Security Directory

N

New York Vendée 2024 | Le site officiel

newyorkvendee.org

65

The New York Vendée 2024 website serves as the official platform for the New York Vendée sailing race, a key qualifier event for the prestigious Vendée Globe. The site provides comprehensive race information, skipper profiles, rankings, and media content targeted at sailing enthusiasts and participants. It maintains consistent branding aligned with the Vendée Globe ecosystem and features multilingual support (French and English). Technically, the site is built on a modern stack including Alpine.js and Swiper.js, likely powered by Drupal CMS, and integrates Matomo analytics for user tracking. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacks visible security headers and published privacy or terms of service policies. The WHOIS data is unavailable due to malformed queries, limiting domain registration transparency. Overall, the site is professional, content-rich, and trustworthy but would benefit from enhanced privacy disclosures and security headers to improve compliance and security posture.

podcaster.de is a well-established German podcast hosting platform founded in 2007, serving over 10,000 customers primarily in the DACH region. The company offers a comprehensive suite of podcast hosting services including distribution, web player customization, monetization, and detailed analytics. Their business model is subscription-based with flexible packages and additional storage options. The website demonstrates a high level of professionalism, clear navigation, and strong branding consistency, positioning podcaster.de as a trusted player in the podcast hosting industry. Technically, the website employs modern web technologies including Matomo for privacy-conscious analytics, responsive design, and secure cookie management. Hosting is provided via INWX, a German provider, aligning with their emphasis on data protection and GDPR compliance. Performance and mobile optimization are excellent, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and implements secure cookie practices. However, it lacks visible security headers and a published security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, podcaster.de presents a low-risk profile with a mature domain, consistent WHOIS data, and a trustworthy business presence. Strategic recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and security posture.

D

Delius Klasing Verlag

pf-magazin.de

50

PORSCHE FAHRER Magazin is a specialized automotive media outlet focused on Porsche enthusiasts, offering news, reports, technical tests, and lifestyle content. It operates under the Delius Klasing Verlag umbrella, a reputable German publishing company. The website demonstrates a mature digital presence with a modern WordPress CMS, responsive design, and comprehensive SEO and structured data implementations. It offers subscription services, an online shop, and a newsletter, targeting Porsche fans primarily in Germany. The technical infrastructure includes popular libraries and analytics tools, ensuring good performance and user experience. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Privacy policies are comprehensive and GDPR compliant, reflecting good data protection practices. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

E

Expert:innen für Arbeitsplatzkultur

greatplacetowork.ch

50

The website 'greatplacetowork.ch' represents a Swiss-based organization specializing in workplace culture consulting, employee experience measurement, and certification services under the Great Place To Work® brand. It targets organizations aiming to improve their internal culture and employee satisfaction. The site is multilingual, primarily in German, with French and English support, and uses a modern WordPress-based technical infrastructure with WooCommerce and Elementor for content management and e-commerce capabilities. The presence of structured data and SEO plugins indicates a focus on discoverability and professional presentation. Security-wise, the site uses HTTPS and includes several third-party analytics and marketing scripts, but lacks visible security headers and explicit security or privacy policies. No contact emails or phone numbers were found in the visible content, which may impact user trust and compliance. Overall, the site is professional and functional but could improve in privacy compliance and security transparency.

BerufsbildungPlus.ch is a Swiss government-backed platform operated by the Staatssekretariat für Bildung, Forschung und Innovation (SBFI) to promote vocational education and training for adults and youth. The website serves as an informational and community hub, providing resources, news, and engagement opportunities related to apprenticeships and vocational pathways in Switzerland. It holds a strong market position as an official government initiative with clear branding and trust signals. Technically, the website uses a modern JavaScript stack including jQuery, Modernizr, and the Foundation framework, with Matomo analytics hosted on a Swiss domain, reflecting a privacy-conscious approach. The site is mobile optimized and well-structured, though some accessibility features could be improved. Performance is moderate with good SEO practices. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not provide explicit security policies or incident response information. No vulnerability disclosure or security.txt file is present. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and professional with a solid business credibility score. Recommendations include enhancing security headers, implementing cookie consent, and publishing security and incident response policies to improve compliance and security posture.

The website www.bremen.de serves as the official city portal for Bremen, Germany, providing comprehensive information on events, culture, tourism, and local services. Operated by WFB Wirtschaftsförderung Bremen GmbH, it targets residents and visitors seeking timely and relevant city information. The portal is well-positioned as a trusted government resource with a strong focus on accessibility and inclusivity. Technically, the site employs modern web technologies including Vue.js, Matomo analytics, and Cookiebot for privacy compliance, hosted likely behind Cloudflare for performance and security. The site demonstrates excellent design quality, mobile optimization, and clear navigation, enhancing user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is highly trustworthy and professionally maintained, with minimal tracking and good privacy practices.

