and professional content. Overall, the website is a trustworthy and professional media outlet with room for improvement in privacy and security policy transparency.

N

NPO

omroepzwart.nl

49

Omroep ZWART is a Dutch public broadcasting platform under the NPO umbrella, established in 2020. It focuses on cultural diversity and representation through radio, podcast, television, and online media content. The website offers a modern user experience with video streaming capabilities and active social media engagement. Technically, it employs a robust tech stack including Bitmovin Player, Google Tag Manager, and multiple analytics services, indicating a mature digital infrastructure. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms, though explicit privacy and terms policies are missing. Overall, the site is trustworthy and professionally maintained, serving a general audience with safe content.

S

Slovenski regionalno razvojni sklad

srrs.si

38

Slovenski regionalno razvojni sklad (SRRS) is a Slovenian public financial institution established in 2020, focused on providing favorable financing and subsidies to support regional development, agriculture, entrepreneurship, local infrastructure, and non-profit organizations across Slovenia. The institution operates multiple financial product programs tailored to different sectors and prioritizes sustainability, green transition, and social responsibility. The website reflects a professional and comprehensive digital presence with clear communication channels and extensive program information. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics, reCAPTCHA, and accessibility features, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and reCAPTCHA protection on forms, though explicit security headers could be more visible. Privacy compliance is well addressed with a comprehensive GDPR policy and cookie consent mechanisms. Overall, SRRS presents a trustworthy and authoritative online presence aligned with its government-backed mission.

SloExport is a Slovenian export database platform developed by the Chamber of Commerce and Industry of Slovenia in cooperation with SPIRIT Slovenia. It serves as a business directory and export promotion tool, targeting Slovenian exporters and international business partners. The platform provides searchable company and product information to facilitate new business contacts and export opportunities. The website is well-positioned as an official government-supported resource, enhancing Slovenia's export market presence. Technically, the website is built on ASP.NET WebForms using the DotNetNuke CMS platform, integrating Google Analytics and Twitter widgets for analytics and social media engagement. The site is moderately optimized for performance and mobile use, with basic accessibility features. Security is adequate with HTTPS enforced and a Content-Security-Policy header, though additional security headers and incident response information are lacking. The security posture is solid but could be improved by publishing a security policy, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is basic with a cookie consent banner and privacy policy present, but more detailed GDPR compliance indicators could enhance trust. Business credibility is high due to official backing and consistent branding. Overall, the website is a professional, trustworthy platform with good content quality and technical implementation. Strategic improvements in security transparency and mobile optimization would further strengthen its position.

Invest Pomurje is a regional development agency focused on promoting foreign direct investment in the Pomurje region of Slovenia. The website highlights the region's strategic location in Central Europe and offers detailed information on business opportunities in sectors such as tourism, sport, renewable energy, advanced agriculture, and metal processing. The agency provides support services to investors and showcases success stories to build credibility. The target audience includes foreign investors and businesses seeking expansion in Central and South-Eastern Europe. Technically, the website is built on WordPress using the Uncode theme and integrates common tools like Yoast SEO, Google Analytics, and Google Maps API. The site is mobile optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security policies or incident response information. No vulnerabilities or suspicious content were detected, and the domain registration is consistent with a legitimate business entity. Overall, the website presents a professional and trustworthy front for regional investment promotion.

E

Edition Digital

editiondigital.com

55

Edition Digital is a UK-based technology company specializing in smart digital publishing software that integrates content creation, management, distribution, monetization, and analytics. Their platform targets publishers and media companies seeking responsive, cross-platform digital magazine solutions with gamification features. The website presents a professional image with clear navigation and good content quality, supported by modern JavaScript libraries and Google Analytics integration. However, the absence of WHOIS data and explicit privacy policies slightly detracts from overall trustworthiness. Security measures include Google reCAPTCHA and cookie consent, but lack of HTTP security headers and vulnerability disclosure mechanisms indicate room for improvement. Overall, the site is accessible and functional, with moderate technical maturity and a solid business proposition.

