Security Directory

C

CLUSTER - Consortium Linking Universities of Science and Technology for Education and Research

cluster.org

66

CLUSTER is a consortium of 12 elite European universities specializing in science and technology education and research. The organization represents a large academic community with thousands of professors, staff, and students. The website serves as an informational hub for students, academic staff, and partners, providing details on programs, initiatives, and consortium activities. The site is built on WordPress with common plugins for SEO and forms, hosted by Gandi SAS, and secured with HTTPS. However, it lacks explicit privacy and cookie policies, and DNSSEC is not enabled, representing minor security gaps. Social media presence is limited to Twitter and LinkedIn, enhancing professional outreach. Overall, the website is professional, content-rich, and trustworthy, but could improve privacy compliance and security hardening.

S

Stichting Belanghebbenden Pietermaai District e.o.

pietermaaidistrict.com

51

Pietermaai District is a hospitality and cultural promotion website focused on the Pietermaai neighborhood in Curaçao. It provides information about local hotels, bars, restaurants, shops, and events, targeting tourists and visitors interested in local culture and nightlife. The website positions itself as a niche promoter of the district's unique offerings, blending history with modern hospitality services. Technically, the site is built on WordPress with a modern plugin ecosystem including Yoast SEO, Slider Revolution, and membership management tools. It uses Google Analytics and Tag Manager for tracking and is hosted on a provider indicated by its nameservers. Security posture is moderate with HTTPS enabled but lacks explicit security headers and privacy compliance documentation. No WAF or blocking mechanisms were detected, and the domain is well-aged and registered with a reputable registrar. Overall, the site is professional and functional but would benefit from enhanced privacy and security policies.

G

Goedhuis

goedhuis.nl

45

Goedhuis is a Dutch company specializing in the innovative construction of affordable, sustainable, and customizable detached homes. They leverage a unique sandwich panel system to build energy-neutral houses faster and more efficiently than traditional builders. The company offers an online configurator for customers to personalize their homes and supports the sales process with a showroom in Hendrik-Ido-Ambacht. Their market position is that of an innovative and transparent builder in the Dutch residential real estate sector, targeting individuals and families seeking modern, energy-efficient homes. Technically, the website is built on WordPress with modern plugins and performance optimizations, including Yoast SEO, Google Analytics, Facebook Pixel, and WP Rocket. The site is mobile-optimized and uses HTTPS with DNSSEC enabled, indicating good security practices. However, there are areas for improvement such as implementing a cookie consent mechanism, adding Content Security Policy headers, and publishing a security.txt file for vulnerability disclosures. Overall, the website is professional, trustworthy, and content-rich, supporting a medium-sized business with a solid digital presence.

2

2R Studio S.r.l.

2rstudio.it

41

2R Studio S.r.l. is a small Italian company specializing in digital solutions tailored for network marketing businesses. Their offerings include software platforms for commission calculations, brand identity creation, e-commerce development, and marketing materials such as presentations and copywriting. The company positions itself as a niche provider supporting network marketing companies with end-to-end digital services. The website is professionally designed using WordPress with modern plugins and demonstrates good mobile responsiveness and SEO optimization. Contact information and company registration details are clearly presented, enhancing business credibility. However, the site lacks explicit privacy and cookie policies, which are important for GDPR compliance given the Italian jurisdiction. Security posture is adequate with HTTPS enforced but could be improved by adding security headers and formal security policies. Overall, the website is trustworthy and functional, serving its target audience effectively.

C

Check Point SASE

perimeter81.com

70

Check Point's SASE subdomain represents a mature cybersecurity business focused on delivering Secure Access Service Edge solutions, formerly branded as Perimeter 81. The website targets enterprise customers seeking unified network security and cloud-based protection. The technical infrastructure is modern, leveraging WordPress CMS with advanced marketing and analytics tools such as Google Tag Manager, Visual Website Optimizer, and Marketo. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is limited by the absence of visible privacy and cookie policies, which should be addressed to meet regulatory standards. Overall, the site reflects a professional and trustworthy brand consistent with Check Point's market position.

A

Anycast.com

anycast.com

60

Anycast.com is a technology-focused website specializing in anycast networking solutions and infrastructure enhancement. The site targets businesses and IT professionals interested in leveraging anycast technology to improve their network performance. The company appears to be established since 1998, indicating a mature presence in the technology sector. The website is built on WordPress using the Divi theme and incorporates SEO best practices via the Yoast plugin. It uses Cloudflare for DNS and likely CDN services, ensuring good availability and security at the network level. Google Analytics and Google Tag Manager are implemented for user tracking and analytics. Security posture is moderate with HTTPS enabled and domain transfer protection active; however, the site lacks advanced security headers and explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. No contact information or incident response details are provided, which could impact user trust and compliance. Overall, the website is professional and well-structured but would benefit from enhanced privacy, security, and compliance disclosures.