N

netplusFR SA

netplusfr.ch

59

netplusFR SA is a regional telecommunications provider based in Switzerland, specializing in internet, fixed and mobile telephony, and television services. The company targets residential and business customers primarily in the Fribourg canton, offering combined multimedia packages with competitive speeds up to 10 Gbit/s via fiber optic technology. The website reflects a professional and customer-focused approach with clear service offerings, local physical presence, and customer testimonials enhancing trust. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, integrating modern JavaScript libraries such as Swiper.js and Google reCAPTCHA v3 for security. Analytics are implemented via Matomo, Google Analytics, and Metricool, with cookie consent managed through tarteaucitron.js, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though accessibility features could be improved. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses CAPTCHA to protect forms. However, it lacks a dedicated security policy or incident response contact details, which could be enhanced to improve transparency and readiness. No vulnerabilities or suspicious activities were detected in the content or scripts. Overall, netplusFR SA presents a trustworthy and well-maintained online presence suitable for its regional telecommunications business. Strategic recommendations include publishing explicit security policies, establishing a vulnerability disclosure program, and enhancing accessibility to further strengthen compliance and user trust.

S

SPERLI

sperli.de

54

SPERLI operates a well-established e-commerce platform specializing in seeds and gardening products, with a history dating back to 1788. The website targets both retail consumers and B2B customers, offering a broad range of products including BIO seeds, vegetable seeds, flower bulbs, and lawn care products. The company positions itself as a trusted and traditional supplier in the gardening sector within Germany. Technically, the website leverages modern technologies such as Shopware 6, Google Tag Manager, Matomo Analytics, and Algolia search, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements bot protection via Friendly Captcha, but lacks explicit security policies and vulnerability disclosure information. Privacy compliance is partially addressed through cookie consent mechanisms, though no explicit privacy or terms of service documents were found in the provided content. Overall, the website is trustworthy, secure, and professionally maintained, but could improve transparency around privacy and security policies.

Scheurich GmbH & Co. KG is a well-established German manufacturer and market leader in indoor and outdoor planters, with a history spanning over 90 years. The company emphasizes innovation, quality, and sustainable production, targeting consumers and retailers interested in home decoration and gardening products. Their business model focuses on manufacturing ceramic and plastic planters, supported by an online shop and extensive product range. The website reflects a professional and consistent brand image with clear navigation and multilingual support.

B

Bruno Nebelung GmbH

nebelung.de

56

Bruno Nebelung GmbH is a traditional German company established in 1925, specializing in supplying high-quality horticultural products such as seeds, microgreens, lawn and soil treatments, flower bulbs, and merchandising displays. The company operates a B2B e-commerce platform targeting business customers and garden professionals. The website is built on the Shopware CMS platform and incorporates modern technologies including Matomo analytics and Friendly Captcha for bot protection. While the site demonstrates good technical implementation and user experience, it lacks explicit privacy and cookie policies, as well as visible contact information, which are important for compliance and trust. Security posture is solid with HTTPS and captcha usage, but could be improved with additional security headers and published incident response information. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact channels.

K

Kiepenkerl

kiepenkerl.de

52

Kiepenkerl operates a professional e-commerce platform specializing in seeds, flower bulbs, plants, and related gardening products. The website targets both retail consumers and B2B customers, positioning itself as a premium brand within the German gardening market. The platform offers a broad range of product categories and supports customer engagement through structured navigation and search capabilities. Technically, the website is built on a modern e-commerce framework (Shopware 6) and integrates multiple analytics and marketing tools such as Matomo, Google Tag Manager, and Facebook Pixel. The site is hosted on servers associated with kasserver.com and uses HTTPS with a good SSL configuration. Security measures include the use of Friendly Captcha to mitigate bot activity and a cookie consent mechanism to comply with basic privacy requirements. However, explicit privacy policies, terms of service, and contact information are not found in the provided content, which limits full compliance and trust transparency. Overall, the website demonstrates a solid technical foundation and business credibility but would benefit from enhanced privacy disclosures and security header implementations.

E

Europäischer Fonds für regionale Entwicklung Bremen

efre-bremen.de

60

The website www.efre-bremen.de serves as the official platform for the European Regional Development Fund (EFRE) in Bremen, Germany. It provides comprehensive information about funding programs for the periods 2014-2020 and 2021-2027, project examples, news, and contact options. The site targets entrepreneurs, startups, research institutions, and public sector entities interested in regional development funding. It acts as a government-funded informational and support portal, positioning itself as an authoritative source for EFRE-related activities in the Bremen region. Technically, the website is built on the SixCMS content management system, hosted by hosting.de, and uses modern web technologies including HTML5, CSS3, and JavaScript. It integrates Matomo analytics configured to respect user privacy by disabling cookies and honoring DoNotTrack. The site is mobile-optimized and accessible, with good SEO practices and clear navigation. However, some security headers are missing, and no cookie consent mechanism is present despite the use of analytics. From a security perspective, the site enforces HTTPS and uses secure login forms with CSRF tokens. No vulnerabilities or exposed sensitive data were detected. The absence of security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security transparency and compliance. The WHOIS data aligns with the hosting provider and website content, indicating a legitimate and consistent domain registration. Overall, the website demonstrates a solid business credibility and technical foundation with good content quality and user experience. Strategic recommendations include implementing additional security headers, publishing security and incident response policies, and adding cookie consent mechanisms to enhance privacy compliance and user trust.

