Security Directory

A

Autohaus Almtal Rudolf Gundendorfer GmbH

autohaus-almtal.at

66

Autohaus Almtal Rudolf Gundendorfer GmbH is a medium-sized automotive dealership specializing in Volkswagen group brands including Volkswagen, Audi, Seat, Skoda, and Cupra. The company operates primarily in Austria, offering new and used car sales, vehicle servicing, financing, and insurance services. The website reflects a professional and consistent brand presence with a clear focus on automotive customers in the region. Technically, the site is built on the Plone CMS platform and incorporates modern web technologies such as Google Tag Manager for analytics and OneTrust for cookie consent, indicating a moderate level of digital maturity. Security posture is strong with HTTPS enforced and multiple security headers present, although the absence of a published privacy policy and terms of service pages represents a compliance gap. Overall, the site is trustworthy and well-structured but could improve privacy transparency and incident response readiness.

F

Fundación Global Nature

fundacionglobalnature.org

60

Fundación Global Nature is a well-established Spanish non-profit organization dedicated since 1993 to the conservation of nature and ecosystem functionality. The organization provides technical guidance, publishes environmental reports, and runs biodiversity protection projects. Their website reflects a mature digital presence built on WordPress with modern plugins supporting donations and event management. The site targets environmental stakeholders, companies interested in biodiversity, and the general public. The organization maintains a consistent brand and professional content quality, supporting its credibility in the non-profit environmental sector. Technically, the website uses a robust WordPress infrastructure with Elementor, WooCommerce, and GiveWP plugins. It integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, and LinkedIn Insight, indicating a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Hosting is provided by Dinahosting s.l., with a domain age consistent with the organization's history. From a security perspective, the website enforces HTTPS and has domain status protections but lacks DNSSEC and some recommended security headers. No explicit security or incident response policies are published, and no vulnerability disclosure mechanisms are evident. Cookie consent and privacy policies are comprehensive and GDPR compliant, reflecting good privacy compliance. No critical vulnerabilities or suspicious content were detected. Overall, Fundación Global Nature's website presents a trustworthy, professional, and compliant digital front for a medium-sized non-profit organization. Strategic improvements in security headers, DNSSEC, and incident response transparency would enhance their security posture and trust further.

M

Mainstream Public Cloud Services d.o.o.

tanjug.rs

55

Tanjug.rs is a well-established Serbian news portal providing comprehensive coverage of national and international news including politics, sports, culture, and economy. The website offers multimedia content such as photo galleries, video stories, and live TV streaming, targeting a broad general audience interested in current events. The business model appears to be media publishing with subscription-based access for certain content, supported by advertising revenue. The domain has been active since 2008 and is hosted by Mainstream Public Cloud Services d.o.o., indicating a stable and legitimate online presence. Technically, the website employs modern web technologies including Google Fonts, jQuery Fancybox, Swiper, Owl Carousel, and Google Tag Manager for analytics and advertising. The site is mobile-optimized with good navigation and content structure, although accessibility features are basic. Performance is moderate, with room for improvement in loading speed and advanced SEO. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and advanced security headers such as Content-Security-Policy and X-Frame-Options. There is no visible security policy, incident response information, or vulnerability disclosure mechanism, which are areas for improvement. Privacy compliance is partial; a privacy policy is present but cookie consent mechanisms and GDPR compliance indicators are minimal. Overall, Tanjug.rs is a credible and professional media website with a solid business foundation and good technical implementation. However, enhancements in security posture, privacy compliance, and transparency regarding contact and incident response would strengthen trust and regulatory adherence.

A

Axians

axians.com

80

Axians is a global ICT services and solutions provider focused on delivering technology and human expertise to help enterprises navigate complexity and achieve sustainable competitive advantages. The company targets large organizations seeking digital transformation, managed services, and technology integration. The website reflects a mature digital presence built on WordPress with SEO optimization and social media integration. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are lacking. The absence of WHOIS domain registration data is a notable gap, warranting further verification. Overall, Axians presents as a credible enterprise with a professional online presence.

D

DICO e.V.

dico-ev.de

47

DICO e.V. is a well-established German non-profit organization dedicated to promoting compliance across various industries in Germany. Founded in 2012, it serves as a central forum and network for compliance professionals, offering publications, events, digital tools, and a job board. The website reflects a mature digital presence with strong SEO, structured data, and professional design. Technically, it is built on WordPress with modern plugins and hosted on a reputable provider. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy and professionally managed, targeting compliance experts and organizations in Germany.

S

Startnext

startnext.de

71

Startnext is a well-established German crowdfunding platform founded in 2010, focusing on supporting creative, sustainable, and community-driven projects. The platform offers project hosting, promotion, and community engagement services, positioning itself as a trusted player in the crowdfunding space within German-speaking markets. The website is professionally designed with consistent branding and provides comprehensive privacy and cookie policies compliant with GDPR. Technically, the site uses a modern JavaScript stack with libraries such as jQuery, GSAP, and Swiper, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the platform demonstrates a high level of trustworthiness and professionalism.