N

Nexxiot

nexxiot.com

53

Nexxiot is a Swiss-based TradeTech company specializing in IoT solutions aimed at enhancing operational efficiency in the supply chain, particularly focusing on railcars, shipping containers, and cargo monitoring in real-time. The company positions itself as a pioneer in asset intelligence for rail and intermodal logistics, targeting supply chain operators and logistics companies. Their business model is B2B, providing technology-driven monitoring services to improve supply chain visibility and efficiency. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO for optimization, Cookiebot for GDPR-compliant cookie consent management, and analytics tools such as Google Analytics, Hotjar, and Matomo. The hosting infrastructure leverages Microsoft Azure DNS services, indicating a reliable hosting environment. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms to comply with privacy regulations. However, explicit security headers are not detected, and no published security or incident response policies are found on the site. The use of multiple third-party scripts necessitates regular security audits to mitigate potential vulnerabilities. The WHOIS data is consistent with the business claims, showing a legitimate domain registration without privacy protection, which adds to the trustworthiness. Overall, Nexxiot's website reflects a professional and trustworthy online presence with good privacy compliance and a solid technical foundation. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance their security posture and user trust.

B

Bouncy Castle

bouncycastle.org

54

Bouncy Castle is a well-established provider of open-source cryptographic APIs primarily for Java and C# platforms. The company is recognized for its FIPS-certified cryptographic solutions and support for quantum-ready cryptography, positioning it as a key player in the security software industry. The website reflects a professional and modern digital presence, leveraging WordPress CMS with SEO and performance optimizations. While the technical infrastructure is robust and the site is mobile-optimized, there is a lack of explicit privacy and security policies which could be improved to enhance compliance and user trust. Security posture is generally strong with HTTPS and cookie consent mechanisms, but could benefit from additional security headers and published incident response information. Overall, the domain's WHOIS data is unavailable, which slightly impacts trustworthiness, but the website's content and social media presence support its legitimacy.

A

APELL

apell.info

55

APELL is a European non-profit association founded in 2020 that serves as an umbrella organization for national Open Source business associations across Europe. It focuses on advocacy, representation, and empowerment of Open Source businesses to influence European policy and promote a sovereign, inclusive digital market. The organization maintains partnerships with notable technology companies and has a presence in Brussels to engage with EU institutions. The website is professionally designed, content-rich, and optimized for SEO and accessibility, reflecting a mature digital presence. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and SiteOrigin Panels, with client-side technologies including jQuery. It employs HTTPS with a valid SSL certificate and uses hCaptcha to secure its contact form. However, it lacks DNSSEC and security headers, which are recommended for enhanced security. Analytics are implemented via Google Analytics and Google Tag Manager, with moderate user tracking. From a security perspective, the site demonstrates good practices like HTTPS enforcement and spam protection but could improve by enabling DNSSEC, adding security headers, and publishing explicit security policies. Privacy compliance is partially met with a comprehensive privacy policy but lacks a cookie consent mechanism, which is important for EU regulations. Overall, the website is trustworthy, professional, and well-aligned with its business mission. Strategic recommendations include enhancing DNS security, implementing security headers, adding cookie consent, and publishing incident response information to strengthen security posture and compliance.

B

Blue Bay Golf Resorts NV

bluebay-curacao.com

45

Blue Bay Golf Resorts NV operates the Blue Bay Curaçao Golf & Beach Resort, a luxury hospitality business established in 2009 in Curaçao. The website serves as a digital presence to promote their golf and beach resort services targeting tourists and travelers seeking tropical luxury experiences. The site is built on WordPress with a modern tech stack including Yoast SEO and WPBakery, supported by Cloudflare DNS and multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. While the website demonstrates good design quality, mobile optimization, and SEO practices, it lacks critical privacy and cookie policies, security headers, and incident response information, which impacts its overall security posture and privacy compliance. The domain registration is consistent with the business identity, indicating legitimacy and trustworthiness.

V

Our Manifesto - VoxComm

voxcomm.org

47

VoxComm is a global advocacy organization representing agencies, emphasizing the critical role of commercial creativity in driving business growth. The website articulates a clear manifesto supporting agency value, partnership models, and the integration of technology and AI to enhance creativity. The organization targets agencies, clients, and marketing professionals seeking to optimize agency relationships and procurement practices. Technically, the site is built on WordPress with modern plugins and libraries, hosted by DreamHost, and employs Google Analytics for user tracking. While the site is well-designed and content-rich, it lacks explicit privacy and cookie policies, and no direct contact emails or phone numbers are provided on the homepage. Security posture is adequate with HTTPS enabled but could be improved with additional security headers and published policies. Overall, the domain registration is consistent with the business profile, and no suspicious indicators were found.

O

OmnicomGroup

omnicomgroup.com

71

Omnicom Group is a global leader in marketing communications, providing brand and advertising services to over 5,000 clients across more than 70 countries. The company operates through a network of iconic agency brands focused on delivering data-inspired, creative marketing and sales solutions. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting business clients worldwide. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Analytics, and OneTrust for cookie consent management. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, though explicit security headers and incident response contacts are not evident. The absence of WHOIS registration data is a minor concern but does not detract significantly from the site's legitimacy given the corporate branding and investor relations presence. Overall, the site demonstrates a strong commitment to privacy, user experience, and corporate transparency.