B

BAB - Die Förderbank für Bremen und Bremerhaven

bab-bremen.de

60

BAB - Die Förderbank für Bremen und Bremerhaven is a regional development bank supporting public and private investments in the Bremen and Bremerhaven regions. It offers a range of financial products including grants, loans, participations, and guarantees to foster economic growth, housing development, and innovation. The institution partners closely with local economic development agencies BIS and WFB, positioning itself as a key player in regional economic strengthening and sustainability initiatives. The website reflects a professional and well-structured digital presence with clear navigation, accessibility features, and comprehensive information about funding programs and events. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and FontAwesome, and is likely powered by a specialized CMS tailored for regional government entities. The site is mobile-optimized, accessible, and includes privacy-conscious analytics via Matomo without cookies. Security posture is solid with HTTPS enforced and secure form handling, though some security headers are missing and no explicit security policy or incident response contacts are published. Overall, the website demonstrates a mature digital infrastructure suitable for a public financial institution, with strong compliance to GDPR and privacy standards. The presence of certifications and partner logos enhances trustworthiness. No critical vulnerabilities or suspicious elements were detected, and the content is safe for general audiences. Strategically, BAB should consider publishing a formal security policy and incident response contacts to further enhance transparency and trust. Additionally, implementing recommended security headers would strengthen defense-in-depth. The current digital maturity supports BAB's mission effectively, but ongoing security and compliance improvements are advisable.

S

Stockholm Business Region AB

visitstockholm.se

51

Visit Stockholm, operated by Stockholm Business Region AB, serves as the official tourism guide for Stockholm, Sweden. The website provides comprehensive information on events, restaurants, cultural activities, and travel tips aimed at tourists and visitors. It holds a strong market position as the authoritative source for Stockholm tourism, offering curated content and personalized guides. The business model focuses on promoting the city to increase visitor engagement and tourism revenue. Technically, the website is built on modern frameworks such as Next.js and React, ensuring fast performance, mobile optimization, and good SEO practices. The use of Matomo Analytics and CookieTractor indicates a commitment to privacy-aware user tracking. Security posture is adequate with HTTPS and cookie consent mechanisms, though the absence of explicit security headers and incident response policies suggests room for improvement. Overall, the site is professional, trustworthy, and well-maintained, with clear contact information and official branding. Recommendations include enhancing security headers, publishing a security policy, and maintaining regular audits of third-party scripts to strengthen security and compliance.

U

UBIQ AG

ubiq.swiss

49

UBIQ AG is a Swiss-based small design agency specializing in web design, graphic design, brand design, product design, and webshop development. The company showcases a portfolio of projects for various clients, indicating a focus on regional business customers seeking professional digital and creative services. The website is built on Joomla CMS and employs a modern JavaScript technology stack including jQuery, Swiper, and Matomo analytics, reflecting a moderate level of digital maturity. While the site design and user experience are good, there is room for improvement in accessibility and SEO optimization. Security posture is moderate; HTTPS is used, but no DNSSEC or security headers are detected, and privacy compliance is lacking due to absence of privacy and cookie policies. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website is professional but could enhance trust and compliance by adding privacy policies, security headers, and contact information.

D

Deutsches Jugendherbergswerk (DJH)

jugendherberge.de

69

The website www.jugendherberge.de represents the Deutsches Jugendherbergswerk (DJH), a large and established non-profit organization operating a network of approximately 400 youth hostels across Germany. The site targets families, school groups, youth groups, and solo travelers, offering affordable accommodation and specialized travel programs. The business model focuses on hospitality and group travel services with a strong emphasis on inclusivity and community experience. Technically, the site is built on TYPO3 CMS, employs modern JavaScript frameworks like Vue.js for interactive components, and integrates analytics and consent management tools such as Matomo, Google Tag Manager, and Usercentrics CMP. The website is mobile-optimized, accessible, and SEO-friendly with structured data markup.

N

nordmedia - Film- und Mediengesellschaft Niedersachsen/Bremen mbH

nordmedia.de

54

nordmedia is a regional media funding organization serving the German states of Niedersachsen and Bremen. Established in 2001, it plays a central role in supporting and developing the local film and media industry through funding programs, events, and advisory services. The website reflects a mature and professional digital presence with comprehensive content tailored to its target audience of media professionals and filmmakers. Technically, the site uses modern web standards and privacy-respecting analytics (Matomo), with good mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are absent. Overall, the site is trustworthy and well-aligned with its business purpose.