C

chopper-brillen.de

chopper-brillen.de

53

chopper-brillen.de is a specialized retail website operated by Brillen Schwarz, focusing on motorcycle and chopper eyewear. The business offers personalized fitting services, including advanced options like wind tunnel testing and progressive lenses, targeting motorcycle enthusiasts primarily in Germany. The website demonstrates a solid market position within its niche, supported by strong customer reviews and active social media engagement. Technically, the site is built on WordPress with modern plugins for SEO, page building, and GDPR compliance, hosted on rzone.de servers. The site is mobile-optimized and performs moderately well, with good SEO practices in place. Security posture is adequate with HTTPS enabled and some privacy plugins, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms of service pages. Overall, the site is professional and trustworthy, with room for improvement in security and compliance documentation.

C

Cadolto

cadolto.com

55

Cadolto GmbH is a German company specializing in modular construction technology, focusing on modular room solutions for healthcare, research, telecommunications, and other sectors. The company emphasizes efficiency, cost control, quality, and flexibility, with a long history dating back to 1890. Their business model centers on delivering modular buildings such as hospitals, intensive care units, laboratories, and administrative buildings. The website presents a professional image with comprehensive content and customer testimonials, targeting institutional clients requiring modular construction solutions. Technically, the website is built on WordPress using the Elementor page builder and The7 theme, incorporating modern web technologies and SEO best practices. The site is mobile-optimized and performs moderately well, with good security headers and HTTPS enforcement. Privacy and cookie policies are present and GDPR compliant, though no explicit security policy or incident response information is published. Security posture is solid with no obvious vulnerabilities or exposed sensitive data. However, the WHOIS data is missing or indicates the domain may be unregistered or privacy protected, which conflicts with the company's claimed long history and reduces trustworthiness. Overall, the site is professional and secure but would benefit from clarifying domain registration details and publishing formal security policies. The risk assessment is moderate, with recommendations to improve transparency around domain registration, incident response contacts, and security policies to enhance trust and compliance.

O

Octane Magazin

octane-magazin.de

51

Octane Magazin operates as a leading automotive media publisher specializing in classic and sports cars, targeting enthusiasts primarily in Germany, Austria, and Switzerland. The website offers rich editorial content, e-commerce capabilities for subscriptions and special editions, and advertising opportunities, positioning itself as a premium brand in the automotive media sector. Technically, the site is built on WordPress with a mature plugin ecosystem supporting SEO, social sharing, and e-commerce functionalities. The infrastructure appears stable with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, reflecting GDPR adherence with clear policies and consent banners. Overall, the site demonstrates high professionalism and trustworthiness, with no critical security or content safety concerns.

I

Integrity S.A.

integrity.pt

78

Integrity S.A. is a specialized cybersecurity company operating internationally with a strong focus on pentesting, consulting, auditing, training, and managed security services. The company is positioned as a trusted provider with recognized certifications such as ISO 27001, CREST, and PCI QSA, serving a diverse range of sectors including banking, energy, government, and healthcare. Their business model revolves around delivering comprehensive cybersecurity solutions and compliance advisory to organizations worldwide. Technically, the website employs modern frameworks like Bootstrap and jQuery, integrates Google Analytics and reCAPTCHA for security and analytics, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS, Content Security Policy, and consent-based cookie management, though some security headers could be enhanced. Overall, the site reflects a mature digital presence with professional branding and clear trust signals. The domain registration aligns well with the business claims, reinforcing legitimacy. No critical vulnerabilities or suspicious content were detected.

M

Mannheimer Versicherung AG

belmot.de

65

BELMOT is a specialized insurance brand under Mannheimer Versicherung AG, focusing on classic vehicle insurance for Oldtimers and Youngtimers. The website presents a professional and consistent brand image, targeting classic car enthusiasts and owners. It offers key insurance services such as all-risk coverage and value appreciation protection. The site is built on a modern technical stack including Liferay DXP and React, with integration of Usercentrics for consent management and Piwik Pro for analytics. The website is well-structured, mobile-optimized, and provides clear navigation and content relevant to its niche audience. Security measures include HTTPS enforcement and a Content Security Policy, but explicit security and incident response policies are not published. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the site demonstrates a mature digital presence with room for improvement in transparency around security policies and WHOIS data clarity.

Albtal-Gummiwerke HARTIG GmbH is a medium-sized, family-run German manufacturing company specializing in rubber products with over 85 years of industry experience. The company offers a broad range of products including profiles, form and composite parts, configured products, and rubber compounds, serving national and international industrial clients across multiple sectors. Their business model focuses on B2B manufacturing with an emphasis on sustainability, quality, and customer collaboration. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern JavaScript libraries such as jQuery, Rocksolid Slider, Mmenu, and Swiper for enhanced user experience. The site is mobile-optimized and performs moderately well, though accessibility features could be improved. SEO is basic but functional. Analytics are implemented via Google Analytics 4 with moderate user tracking. From a security perspective, the site enforces HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks visible security headers and explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, which may pose GDPR compliance risks. Overall, the website is trustworthy and professionally maintained, with no signs of malicious content or blocking by WAFs. Strategic improvements in privacy compliance, security policy transparency, and accessibility would enhance the site's security posture and regulatory adherence.