G

Giva Sverige

givasverige.se

62

Giva Sverige is a Swedish non-profit industry association focused on promoting ethical, transparent, and professional governance of charitable organizations funded by donations, grants, and collaborations. Established around 2016, it serves as a standard-setting and educational body for the charitable giving sector in Sweden. The website reflects a professional and consistent brand presence with clear navigation and relevant content for its target audience of non-profit organizations and donors. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Cookiebot for privacy compliance, and integrates Google Tag Manager and various analytics services. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data for the exact domain queried suggests the domain may be a subdomain or alias, which slightly reduces domain registration trustworthiness. Overall, the site is well-structured, privacy-conscious, and trustworthy from a content and business perspective.

N

Next Generation Internet

ngi.eu

66

Next Generation Internet (NGI) is a European Commission initiative dedicated to fostering a vibrant, open internet ecosystem by linking research, policy, and technology for societal benefit. The website serves as a central hub for NGI's activities, including open calls for research and innovation projects, community engagement platforms, and dissemination of innovations and impact stories. It targets researchers, startups, SMEs, policy makers, and the broader technology community interested in advancing internet technologies aligned with European values. Technically, the website is built on a modern WordPress CMS platform, leveraging popular plugins such as Yoast SEO, WPBakery Page Builder, and Matomo for analytics. The site demonstrates good digital maturity with responsive design, accessibility features, and comprehensive SEO optimization. It integrates GDPR-compliant cookie consent mechanisms and uses secure HTTPS connections. From a security perspective, the site employs HTTPS with strong SSL configuration and uses plugins to manage GDPR compliance and cookie consent. While explicit security headers are not fully detailed, no exposed sensitive data or vulnerabilities are evident in the content. The absence of a formal security policy or incident response page suggests room for improvement in transparency and readiness. Overall, NGI.eu presents a professional, trustworthy, and well-maintained web presence consistent with its role as a European Commission initiative. The site effectively communicates its mission and services, supports community interaction, and adheres to privacy and security best practices, making it a reliable resource for its audience.

D

DierenPark Amersfoort

dierenparkamersfoort.nl

58

DierenPark Amersfoort is a well-established Dutch zoo focused on providing adventurous and educational experiences primarily for children and families. The website reflects a strong brand presence with rich multimedia content, event promotions, and detailed animal information. The business model centers on visitor admissions, events, and group bookings, positioning it as a leading family-friendly attraction in the Netherlands. Technically, the site is built on WordPress with a modern stack including SEO and multilingual plugins, and integrates multiple marketing and analytics tools. Security posture is adequate with HTTPS and cookie consent, but lacks DNSSEC and explicit security headers or policies. Privacy compliance is partial, with cookie consent but no visible privacy or terms pages. Overall, the site is professional, trustworthy, and safe for general audiences.

P

Positive Foundry

positivefoundry.com

51

Positive Foundry is a specialized enterprise training company focused on improving employee well-being and organizational culture through science-backed, team-based training programs. The company appears to be a small but established player in the niche market of employee engagement and performance enhancement. The website is built on WordPress, hosted by SiteGround, and integrates marketing and analytics tools such as HubSpot and Google Analytics, indicating a moderate level of digital maturity. While the site is professionally designed and optimized for SEO and mobile use, it lacks critical privacy and cookie policies, which are essential for GDPR compliance and user trust. Security posture is adequate with HTTPS enabled and domain registration protections in place, but could be improved by enabling DNSSEC and publishing security policies and incident response contacts. Overall, the site is legitimate and functional but would benefit from enhanced privacy compliance and security transparency.

H

Huler

huler.io

53

Huler is a technology company founded in 2020, offering a connected workplace platform that integrates digital work life tools, links, and media into a unified SaaS solution. The website positions Huler as a modern digital workplace platform targeting business professionals and organizations seeking productivity and integration solutions. Technically, the website is built on WordPress with popular plugins such as Yoast SEO and Elementor, hosted on Amazon AWS infrastructure, and employs modern analytics and marketing tools including Google Analytics, LinkedIn Insight, and Twitter tracking. The security posture is good with HTTPS enforced and use of Google reCAPTCHA, though it lacks explicit security headers and published security policies. Privacy compliance is limited due to absence of visible privacy and cookie policies. Overall, the website is professional, well-branded, and trustworthy with moderate user tracking and good SEO optimization.

The website portal-vz.cz is an official government portal managed by the Ministry of Regional Development of the Czech Republic (Ministerstvo pro místní rozvoj ČR). It serves as a comprehensive resource for public procurement information, including legislation, methodologies, educational events, news, and links to related government systems. The portal targets public sector entities, suppliers, and stakeholders involved in public procurement processes within the Czech Republic. It holds a strong market position as the authoritative source for public procurement information in the country. Technically, the site is built on WordPress CMS version 5.3.2, utilizing common web technologies such as jQuery, FontAwesome, and Yoast SEO for optimization. The site is moderately performant, mobile-optimized, and includes basic accessibility features. Hosting and domain registration are consistent with the official government entity, with the domain registered since 2006, indicating a mature and stable online presence. From a security perspective, the site enforces HTTPS and uses some security-related plugins but lacks explicit security headers and a published security or incident response policy. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a basic privacy/accessibility statement found but no cookie consent mechanism or GDPR-specific disclosures. Overall, the portal is a trustworthy, professional government resource with good content quality and business credibility. However, improvements in privacy compliance, security policy transparency, and accessibility would enhance its security posture and regulatory adherence.