U

Universität Bremen

uni-bremen.de

64

The Universität Bremen website serves as the official digital presence of a medium-sized German university with approximately 20,000 students. It offers a broad range of academic programs including bachelor, master, and legal state examinations, and is recognized as an Excellence University since 2012. The site targets students, researchers, international visitors, and partners, providing comprehensive information on study programs, research, and university services. Technically, the site is built on TYPO3 CMS, employs Matomo for privacy-conscious analytics, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms. No critical vulnerabilities or suspicious content were detected, and the domain registration aligns with the university's identity and history.

S

Startseite - Stadtmagazin Bremen

stadtmagazin-bremen.de

62

Stadtmagazin Bremen is a local media outlet focused on providing news, events, and cultural information relevant to the Bremen area. The website serves residents and visitors interested in local happenings and cultural content. The business model revolves around media publication and event promotion within the Bremen community. Technically, the website is built on WordPress, uses Matomo for analytics, and Font Awesome for icons. Hosting appears to be provided by Ewetel, a German hosting provider. The site shows basic mobile optimization and moderate performance. Security posture is weak, with no detected security headers or explicit security policies, and no HTTPS status provided in the data. Privacy compliance is minimal, with no privacy or cookie policies found, and no consent mechanisms in place. Overall, the site is accessible and safe for general audiences but lacks advanced security and privacy features. Strategic improvements in security headers, privacy policies, and contact transparency are recommended.

C

CookieTractor

cookietractor.com

69

CookieTractor is a specialized European technology company providing a user-friendly, accessible cookie consent solution designed to help websites comply with GDPR and the ePrivacy Directive. The company emphasizes accessibility, supporting WCAG 2.2 AAA standards and the European Accessibility Act, and offers a customizable cookie banner with multi-language support. Their business model is SaaS-based with tiered pricing according to website size. The website content is professional and well-structured, targeting website owners needing compliant cookie management solutions. Technically, the site uses modern JavaScript libraries, integrates Matomo and Google Analytics for tracking, and is hosted behind Cloudflare, ensuring good performance and security. Security posture is strong with HTTPS and secure form handling, although explicit security headers and a public security policy are absent. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms. However, the lack of WHOIS registration data reduces trustworthiness and business credibility, suggesting the domain may be unregistered or privacy protected. Overall, CookieTractor presents a mature, compliant, and accessible solution with room for improvement in transparency and security documentation.

S

SAGAFLOR AG

dabluehichauf.de

68

SAGAFLOR AG operates the 'da blüh ich auf' brand, a well-established German gardening retail and information platform. The website offers a broad range of garden products including soil, fertilizers, mulch, and seeds, complemented by gardening tips, recipes, and a market locator for regional garden centers. The company emphasizes quality, regional connection, and sustainability, targeting gardening enthusiasts and consumers in Germany. Technically, the website employs modern JavaScript libraries such as jQuery, Splide.js, and Owl Carousel, and integrates analytics tools like Matomo and Google Analytics with a strong cookie consent mechanism ensuring GDPR compliance. Accessibility is enhanced via the UserWay widget, and the site is mobile-optimized with good SEO practices. Security posture is solid with HTTPS enforced and session management cookies in place, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site reflects a professional, trustworthy, and user-friendly digital presence aligned with its business goals.

M

monbillet.ch

monbillet.ch

58

monbillet.ch is a Swiss online ticketing platform specializing in cultural events, festivals, and performances primarily in the French-speaking regions of Switzerland. The website offers detailed listings of venues and seasonal events, serving a general audience interested in theater, music, and cultural experiences. The platform positions itself as a regional niche player with a focus on hospitality and cultural event ticketing. Technically, the site employs modern web technologies including Bootstrap for responsive design, FontAwesome for icons, and Matomo for analytics with privacy-conscious tracking. The website demonstrates good design quality, clear navigation, and mobile optimization, contributing to a positive user experience. However, the absence of explicit privacy and cookie policies, as well as missing security headers, indicates gaps in compliance and security best practices. The security posture is moderate, with HTTPS usage and anonymized analytics being positive factors, but lacking formal security policies and headers. Overall, the site is legitimate and trustworthy based on WHOIS data and content alignment, but improvements in privacy compliance and security hardening are recommended to enhance trust and regulatory adherence.

T

techniConcept Sàrl

techniconcept.ch

51

techniConcept Sàrl is a Swiss-based digital agency specializing in custom web and mobile application development, e-commerce solutions, and digitalization services. Positioned as a regional leader in the Bulle and Fribourg area, the company emphasizes quality, client relationships, and tailored digital tools for SMEs, public administrations, and specialized sectors such as medical and event management. Their website reflects a professional and modern digital presence, leveraging the Neos CMS and Flow PHP framework, supported by comprehensive analytics and cookie consent mechanisms. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are absent. Overall, the company demonstrates a mature digital infrastructure and trustworthy business profile.

