Security Directory

W

WERK Bowling Billard Events Parndorf

werkbowling.at

51

WERK Bowling Billard Events Parndorf is a local hospitality and entertainment business based in Parndorf, Austria, offering bowling, billiards, snooker, restaurant, bar, and event hosting services. The website reflects a well-established business founded around 2015, with a clear market position as a regional entertainment center. The company targets general audiences seeking leisure and event experiences. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities and uses modern SEO and cookie consent plugins, indicating a moderate level of digital maturity. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policies or incident response contacts. Overall, the site is professional, compliant with GDPR, and trustworthy, with room for improvement in security header implementation and incident response transparency.

A

A&G KG

ox-parndorf.at

40

OX Steaks & Grill Parndorf is a small hospitality business located in Austria, specializing in premium steak and grill dining experiences. The company offers a variety of high-quality food options including steaks, burgers, fish dishes, and Mediterranean appetizers. They maintain a strong market position as a top dining location in Parndorf, supported by a loyalty app and online gift voucher sales. The website is built on TYPO3 CMS and integrates modern front-end libraries and tracking tools such as Google Analytics and Facebook Pixel, with privacy-conscious configurations like IP anonymization and cookie consent mechanisms. Security posture is solid with HTTPS enforced, though there is room for improvement in security headers and incident response disclosures. Overall, the website is professional, user-friendly, and compliant with GDPR requirements, reflecting a trustworthy and credible business presence.

L

lafree.ch - Site évangélique d'information

lafree.info

48

lafree.info is a French-language evangelical Christian news and information website affiliated with the Fédération romande d'Églises évangéliques (FREE). It serves a niche audience of French-speaking evangelical Christians primarily in Switzerland, offering news, opinions, event information, and resources related to evangelical faith and community life. The site is well-branded and consistent with its religious mission, providing quality content authored by recognized contributors within the community. Technically, the site is built on Joomla CMS with modern frameworks like Bootstrap and uses Google Analytics for traffic monitoring. While HTTPS is enabled, the site lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. No direct contact emails or phone numbers are found on the analyzed page, which may affect user trust and compliance. The WHOIS data is privacy protected, which is common and justified for this type of non-profit religious media entity. Overall, the site is professional, trustworthy, and safe for general audiences.

L

lafree.ch - Site évangélique d'information

lafree.ch

9

lafree.ch is a French-language evangelical information website primarily serving the French-speaking evangelical Christian community in Switzerland. It functions as a portal and redirection page to a network of affiliated sites offering news, cultural content, biblical education, church resources, and youth commission information. The website is built on Joomla CMS using modern front-end frameworks and integrates Google Analytics for visitor tracking. The design is professional and consistent with the organization's branding, targeting a niche religious audience. However, the site lacks visible privacy and cookie policies, contact emails, and security headers, which are areas for improvement. The domain uses privacy protection for WHOIS data, which is justified given the non-profit religious nature of the organization.

E

ECOTRANS

destinet.eu

51

The website destinet.eu operates as a knowledge networking portal dedicated to sustainable and responsible tourism. It serves as a platform connecting various stakeholders including businesses, certification bodies, destination administrations, and NGOs. The portal offers resources such as courses, publications, a market place, and news updates, positioning itself as a key player in the sustainable tourism ecosystem. The business model is non-profit and focuses on collaboration and information dissemination to promote sustainability in tourism. Technically, the site uses a Naaya CMS platform with a tech stack including jQuery, Google Analytics, Google Tag Manager, and Slick Carousel. The site is mobile optimized and has good SEO practices, though some technical debt exists with the use of an older jQuery version. Security posture is moderate with HTTPS enabled and some security best practices observed, but lacks advanced headers like CSP and a cookie consent mechanism. WHOIS data indicates consistent and legitimate domain registration without privacy protection, aligning with the website's business purpose. Overall, the site is professional, trustworthy, and serves its niche audience effectively.

V

Verein ehemaliger Schüler und Freunde der Sebastian-Kneipp-Schule Bad Wörishofen e.V.

ves-kneippschule.de

50

VES Kneippschule is a non-profit association based in Germany focused on providing continuing education and training in physiotherapy. The organization targets physiotherapists, masseurs, and other medical auxiliary professionals, including former students and friends of the Sebastian-Kneipp-Schule. Their offerings include specialized courses, symposia, and membership services. The website reflects a niche regional educational provider with a clear business model centered on professional development in healthcare. Technically, the website is built on TYPO3 CMS, utilizing modern web technologies such as Google Tag Manager and Google Analytics for tracking. The site is mobile-optimized with good navigation and SEO practices. Hosting appears to be managed via your-server.de, with no detected WAF or blocking mechanisms. Performance is moderate with good accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating awareness of privacy compliance. However, explicit security headers like CSP and X-Frame-Options are not detected, and no formal security policy or incident response information is published. No vulnerabilities or exposed sensitive data were found in the analysis. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. The risk profile is low, with recommendations to enhance security headers and publish security policies to improve transparency and resilience.