S

Studium pro vás

studiumprovas.cz

44

Studium pro vás is an educational center affiliated with the Technical and Economic University in České Budějovice (VŠTE), offering a broad range of lifelong learning courses, professional qualifications, and language training tailored to current labor market trends. The website targets students, professionals, and older adults seeking continuing education. The business model focuses on providing accredited and interest-based courses, including specialized offerings such as 3D printing and technical German language courses. The organization positions itself as a regional leader in lifelong education with a clear focus on quality and relevance. Technically, the website is built on WordPress using modern plugins such as Elementor for page building, Yoast SEO for search optimization, and Complianz for GDPR cookie compliance. The site is mobile-optimized and uses Google Analytics for traffic analysis. The infrastructure appears standard for a small to medium educational institution, with moderate performance and good SEO practices. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, with email addresses obfuscated to reduce spam. However, no advanced security headers were detected, and there is no public incident response or security policy documentation. The WHOIS data is unavailable, likely due to privacy protection, but the website's content and contact information indicate legitimacy and trustworthiness. Overall, Studium pro vás presents a professional and trustworthy online presence with good compliance to privacy regulations and a clear educational mission. Strategic improvements in security headers and public security policies would enhance its security posture and trust further.

H

Husité - Ktož jsú boží bojovníci - husitstvi.cz

husitstvi.cz

44

The website husitstvi.cz is a well-established Czech informational and educational platform dedicated to the Hussite period in Czech history. It offers a comprehensive range of content including historical articles, indexes, literature references, galleries, multimedia, and a discussion forum, targeting historians, researchers, students, and enthusiasts. The site is multilingual and has a consistent branding approach with a clear focus on cultural heritage. Technically, it is built on an older WordPress CMS version with common plugins like Yoast SEO and jQuery libraries, hosted by a reputable Czech provider (REG-WEDOS). While the site is functional and moderately optimized for SEO and mobile, it uses outdated software versions which pose security risks. Security posture is moderate with HTTPS usage but lacks modern security headers and explicit privacy or cookie policies, indicating compliance gaps. No contact emails or phone numbers are directly visible, but a contact form page exists. The site integrates Facebook social media but does not use analytics or advertising networks extensively, resulting in minimal user tracking. Overall, the site is trustworthy and safe, with a good content quality score but needs improvements in security and privacy compliance.

P

Pilot Institute

pilotinstitute.com

62

Pilot Institute is a reputable online education provider specializing in aviation training, including drone and airplane pilot certification courses. Established in 2019, it has grown to serve over 250,000 students with a strong market presence supported by positive reviews and a 4.9-star rating. The company offers expert-designed curriculums aimed at helping students pass FAA exams and achieve pilot licenses. Their business model centers on online course enrollment and learning management systems, targeting individuals seeking pilot certification and drone business skills. Technically, the website is built on WordPress with modern SEO and tracking tools such as Yoast SEO, Google Tag Manager, and Facebook SDK. The site is mobile-optimized, accessible, and performs moderately well. Security is solid with HTTPS enabled and no exposed sensitive data, though it lacks some advanced security headers and published security policies. Privacy compliance is partial, with a clear privacy policy but no cookie consent mechanism. Overall, the security posture is good but could be improved by implementing security headers, incident response disclosures, and cookie consent. The domain WHOIS data is consistent with the business claims, showing transparency and legitimacy. The website is safe for general audiences, with no adult or questionable content detected. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving privacy compliance mechanisms.

S

Scouternas folkhögskola

scouternasfolkhogskola.se

41

Scouternas folkhögskola is a Swedish folk high school affiliated with the national scouting organization, offering leadership and scout-related education primarily through digital and distance learning formats. The institution targets individuals interested in personal development, leadership skills, and scouting education, positioning itself as a specialized non-profit educational provider within Sweden. The website reflects a professional and consistent brand image with clear communication of courses, contact information, and social media engagement. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and structured content. Security posture is solid with HTTPS and privacy compliance measures such as cookie consent and a detailed privacy policy, though explicit security headers and incident response information are not publicly disclosed. The WHOIS data for the exact www subdomain is unavailable, likely due to querying the full subdomain rather than the base domain, but the overall legitimacy is supported by consistent branding and partner domain relationships. Overall, the site demonstrates a mature digital presence suitable for its educational mission, with room for enhanced security transparency and technical improvements.

M

Machine Learning & Artificial Intelligence Technology Hub (MATH)

mat-hub.ai

43

The Machine Learning & Artificial Intelligence Technology Hub (MATH) is a government-supported center of excellence based in Hyderabad, India, focused on advancing AI and ML innovation. It operates within the T-Hub innovation ecosystem and is supported by the Department of Science and Technology (DST). The website presents a professional and well-structured digital presence showcasing various offerings including labs, co-working spaces, educational programs, data resources, and events aimed at AI startups, researchers, and industry stakeholders. Technically, the site is built on WordPress with modern plugins and analytics integrations, offering good performance and mobile optimization. Security posture is adequate with HTTPS and no visible vulnerabilities, though it lacks explicit security headers and detailed privacy or incident response policies. The domain WHOIS data is privacy protected, which is reasonable for this type of entity. Overall, the site demonstrates high business credibility and trustworthiness but could improve privacy compliance and security transparency.