B

BASYS Brinova GmbH

basys-brinova.de

50

BASYS Brinova GmbH is a medium-sized, well-established IT services company based in Bremen and Oldenburg, Germany, and part of the connexta group. The company offers a comprehensive portfolio of IT solutions including consulting, managed services, IT security, backup, cloud, and virtualization, targeting primarily medium-sized businesses in the region. Their website reflects a professional and consistent brand image with detailed service descriptions and a clear regional focus. Technically, the site is built on WordPress with modern plugins and tracking tools, showing good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

L

LibreTexts

libretexts.org

71

LibreTexts is a well-established non-profit platform founded in 2016, specializing in open educational resources (OER) including customizable textbooks, adaptive homework, and interactive learning materials. It serves educators and students primarily in the United States, offering a comprehensive ecosystem for open education. The website is professionally designed using Drupal 10 and modern web technologies, providing excellent user experience and mobile optimization. The platform is recognized for its extensive textbook libraries and adaptive homework system, positioning it as a leader in the OER space. Security posture is generally good with HTTPS and domain protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Contact information is limited to email, with no phone numbers or physical addresses disclosed. Overall, LibreTexts demonstrates high business credibility and trustworthiness with strong community engagement and educational focus.

U

UBIQ AG

ubiq.swiss

49

UBIQ AG is a Swiss-based small design agency specializing in web design, graphic design, brand design, product design, and webshop development. The company showcases a portfolio of projects for various clients, indicating a focus on regional business customers seeking professional digital and creative services. The website is built on Joomla CMS and employs a modern JavaScript technology stack including jQuery, Swiper, and Matomo analytics, reflecting a moderate level of digital maturity. While the site design and user experience are good, there is room for improvement in accessibility and SEO optimization. Security posture is moderate; HTTPS is used, but no DNSSEC or security headers are detected, and privacy compliance is lacking due to absence of privacy and cookie policies. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, the website is professional but could enhance trust and compliance by adding privacy policies, security headers, and contact information.

G

GastroSuisse

gastrosuisse.ch

62

GastroSuisse is the largest hospitality employer association in Switzerland, representing approximately 20,000 members. The organization provides a broad range of services including membership benefits, education and training programs, legal advice, and industry representation. Their website is professionally designed and targets hospitality professionals and businesses within Switzerland. The business model centers on membership and service provision to the hospitality sector, positioning GastroSuisse as a key industry player in the Swiss market. Technically, the website is built on Silverstripe CMS 5.3 and integrates modern tools such as Google Tag Manager and CookieYes for consent management. The site demonstrates good mobile optimization and SEO practices, with a moderate performance profile. Accessibility is basic but functional. The use of reCAPTCHA and cookie consent mechanisms indicates a mature approach to user privacy and security. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes important security headers. There is no evidence of exposed sensitive data or vulnerable libraries. However, the absence of a dedicated security policy or incident response contact information suggests room for improvement in transparency and preparedness. GDPR compliance is well addressed through comprehensive privacy and cookie policies. Overall, GastroSuisse presents a trustworthy and professional online presence with a solid security posture and good privacy compliance. Strategic enhancements in security policy publication and incident response readiness would further strengthen their position.

E

Element Green

element-green.com

58

Element Green operates as a network of 17 owner-managed companies specializing in interior and exterior greening solutions across Germany, Austria, and Switzerland. Their services include office greening, object greening, vertical and horizontal plantings, and professional plant care, positioning them as a collaborative and experienced player in the real estate and hospitality sectors. The website is professionally designed with comprehensive content, clear navigation, and good mobile optimization, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and Yoast SEO, employing modern libraries and security best practices such as HTTPS and security headers. However, the absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and contact information suggest a legitimate business. Privacy compliance is strong with a detailed privacy policy, but the lack of a cookie consent mechanism and security incident response policy are areas for improvement. Overall, the site scores well on content quality and technical implementation but should address compliance and domain legitimacy issues to enhance trust and security posture.

M

Medallia

medallia.com

76

Medallia is a leading enterprise software company specializing in experience management solutions that improve customer, employee, contact center, and digital experiences. Their platform integrates AI and analytics to provide actionable insights for businesses globally. The website reflects a mature digital presence with comprehensive content, multi-language support, and strong branding consistency. Technically, the site is built on WordPress, hosted on AWS infrastructure, and leverages modern marketing and analytics technologies such as Google Tag Manager, Adobe DTM, Marketo, and Thunderhead. Security posture is robust with HTTPS enforcement, enterprise-grade certifications (ISO 27001, SOC 2), and a dedicated security page, although incident response and vulnerability disclosure information could be more explicit. The absence of WHOIS data limits domain registration trust assessment but does not detract from the overall professionalism and trustworthiness of the site. Recommendations include publishing incident response contacts, adding a vulnerability disclosure policy, and enhancing accessibility features to further strengthen security and compliance.