The cheese-festival.ch website represents a Swiss cultural event organizer focused on celebrating Swiss cheese traditions through festivals and related experiences. The organization, Trägerverein cheese-festival, targets cheese lovers and cultural enthusiasts primarily within Switzerland. The website offers event calendars, cheese fest searches, and storytelling content to engage its audience. Technically, the site employs modern JavaScript libraries such as Matomo for analytics, Mapbox for maps, and GSAP for animations, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and SEO-friendly with multilingual support in German, French, and Italian. Security-wise, the website uses HTTPS with good SSL configuration and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking usage. Overall, the site is trustworthy and professionally maintained, with clear contact information and active social media presence.

P

Pur Jus

pur-jus.ch

47

Pur Jus is a specialized education provider based in Switzerland offering internationally recognized wine and spirits certifications, including WSET, Wine Scholar Guild, and RVFA programs. The company targets both amateur and professional wine enthusiasts, providing high-quality courses and workshops with a strong emphasis on recognized certifications and practical tastings. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and GDPR compliance, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

T

TECNOLUMEN GmbH & Co.KG

tecnolumen.com

48

TECNOLUMEN GmbH & Co.KG is a medium-sized German company specializing in the manufacture and retail of original Bauhaus lamps, design classics, and related lighting products. The company emphasizes high-quality craftsmanship and sustainability, targeting retailers, design enthusiasts, and collectors. Their market position is that of a niche leader in Bauhaus and classic design lighting. The website is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

É

État de Vaud

vd.ch

64

The website www.vd.ch is the official portal of the Canton of Vaud, Switzerland, serving as the authoritative source for government information, administrative services, and public communication. It targets residents, businesses, and local authorities within the canton, providing comprehensive e-government services and up-to-date news on cantonal activities. The site is well-branded, professionally designed, and offers clear navigation and accessibility features. Technically, the site is built on TYPO3 CMS with Bootstrap framework, integrating modern analytics tools such as Matomo, Google Tag Manager, and Mouseflow for user behavior insights. The infrastructure supports secure HTTPS connections and includes cookie consent mechanisms, reflecting a mature digital presence. Mobile optimization and SEO practices are well implemented, ensuring good user experience across devices. From a security perspective, the site enforces HTTPS, employs security headers, and avoids exposing sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. The domain registration aligns with the official government entity, confirming legitimacy and trustworthiness. Overall, the website demonstrates a strong security posture and high business credibility, with minor gaps in transparency around security policies. It is a safe, professional, and reliable resource for its intended audience.

P

PCFH Studio - Pour un numérique plus éthique

pcfh.studio

64

PCFH Studio is a French digital solutions studio focused on creating, improving, and growing ethical, user-friendly, and emancipatory digital solutions. The website content is professionally presented in French, targeting organizations aware of contemporary digital challenges. The technical infrastructure is built using the Astro framework and employs Matomo analytics with Do Not Track enabled, indicating a privacy-conscious approach. However, the absence of explicit privacy and cookie policies and lack of contact information limit transparency and user trust. The security posture is moderate with HTTPS implied but missing explicit security headers and policies. Overall, the website is accessible and well-designed but would benefit from enhanced privacy compliance and clearer business contact details.

J

JCDecaux

jcdecaux.se

60

JCDecaux is a well-established enterprise operating in the transportation sector, specializing in outdoor advertising and street furniture services. The company maintains a professional and consistent online presence with a website built on WordPress, leveraging modern technologies such as Matomo analytics, Google Tag Manager, and Cookiebot for privacy compliance. The site is well-optimized for performance and mobile devices, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit policies could be improved. Overall, the website reflects a trustworthy and professional business with a strong market position in outdoor advertising.

T

TECNOLUMEN

tecnoline.de

42

TECNOLINE is a specialized manufacturer and retailer of high-quality fittings, door handles, and switches inspired by renowned designers from Bauhaus and other design eras. The company emphasizes authentic, detail-conscious manufacturing of original designs by famous designers such as Walter Gropius and Wilhelm Wagenfeld. The website positions TECNOLINE as a niche market leader catering to architects, designers, and retailers seeking premium designer hardware. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Maps and Matomo analytics, reflecting a moderate level of digital maturity. The site is mobile-optimized with good navigation and professional design. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks explicit security headers and published security policies. Overall, the website is trustworthy and professional, with room for improvement in security documentation and contact transparency.

The website www.myvaud.ch serves as the official tourism portal for the Canton of Vaud in Switzerland, providing comprehensive information on destinations, activities, practical advice, business events, and inspirational content for visitors and locals alike. It is positioned as a key regional tourism resource with a professional and consistent brand presence. The site leverages modern web technologies including Google Tag Manager, Matomo Analytics, and Cookiebot for analytics and privacy compliance. The technical infrastructure is solid, with HTTPS enforced and security headers implemented, contributing to a good security posture. However, the absence of an explicit privacy policy and terms of service pages, as well as the lack of visible contact information in the provided HTML snippet, represent areas for improvement in privacy compliance and user trust. Overall, the site is well-designed, mobile-optimized, and provides a safe and trustworthy user experience.