W

Westfälischer Turnerbund e.V.

wtb.de

58

Westfälischer Turnerbund e.V. is a regional non-profit sports association based in Hamm, Germany, focused on gymnastics, sports education, and community sports events. The website serves as an information hub for members, athletes, and trainers, offering event details, educational programs, and membership services. It maintains a strong regional presence and partners with several related sports organizations and event platforms. Technically, the site is built on Joomla CMS with Bootstrap and jQuery, providing a responsive and well-structured user experience. Security posture is good with HTTPS and CSRF protections, though some security headers like CSP could be improved. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent mechanism, and a named data protection officer. Overall, the site is professional, trustworthy, and well-maintained, with no signs of malicious or adult content.

O

Opodo

opodo.com

66

Opodo is a large, well-established online travel agency headquartered in the United Kingdom with a parent company eDreams ODIGEO. The company offers a comprehensive suite of travel services including flights, hotels, car rentals, holiday packages, and transfers. It targets a broad audience of travelers seeking competitive prices and convenience through an easy-to-use online platform. The website is professionally designed with consistent branding and multilingual support, reflecting its international market presence. Technically, the website employs modern web technologies such as React, RequireJS, and integrates with Google Analytics and Tag Manager for data collection and marketing. It supports service workers for progressive web app capabilities and provides mobile app downloads for iOS and Android. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and uses Content-Security-Policy headers, anonymizes IPs in analytics, and avoids exposing sensitive data. However, additional security headers and a public security policy or vulnerability disclosure page are absent. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Contact information and legal disclosures are transparent, enhancing trust. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. The lack of WHOIS data is a minor concern but likely due to privacy protection. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility to further strengthen the security posture and user trust.

E

eDreams

edreams.com

66

eDreams is a well-established online travel agency offering a broad range of travel services including flights, hotels, car rentals, and package holidays. The company operates internationally with multiple country-specific domains and is part of the larger eDreams ODIGEO group. Their market position is strong, supported by industry awards and accreditations such as IATA. The website is professionally designed with good content quality and consistent branding, targeting general consumers seeking travel bookings. Technically, the website uses modern web technologies including React, RequireJS, and integrates Google Analytics and Tag Manager for tracking. It is hosted behind Cloudflare, ensuring good performance and security. The site is mobile optimized and includes accessibility features, although some areas could be improved. Security posture is solid with HTTPS enforced and Content-Security-Policy headers present, but additional headers and explicit security policies could enhance protection. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms in place, reflecting GDPR adherence. However, the absence of WHOIS data for the domain is unusual and reduces trust slightly, though the overall legitimacy is supported by the business presence and branding. No adult or questionable content is present, making the site safe for general audiences. Overall, eDreams presents a mature, professional online travel platform with good security and privacy practices. Strategic improvements in transparency around security policies and WHOIS data would further strengthen trust and compliance.

Z

Zalando SE

zalando-lounge.at

52

Lounge by Zalando is a well-established online outlet platform operated by Zalando SE, targeting Austrian and European consumers with discounted fashion, home, and sports products. The website demonstrates a mature e-commerce business model with a strong market position as part of the Zalando group. Technically, the site uses modern web technologies including React, RequireJS, and integrates advanced analytics and consent management tools, ensuring a high-quality user experience with fast performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and active vulnerability reporting mechanisms, although a dedicated security policy page and security.txt file could enhance transparency. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with user consent mechanisms. Overall, the website is professional, trustworthy, and aligns well with the parent company's branding and business practices.

K

KOVOS

kovos.ch

49

KOVOS is a Swiss non-profit organization representing Catholic religious communities, providing information and support for vocations, retreats, and monastic hospitality. The website serves as an informational platform targeting religious individuals and communities in Switzerland. Technically, the site is built on TYPO3 CMS with modern web technologies and includes tracking via Google Analytics and Tag Manager. The site is mobile-optimized and well-structured, though some accessibility features could be improved. Security posture is adequate with HTTPS and nonce usage but lacks visible security headers and published security or privacy policies. No forms or social media links were detected, limiting direct user engagement channels. Overall, the domain registration aligns well with the organization's identity, indicating legitimacy and trustworthiness.

R

Randi A/S

randi.dk

46

Randi A/S is a Danish manufacturer specializing in high-quality architectural hardware products such as door handles, building fittings, and sanitary equipment. With a history dating back to 1878 and as a member of the ECO Schulte Group, the company positions itself as a reputable player in the Nordic manufacturing sector, collaborating with renowned architects and designers. The website reflects this professional image with a modern WordPress-based infrastructure, including WooCommerce for e-commerce capabilities and Elementor for design. The site is well-structured, mobile-optimized, and includes multimedia content to engage visitors. Security-wise, the site uses HTTPS and a cookie consent mechanism compliant with GDPR principles, but lacks visible security headers and a published privacy policy, which are areas for improvement. The absence of WHOIS data limits domain trust verification, but the overall digital presence suggests a legitimate and established business. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and improving contact transparency to strengthen trust and compliance.