M

Medallia

kampyle.com

76

Medallia is a leading enterprise software company specializing in experience management solutions that improve customer, employee, contact center, and digital experiences. Their SaaS platform integrates AI and analytics to provide actionable insights, targeting large organizations globally. The website reflects a mature digital presence with comprehensive content, professional design, and strong branding consistency. Technically, the site leverages modern marketing and analytics technologies including Google Tag Manager, Adobe DTM, Marketo, and others, hosted likely on AWS infrastructure with WordPress CMS. Security posture is robust with HTTPS, security headers, and enterprise-grade security messaging, though explicit incident response and vulnerability disclosure policies are not publicly visible. Privacy and cookie policies are comprehensive and GDPR compliant. WHOIS data is unavailable, indicating privacy protection, which is justified for this business type. Overall, the site is trustworthy, professional, and well-optimized.

S

SK ID Solutions AS

skidsolutions.eu

63

SK ID Solutions AS is a well-established Estonian technology company specializing in secure e-identity and digital signing solutions since 2001. Their flagship services include Smart-ID, Mobile-ID, Authentigate, Timestamping, and Certificates, serving over 4 million users and more than 1000 businesses globally. The company holds significant trust indicators such as ISO 27001 certification, Qualified Trust Services Provider status, and active participation in European standardization bodies like ETSI. Technically, the website is built on WordPress with modern libraries and frameworks, optimized for mobile and SEO, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and incident response transparency. Overall, the website and business present a high level of professionalism and trustworthiness, with minor gaps in privacy consent mechanisms and explicit security policies.

S

SK ID Solutions | International e-identity solutions since 2001

sk.ee

63

SK ID Solutions is a well-established technology company specializing in secure e-identity and digital signing solutions, operating internationally since 2001. Their key offerings include Smart-ID, Mobile-ID, Authentigate, Timestamping, and Certificates, serving over 4 million users and more than 1000 businesses globally. The company holds notable certifications and awards, including the Strongest in Estonia title and KPMG ISO certification, reinforcing their market credibility. Technically, the website is built on WordPress with modern libraries such as jQuery, Bootstrap, Flickity, and GSAP, providing a responsive and professional user experience. SEO is well implemented with Yoast SEO plugin, and the site is mobile-optimized. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses reputable libraries but lacks explicit security headers and visible incident response or vulnerability disclosure information. Privacy compliance is good with a comprehensive privacy policy and cookie policy, though no active cookie consent mechanism is detected. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, incident response transparency, and cookie consent would enhance their security posture and compliance.

C

Campagna “No all’iniziativa dei Giovani socialisti” c/o PLR.I Liberali Radicali

iniziativa-giso-no.ch

50

The website iniziativa-giso-no.ch represents a political campaign opposing the Young Socialists' initiative in Switzerland. It provides detailed information about the initiative, reasons for opposition, and offers multiple engagement channels including newsletter subscriptions, committee membership, and testimonial contributions. The campaign targets Swiss voters and political stakeholders interested in democratic processes and taxation policies. The site is multilingual with Italian as the primary language and alternate versions in German and French. Technically, the website is built on WordPress 6.7.2, utilizing common plugins such as Formidable Forms for data collection, Bootstrap for responsive design, and integrates Google reCAPTCHA for spam protection. It employs modern JavaScript libraries for UI enhancements and tracking tools including Google Tag Manager and Facebook Pixel. The site is mobile optimized and presents a professional design with clear navigation. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks several important security headers such as Content-Security-Policy and X-Frame-Options. The privacy policy is present but basic and not fully GDPR compliant, and no cookie consent mechanism is implemented. No incident response or vulnerability disclosure information is available, which may impact trust and compliance. Overall, the website is functional and professional with moderate security posture and privacy compliance. Strategic improvements in security headers, privacy policy enhancement, and cookie consent implementation are recommended to strengthen trust and compliance.

A

Allianz «Nein zur Juso-Enteignungsinitiative» c/o FDP.Die Liberalen Schweiz

juso-enteignungsinitiative.ch

50

The website 'Nein zur Juso-Enteignungsinitiative' is a political advocacy platform opposing a Swiss federal initiative proposing a high inheritance tax. It is operated under the auspices of FDP.Die Liberalen Schweiz and targets Swiss voters and political stakeholders. The site provides information, engagement forms, testimonials, and donation options to support the campaign. Technically, it is built on WordPress with modern plugins and libraries, including Google Analytics and Facebook Pixel for tracking. Security posture is generally good with HTTPS and reCAPTCHA protections, but lacks explicit security headers and a cookie consent mechanism. Contact information is clearly provided, enhancing trustworthiness. Overall, the site is professional and well-branded, serving its advocacy purpose effectively.

A

Allianz «Nein zur Juso-Enteignungsinitiative» c/o FDP.Die Liberalen Schweiz

initiative-expropriation-non.ch

50

The website 'Nein zur Juso-Enteignungsinitiative' serves as a political campaign platform opposing a Swiss federal initiative proposing a high inheritance tax. It is affiliated with FDP.Die Liberalen Schweiz and targets Swiss voters and political stakeholders. The site provides information, engagement forms, and donation options to mobilize opposition. Technically, it is built on WordPress with modern plugins and frameworks, including Bootstrap and Formidable Forms, and integrates Google Analytics and Facebook Pixel for tracking. Security measures include HTTPS and reCAPTCHA on forms, though explicit security headers and cookie consent mechanisms are lacking. WHOIS data confirms legitimacy and consistency with the political organization. Overall, the site is professional, trustworthy, and well-structured, with minor compliance gaps.