S

SAGAFLOR AG

sagaflor.de

64

SAGAFLOR AG is a well-established German company with over 60 years of experience in the garden and pet retail market. The company operates a B2B business model focusing on partnerships, supplier networks, and employee recruitment, supported by multiple proprietary brands. Their website reflects a professional and consistent brand image, targeting entrepreneurs and partners in the garden and pet sectors. Technically, the site is built on TYPO3 CMS with Bootstrap framework and uses Matomo for privacy-conscious analytics. Hosting is provided by Deutsche Telekom, aligning with the company's German base. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

A

Arbeiter-Samariter-Jugend Deutschland

asj.de

57

Arbeiter-Samariter-Jugend Deutschland (ASJ) is a well-established non-profit youth organization affiliated with the Arbeiter-Samariter-Bund (ASB). The website serves as an information hub for youth engagement, educational projects, and community services across Germany. It targets young people and members interested in social and democratic participation. The organization maintains a consistent brand presence and provides relevant content such as campaigns, publications, and event information. Technically, the site is built on Drupal 10, uses Matomo for privacy-conscious analytics, and Klaro! for cookie consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy compliance evident, although explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for users.

S

SAGAFLOR AG

gruen-erleben.de

70

SAGAFLOR AG operates the website gruen-erleben.de, a well-established German retail platform focused on gardening products, tips, and services. The company emphasizes quality rooted in gardening tradition and offers a variety of services including product sales, gardening inspiration, a job board for the green sector, and gift vouchers. The website targets gardening enthusiasts and consumers interested in horticulture, positioning itself as a trusted and quality-focused brand in the German retail gardening market. Technically, the website employs modern web technologies such as Bootstrap for responsive design, jQuery, and Splide.js for interactive sliders. It integrates multiple analytics platforms including Google Analytics 4 and Matomo, and uses marketing tools like Elfsight widgets and UserWay for accessibility enhancements. Hosting appears to be managed via Deutsche Telekom infrastructure, ensuring reliable performance and security. The site is mobile-optimized and includes accessibility features, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism compliant with GDPR. While explicit security headers are not visible in the HTML, the overall security posture is good with no exposed sensitive data or vulnerable libraries detected. The site lacks a published security policy or incident response contact, which could be areas for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It provides a positive user experience with clear navigation and relevant content. The domain registration data aligns well with the business identity, supporting legitimacy. Strategic recommendations include enhancing security header implementation, publishing a security policy, and continuous monitoring of third-party scripts to maintain security and compliance.

T

techniConcept Sàrl

gruyerepaysdenhaut.ch

53

Le Parc naturel régional Gruyère Pays-d'Enhaut is a Swiss regional park dedicated to sustainable tourism, environmental conservation, and regional development across three cantons. The website serves as an informative portal for tourists, local residents, and partners, offering event information, educational resources, and membership opportunities. The park is supported by federal and cantonal authorities, emphasizing its official and non-profit nature. Technically, the website is built on the Neos CMS platform, utilizing modern web technologies such as Swiper.js for interactive elements, FontAwesome for icons, and Matomo for analytics, ensuring a fast, mobile-optimized, and accessible user experience. Security is well implemented with HTTPS, security headers, and no visible vulnerabilities. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is comprehensive and clearly presented, enhancing business credibility.

V

VAUD

vaudplus-produits.ch

54

The website www.vaud.ch/terroir is an official government platform representing the Canton of Vaud in Switzerland. It focuses on promoting the region's rich terroir, local products, and quality certifications such as the VAUD CERTIFIÉ D’ICI label. The site targets residents, local producers, and visitors interested in regional gastronomy and culture. It serves as a comprehensive informational and promotional tool, reinforcing the Canton’s market position as a reputable and authentic source of local products and tourism information. Technically, the site is built on WordPress with modern integrations including Google Tag Manager, Matomo Analytics, and Facebook Pixel, ensuring robust tracking and marketing capabilities. The design is professional, mobile-optimized, and accessible with clear navigation and rich content. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site demonstrates high business credibility and trustworthiness, supported by consistent branding and official domain registration.

T

TECNOLUMEN GmbH & Co.KG

tecnolumen.de

44

TECNOLUMEN GmbH & Co.KG is a German company specializing in the manufacture and retail of Bauhaus and design classic lighting, fittings, and design objects. The company targets design enthusiasts, retailers, and businesses with a focus on high-quality, timeless design products. Their market position is that of a niche leader in Bauhaus lighting and design classics, supported by a dealer network and an online shop. The website reflects a mature digital presence with WordPress CMS, SEO optimization via Yoast, and privacy-conscious analytics using Matomo. The technical infrastructure is solid, hosted via kunde24.de, and includes modern web technologies such as jQuery and Bootstrap. Security posture is good with HTTPS enforced and secure data collection forms, though some security headers and explicit security policies are missing. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting the company’s business credibility and customer engagement.