M

ManpowerGroup

manpowergroup.com

69

ManpowerGroup is a globally recognized leader in workforce solutions, founded in 1948 and headquartered in Milwaukee, USA. The company operates through multiple brands including Manpower, Experis, and Talent Solutions, offering a comprehensive range of staffing, recruitment, assessment, and workforce consulting services. Their market position is strong, serving over 400,000 clients worldwide and connecting more than 600,000 associates daily. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization, supporting their enterprise-level operations. Technically, the site leverages modern technologies such as React, HubSpot forms, and Google Tag Manager, indicating a contemporary and scalable infrastructure. Privacy and cookie consent mechanisms are well implemented, aligning with GDPR requirements. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and incident response policies are not prominently disclosed. Overall, the website and business presence demonstrate high professionalism and trustworthiness. The lack of publicly available WHOIS data is likely due to privacy protection, common for large enterprises, and does not detract significantly from legitimacy. Strategic recommendations include enhancing transparency around security policies and incident response, and confirming security header implementations to further strengthen security posture.

S

Solutions de personnalisation et de configuration en ligne de produits et services

configurateur-en-ligne.com

52

The website www.configurateur-en-ligne.com represents a specialized business, GIBRALTAZ, offering online product and service personalization and configuration solutions primarily targeting B2B and B2C clients. The company emphasizes robust, scalable 2D/3D configurators integrated with existing client systems such as e-commerce platforms, ERP, and CRM. The site is professionally designed with comprehensive content and SEO optimization, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers and policies are lacking. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further investigation. Overall, the site is trustworthy and business-focused but would benefit from enhanced transparency in security and domain registration.

G

GitBook

gitbook.com

67

GitBook is a technology company providing a SaaS platform focused on documentation and knowledge management optimized for AI. The website presents a professional and modern interface targeting developers and product teams seeking efficient documentation solutions. The platform leverages AI to enhance user experience and conversion. Technically, the site uses modern frameworks such as Framer, integrates analytics tools like Google Analytics, Amplitude, and HubSpot, and hosts assets on Amazon S3, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are missing. The absence of WHOIS data reduces transparency but is common for commercial SaaS providers using privacy protection. Overall, the site is trustworthy and professional but could improve privacy compliance and security disclosures.

CabaDesign is a small Czech Republic-based web development service provider specializing in creating websites and web applications. The company appears to be operated by Ing. Jan Cabalka and has been active since at least 2010, as supported by domain registration data. The website content is minimal but clearly communicates the core business offering and provides direct contact information including email, phone, and physical location. The market position is that of a small local technology service provider targeting businesses or individuals needing web development solutions. Technically, the website uses basic modern web technologies including Google Fonts, Google Analytics, and Google Tag Manager for tracking. Hosting is provided by WEDOS, a Czech hosting provider, consistent with the domain registrar. The site lacks advanced frameworks or CMS indications and has basic mobile and accessibility features. SEO and performance optimizations appear minimal but functional. From a security perspective, the site uses HTTPS (assumed from domain and hosting) but lacks visible security headers and published security or privacy policies. No forms or input fields are present to assess input security. Google Analytics tracking is implemented without visible cookie consent mechanisms, indicating potential GDPR compliance gaps. The WHOIS data is consistent and supports the legitimacy of the business with no privacy protection or suspicious patterns. Overall, the website is functional and credible for a small business but lacks comprehensive privacy, security, and compliance features. Strategic improvements in privacy policy publication, security headers, and consent mechanisms would enhance trust and compliance posture.

DuelOnline.cz is a Czech Republic-based online accounting portal focused on providing cloud-based access to the DUEL economic system. The website targets accounting professionals, businesses, and accounting firms seeking secure, remote, and integrated accounting solutions. The business model revolves around SaaS delivery of accounting, payroll, inventory, and retail sales management services. The company Ace IT s.r.o. appears as the parent entity, with partnerships with major technology providers such as HP, Dell, Cisco, Microsoft, and Debian, enhancing its market credibility. Technically, the website employs a traditional web stack with jQuery 1.6.1, jQuery UI, and Google Analytics for tracking. It integrates virtualization technologies and cloud infrastructure based on Microsoft and Linux platforms. However, the site shows signs of aging technology and lacks modern security headers and HTTPS confirmation, which impacts its security posture. Mobile optimization and accessibility are basic, and no CMS or hosting provider details are evident. From a security perspective, the site demonstrates some best practices like data backup and physical server security but lacks visible HTTPS enforcement, security headers, and formal privacy or cookie policies. The absence of WHOIS data reduces domain trustworthiness and raises concerns about domain registration legitimacy. No vulnerability disclosures or incident response contacts are provided, limiting transparency. Overall, DuelOnline.cz is a functional and professional business site with moderate technical maturity and security posture. Strategic improvements in security, privacy compliance, and technology modernization are recommended to enhance trust and resilience.