Könnecke Begrünungen OHG is a well-established German family business specializing in interior greening and garden and landscape construction since 1990. The company offers comprehensive services including interior plant installations, garden design, maintenance, and floristry, serving a diverse clientele including companies, clinics, senior homes, galleries, and private customers across Germany. Their market position is that of a trusted regional expert with over 35 years of experience, supported by a professional and content-rich website. Technically, the website is built on WordPress using the Elementor framework, incorporating modern web technologies such as jQuery and Swiper for UI components. The hosting is managed via kasserver.com, and the site is SSL secured, ensuring encrypted communications. The site is moderately performant and well-optimized for mobile devices, though accessibility features are basic. From a security perspective, the site uses HTTPS but lacks important security headers and does not publish explicit security or incident response policies. No tracking or analytics scripts were detected, indicating a privacy-conscious approach, but the absence of a cookie consent mechanism despite having a cookie policy page is a compliance gap. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk assessment is low, with no signs of malicious content or suspicious domain registration patterns. Strategic recommendations include implementing security headers, adding a cookie consent mechanism, publishing a vulnerability disclosure or incident response policy, and regular security audits of plugins and themes to maintain a strong security posture.

E

Echallens Région Tourisme

echallens-tourisme.ch

54

Echallens Région Tourisme operates as a regional tourism information portal focused on promoting Echallens and the Gros-de-Vaud region in Switzerland. The website provides visitors with information about tourism, cultural heritage, and natural attractions, targeting tourists and visitors interested in exploring the region. The business model centers on tourism promotion and regional cultural engagement, positioning itself as a key local resource for travel and leisure activities. Technically, the website is built on WordPress using the Enfold theme and WooCommerce plugins, including booking functionalities. The site demonstrates good SEO practices with structured data and meta tags, and it is mobile optimized with moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no dedicated privacy or terms of service pages. Overall, the website is professional and trustworthy, serving its regional tourism purpose effectively.

C

Campagne « Non à l’initiative des Jeunes Socialistes » c/o PLR.Les Libéraux-Radicaux

initiative-js-non.ch

50

The website 'initiative-js-non.ch' is a political campaign platform opposing the Young Socialists' initiative in Switzerland. It provides detailed information about the initiative, arguments against it, and encourages public engagement through newsletter subscriptions, committee membership, testimonials, and donations. The campaign is affiliated with the PLR.Les Libéraux-Radicaux party, as evidenced by contact details and social media links. The site targets Swiss voters and political stakeholders, aiming to influence public opinion and voting outcomes. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for forms and testimonials. It uses Google Analytics and Facebook Pixel for tracking, and implements Google reCAPTCHA for form security. The site is mobile-optimized and has a good user experience with clear navigation and consistent branding. From a security perspective, the site enforces HTTPS and uses anti-bot measures on forms. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the campaign's legitimacy, showing consistent registration details. Overall, the website is professional, trustworthy, and serves its political advocacy purpose effectively. Strategic improvements in privacy compliance and security headers would enhance its posture and user trust.

P

PLR. Les Libéraux-Radicaux

initiative-resiliation-non.ch

49

The website initiative-resiliation-non.ch is a political campaign platform run by PLR. Les Libéraux-Radicaux opposing the UDC's initiative to terminate bilateral agreements with the EU. It provides detailed information about the initiative's risks, encourages public engagement through newsletter subscriptions, committee joining, testimonial submissions, and donations. The site targets Swiss voters and political supporters, emphasizing the economic and security consequences of the initiative. Technically, it is built on WordPress with modern JavaScript libraries and includes spam protection via Google reCAPTCHA. Social media integration and donation processing via Payrexx enhance user engagement. Security posture is adequate with HTTPS and form protections but lacks explicit security headers and a cookie consent mechanism. The domain registration aligns well with the website's political nature and Swiss location, indicating legitimacy.

S

StockholmMediaWeek

stockholmmediaweek.com

43

StockholmMediaWeek is a prominent Swedish media industry event organized by Sveriges Mediebyråer, serving as a key forum for marketing communication and media professionals. The event features seminars, awards (StockholmMediaAward), and networking opportunities, positioning itself as a major industry gathering in Sweden. The website reflects a professional and consistent brand presence with strong partner and sponsor associations. Technically, the site is built on WordPress with modern JavaScript libraries, offering good mobile optimization and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though the absence of security headers and a privacy policy page are notable gaps. The WHOIS data is missing or unavailable, which raises concerns about domain transparency despite the professional appearance and partner credibility. Overall, the site is trustworthy but would benefit from enhanced transparency and security documentation.