P

Prandina Srl

prandina.it

62

Prandina Srl is an established Italian lighting design company with over 40 years of experience, specializing in the design and manufacture of high-quality lighting products for residential and contract markets. The company emphasizes simplicity, formal rigor, functionality, and durable quality, leveraging glass as a key material in its contemporary lighting solutions. Their market position is that of a recognized niche brand with a consistent and professional online presence targeting both professionals and consumers interested in design lighting. Technically, the website employs a traditional but functional technology stack including jQuery, SVG conversion, and Cookiebot for consent management, alongside Matomo for privacy-respecting analytics. The site is mobile-optimized with good SEO practices and clear navigation, though some technologies like jQuery are outdated, suggesting room for modernization. From a security perspective, the site enforces HTTPS and integrates cookie consent mechanisms properly, with analytics loading only after user consent. However, it lacks explicit security policies, incident response contacts, and modern security headers, which are recommended for enhanced security posture. No vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with a strong business credibility score. Strategic improvements in security policy transparency and technology updates would further strengthen its security and compliance stance.

Connoisseur Circle is a well-established luxury media platform focusing on travel, hospitality, and lifestyle content primarily for German-speaking audiences. The website offers a broad range of services including news, hotel ratings, awards, and B2B subscription services, positioning itself as a key player in the luxury travel media sector. The business model leverages content publishing combined with advertising and subscription revenue streams. Technically, the site is built on TYPO3 CMS, integrates modern cookie consent management via Cookiebot, and uses Matomo and Facebook Pixel for analytics and marketing. The site demonstrates good digital maturity with responsive design and structured navigation. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with detailed cookie categories and GDPR-aligned consent mechanisms. However, contact information and explicit security policies are not prominently available, which could be improved. Overall, the site is professional, trustworthy, and suitable for its target audience.

U

Universidad de Zaragoza

unizar.es

46

The Universidad de Zaragoza is a large, established public university in Spain offering a wide range of undergraduate, graduate, and doctoral programs alongside robust research and community engagement activities. The website reflects a mature digital presence built on Drupal 10, featuring modern web technologies and compliance with privacy regulations such as GDPR. The site is well-designed, mobile-optimized, and provides comprehensive academic and institutional information targeting students, faculty, researchers, and the general public. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is restricted due to .es domain policies, but the domain's legitimacy is supported by consistent branding and extensive content. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a major educational institution.

T

Tudu AS

tudu.no

69

Tudu AS is a Norwegian IT company founded in 2016, specializing in digital solutions for business administration, including HMS compliance systems, secure collaboration platforms, and digital board portals. The company targets businesses seeking to simplify administrative and compliance tasks through user-friendly SaaS products. Their market position is supported by a professional website, customer logos, and active social media presence. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with integrations for analytics (Matomo, Google Tag Manager) and customer engagement (LiveChat). Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security policies and headers could be improved. Overall, the site is trustworthy, well-designed, and compliant with basic privacy standards, though it lacks published privacy and terms of service documents.

Ticketpark GmbH operates a specialized event ticketing platform focused on providing simple, user-friendly ticket sales solutions for event organizers in Switzerland. Their platform emphasizes direct ticket sales on the organizer's own website, branded ticketing, and data ownership for clients. The company targets a niche market of event organizers including theaters, sports clubs, and cultural events, positioning itself as a trusted, privacy-conscious alternative to larger ticketing providers. Technically, the website is built on WordPress with modern SEO and analytics tools like Yoast SEO and Matomo, ensuring good performance and privacy-aware tracking. Security posture is solid with HTTPS enforced, though some improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is professional, trustworthy, and well-aligned with the company's business model and market presence.

F

FDP.Die Liberalen Kanton St.Gallen

fdp.sg

52

FDP.Die Liberalen Kanton St.Gallen is a regional political party representing liberal values in the canton of St. Gallen, Switzerland. The website serves as an information hub for party news, events, membership, and values, targeting local residents and politically engaged citizens. The site is well-branded and professionally maintained, reflecting the party's established presence in the region. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies such as Bootstrap, jQuery, and FontAwesome. It integrates privacy-conscious analytics via Matomo and employs tarteaucitron.js for cookie consent management, demonstrating a commitment to GDPR compliance and user privacy. The site is mobile-optimized and features clear navigation and structured content. From a security perspective, the site enforces HTTPS and uses privacy-friendly analytics, but lacks explicit security headers in the HTML response. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the subdomain is likely due to privacy protection or subdomain delegation, which is common for political organizations. Overall, the security posture is good but could be improved with additional headers and published security policies. The overall risk is low given the site's transparency, professional presentation, and compliance efforts. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and maintaining up-to-date third-party components to mitigate potential risks.

T

The European Quality Assurance Register for Higher Education (EQAR)

eqar.eu

57

The European Quality Assurance Register for Higher Education (EQAR) operates as a non-profit organization providing a trusted register of quality assurance agencies within the European Higher Education Area. The website serves as a comprehensive resource for higher education institutions, governmental bodies, and stakeholders seeking transparency and reliable information on quality assurance processes. It maintains a strong market position as an authoritative source in European higher education quality assurance. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO and Matomo, ensuring good performance, mobile optimization, and privacy-conscious data collection. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. The domain WHOIS data is privacy protected by EURid, which is typical and justified for this type of organization. Overall, the website is professional, trustworthy, and well-maintained, with no critical security or compliance issues detected.