T

Threespot

threespot.com

70

Threespot is a well-established interactive agency specializing in creative strategy, design, and digital platform development primarily serving non-profit and socially impactful organizations. The company emphasizes meaningful change and has been operating since 1999, with a strong market position supported by its Certified B Corp status. Their website showcases a professional design, detailed case studies, and a commitment to social causes, targeting clients who want to make a difference rather than just profit. Technically, the site is built on WordPress with modern tools such as Google Analytics, Tag Manager, and reCAPTCHA, indicating a mature digital infrastructure. However, the absence of WHOIS registration data raises questions about domain registration legitimacy, although the website content and branding strongly suggest a legitimate business. Security posture is good with HTTPS and secure form handling, but lacks some security headers and explicit privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and compliance documentation.

E

Eric Frank Trust

ericfranktrust.org.uk

58

The Eric Frank Trust is a small UK-based non-profit organization dedicated to supporting the development of young people, particularly through leadership development within Scouting and related projects. The organization provides grants to support leadership initiatives and occasionally supports research in this domain. The website is built on WordPress using the Enfold theme and Yoast SEO plugin, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and uses HTTPS with basic security measures such as anti-clickjacking scripts. However, it lacks visible privacy and cookie policies, security headers, and incident response information, which are areas for improvement. The WHOIS data is unavailable due to domain naming rules, but the website content and contact details appear legitimate and consistent with a small non-profit entity.

V

Vysoká škola technická a ekonomická v Českých Budějovicích

vstecb.cz

53

Vysoká škola technická a ekonomická v Českých Budějovicích (VŠTE) is a public higher education institution located in the Czech Republic, specializing in technical and economic disciplines. The university distinguishes itself by a strong emphasis on practical education, offering accredited bachelor and master degree programs. It serves students primarily from the Czech Republic and international students through exchange programs. The institution maintains a medium-sized presence with various subsidiaries including a basic and nursery school, sports clubs, and student organizations. The website reflects a professional and well-structured digital presence with comprehensive information about academic programs, admissions, and student services. Technically, the website is built on WordPress CMS with modern plugins such as Yoast SEO, WPBakery Page Builder, and Cookiebot for cookie consent management. It uses Bootstrap for responsive design and integrates Google Analytics and Facebook Pixel for analytics and marketing. The site is mobile-optimized and accessible, with clear navigation and ARIA attributes enhancing usability. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security headers and a public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain registration trust verification, but the website content and official contact details support legitimacy. Overall, VŠTE's website is a reliable and professional digital asset supporting its educational mission. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and compliance. The site is safe for general audiences with no adult or questionable content detected.

K

KW-Software AG

kw-software.ch

48

KW-Software AG is a Swiss technology company specializing in software development and IT services, primarily targeting church organizations across Switzerland with their flagship product KiKartei, a church member management system trusted by over 1000 customers. The company also offers CRM, time tracking, document management, and website services. Their market position is that of a niche, established provider with a focused customer base. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO and Google Fonts, and integrates Zendesk for customer support. The site is well-structured, mobile-optimized, and employs modern web standards. Security posture is solid with HTTPS, security headers, and no visible vulnerabilities, though dedicated security and incident response policies are not publicly disclosed. Overall, the website reflects a professional and trustworthy business with good digital maturity. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure mechanisms to enhance trust and compliance.

K

KW-Software AG

kikartei.ch

51

KW-Software AG operates the KiKartei.ch website, providing specialized church administration software tailored for Swiss parishes and pastoral organizations. With over 20 years of experience and more than 1000 customers, the company holds a strong position in the niche market of church software solutions. Their offerings include a core software module, mobile app K!Mobil, and various additional modules, supported by training and customer service. The website is professionally designed using WordPress and modern plugins, hosted securely in a Swiss high-security data center, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and no evident vulnerabilities, though explicit security headers and privacy policies are lacking. Overall, the site is trustworthy and well-positioned but would benefit from enhanced privacy compliance and incident response disclosures.

L

LUMI consortium

lumi-supercomputer.eu

70

The LUMI website represents a large-scale European supercomputing consortium providing high-performance computing resources and AI services to researchers and industry. The site is well-structured, professionally designed, and targets a technical audience involved in HPC and AI innovation. The technical infrastructure is based on WordPress with modern plugins and frameworks, ensuring good performance and mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers could be improved. Privacy compliance is well addressed with a comprehensive cookie policy and privacy page. The absence of terms of service and security policy pages is noted but does not critically impact trust. Overall, the website reflects a credible and mature digital presence aligned with its business goals.

S

Sternenglanz

sternenglanz.ch

54

Sternenglanz is a small media entity focused on producing spiritual podcast and blog content primarily for the Swiss Ostschweiz region. It is affiliated with the Roman Catholic and Evangelical Reformed churches of St.Gallen and Appenzell, providing spiritual inspiration and biblical impulses through regular podcast episodes and blog posts. The website is professionally designed using WordPress and modern web technologies, offering a good user experience with clear navigation and mobile optimization. The technical infrastructure includes common WordPress plugins such as Yoast SEO, Contact Form 7, and MailPoet for newsletter management. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could improve defenses. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Contact information is transparent and includes a company email and phone number. Overall, the site is trustworthy, safe, and well-maintained, serving a niche spiritual audience effectively.