JJ-CCR aps is a specialized Danish company manufacturing the JJ-CCR rebreather, a rugged and versatile diving apparatus designed for demanding environments such as wreck and cave diving. The company serves a niche market including military units, exploration teams, and professional divers worldwide. Their website reflects a professional and focused business with clear offerings in manufacturing, training, and service support. The company maintains a global network of instructors and service centers, emphasizing safety and reliability. Technically, the website is built on WordPress with WooCommerce, employing modern plugins and tools such as Google Analytics and reCAPTCHA to enhance user experience and security. The site is hosted by One.com and uses HTTPS, though DNSSEC is not enabled. Security posture is solid but could be improved with additional headers and published policies. Privacy and cookie policies are present with consent mechanisms, indicating compliance with GDPR. Overall, the website is trustworthy, well-maintained, and serves its target audience effectively.

I

InnovateNow Bielefeld

innovatenow-bielefeld.de

43

InnovateNow Bielefeld is a local government-backed innovation program focused on developing and implementing digital solutions to enhance the inner city and old town of Bielefeld. The program engages a broad audience including citizens, students, tech enthusiasts, and companies to collaboratively improve urban life quality through digital transformation. The website is built on WordPress using Elementor and integrates modern tracking and marketing tools such as Google Analytics and Meta Pixel, although it lacks a cookie consent mechanism. Security posture is adequate with HTTPS enforced but could be improved by adding security headers and incident response policies. Contact information is limited to an email address for the project manager, with no phone or physical address explicitly provided. Overall, the website is professional, content-rich, and trustworthy, serving as an effective platform for the InnovateNow initiative.

A

ALSO Schweiz AG

also-training.ch

57

ALSO Schweiz AG operates a professional IT training platform focused on providing product and solution trainings, certifications, and e-learning services primarily to IT resellers, service providers, and technical professionals in Switzerland. The company holds a strong market position as a leading wholesale and service provider in the IT sector, offering a broad portfolio of trainings including company-specific and online options. Technically, the website is built on a modern Ruby on Rails framework with standard frontend technologies and integrates analytics and user behavior tracking tools such as Google Analytics and Hotjar. Security posture is moderate with CSRF protections in place but lacks explicit security headers and incident response disclosures. Privacy compliance is supported by comprehensive privacy and cookie policies, though a cookie consent mechanism is absent. Overall, the website is professional, trustworthy, and well-structured, serving a clear business purpose with good user experience and content relevance.

A

ALSO Schweiz AG

product-finishing.ch

48

ALSO Schweiz AG operates the Product Finishing website offering value-added IT hardware services such as staging, labeling, bundling, unpacking, and inventorying. The company targets business customers who require efficient hardware preparation services to focus on their core operations. The website is professionally designed with clear service descriptions, video content, and multilingual support, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins including Yoast SEO and Complianz for GDPR compliance, and integrates Google Analytics and reCAPTCHA for analytics and security. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though security headers could be improved. The domain registration aligns well with the business identity, enhancing trustworthiness. Overall, the website demonstrates a solid business and technical foundation with good privacy and security practices.

etermin GmbH operates an online appointment scheduling platform primarily targeting German-speaking businesses and service providers. Their solution integrates appointment booking functionality into existing websites and Google search results, positioning them as an innovative player in the SaaS scheduling market. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technical infrastructure includes modern JavaScript libraries such as jQuery and tracking tools like Google Analytics and Bing Ads, indicating a mature digital presence. Privacy and cookie policies are implemented with GDPR compliance, reflecting attention to regulatory requirements. However, the absence of WHOIS data raises concerns about domain registration legitimacy, which should be addressed to enhance trust. Security posture is moderate with HTTPS enforced but lacks visible security headers and explicit security policies. Overall, the website demonstrates a solid business and technical foundation but would benefit from improved transparency and security hardening.

P

PROJEKT PRO GmbH

projektpro.com

55

PROJEKT PRO GmbH operates a professional German-language website offering specialized software solutions for architects and engineers, focusing on project planning, controlling, time tracking, and cost calculation. The company positions itself as an experienced provider with over 30 years in the market and more than 24,000 users, emphasizing efficiency and project profitability. The website features comprehensive content including product features, customer testimonials, webinars, and case studies, reflecting a mature digital presence. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Alpine.js and Lottie Player, ensuring a responsive and accessible user experience. Integration with Google Tag Manager, Google Analytics, and Demodesk indicates a well-instrumented marketing and analytics setup. Cookie consent mechanisms comply with GDPR requirements, enhancing privacy compliance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some standard security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and should be added for enhanced protection. No vulnerabilities or exposed sensitive data were found in the content. However, the WHOIS data is missing or indicates the domain is not registered, which is a significant anomaly that reduces trustworthiness. This discrepancy between an active professional website and absent domain registration data requires further investigation to confirm legitimacy. Overall, the website is professional, secure, and privacy-conscious, but the domain registration inconsistency is a critical risk factor that impacts business credibility and trust.

Leeways Packaging Services Ltd is a British family-owned company specializing in thermoformed packaging solutions, primarily serving the food packaging industry. Established in 1971, the company operates a state-of-the-art manufacturing facility in Gloucestershire, UK, and holds certifications such as BRC, underscoring its commitment to quality and compliance. The website reflects a professional and consistent brand image, targeting businesses requiring bespoke packaging solutions. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and security, including Google reCAPTCHA and cookie consent mechanisms. The site is HTTPS secured with a valid SSL certificate, ensuring encrypted communications. However, the WHOIS lookup for the domain www.leeways.co.uk failed due to a Nominet registration error, which is unusual but does not appear to affect the legitimacy of the website or business. Security posture is good with room for improvement in security headers and published policies. Overall, the website presents a trustworthy and professional digital presence aligned with the company's business operations.