L

Link Campus University

unilink.it

61

Link Campus University is a medium-sized private university based in Rome, Italy, established in 1999. It offers a wide range of academic programs including undergraduate, graduate, doctoral, and master courses, with a strong emphasis on internationalization and research. The university operates from a historic campus and integrates traditional and innovative teaching methods. Technically, the website is built on TYPO3 CMS with modern front-end frameworks and includes compliance tools such as Cookiebot and Google Tag Manager. Security posture is solid with HTTPS and DNSSEC enabled, though explicit security policies and vulnerability disclosures are absent. Overall, the site is professional, well-branded, and trustworthy, serving a general audience of students and academics.

U

USPI Suisse

uspi.ch

48

USPI Suisse is a professional association representing real estate professionals in the French-speaking region of Switzerland. It focuses on advocacy at the federal level, professional training, and federating cantonal associations. The website is well-structured, professionally designed, and provides comprehensive information about the organization's activities, news, and resources. The technical infrastructure is based on WordPress with modern plugins such as Elementor and Rank Math SEO, ensuring good SEO and user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious patterns were detected. Overall, the site reflects a mature digital presence appropriate for a professional association.

M

My Tree Global OÜ

goplant.me

61

GoPlant is a small Estonian-based green technology startup focused on urban environmental improvement through a tree crowdfunding platform. The company enables users worldwide to donate for tree planting in various cities, calculate their carbon footprint, and participate in volunteer activities. The website demonstrates a moderate level of digital maturity, utilizing modern frontend technologies such as Bootstrap, jQuery, and slick carousels, and integrates analytics tools like Google Analytics and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks important security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the business credibility is supported by consistent branding, contact information, and social media presence. Strategic improvements in privacy disclosures and security policies are recommended to enhance trust and compliance.

F

ford.rs

ford.rs

66

Ford.rs is the official authorized importer and service provider for Ford motor vehicles in Serbia, operating since 2008. The website offers a comprehensive catalog of Ford vehicles including passenger cars, SUVs, hybrids, electric vehicles, and commercial vehicles, targeting Serbian consumers interested in Ford products. The business model focuses on vehicle sales, authorized servicing, test drives, and issuance of manufacturer certificates, positioning itself as a trusted local Ford representative. Technically, the site uses modern JavaScript libraries and frameworks such as Turbo Rails, Stimulus, Mapbox GL JS, and integrates Google Tag Manager for analytics and marketing. The site is mobile optimized with good navigation and professional design. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and published privacy or cookie policies. The domain is well-established since 2008, registered with a reputable registrar, and shows no suspicious patterns. Overall, the site is professional, trustworthy, and serves its business purpose effectively, though improvements in privacy compliance and security headers are recommended.

F

ford.lt

ford.lt

64

Ford.lt is the official Ford dealership website for Lithuania, providing comprehensive information about Ford vehicles, including electric and hybrid models, service bookings, promotions, and financing options. The site targets Lithuanian consumers interested in purchasing or servicing Ford vehicles and positions itself as the official representative of the Ford brand in the region. The website employs modern web technologies such as Ruby on Rails frameworks, Mapbox for mapping, and various JavaScript libraries to deliver a responsive and user-friendly experience. Security-wise, the site uses HTTPS and Google Tag Manager with default denied consent for ad and analytics storage, indicating a privacy-conscious approach. However, explicit privacy and cookie policies are not detected in the provided content, which is a compliance gap. The domain registration is consistent with Ford's official infrastructure, enhancing trust and legitimacy. Overall, the site is professionally designed, mobile-optimized, and trustworthy, but could improve privacy compliance and security header implementation.

E

Euronews.rs

euronews.rs

63

Euronews.rs is a Serbian language news portal providing up-to-date news and video stories covering politics, sports, business, culture, and health. It serves a regional audience in Serbia and Serbian-speaking communities, positioning itself as a trusted source for local and international news. The website is professionally designed with consistent branding and offers a variety of content including live TV streaming and weather forecasts. Technically, the site employs modern web technologies and integrates multiple analytics and advertising services, ensuring a moderate to good performance and mobile optimization. Security posture is solid with HTTPS and some security headers, though improvements are needed in DNS security and security policy transparency. Privacy compliance is weak due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is legitimate and well-established with a domain age consistent with its business history.

S

SEE ME Agency

seeme.agency

64

SEE ME Agency is a Swiss-based marketing and web design agency specializing in creating compelling websites and digital strategies to help businesses succeed. The website is professionally designed using WordPress with modern plugins such as Elementor and Yoast SEO, indicating a mature digital infrastructure. The site is well-optimized for SEO and mobile devices, providing a good user experience. Security posture is adequate with HTTPS enabled and a cookie consent mechanism in place, though there is room for improvement in security headers and explicit privacy and security policies. Overall, the site appears legitimate and trustworthy, targeting businesses in Switzerland seeking marketing services.

C

CleanR Grupa

cleanrgrupa.lv

53

CleanR Grupa is a Latvian company focused on sustainability, corporate governance, and circular economy initiatives. The company positions itself as a regional leader promoting sustainable development and environmental care, targeting Latvian businesses, investors, and stakeholders interested in ecological and social responsibility. The website reflects a professional and consistent brand image with clear messaging about its mission and services. Technically, the site is built on WordPress with modern plugins and libraries, including Yoast SEO, Google Tag Manager, and reCAPTCHA, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and anti-bot measures on forms, though it lacks explicit security policies and incident response contacts. Privacy compliance is addressed with accessible privacy and cookie policies and a consent mechanism. Overall, the site is trustworthy and professionally maintained, with room for improvement in security transparency and accessibility.