C

Cevi Region Basel

cevibasel.ch

49

Cevi Region Basel is a well-established Christian non-profit organization focused on children, youth, and adult community work in the Basel region of Switzerland. Founded in 1889, it offers a wide range of programs including youth camps, sports activities, educational courses, and community events. The organization maintains a strong regional presence with a professional website that effectively communicates its mission and services. The site is supported by certifications such as ZEWO, enhancing its trustworthiness. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Slider Revolution, and Google Analytics. It demonstrates good digital maturity with responsive design, SEO optimization, and integration of security features like HTTPS and Google reCAPTCHA. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS, uses reCAPTCHA to protect forms, and provides cookie consent mechanisms aligned with GDPR. However, it lacks explicit security policies and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a non-profit organization. Overall, Cevi Region Basel presents a low-risk profile with strong business credibility and compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility to further strengthen its digital presence and trust.

L

Lesy České republiky, s. p.

lesy-cr.cz

66

Lesy České republiky, s. p. is a large state-owned forestry enterprise in the Czech Republic responsible for managing over 1.2 million hectares of state forest land and extensive watercourses. The organization provides forestry management, timber sales, watercourse maintenance, public education, and hunting lease services. It operates under the Ministry of Agriculture and maintains a strong presence through multiple digital channels and public outreach programs. The website reflects a professional and comprehensive digital presence with clear navigation and relevant content for both the general public and professional stakeholders. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Facebook Pixel. Hosting is supported by Microsoft Azure DNS infrastructure, ensuring reliable performance and availability. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms compliant with GDPR. It integrates security monitoring tools but lacks explicit security headers and a public vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the organization's identity and history, supporting high legitimacy and trust. Overall, Lesy České republiky, s. p. maintains a secure, compliant, and user-friendly online presence appropriate for a government entity. Strategic improvements could focus on enhancing security headers, publishing incident response contacts, and formalizing vulnerability disclosure to further strengthen trust and resilience.

B

BALTRO Sp. z o.o.

baltro.pl

55

BALTRO Sp. z o.o. is a specialized manufacturing company focused on surface treatment and mechanical production, particularly using fluoropolymer coatings and thermoshrinkable sleeves. The company serves industrial clients primarily in Poland and neighboring countries, offering durable and chemically resistant solutions for production lines. The website reflects a mature digital presence built on WordPress with modern SEO and analytics integrations. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements in security headers and explicit policies could be made. Overall, the domain registration and website content are consistent and trustworthy, supporting a positive business reputation.

K

Kabelovna Děčín Podmokly, s.r.o.

kabelovna.cz

49

Kabelovna Děčín Podmokly, s.r.o. is a well-established Czech manufacturer specializing in optical and metallic cables, with a history dating back to 1909. The company is part of the Wilms Group and positions itself as a technologically advanced European cable producer offering customized cable solutions. Their website reflects a professional business presence with detailed product categories, certifications, and active social media engagement. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile responsiveness. The presence of structured data and cookie consent mechanisms indicates a mature digital infrastructure. Security posture is solid with HTTPS and privacy compliance, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data is a notable gap, impacting domain trustworthiness. However, the overall site content, certifications, and contact information support the legitimacy of the business. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure and incident response details, and verifying domain registration information to improve trust and compliance.

M

Moravskoslezské Investice a Development, a.s.

poho2030.cz

54

POHO2030.cz is the official website for a regional transformational program focused on revitalizing the Pohornická landscape in the Karviná region of the Czech Republic. Coordinated by Moravskoslezské Investice a Development, a.s. (MSID), the program addresses the socio-economic transition following the closure of coal mines. The website provides detailed information about projects, events, and partners involved in this regional development initiative. The target audience includes local residents, investors, government entities, and cultural organizations. Technically, the site is built on WordPress with modern front-end libraries such as Swiper.js and Lottie animations, ensuring a visually engaging and mobile-optimized experience. However, it lacks visible privacy and cookie policies, which impacts compliance scores. Security posture is good with HTTPS enforced, but security headers are not evident. No forms or data collection mechanisms are present on the homepage, reducing immediate privacy risks. Overall, the site is professional, trustworthy, and serves as an effective communication platform for the regional development program.

T

Tritia

egtctritia.eu

45

EGTC TRITIA is a government/non-profit organization focused on cross-border regional cooperation among Poland, Slovakia, and the Czech Republic. Founded in 2013, it supports projects related to social services, education for children with disabilities, demographic challenges, and regional development. The website reflects a professional and consistent brand presence with clear contact information and multilingual support. Technically, the site is built on WordPress with modern plugins for SEO, GDPR compliance, and user experience enhancements. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and well-positioned to serve its target audience of regional authorities and social institutions.

S

SilesiaKultura.pl

silesiakultura.pl

39

SilesiaKultura.pl is a Polish cultural media website established in 2002, focusing on a wide range of cultural topics including film, music, visual arts, theater, literature, folklore, and more. It serves a niche audience interested in regional and national cultural events and news. The website is built on WordPress and leverages popular plugins such as Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity. Google Analytics is integrated for visitor tracking, but privacy and cookie policies are not explicitly presented, which is a compliance gap. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and DNSSEC is not enabled. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

A

Apty

apty.io

67

Apty is an AI-powered digital adoption platform focused on accelerating business processes by reducing onboarding time, minimizing errors, and maximizing ROI. The company targets enterprise clients seeking to enhance digital adoption through advanced AI capabilities. The website is built on WordPress with modern plugins and technologies, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protections, but lacks published security policies and vulnerability disclosures. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site presents a professional and trustworthy business presence with room for improvement in privacy and security transparency.