O

Oxford Wine Company

oxfordwine.co.uk

55

Oxford Wine Company is a well-established UK-based wine and spirits merchant founded in 1999, offering retail and wholesale services alongside an award-winning wine education school. The company maintains a strong market position with a diverse portfolio including wine tastings, bespoke events, and WSET courses. Their website reflects a mature digital presence with comprehensive content, active blogging, and event promotion targeting wine enthusiasts and wholesale clients. Technically, the site is built on WordPress with modern plugins and SEO optimizations, providing a good user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR-aligned consent management. Overall, the site demonstrates high professionalism and trustworthiness, supporting the company's credible market standing.

M

MISSION MOTORSPORT

missionmotorsport.org

10

Mission Motorsport is a UK-based non-profit charity dedicated to supporting wounded, injured, and sick serving and veteran soldiers through motorsport and automotive industry opportunities. The organization provides rehabilitation, vocational training, and employment pathways, engaging over 2000 beneficiaries since 2012. Their market position is strong within the veteran support and motorsport community, with recognized partnerships and a professional online presence. Technically, the website is built on Squarespace, featuring embedded multimedia content and integrated analytics, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements such as HSTS and DNSSEC are recommended. Overall, the site demonstrates a trustworthy and professional digital footprint consistent with a legitimate charity.

J

JCT Childrens Foundation

jctchildrensfoundation.org

45

The John C Thomas Children's Foundation is a well-established non-profit organization dedicated to supporting orphaned and vulnerable children in Malawi. Their services include providing shelter, nutrition, sanitation, clean water, education, and awareness programs on HIV/AIDS and Cholera. The foundation has a strong market position with over 20 years of operational history and a medium-sized reach, supported by a consistent brand and active social media presence. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPBakery, offering good mobile optimization and SEO practices. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers, and no explicit privacy or cookie policies, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

K

K & M Racing

kandmracing.co.uk

52

K & M Racing is a small, UK-based racehorse training partnership established in 2023 by David Killahena and Graeme McPherson. The company offers racehorse training, syndicate services, and horses for sale, positioning itself as a forward-thinking and innovative operation within the equine sports sector. Their website reflects a professional and consistent brand image, targeting racehorse owners and racing enthusiasts. Technically, the site is built on WordPress with popular plugins for SEO, GDPR compliance, and social media integration, demonstrating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent implemented, though the absence of security headers and incident response information suggests room for improvement. Overall, the website is trustworthy and well-maintained, supporting the company's business goals effectively.

T

The Bridge Cafe

bridgecafecheltenham.co.uk

44

The Bridge Café is a small hospitality business located in Cheltenham, UK, offering lunch and light dining options with a focus on locally sourced ingredients and fresh preparation. The website presents a professional and consistent brand image, targeting local residents and visitors seeking quality café services. The business leverages social media and online delivery platforms such as Deliveroo to extend its reach. Technically, the website is built on WordPress with popular plugins like Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity. The site is mobile optimized and includes SEO best practices, although accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and incident response transparency. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced compliance and security measures.

T

Tennium

tennium.com

10

Tennium is a Spain-based company specializing in tennis-related activities including the management of official ATP/WTA tournaments, player representation, and corporate consulting services. Established in 2015, it has positioned itself as a significant player in the tennis sports management sector, offering a multi-activity platform that supports business growth and player development. The website reflects a professional and consistent brand image with comprehensive content targeting tennis professionals, corporate clients, and fans. Technically, the website is built on WordPress using popular plugins such as LayerSlider and WPBakery Page Builder. It employs modern web technologies and integrates Google Analytics and Tag Manager for tracking. Hosting is provided by Acens Technologies, S.L.U. The site is mobile-optimized with good SEO and accessibility basics, though some improvements in accessibility could be made. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is strong, with clear privacy and cookie policies and an active consent mechanism. No incident response or security policy pages were found, indicating room for improvement in transparency and readiness. Overall, Tennium's website is trustworthy, professional, and well-aligned with its business goals. Strategic recommendations include enabling DNSSEC, implementing security headers, and publishing security policies to further strengthen its security posture and trustworthiness.

N

NME Networks

nmenetworks.com

10

NME Networks is a next generation global media network focusing on pop culture through the lens of music. Founded in 2021 and operating under the parent company Caldecott Music Group, it offers media content, brand management, and newsroom services. The website reflects a professional and consistent brand image targeting a general audience interested in music and pop culture. Technically, the site is built on modern frameworks such as Next.js and React, hosted on AWS infrastructure, and employs Google Analytics for user tracking. The site is mobile optimized and performs well with good SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks some security headers and explicit incident response policies. Privacy and cookie policies are present but lack a consent mechanism. Overall, the site is trustworthy with a legitimacy score of 85 and no signs of suspicious activity.