A

Ace IT s.r.o.

gdpr-experts.cz

44

GDPR Experts, operated by Ace IT s.r.o., is a specialized small business based in the Czech Republic providing GDPR compliance and IT security consulting services. Their offerings include GDPR training, audits, legal documentation, and IT security assessments tailored for companies and entrepreneurs within the EU. The website is professionally designed with clear navigation and relevant content targeting businesses needing GDPR solutions. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. However, there are gaps in privacy compliance, notably the absence of explicit privacy and cookie policies. Security posture is adequate with HTTPS implied but lacks visible security headers and incident response information. Overall, the domain registration data aligns well with the business, supporting legitimacy and trustworthiness.

M

MonoSystems

monosystems.com

10

MonoSystems is a specialized manufacturer and direct seller of cable management systems including cable trays, raceways, power poles, and j-hooks. The company positions itself as a unique direct manufacturer with over 50 years of industry experience and is part of the NIEDAX GROUP. Their website targets electrical contractors, engineers, architects, and general contractors, offering detailed product information, downloadable resources, and customer engagement through forms and social media. Technically, the site is built on WordPress with WooCommerce and uses modern libraries such as jQuery and Bootstrap, integrating Google Analytics and Tag Manager for tracking. Security measures include HTTPS and Google reCAPTCHA on forms, but the site lacks visible privacy and cookie policies as well as security headers, which are areas for improvement. The WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and business presence indicate a legitimate operation. Overall, the site is professional and functional with moderate technical maturity and good business credibility.

P

Pomurska gospodarska zbornica

pgz.si

10

Pomurska gospodarska zbornica (PGZ) is a regional economic chamber based in the Pomurje region of Slovenia, established in 2008. The organization focuses on uniting and supporting local businesses through networking events, consulting services, public documentation, and educational programs. The website reflects a professional and consistent brand presence, targeting a broad audience including businesses and stakeholders in the region. The site content is primarily in Slovenian and provides comprehensive information about the chamber's activities, projects, and regional economic data. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, FontAwesome, and Owl Carousel, with Google Analytics integrated for user tracking. The site is mobile-optimized and demonstrates good SEO practices.

S

SzeneSchweiz – Berufsverband Darstellende Künste

szeneschweiz.ch

38

SzeneSchweiz is the largest and most important Swiss professional association for performing artists in theater, film, and TV. It provides a range of services including legal advice, protection against abuse, pension schemes for freelancers, continuing education, and a casting platform. The organization targets professional artists in Switzerland and operates as a non-profit entity with a strong market position in the Swiss performing arts sector. The website is multilingual and professionally designed, reflecting a medium-sized organization founded around 2017. Technically, the website is built on WordPress 6.8.3 with modern plugins for social sharing and forms. It uses Google Analytics for tracking and is mobile-optimized with good SEO practices. Performance is moderate, and accessibility is basic. The site uses HTTPS with excellent SSL configuration but lacks some security headers and a cookie consent mechanism. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, it lacks explicit security policies, incident response information, and cookie consent banners, which are important for GDPR compliance. No vulnerabilities or suspicious content were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's Swiss identity. Overall, the website is professional, trustworthy, and well-positioned in its niche but could improve privacy compliance and security posture by adding cookie consent, security headers, and incident response details.

K

KENDRIS Capital Limited

kendriscapital.com

74

KENDRIS Capital Limited is an independent alternative investment fund manager specializing in multi-asset class fund solutions domiciled in Cyprus and Luxembourg. It operates as a wholly owned subsidiary of KENDRIS AG, targeting professional and well-informed investors with a comprehensive suite of fund management services including portfolio management, risk management, marketing, distribution, and fund administration. The company emphasizes a personal, independent, and digital approach to fund management, supported by a strong regulatory framework under CySEC. Technically, the website employs modern web technologies such as Google Tag Manager, Google Analytics, and CookieYes for consent management, ensuring a professional and user-friendly digital presence. Security measures include HTTPS enforcement and reCAPTCHA integration, though there is room for improvement in security headers and published security policies. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the overall website content and regulatory disclosures support a trustworthy business profile.