V

VINCI Energies

vinci-energies.ch

76

VINCI Energies Switzerland is a prominent corporate entity specializing in accelerating the energy transition and digital transformation. As part of the global VINCI S.A. group, it offers a broad range of services including consulting, engineering, project management, and operation of electrical and telecommunication infrastructures. The company targets business and industrial clients seeking sustainable and innovative energy and digital solutions. The website reflects a mature digital presence with comprehensive content, consistent branding, and clear navigation tailored to professional audiences. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and GDPR cookie consent tools, leveraging Matomo for privacy-conscious analytics. The infrastructure supports good performance, mobile optimization, and accessibility. Security best practices are observed with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly detailed. Overall, the security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear policies and consent mechanisms. The domain registration aligns with the corporate identity, reinforcing legitimacy. The site maintains high professionalism and trustworthiness, suitable for its enterprise audience. Strategic recommendations include publishing explicit security and incident response policies, adding vulnerability disclosure information, and enhancing direct contact details for security and support to further strengthen trust and compliance.

Q

QuickFrame

quickframe.com

61

QuickFrame operates a sophisticated video creation and insights marketplace platform that connects brands with vetted video professionals to produce high-quality video content across multiple styles and objectives. The company has established itself as a trusted partner with preferred partnerships with major digital advertising platforms such as Meta, LinkedIn, TikTok, and MNTN. Their platform supports end-to-end video production workflows including concept development, bid management, collaboration, and final delivery. Technically, the website is built on WordPress and leverages a modern tech stack with extensive analytics and marketing integrations, hosted on AWS infrastructure. The site is well-optimized for SEO, mobile, and accessibility, reflecting a mature digital presence. Security posture is solid with HTTPS and domain protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, QuickFrame presents a professional, trustworthy, and business-focused online presence with room for minor security and privacy enhancements.

F

FAKTOR VIER

faktorvier.ch

58

FAKTOR VIER is a small, professional web agency based in Luzern, Switzerland, specializing in WordPress and WooCommerce development for custom websites and online shops. The company positions itself as a local expert with a focus on delivering tailored digital solutions to businesses and individuals seeking e-commerce and website services. The website reflects a good level of digital maturity, leveraging modern technologies such as WordPress, WooCommerce, Yoast SEO, and Font Awesome Pro icons, alongside cookie consent mechanisms to comply with privacy regulations. The technical infrastructure is sound, with moderate performance and good mobile optimization, although hosting details are not explicitly disclosed. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of security headers and explicit security policies indicates room for improvement. Privacy compliance is partial due to the lack of a published privacy policy and terms of service, which are critical for GDPR adherence. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and security documentation to strengthen compliance and user trust.

M

Moravskoslezské Investice a Development, a.s.

msid.cz

53

Moravskoslezské Investice a Development, a.s. (MSID) operates as a regional development agency focused on the Moravskoslezský kraj in the Czech Republic. The company aims to foster regional growth by supporting municipalities, businesses, and environmental initiatives. Their services include investment facilitation, marketing the region, environmental support, and managing land offers. The website is professionally designed, content-rich, and targets regional stakeholders including local governments, investors, and residents. The business model centers on regional development and sustainability, positioning MSID as a key player in the local government and real estate sectors. Technically, the website is built on WordPress with modern front-end technologies such as Tailwind CSS, Swiper.js, and DotLottie animations. SEO is well implemented with Yoast SEO plugin and structured data. The site is mobile optimized and uses analytics tools like Microsoft Clarity and Google Tag Manager. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS and uses secure forms with consent checkboxes for newsletter subscriptions. However, it lacks visible security headers and cookie consent mechanisms, which are recommended for enhanced compliance and protection. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the website content and business information appear legitimate and consistent. Overall, MSID's website demonstrates a mature digital presence with strong business credibility and good technical implementation. Strategic improvements in privacy compliance and security headers would further strengthen their security posture and trustworthiness.

K

KOH-I-NOOR Mlada Vozice

kohinoor.cz

56

KOH-I-NOOR Mlada Vozice is an established manufacturing company specializing in aerosol valves and plastic accessories, with a history spanning 75 years. The company offers project concept, design, and testing services, targeting industrial clients and manufacturers in the aerosol product sector. Their market position is that of a reputable and experienced manufacturer based in the Czech Republic. Technically, the website is built on WordPress using modern plugins such as Elementor and WooCommerce, supported by Google Tag Manager for analytics. The site demonstrates good design quality, mobile optimization, and SEO practices, although some accessibility features are basic. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

S

SEO Media

seomedia.lv

54

SEO Media is a Latvian digital marketing agency specializing in SEO, web development, PPC management, advertising media, and content creation services. The company targets businesses seeking to improve their online visibility and organic search results. The website is professionally designed, mobile-optimized, and provides clear navigation and service descriptions. Technically, the site runs on WordPress with popular plugins such as Yoast SEO and KingComposer, and uses Cloudflare for DNS and likely CDN services. Analytics and marketing tools include Google Analytics and Facebook Pixel, with GDPR-compliant cookie consent mechanisms in place. Security posture is good with HTTPS and IP anonymization, but lacks explicit security headers and public security policies. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website is trustworthy, well-maintained, and compliant with privacy regulations.