J

Jungfreisinnige Schweiz

jfgl.ch

51

Jungfreisinnige Kanton Glarus is a liberal youth political party based in the canton of Glarus, Switzerland, advocating for freedom and self-responsibility with minimal state intervention. The website serves as an informational and engagement platform targeting young politically active individuals in the region. Technically, the site is built on WordPress using the Avada theme, enhanced with SEO tools like Yoast and security features such as Google reCAPTCHA and Matomo analytics. The site demonstrates good SEO practices and moderate performance with mobile optimization. Security posture is solid with HTTPS enforced and standard security headers present, though the absence of explicit privacy and cookie policies and incident response information indicates room for improvement in compliance and transparency. Overall, the domain registration data aligns well with the organization's identity, supporting legitimacy and trustworthiness.

B

Bollerhey Naturstein

j-bollerhey-naturstein.de

47

Bollerhey Naturstein is a small German business specializing in natural stone products and craftsmanship, targeting both private and commercial customers. The website presents a professional and visually appealing digital presence built on WordPress, leveraging modern plugins such as Slider Revolution and Oxygen Builder. The company emphasizes a diverse material offering and showcases projects, indicating a service-oriented business model within the natural stone sector. The site is well-optimized for SEO and mobile devices, with clear navigation and relevant content. Security-wise, the site uses HTTPS and a GDPR-compliant cookie consent mechanism via Borlabs Cookie, alongside privacy-conscious analytics through Matomo. However, explicit security policies and incident response contacts are absent, suggesting room for improvement in transparency and security posture. Overall, the website is trustworthy, compliant, and professionally maintained, reflecting a legitimate small business with a focused market niche.

The website www.myvaud.ch serves as the official tourism portal for the Canton of Vaud in Switzerland, offering comprehensive information on destinations, activities, practical advice, business events, and inspirational content for visitors. It targets tourists, event planners, and local businesses, positioning itself as a key regional tourism authority. The site is built on the MyCity Tourism Information System CMS and employs modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager. The technical infrastructure supports good mobile optimization and moderate performance, with HTTPS enabled and cookie consent mechanisms in place. However, explicit privacy policies, terms of service, and direct contact information are not clearly found in the provided content, which slightly impacts privacy compliance and user trust. Security posture is adequate with HTTPS and consent-based tracking, but lacks visible security headers and incident response details. Overall, the site is professional, trustworthy, and well-branded, but could improve transparency and security best practices.

Connoisseur Circle is a well-established luxury travel and hospitality media platform founded in 2007, primarily serving German-speaking luxury travelers and hospitality professionals. The website offers rich content including news, hotel ratings, travel insights, and B2B services, positioning itself as a reputable source in the luxury travel media sector. The business model revolves around media publishing with subscription and B2B components, targeting a medium-sized audience in Austria and neighboring regions. Technically, the site is built on TYPO3 CMS, leveraging modern tools such as Cookiebot for GDPR-compliant cookie consent, Facebook Pixel for marketing, and Matomo for analytics. The site demonstrates good mobile optimization and SEO practices, though accessibility is basic. Security-wise, the site uses HTTPS and cookie consent mechanisms effectively but lacks explicit security headers and DNSSEC, which are recommended for enhanced protection. No direct contact information or incident response policies are published, which could be improved to increase trust and compliance. Overall, the domain registration is consistent with the business history, indicating legitimacy and trustworthiness.

C

Compagnie Nationale des Commissaires aux Comptes (CNCC)

auditeur-legal.fr

59

The website auditeur-legal.fr serves as the official informational portal for the Compagnie Nationale des Commissaires aux Comptes (CNCC), the national professional body for legal auditors in France. It provides comprehensive information about the auditing profession, its missions, and services, targeting organizations, auditors, and stakeholders in the French economy. The site positions itself as an authoritative resource promoting transparency, trust, and security in economic activities through legal auditing. Technically, the website is built as a modern React single-page application using Ant Design components, hosted likely via Gandi, and employs Matomo for analytics. The site is mobile-optimized with good navigation and professional design, although accessibility and SEO could be improved. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR explicit indicators. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistency. The site is safe, professional, and trustworthy, with minor improvements recommended in privacy and security transparency.

L

L'Agefi

agefi.digital

64

L'Agefi.com is a well-established Swiss media platform specializing in political, economic, and financial news. It serves a professional and general audience interested in Swiss and global financial markets, providing news articles, e-paper publications, market data, and sponsored content. The website demonstrates a mature digital presence with modern web technologies such as Next.js and React, supported by Cloudflare DNS and a consent management platform to ensure GDPR compliance. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforcement and domain transfer protections, although DNSSEC is not enabled and explicit security policies are not published. Overall, the website is trustworthy and credible, supported by consistent WHOIS data and a long domain history.