D

Društvo DOVES - FEE SLOVENIA

modrazastava.si

53

Modra Zastava is a Slovenian non-profit environmental program focused on promoting eco-label certification for coastal locations to ensure environmental protection, water quality, and sustainable tourism. The program is well-established since 2005 and operates under the management of Društvo DOVES - FEE SLOVENIA. The website serves as an informational and promotional platform targeting tourists, municipalities, and environmental stakeholders. Technically, the site is built on WordPress with common plugins such as Yoast SEO and uses Google Analytics for visitor tracking. The hosting is inferred to be with Hostmachine based on nameservers. The site is mobile-optimized and SEO-friendly with good content quality and clear navigation. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and incident response information. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

D

DRUŠTVO DOVES - FEE SLOVENIA

drustvo-doves.si

51

Društvo DOVES-FEE Slovenia is a Slovenian non-profit organization dedicated to environmental education and sustainable development. As a full member of the international Foundation for Environmental Education (FEE), it operates several recognized environmental programs such as Blue Flag, Eco-Schools, Young Reporters for the Environment, and Green Key. The organization targets schools, youth, environmental groups, and hospitality sectors to promote sustainability and environmental awareness. The website is professionally designed using WordPress, with good content quality and clear navigation, supporting its mission effectively. Technically, the website employs a standard WordPress CMS with popular plugins like Yoast SEO and SiteOrigin Panels. It uses HTTPS with a good SSL configuration and integrates Google Analytics and ShareThis for analytics and social sharing. The site is moderately performant and mobile-optimized, though accessibility features are basic. Hosting is provided by Hostmachine, as indicated by the nameservers. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the organization's claims, showing a domain age appropriate for its history and no privacy protection, enhancing trustworthiness. Overall, the website presents a low-risk profile with a solid business credibility and compliance posture. Strategic improvements could include adding security headers, publishing a security policy, and enhancing accessibility. These steps would further strengthen the organization's digital trust and security posture.

I

IFEMA MADRID

ifema.es

67

IFEMA MADRID is a leading Spanish operator and one of the most important in Europe within the international circuit of the fair and congress industry. The organization specializes in creating relationships between people, brands, and experiences through a wide range of events including leisure, tourism, art, fashion, technology, motor, education, employment, and gastronomy. Their market position is strong as a large entity serving businesses, professionals, and the general public interested in events in Madrid and Europe. Technically, the website employs modern tracking and marketing technologies such as Google Tag Manager, Google Analytics, Visual Website Optimizer, and OneTrust for cookie consent, reflecting a mature digital infrastructure. The site is well-optimized for mobile and accessibility, with good SEO practices and a professional design. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though the absence of a public security policy or incident response contact is noted. WHOIS data is restricted by the Spanish registry policy, which is typical and not suspicious. Overall, the website is trustworthy, compliant with GDPR, and safe for general audiences.

M

Münchener Verein Versicherungsgruppe

mv-maklernetz.de

65

Münchener Verein Versicherungsgruppe operates a professional insurance broker portal offering a wide range of insurance products including health, care, retirement, and business insurance. The company holds a strong market position in Germany, evidenced by multiple industry awards and certifications. The website targets insurance brokers and business customers, providing tools, calculators, and comprehensive product information to support daily operations. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Google Analytics and Usercentrics for privacy compliance. The site is hosted behind Cloudflare, ensuring good performance and security. Security posture is strong with HTTPS and consent management, though HTTP security headers could be improved. No vulnerabilities or blocking mechanisms were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

M

Münchener Verein Versicherungsgruppe

mv-partnernetz.de

64

Münchener Verein Versicherungsgruppe operates a professional partner portal targeting insurance brokers and customers in Germany. The website offers comprehensive insurance products including health, life, pension, and business insurance solutions. It holds a strong market position as a multiple-time award-winning insurer, emphasizing trust and reliability. The portal supports partners with product details, contracts, and tools, reflecting a B2B and B2C hybrid business model. Technically, the site is built on TYPO3 CMS, integrates modern analytics and consent management tools, and is hosted behind Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS and GDPR compliance, though some security headers and explicit policies could be enhanced. Overall, the site is professional, trustworthy, and well-structured, serving its target audience effectively.