F

Federace nábytkových bank a reuse center

reusefederace.cz

48

Federace nábytkových bank a reuse center is a Czech non-profit federation uniting furniture banks and reuse centers across the Czech Republic. The organization focuses on environmental sustainability by promoting reuse as an alternative to waste disposal. Their services include networking reuse operators, providing expert consultation for new reuse centers, organizing training, and fostering partnerships with public and private sectors. The website is professionally designed, content-rich, and optimized for SEO, targeting reuse operators, NGOs, public administration, and the general public interested in sustainability. Technically, the site runs on WordPress with modern plugins and supports HTTPS with secure form handling. However, the absence of WHOIS data and cookie consent mechanisms slightly reduce trust and privacy compliance scores. Overall, the site demonstrates a strong commitment to its mission with good digital maturity and security posture.

F

Flight Safety Foundation

flightsafety.org

55

Flight Safety Foundation is a well-established, independent non-profit organization dedicated to advancing aviation safety globally through research, education, advocacy, and publishing. With over 80 years of history, it holds a strong market position as a trusted leader in the aviation safety sector, serving aviation professionals and stakeholders worldwide. The website reflects this professionalism with comprehensive content, clear navigation, and a consistent brand presence supported by partnerships with major aviation and aerospace companies. Technically, the website is built on WordPress using modern plugins and frameworks such as Elementor and Yoast SEO. It leverages Amazon AWS for hosting and integrates Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and uses domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a gap. Contact information is clearly provided, enhancing business credibility. Overall, the website is secure, professional, and trustworthy, with minor improvements recommended in security headers, DNS security, and privacy consent mechanisms to further strengthen its posture.

B

Blaues Kreuz Schweiz

blaueskreuz.info

49

Blaues Kreuz Schweiz is a Swiss non-profit organization dedicated to providing comprehensive information and support related to alcohol consumption and addiction. Their website offers a variety of resources including online tests, help offers, educational content, and testimonials aimed at affected individuals, their families, and interested parties. The organization maintains a professional online presence with clear contact information and social media engagement, reinforcing its credibility in the addiction support sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and uses both Google Analytics and Matomo for analytics, balancing functionality with privacy considerations. The site is well-optimized for mobile devices, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS enforced and privacy-conscious analytics, but lacks explicit security headers and incident response contact details. The WHOIS data for the domain is malformed and unavailable, which limits domain registration trust analysis. Despite this, the website content and professional presentation suggest legitimacy. No WAF or blocking mechanisms were detected, and the site is fully accessible. The content is mature audience appropriate, focusing on alcohol and addiction education without any explicit adult content. Overall, Blaues Kreuz Schweiz presents a trustworthy and professional resource in its domain, with room for improvement in security policy transparency and WHOIS data clarity.

E

ETAVIS

etavis.ch

75

ETAVIS is a leading Swiss and Liechtenstein-based company specializing in high-quality electrical engineering and automation solutions. The company serves both business and private customers with tailored services including electrical installations, communication, building automation, energy efficiency, and renewable energy solutions such as solar systems and e-mobility infrastructure. ETAVIS is part of the VINCI Energies group, reinforcing its market position and operational scale. The website reflects a professional and regionally focused business model with strong branding and comprehensive service offerings.

B

Boomy Web Company

boomy.co.uk

62

Boomy Web Company is a small UK-based web design and marketing agency specializing in custom WordPress websites, eCommerce solutions, and digital marketing services. The company targets businesses and individuals seeking modern, mobile-responsive, and Google-friendly websites, primarily serving the Newport and Shropshire areas. Their market position is that of a local specialist with a focus on quality and customer experience. Technically, the website is built on WordPress using the Genesis Framework and Yoast SEO plugin, incorporating modern JavaScript libraries such as jQuery and ScrollMagic. The site is mobile-optimized and demonstrates good SEO practices, though performance is moderate. HTTPS is properly configured, but some security headers are missing, and there is no cookie consent mechanism, which impacts privacy compliance. From a security perspective, the site shows a solid baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. However, the absence of security policies, incident response information, and terms of service pages indicates room for improvement in governance and compliance. The WHOIS lookup failed due to domain naming issues, which slightly reduces trustworthiness but does not negate the legitimacy of the business as evidenced by the professional website. Overall, Boomy presents a professional and trustworthy web presence with minor gaps in privacy compliance and security best practices. Strategic improvements in cookie consent, security headers, and publishing governance documents would enhance their security posture and compliance standing.

E

Energie Pool Schweiz AG

energie-pool.ch

55

Energie Pool Schweiz AG is an independent energy solutions provider based in Switzerland, specializing in photovoltaic contracting, energy optimization, and digital electricity market services. The company targets business clients seeking sustainable and optimized energy solutions. The website is built on WordPress using the Divi theme, enhanced with SEO and GDPR compliance plugins, indicating a moderate level of digital maturity and technical infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing comprehensive privacy and security policies. Overall, the website presents a professional and trustworthy image aligned with its business sector.