D

digris Ltd

digris.uk

39

Digris Ltd is a specialized Anglo-Swiss network operator providing DAB+ broadcasting services primarily in the United Kingdom, Switzerland, and France. The company offers a comprehensive suite of services including service planning, encoding, multiplexing, transmission, and monitoring, targeting radio stations and broadcasters. Their market position is that of a niche player with a strong technical focus and membership in industry bodies such as WorldDAB. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website employs modern web technologies including Vue.js, Google Analytics, and DigitalOcean hosting for media assets. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but no cookie consent mechanism is present. The security posture is good but could be enhanced by implementing additional HTTP security headers, publishing incident response and vulnerability disclosure policies, and improving GDPR cookie consent mechanisms. No critical vulnerabilities or suspicious content were detected. The WHOIS data is unavailable due to domain registration issues with the 'www.digris.uk' domain, which appears to be a subdomain or alias rather than a registered domain, slightly reducing trust but not undermining the legitimacy of the business. Overall, the website and business present a trustworthy and professional front with moderate technical maturity and good security hygiene. Strategic improvements in privacy compliance and security transparency would further strengthen their position.

D

digris AG

digris.fr

41

Digris AG is a specialized company providing comprehensive services in the digital radio broadcasting sector, particularly focusing on DAB+ technology. They offer a full range of services including site studies, installations, supervision, and development of digital radio platforms. The company operates multiple local and national multiplexes primarily in France and Switzerland, positioning itself as a key regional player in digital radio infrastructure. Their website reflects a professional and consistent brand image with clear contact information and active social media presence. From a technical perspective, the website employs modern web technologies such as Vue.js and integrates analytics tools like Google Analytics and Google Tag Manager. Hosting appears to be on DigitalOcean, and the site is mobile-optimized with good user experience. However, there is room for improvement in SEO and accessibility features. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, indicating potential compliance and security posture gaps. The absence of WHOIS data limits the ability to fully verify domain legitimacy and registration details, which slightly reduces trustworthiness. Nonetheless, the professional presentation and detailed contact information support the legitimacy of the business. Overall, the site is safe, with no adult or questionable content detected, and serves a general audience interested in digital radio broadcasting solutions.

P

Plasztikgyár

plasztikgyar.hu

44

Plasztikgyár.hu is a Hungarian-based manufacturing company specializing in the production of plastic cards, recycled plastic cards, card holders, and custom lanyards. Established since 2009, the company serves a broad B2B audience with over 10,000 business clients, offering personalized and premium-quality products. Their website reflects a professional and consistent brand image with a focus on quality and customer satisfaction. Technically, the site uses modern frameworks such as Yii and Bootstrap, integrates multiple analytics and marketing tools, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and CSRF protections, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Overall, the site is well-structured, user-friendly, and trustworthy.

A

Adathordozok.hu

adathordozok.hu

45

Adathordozok.hu is a Hungarian company specializing in professional printing and promotional product services, including CD/DVD duplication, custom USB drives, powerbanks, and branded audio products. Established in 2004, the company has a strong market presence with over 15 years of experience, serving multinational corporations, musicians, and SMEs. Their business model focuses on B2B and B2C online sales supported by a proprietary production facility and extensive inventory, enabling fast delivery and competitive pricing. The website reflects a mature digital presence with clear branding and customer trust signals such as testimonials and social media engagement. Technically, the site uses modern web technologies including jQuery, Bootstrap, and Google Analytics, with a custom or Yii-based CMS platform. The site is mobile-optimized and SEO-friendly, providing a good user experience.

C

Családbarát Magyarország Központ Nonprofit Közhasznú Kft.

csalad.hu

62

csalad.hu is an official Hungarian government-affiliated family support portal operated by Családbarát Magyarország Központ Nonprofit Közhasznú Kft., founded in 2019. The website provides comprehensive information on family support programs, benefits, and calculators tailored for Hungarian families. It serves as a centralized resource to help families understand and access various governmental support schemes. The portal is well-positioned as a trusted source within the government and non-profit sector in Hungary.

kozadat.hu is a Hungarian government-operated public data search portal managed by Nemzeti Infokommunikációs Szolgáltató Zrt. The site provides access to various public data sets, legal drafts, government documents, and archives, serving citizens, researchers, and public sector stakeholders. The platform is part of the official Közadat program and links to multiple authoritative government resources, reinforcing its position as a trusted government information source. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and Modernizr for feature detection. It integrates Google Analytics for user tracking but lacks visible cookie consent mechanisms. The site appears moderately optimized for performance and mobile use, with basic accessibility features. The CMS or platform is not explicitly identified, suggesting a custom or government-developed solution. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML. However, no explicit security headers such as CSP or HSTS were detected in the provided content, indicating room for improvement. The absence of privacy and cookie policies and consent mechanisms also represents a compliance gap. No vulnerabilities or suspicious content were found, and the domain's WHOIS data confirms a long-standing, consistent registration aligned with the government entity. Overall, kozadat.hu is a credible and professional government portal with good content quality and business credibility. To enhance security posture and privacy compliance, it should implement security headers, publish clear privacy and cookie policies, and introduce user consent mechanisms for tracking technologies.