H

Hunkemöller

hunkemoller.nl

10

Hunkemöller is a well-established European lingerie and swimwear retailer with a strong online presence, targeting primarily women shoppers in the Netherlands and other European countries. The company operates multiple country-specific websites and offers a broad range of products including lingerie, swimwear, and nightwear. Their market position is strong as a leading brand in the retail lingerie sector. Technically, the website is built on modern frameworks such as React and uses Bloomreach CMS, with good mobile optimization and accessibility features. The security posture is robust, featuring HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly available. Overall, the site demonstrates a mature digital infrastructure with extensive analytics and marketing tools, balanced with good privacy compliance. The risk profile is low with recommendations to enhance transparency on security policies and incident response.

H

Hunkemöller

hunkemoller.be

10

Hunkemöller is a prominent European lingerie and swimwear retailer with a strong online presence in Belgium and other European markets. The website offers a comprehensive e-commerce platform featuring a wide range of lingerie, swimwear, and nightwear products targeted at a mature audience. The brand is well-established with consistent branding and a professional digital storefront. Technically, the site leverages a modern tech stack including Salesforce Commerce Cloud (Demandware), various analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Bloomreach, and is hosted on Microsoft Azure infrastructure. The website is mobile-optimized and implements privacy and cookie consent mechanisms in compliance with GDPR regulations. Security-wise, the site enforces HTTPS, uses security headers, and registers service workers, but lacks publicly available security policies or incident response information. WHOIS data for the domain is restricted, typical for .be domains, which slightly impacts trust but is mitigated by the brand's reputation and professional site quality. Overall, the site demonstrates a mature e-commerce operation with good security and privacy practices but could improve transparency around security policies and incident response.

E

Easee

easee.com

11

Easee is a Norwegian company specializing in smart electric vehicle charging solutions, offering adaptable chargers compatible with various vehicles and power supplies. The company positions itself as an innovative player in the energy and transportation sectors, targeting EV owners, businesses, and installers. Their website reflects a mature digital presence with excellent content quality, professional design, and strong branding consistency. Technically, the site leverages modern technologies including Google Tag Manager, reCAPTCHA, and Cloudflare, hosted on AWS infrastructure, and built on WordPress with Yoast SEO for optimization. Security posture is strong with HTTPS enforced, EPP domain locks, and a comprehensive cookie consent mechanism, although DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is well addressed with a detailed cookie policy and GDPR-aligned consent management. Overall, the website is trustworthy, professional, and well-optimized for user experience and SEO.

P

Power Electronics S.L.

power-electronics.com

11

Power Electronics S.L. is a well-established multinational company specializing in renewable energy solutions, including solar inverters, energy storage systems, electric mobility charging infrastructure, and industrial drives. The company holds a strong market position as a global benchmark in these sectors, with a focus on sustainable and clean energy technologies. Their website reflects a professional and comprehensive digital presence, targeting industry professionals and business clients worldwide. Technically, the site is built on modern frameworks such as Next.js and React, hosted likely on AWS infrastructure, and optimized for performance and mobile use. Security posture is solid with HTTPS enforced and domain protections in place, though improvements in DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website and domain data indicate a legitimate, trustworthy, and mature business with a high level of professionalism and digital maturity.

S

smARTec Veranstaltungstechnik AG

smartec.com

38

smARTec Veranstaltungstechnik AG is a Swiss-based company specializing in mobile event technology and digital events, offering services such as lighting, sound, and video technology rental and operation. Positioned as a Swiss industry leader with approximately 2000 projects annually, the company targets corporate, public, and exhibition event organizers. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and integrates analytics tools like Google Analytics and Matomo, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website and certifications. Overall, the site is trustworthy and business credible but would benefit from improved transparency in domain registration and security policies.

N

Nau.ch

nau.ch

49

Nau.ch is a Swiss online news portal delivering news content focused on Switzerland, covering sports, politics, and people. The website targets a general Swiss audience and positions itself as a modern news platform with multimedia content including videos. Technically, the site uses the Qwik framework, integrates Google Analytics and Tag Manager, and employs OneSignal for push notifications, indicating a mature digital infrastructure optimized for performance and mobile responsiveness. Security-wise, the site enforces HTTPS and appears to implement standard security headers, but lacks explicit published privacy and cookie policies, which are critical for GDPR compliance. No contact or incident response information is readily available, which could impact user trust and compliance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy disclosures and security transparency.