I

ICT Scouts/Campus Förderverein

ict-scouts.ch

55

ICT Scouts is a Swiss non-profit organization focused on identifying, nurturing, and connecting young ICT talents with the technology industry. Their mission is to bridge the gap between emerging tech talents and the innovation needs of companies through scouting, educational programs, and partnerships. The website reflects a clear focus on youth education and industry collaboration within Switzerland. The organization maintains a professional online presence with good content quality and consistent branding. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various JavaScript libraries for UI and animation. It uses Google Tag Manager for analytics and is built on the WebEdition CMS platform. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and accessibility. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not provide explicit security policies or incident response information. There is no visible cookie consent mechanism, which may impact privacy compliance. The WHOIS data aligns well with the website’s claims, indicating legitimacy and trustworthiness. Overall, ICT Scouts presents a trustworthy and professional digital presence with a strong business focus on ICT talent development. Strategic improvements in security policies, privacy compliance, and accessibility would enhance their security posture and user trust.

E

epp Communications

epp.mk

54

EPP Communications is a small media and communications company based in North Macedonia, established in 2010. The company focuses on delivering creative communication services including video production, print, and consulting, emphasizing a client-centric approach based on listening and understanding business needs. Their website reflects a professional portfolio showcasing their work and services targeted at businesses seeking media and communication solutions. Technically, the website is built on WordPress with a modern JavaScript stack including jQuery, Swiper, and GSAP, providing a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and explicit privacy and cookie policies, indicating compliance gaps. The domain WHOIS data is consistent with the business location and history, supporting legitimacy. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

L

Led Media

ledmedia.ba

49

Led Media is a leading digital outdoor advertising company operating in Bosnia and Herzegovina, offering digital advertising services primarily targeting local businesses and advertisers. The website is built on WordPress using Elementor, indicating a modern and maintainable technical infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices, although some accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks important security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security measures.

C

cubes d.o.o

bloombergadria.com

62

Bloomberg Adria is a media company focused on delivering multi-platform business news content tailored for Southeast Europe. The website serves as a gateway to country-specific subdomains targeting Serbia, Croatia, Bosnia and Herzegovina, Slovenia, and North Macedonia. The business model centers on news publishing with advertising revenue streams, leveraging the Bloomberg brand under license from Bloomberg L.P. The company is a property of Mtel Swiss SA and uses a custom CMS developed by Cubes d.o.o. The website demonstrates a moderate level of digital maturity with modern JavaScript libraries and tracking technologies integrated for analytics and advertising purposes. However, it lacks visible privacy and cookie policies, which are critical for GDPR compliance in the region. Security posture is adequate with HTTPS and domain transfer protections but could be improved by enabling DNSSEC and adding security headers. Overall, the site is professional and trustworthy but requires enhancements in privacy compliance and security best practices to reduce risk and improve user trust.

P

Protect Where We Play

protectwhereweplay.com

65

Protect Where We Play is a non-profit initiative launched in 2024 by Ocean Conservancy to engage sports, art, and music communities in ocean conservation efforts. The website serves as a platform to mobilize fans and partners through events, donations, and awareness campaigns. It leverages partnerships with sports teams and environmental organizations to amplify its mission. Technically, the site is built on WordPress using the Divi theme and integrates modern web technologies and SEO best practices. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The security posture is solid with HTTPS and transfer lock on the domain, though DNSSEC is not enabled and some security headers are missing. Privacy and cookie policies exist but are basic, and no explicit incident response or vulnerability disclosure policies are published. Overall, the site is professional, trustworthy, and well-positioned for its niche audience.

Stade Genève is a well-established athletics sports club based in Geneva, Switzerland, offering a wide range of services including training, competitions, camps, and community engagement. The website reflects an active organization with regular updates, event calendars, and social media presence, targeting athletes and sports enthusiasts in the region. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern web technologies and plugins to provide a good user experience and mobile responsiveness. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and published security policies, indicating room for improvement in security maturity. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy or terms of service pages found. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing privacy and security disclosures, implementing security headers, and publishing incident response information to improve compliance and trust.

P

Partner & Partners

partnerandpartners.com

58

Partner & Partners is a worker-owned design practice established in 2011, specializing in print, exhibition, interactive, and identity design services. Their clientele includes organizations in art, architecture, government, and activism sectors, positioning them as a niche player with a socially engaged business model. The website reflects a professional and consistent brand image with high-quality content and clear navigation, targeting collaborators and clients in their specialized fields. Technically, the site is built on WordPress with WooCommerce and uses modern JavaScript libraries such as jQuery, Flickity, and Swiper. Hosting and DNS services are managed via Cloudflare, providing good performance and security infrastructure. However, DNSSEC is not enabled, and security headers are absent, representing areas for improvement. The site employs Google Analytics and Jetpack Stats for user tracking, with moderate tracking levels and basic privacy compliance. Contact information is clearly presented, but no privacy, cookie, or security policies are published, which could impact compliance and user trust. Overall, the website is secure, professional, and trustworthy but would benefit from enhanced privacy and security disclosures.