B

Bundesarbeitgeberverband Chemie

bavc.de

52

The Bundesarbeitgeberverband Chemie (BAVC) is a leading German employer association representing the chemical, pharmaceutical, rubber, and plastics processing industries. It advocates for tariff and social policy interests of its 10 regional member associations comprising 1,700 companies and 585,000 employees. The website serves as an information hub for members, policymakers, and the public, providing news, publications, and service information. The site is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital presence. Technically, the website is built on Joomla CMS with modern JavaScript libraries such as Awesomplete for autocomplete, Tiny Slider for carousels, and Kick Consent Manager for cookie compliance. It integrates Google Analytics and Google Tag Manager for analytics and marketing. The site uses HTTPS with good SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent management, and CSRF token usage in forms. However, explicit security headers are not detected, and no public security policy or incident response contacts are provided. No vulnerabilities or suspicious external links were found. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It effectively supports the organization's business goals and stakeholder engagement. Strategic improvements could include adding security headers, publishing a vulnerability disclosure policy, and enhancing accessibility features.

S

Senic

senic.com

67

Senic is a small technology-focused e-commerce company specializing in smart switches compatible with Philips Hue, Sonos, and HomeKit ecosystems. The company targets consumers and businesses interested in smart home automation, offering niche products that enhance smart home control. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Weglot for multilingual support and various marketing and analytics tools. The technical infrastructure is robust, with fast performance, mobile optimization, and good accessibility. Security posture is solid with HTTPS enforced and standard security headers likely in place, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. However, the absence of WHOIS registration data reduces domain trustworthiness and warrants further verification. Overall, the website presents a professional and trustworthy front for its business, with room for improvement in transparency around security and domain registration.

C

Centigrade GmbH

centigrade.de

48

Centigrade GmbH is a medium-sized German technology company specializing in human-centered IT solutions, focusing on digital product development, UX design, software engineering, and AI integration. The company serves business clients seeking to enhance user experience and digital transformation success. Their website reflects a mature digital presence with comprehensive service descriptions, client references, and industry awards, positioning them as a reputable player in the UX and software engineering consultancy market. Technically, the website employs a modern tech stack including jQuery, lazy loading, Google Analytics with privacy features, and a consent management platform (Usercentrics). The site is mobile-optimized, accessible, and SEO-friendly, though it appears to use a custom or proprietary CMS. Performance is moderate, with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS, uses consent management for GDPR compliance, and implements form validation with required privacy consent. However, it lacks explicit security policies, incident response information, and security.txt files. No critical vulnerabilities or exposed sensitive data were detected, indicating a solid security posture but with room for improvement in transparency and security headers. Overall, the website is professional, trustworthy, and compliant with privacy regulations. The risk level is low, but strategic enhancements in security documentation and incident response readiness are recommended to further strengthen trust and compliance.

F

FACT

fact.co.uk

66

FACT Liverpool is a prominent UK-based non-profit organization dedicated to the support and exhibition of art, film, and new media. It operates a multi-functional venue featuring galleries, a cinema, a café, and event spaces, positioning itself as a leading cultural institution in Liverpool and the UK. The organization offers a diverse range of services including exhibitions, film screenings, artist residencies, educational programs, and venue hire, targeting a broad audience interested in contemporary art and digital culture. Technically, the website demonstrates a mature digital infrastructure utilizing modern analytics tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Inspectlet, alongside asynchronous script loading for performance optimization. The site is built on a CMS platform likely powered by SEOmatic and Craft CMS, with good mobile optimization, accessibility, and SEO practices. The presence of cookie consent management and comprehensive privacy policies indicates a strong commitment to privacy compliance. From a security perspective, the site enforces HTTPS and employs standard best practices, though it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data is unavailable due to domain naming rules errors, but other trust indicators such as charity registration numbers and consistent branding support the legitimacy of the domain. Overall, FACT Liverpool presents a professional, secure, and privacy-conscious online presence aligned with its cultural mission. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

S

SPACEFOOT SAS

golf-and-co.de

60

Golf and co is a specialized e-commerce retailer focused on golf equipment and accessories, serving primarily the German and broader European market. The company operates under the legal entity SPACEFOOT SAS based in France, offering a wide range of products including golf clubs, bags, balls, shoes, and clothing from well-known brands. The website demonstrates a solid market position as a specialist retailer with a comprehensive product catalog and customer service infrastructure. Technically, the site is built on a Magento-based platform (OpenMage), integrating modern marketing and analytics tools such as Google Analytics, Actito, and GDPR-compliant consent management. Security measures include HTTPS enforcement and invisible reCAPTCHA on forms, although some security headers could be improved. Overall, the site is professional, user-friendly, and trustworthy, with clear contact information and secure payment options. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility features.

S

SPACEFOOT SAS

golf-and-co.se

57

Golf and co is a specialized e-commerce retailer focused on golf equipment and accessories, targeting golf enthusiasts primarily in Sweden and Europe. The company operates under the legal entity SPACEFOOT SAS, with customer service based in France. The website offers a broad range of products including clubs, balls, bags, shoes, and training equipment from well-known brands such as Taylormade, Callaway, and Srixon. The business model centers on online retail with secure payment options and a customer-friendly return policy. The market position is that of a specialist retailer with a consistent brand presence and a good reputation for service and product variety. Technically, the website is built on the Magento Open Source platform (OpenMage fork), utilizing modern web technologies including Google Analytics for tracking, Google reCAPTCHA for form security, and Actito for marketing automation. The site is mobile-optimized with good navigation and SEO practices. Performance is moderate with room for improvement in accessibility features. Hosting details are not explicit but the domain registrar is Gandi SAS. From a security perspective, the site enforces HTTPS and uses invisible reCAPTCHA on forms, indicating a good baseline security posture. However, DNSSEC is not enabled and advanced security headers are missing, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a clear privacy policy, cookie consent mechanisms, and GDPR adherence. Overall, the website presents a professional and trustworthy online retail experience with solid business credibility and technical implementation. The main risk lies in minor security enhancements and verifying the unusual WHOIS creation date anomaly. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing a vulnerability disclosure policy to further strengthen trust and security posture.