R

Regional Development Partnership

pomurjeregion.si

10

Pomurje Region is a regional development partnership focused on promoting tourism and investment opportunities in the Pomurje region of Slovenia. The website serves as an informational and marketing platform targeting tourists, investors, and businesses interested in the region's cultural heritage, quality of life, and economic potential. The organization positions itself as a government or non-profit entity dedicated to regional growth and sustainability. Technically, the website is built on WordPress using the Avada theme and several popular plugins such as Yoast SEO and Revolution Slider. It integrates Google Analytics and Google Maps APIs, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the website uses HTTPS and employs a cookie consent mechanism, but lacks explicit security headers and detailed security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the content. The domain registration data is consistent with the business claims, enhancing trustworthiness. Overall, the website presents a professional and trustworthy front for the Pomurje regional development partnership, with room for improvement in security best practices and privacy documentation to enhance compliance and user trust.

D

Društvo DOVES - FEE SLOVENIA

zelenikljuc.si

53

Zeleni ključ is a Slovenian environmental certification program focused on promoting sustainability within the tourism and hospitality industry. The website represents Društvo DOVES - FEE SLOVENIA, the local managing organization, and provides information about the certification, its criteria, and certified establishments. The program is well-established with over 8,000 certified tourist facilities worldwide and a strong presence in Slovenia. The website uses WordPress with common plugins and integrates Google Analytics and ShareThis for tracking and sharing. It is hosted behind Cloudflare DNS and uses HTTPS with a valid SSL certificate, ensuring secure communications. The site includes GDPR-compliant cookie consent mechanisms and privacy notices but lacks explicit security policies or incident response contacts. Overall, the website is professional, informative, and trustworthy, serving its target audience of tourism businesses and environmentally conscious consumers effectively.

E

Euronext Corporate Solutions

companywebcast.com

76

Euronext Corporate Solutions operates as a comprehensive platform offering corporate services, compliance solutions, and investor relations tools tailored for listed companies and capital market participants. The website positions itself as a trusted partner in governance, regulatory compliance, and market communications, leveraging its affiliation with the reputable Euronext group. The platform provides a broad suite of products including IR.Manager, Shareholder Analysis, ESG advisory, and governance tools, targeting corporate clients seeking to optimize their capital market readiness and compliance frameworks. Technically, the website is built on HubSpot CMS, integrating advanced marketing and analytics tools such as Google Analytics, Microsoft Clarity, and Segment, reflecting a mature digital infrastructure with good performance and mobile optimization. Security posture is strong with HTTPS enforced, use of Google reCAPTCHA Enterprise, and cookie consent mechanisms, although explicit security headers and a public security policy are not evident. The absence of WHOIS data for the subdomain is expected and does not detract from the legitimacy of the site, which aligns with the main euronext.com domain. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

C

cyber-Wear Heidelberg GmbH

bahnshop.de

53

bahnshop.de is the official merchandise e-commerce platform for Deutsche Bahn, operated by cyber-Wear Heidelberg GmbH. The website offers a wide range of branded products including collectibles, travel accessories, family and kids items, and other merchandise targeted at Bahn fans, travelers, and families. It holds a strong market position as the official shop for Deutsche Bahn merchandise, leveraging the brand's reputation and customer base. The business model focuses on online retail with customer account management and a comprehensive product catalog. The site is well-branded, consistent, and professionally maintained with a medium-sized operational scale and a founding date around 2014. Technically, the website is built on the Shopware CMS platform, utilizing modern web technologies such as JavaScript, CSS3, and HTML5. It integrates Google Tag Manager and Google Analytics for marketing and analytics purposes, and PayPal Unified for payment processing. Hosting is managed via EuroDNS nameservers, indicating a stable and professional hosting environment. The site demonstrates good mobile optimization, accessibility, and SEO practices, with moderate performance. From a security perspective, the site enforces HTTPS, uses CSRF tokens on forms, and implements cookie consent mechanisms compliant with GDPR. Security headers are present but could be enhanced with additional policies like Content-Security-Policy. No vulnerabilities or exposed sensitive data were detected in the HTML content. However, the site lacks a published security.txt or explicit incident response contact information, which could improve transparency and security posture. Overall, bahnshop.de presents a low-risk profile with strong business credibility, good technical implementation, and solid privacy compliance. Strategic recommendations include publishing a security.txt file, enhancing security headers, and providing incident response contacts to further strengthen trust and security readiness.