T

trbo GmbH

chatchamp.com

61

trbo GmbH operates a sophisticated B2B SaaS platform specializing in real-time website personalization and customer experience optimization. The company targets businesses seeking to enhance user engagement and conversion rates through AI-driven recommendations, dynamic segmentation, and personalized content delivery. Their market position is reinforced by a client base of over 300 companies worldwide, including notable brands, indicating strong industry trust and relevance. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and integrations such as Google Tag Manager and Usercentrics for privacy compliance. Security posture is robust with HTTPS enforcement, security headers, and CAPTCHA protections, although explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the professional presentation and consistent branding mitigate major concerns. Overall, the platform demonstrates a mature digital infrastructure with good privacy and security practices, suitable for its enterprise clientele.

T

trbo GmbH

trbo.com

59

trbo GmbH operates a sophisticated B2B SaaS platform specializing in real-time website personalization using AI and data-driven technologies. The company targets businesses seeking to enhance customer experience and conversion rates through personalized content and product recommendations. Their market position is supported by a suite of products including trbo Personalize, Advise, Chat, Bundle, and Search, catering to diverse industry needs. The website demonstrates a high level of digital maturity with modern technologies such as WordPress, Elementor, and integrated marketing and analytics tools. Security posture is strong with HTTPS, security headers, and reCAPTCHA, though explicit security policies and incident response contacts are absent. Overall, the site is professional, well-branded, and GDPR compliant, but the lack of WHOIS data introduces some uncertainty regarding domain legitimacy.

Y

Yes4Youth

yes4youth.co.za

69

Yes4Youth is a prominent South African non-profit organization focused on addressing youth unemployment through private sector partnerships. The organization facilitates the creation of quality 12-month work experiences for unemployed youth, enabling them to develop skills and become future leaders, professionals, and entrepreneurs. Businesses benefit by improving their B-BBEE scorecard levels and integrating youth employment into their ESG strategies. The website demonstrates a mature digital presence leveraging HubSpot CMS, modern JavaScript libraries, and comprehensive marketing and analytics tools. Privacy and cookie consent mechanisms are implemented effectively, reflecting good compliance with data protection regulations. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable gap, reducing domain registration transparency, but the website's content, social media presence, and partnerships support its legitimacy. Overall, Yes4Youth presents a professional and trustworthy platform with room for improvement in transparency and security disclosures.

K

KICKOFF MEDIA

kickoff.media

37

Kickoff Media is a small Swiss-based media and web development company specializing in website creation, Wordpress training, interactive content, graphic design, motion design, and video production. The company targets clients primarily in La Chaux-de-Fonds and Neuchâtel regions of Switzerland, offering localized digital media services. The website is built on WordPress using a commercial Brooklyn theme, indicating a moderate level of digital maturity with integration of modern web technologies and analytics tools such as Google Analytics and Google Tag Manager. The technical infrastructure is typical for small to medium-sized digital agencies, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks important security headers and formal privacy and cookie policies, which are critical for compliance and trust. Overall, the website appears legitimate and professional but would benefit from enhanced privacy compliance and security best practices to improve trust and reduce risk.

F

Fontventa S.L.

fontventa.com

63

Fontventa S.L. is a Spanish IT consulting and services company specializing in digital transformation, IT maintenance, custom software development, web design, and multimedia applications. With over 25 years of experience, the company serves businesses and individuals primarily in Spain, offering a broad portfolio of IT solutions including e-commerce, mobile applications, and IT audits. The website reflects a professional and trustworthy business with clear service offerings and client testimonials. Technically, the site uses modern web technologies such as jQuery, Bootstrap, and Swiper, and implements HTTPS with cookie consent mechanisms, indicating a mature digital presence. Security posture is solid with certifications like ISO 27001 and ENS, though some improvements in security headers and incident response disclosures are recommended. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but does not overshadow the overall professional presentation. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and improving accessibility compliance to further strengthen the company's security and compliance posture.

R

Route

routeapp.io

74

Route is a well-established technology company specializing in post-purchase solutions for e-commerce merchants and shoppers. Their platform offers shipping protection, package tracking, issue resolution, product recommendations, and carbon neutral shipping, serving over 13,000 merchants. The company is positioned as a trusted leader in the post-purchase experience market with a strong brand presence and customer testimonials. Technically, the website is built on WordPress hosted on AWS infrastructure, leveraging modern analytics and marketing tools such as HubSpot, Amplitude, mParticle, and Hotjar. The site is well-optimized for SEO, mobile-friendly, and provides a professional user experience. Security posture is strong with HTTPS enforced and use of reCAPTCHA, though some security headers could be improved and DNSSEC is not enabled. Privacy compliance is good with clear policies and consent mechanisms. Overall, the domain registration is consistent and legitimate, supporting the business credibility. The website is safe for general audiences with no adult or questionable content detected.