S

SPACEFOOT SAS

golf-and-co.it

63

Golf and co is a specialized e-commerce retailer focused on golf equipment and accessories, targeting primarily the Italian market with a multi-country European presence. The company operates under SPACEFOOT SAS, a French legal entity, providing customer service from France. The website offers a comprehensive catalog of golf products including clubs, balls, bags, carts, shoes, clothing, gloves, and accessories from well-known brands. The business model is retail e-commerce with secure payment options and customer-friendly return policies. Technically, the website is built on a Magento (OpenMage) platform, leveraging modern web technologies and marketing tools such as Google Analytics, Google Ads, and Actito, with a GDPR-compliant consent management platform in place. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, though security headers could be improved. WHOIS data shows anomalies with a future creation date, which is suspicious but likely a data error. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

T

Training-Fit : Fitness- und Muskelaufbaugeräte

training-fit.ch

66

Training-Fit.ch is an e-commerce retailer specializing in fitness, muscle building, crossfit, yoga, and martial arts equipment and apparel. The website offers a broad catalog of products from well-known brands, targeting fitness enthusiasts primarily in Switzerland and neighboring regions. The business model focuses on online sales with fast shipping options and secure payment methods. The site demonstrates consistent branding and a professional design, supporting a medium-sized retail operation. Technically, the website is built on the Magento OpenMage platform, utilizing modern web technologies including Google Analytics, Google Ads, and reCAPTCHA for security and marketing. The site is mobile-optimized and features good SEO practices, although accessibility could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, explicit security headers are not clearly present, and there is no published security policy or incident response contact. Privacy compliance is partially addressed with a cookie consent mechanism, but no clear privacy policy or terms of service pages were found. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with good business credibility but some gaps in privacy and security transparency. Strategic improvements in policy publication, security headers, and contact information would enhance trust and compliance.

S

Smash-Expert

smash-expert.ch

67

Smash-Expert is a specialized e-commerce retailer focused on racket sports equipment including tennis, padel, badminton, table tennis, and squash. The website offers a broad catalog of products from multiple well-known brands, targeting sports enthusiasts and athletes primarily in Switzerland. The business model is retail-oriented with emphasis on fast delivery and secure payment options. Technically, the website is built on the Magento (OpenMage) platform, leveraging modern marketing and analytics tools such as Google Analytics, Google Ads, and Actito marketing automation, with consent management implemented via the IAB TCF framework. Security posture is strong with HTTPS enforced and use of Google reCAPTCHA, though some security headers could be improved. Privacy compliance is basic, lacking explicit privacy and cookie policies in the visible content. Overall, the site is professional, well-structured, and trustworthy, but could enhance transparency and compliance documentation.

P

Pet & Garden – Ihre Online-Zoohandlung und Ihr Gartencenter

pet-and-garden.ch

67

Pet & Garden is an established Swiss online retailer specializing in pet supplies, garden products, and agricultural equipment. The website offers a broad catalog of products with a focus on fast shipping and customer service, targeting pet owners, gardeners, and farmers primarily in Switzerland and German-speaking regions. The business model centers on e-commerce retail with a medium-sized market presence and a consistent brand image. Technically, the website is built on a Magento-based platform (OpenMage variant) and integrates modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito for marketing automation. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security-wise, the site enforces HTTPS, uses Google reCAPTCHA for bot protection, and implements a consent management platform for GDPR compliance. However, explicit privacy and cookie policies are missing, and no direct contact information or security incident response details are provided, which are areas for improvement. Overall, the website is secure, professional, and trustworthy, but enhancing transparency and compliance documentation would strengthen its security posture and user trust.

P

Pecheur-Store

pecheur-store.ch

66

Pecheur-Store is a German-language e-commerce retailer specializing in fishing equipment, including rods, reels, baits, and accessories for various fishing types such as carp, predator, spinning, and sea fishing. The website targets fishing enthusiasts primarily in Switzerland and German-speaking regions, offering a broad product catalog with fast shipping and secure payment options. The business operates as a small retail entity with a focused niche market position. Technically, the website is built on the Magento (OpenMage) platform, utilizing modern web technologies including Google Tag Manager, Google Analytics, Google Ads conversion tracking, and reCAPTCHA v3 for bot protection. The site demonstrates good mobile optimization and SEO practices, although some accessibility features are basic. Performance is moderate with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and employs reCAPTCHA and a consent management platform for GDPR compliance. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not detected, and no privacy policy or terms of service are present on the homepage, which are areas for improvement. WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website presents a moderate risk profile with good business credibility but requires enhancements in privacy disclosures and security header implementation to improve compliance and security posture.

S

SPACEFOOT SAS

on-fight.ch

67

On-Fight.ch is a professional e-commerce platform specializing in martial arts and fitness equipment, serving primarily the European market with a focus on German and French-speaking customers. The company SPACEFOOT SAS operates the site, providing a wide range of products including gloves, protective gear, clothing, and training equipment for various martial arts disciplines. The website demonstrates a solid market position in the niche retail sector with fast shipping and customer service based in France. Technically, the site is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Tag Manager, and Actito marketing automation. Security measures include HTTPS, invisible reCAPTCHA, and a consent management platform, reflecting good privacy compliance and user data protection. Overall, the site is well-structured, professionally designed, and trustworthy, with no indications of malicious activity or content safety concerns.

M

Made In Paradis

madeinparadis.ch

67

Made In Paradis is a Swiss-based e-commerce retailer specializing in women's fashion, including clothing, shoes, sportswear, accessories, and beauty products. The website offers a broad catalog with over 300 brands, targeting female consumers interested in fashion and sportswear. The business operates primarily online with a medium-sized market presence in Switzerland and neighboring European countries. Technically, the website is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Ads, and Actito. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS, reCAPTCHA, and secure payment methods, though some security headers and policies could be improved. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain registration is consistent with the business claims, and no suspicious patterns were detected. The site maintains active social media channels and partners with several related retail domains.

D

Daily Bikers

daily-bikers.ch

67

Daily Bikers is a specialized e-commerce retailer based in Switzerland focusing on motorcycle equipment and parts. The website offers a broad catalog of products including helmets, jackets, gloves, and accessories targeting motorcycle enthusiasts primarily in German-speaking regions. The business model is retail-oriented with an emphasis on fast delivery and secure payment options. The website demonstrates a good level of digital maturity with modern tracking and advertising technologies integrated, including Google Analytics, Google Tag Manager, and reCAPTCHA for bot protection. The platform is built on Magento (OpenMage variant), providing a robust e-commerce infrastructure. Security posture is solid with HTTPS enforced and bot protection mechanisms, though there is room for improvement in security headers and explicit security policies. Privacy compliance is basic, with a consent mechanism present but no explicit privacy or cookie policy pages detected in the provided content. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

T

Tripnbikers

tripnbikers.ch

67

Tripnbikers is a specialized e-commerce retailer focused on motorcycle luggage and accessories, including top cases, saddlebags, and rider backpacks. The website targets motorcycle enthusiasts primarily in Switzerland and German-speaking regions, offering products from well-known brands such as Givi, Shad, and SW-Motech. The business operates a professional online store with a clear product catalog and marketing presence. Technically, the site is built on Magento (OpenMage) with modern frontend technologies and integrates Google Analytics, Google Ads, and reCAPTCHA for security and marketing. The site uses HTTPS and has a cookie consent mechanism, indicating basic GDPR compliance, though explicit privacy and terms of service pages were not detected in the provided content. Security posture is good with no obvious vulnerabilities or exposed sensitive data, but could be improved by adding explicit security headers and publishing security policies. Overall, the website is professional, trustworthy, and safe for general audiences.

H

House of Rugby

house-of-rugby.ch

67

House of Rugby is a specialized e-commerce retailer focused on rugby sportswear, equipment, and official club and national team merchandise. The website targets rugby players and fans primarily in Switzerland and French-speaking regions, offering a wide range of products including jerseys, shoes, and protective gear. The business model centers on online retail with fast shipping and secure payment options, positioning itself as a niche market leader in rugby apparel and accessories. Technically, the website is built on the Magento OpenMage platform, leveraging modern frontend technologies such as Google Tag Manager, Google Analytics, Google Ads, and reCAPTCHA v3 for bot protection. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Performance is moderate, with a well-structured navigation system and consistent branding. From a security perspective, the site enforces HTTPS and uses consent management platforms to comply with privacy regulations. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and no public security or incident response policies are available. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy and cookie policies are not explicitly found, though consent mechanisms are implemented. Overall, the website presents a professional and trustworthy e-commerce platform with a solid security posture but could enhance transparency and compliance by publishing privacy, cookie, and security policies. The domain WHOIS data aligns well with the business claims, supporting legitimacy and trustworthiness.

H

Handball-Store: Online-Handball-Spezialist

handball-store.ch

66

Handball-Store.ch is a specialized e-commerce retailer focused on handball sports equipment, including shoes, balls, clothing, and accessories. The website targets handball players, teams, and clubs primarily in German-speaking regions, offering a comprehensive product catalog with fast shipping options. The business operates in the retail sector within Switzerland, maintaining a consistent and professional online presence. Technically, the site is built on Magento (OpenMage), leveraging modern marketing and analytics tools such as Google Analytics, Google Tag Manager, Google Ads, and Actito for marketing automation. The website is mobile-optimized with good navigation and content relevance. Security-wise, the site enforces HTTPS and uses reCAPTCHA for bot protection, but lacks some security headers and explicit security policies. Privacy compliance is partially implemented with a consent mechanism but lacks visible privacy and cookie policies. Overall, the site is legitimate and trustworthy but would benefit from enhanced transparency and security documentation.