Security Directory

L

Landgasthof Riehen Hotel and Restaurant

landgasthof-riehen.ch

46

Landgasthof Riehen Hotel and Restaurant is a boutique hospitality business located in Riehen, Switzerland, near Basel. It offers hotel accommodations, a seasonal Swiss restaurant, and private event spaces, targeting leisure and business travelers interested in cultural and artistic experiences. The website is professionally designed with clear navigation, multilingual support, and strong branding consistency. The business is part of Groupe Oniro, indicating a stable parent company relationship. Technically, the site uses WordPress with modern plugins for SEO, cookie consent, and analytics, providing a good digital maturity level. Security posture is solid with HTTPS, cookie consent mechanisms, and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the website is trustworthy, compliant with GDPR, and provides comprehensive contact and business information.

Carambolage Basel is a small, community-driven non-profit collective operating since 2015. It functions as a bar and cultural venue offering a space for music, film, exhibitions, and political discourse with a focus on creating hierarchy- and discrimination-free environments. The website targets local community members, queer groups, and cultural enthusiasts in Basel, Switzerland. Technically, the site is built on WordPress 5.5.3 with jQuery and custom JavaScript, providing moderate performance and basic mobile optimization. Security posture is adequate with HTTPS enforced but lacks explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

M

Markthallen AG Basel

altemarkthalle.ch

58

Markthallen AG Basel operates the Markthalle Basel, a vibrant marketplace and hospitality venue offering food stands, regional markets, fresh produce, bars, and event spaces. The website positions the business as a community hub in Basel, Switzerland, targeting a general audience interested in local food and events. The business model focuses on retail and hospitality services with additional offerings such as catering, room rentals, and guided tours. Technically, the website is built on WordPress with WooCommerce and integrates modern plugins for SEO, cookie consent, and analytics. The site demonstrates good digital maturity with responsive design and SEO optimization. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained, supporting a medium-sized business in the hospitality sector.

S

Stiftung Mercator

aufruhr-magazin.de

56

AufRuhr Magazin is a non-profit media publication operated under the Stiftung Mercator umbrella, focusing on social, cultural, and environmental topics such as European integration, climate protection, and cultural education. The website serves a general audience interested in these areas, providing articles, videos, and newsletters to disseminate educational content. The business model is centered on non-commercial media outreach supported by a reputable foundation, positioning itself as a niche but trusted source in its domain. Technically, the website is built on WordPress using the Nucleus theme and incorporates modern web technologies including jQuery, Yoast SEO, and Borlabs Cookie for GDPR-compliant cookie management. It employs push notifications via OneSignal and uses Matomo and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good SEO practices and moderate performance. From a security perspective, the site enforces HTTPS and implements JavaScript error logging and cookie consent mechanisms. However, explicit security headers like CSP or X-Frame-Options are not evident, and no formal security policy or incident response contacts are published. No vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a non-profit media site. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with a strong affiliation to Stiftung Mercator enhancing its credibility. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility compliance to further strengthen its security and user trust.

C

codingcircle.net

codingcircle.net

41

CodingCircle.net is a small network platform focused on connecting web development professionals in cities such as Berlin, Munich, Vienna, and Bristol. The website provides a minimal but clear description of its purpose as a network for web developers. The technical infrastructure is based on WordPress CMS with jQuery, hosted under a domain registered in 2021, which aligns with the site's modest scope and recent establishment. The site is accessible without any blocking or WAF interference, and it uses HTTPS with a registrar-enforced clientTransferProhibited status, enhancing domain security. From a security perspective, the site has a basic posture with HTTPS enabled but lacks advanced security headers and DNSSEC. There is no evidence of cookie consent mechanisms or comprehensive privacy compliance, which could be improved to meet GDPR standards. No contact information or incident response channels are provided, limiting transparency and user trust. The absence of analytics and advertising scripts suggests minimal user tracking, which is positive for privacy. Overall, the site is safe with no adult or questionable content detected. It serves a niche community with basic content and moderate technical implementation. The security and privacy posture is adequate but could benefit from enhancements in policy disclosures, security headers, and contact transparency. The AI score reflects these findings, indicating a functional but basic website with room for improvement in compliance and security best practices.

U

Union TLF

e-tlf.com

66

Union TLF is a well-established professional organization representing the transport and logistics sectors in France. Founded in 2000, it serves a large membership base of companies involved in various transport modes and logistics services. The website reflects a mature digital presence with comprehensive information about the organization's services, regional delegations, and industry engagements. The site is professionally designed, well-structured, and optimized for SEO and accessibility, targeting transport and logistics professionals and companies in France. Technically, the site is built on WordPress with modern tools such as Matomo for analytics and Tarteaucitron for cookie consent, demonstrating a commitment to privacy and GDPR compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and trustworthy entity.

T

Transpolis

transpolis.fr

55

Transpolis is a specialized transportation safety and innovation center based in France, offering services such as crash testing, vehicle testing, sensor development, and simulation. The company operates two proving grounds and holds ISO 9001 certification as well as official Euro NCAP laboratory status, positioning it as a reputable player in the automotive safety testing market. The website is built on WordPress with Elementor, leveraging modern web technologies and providing a good user experience with mobile optimization and clear navigation. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although privacy policy and terms of service documents are missing, representing compliance gaps. Overall, the website reflects a professional and trustworthy business with room for improvement in privacy transparency and incident response disclosures.

U

UPTR

uptr.be

54

UPTR is a well-established Belgian professional federation representing transporters and logisticians. Founded in 1937, it provides advocacy, information, and a broad range of specialized services to its members. The website reflects a mature digital presence with multilingual support, clear navigation, and comprehensive content tailored to its target audience. Technically, the site is built on WordPress with WooCommerce and enhanced by SEO and analytics tools like Yoast SEO Premium and Matomo, indicating a modern and privacy-conscious infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some headers could be improved. Overall, the site demonstrates high professionalism and trustworthiness, with no signs of malicious activity or content safety concerns.

S

Syndicat du Pneu

syndicatdupneu.org

53

The Syndicat du Pneu website represents a well-established French trade association dedicated to the tire industry, active since 1929. It serves as a representative body for manufacturers, distributors, wholesalers, and equipment suppliers within France. The website provides industry-related information and resources, targeting professionals in the tire sector. The business model is centered on advocacy, networking, and industry representation, positioning the Syndicat du Pneu as a key stakeholder in the French tire market. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO for search optimization and Burst Statistics for analytics. The site demonstrates good mobile optimization and moderate performance. The technical infrastructure is modern and standard for professional association websites, with no major technical debt or outdated components detected. From a security perspective, the site enforces HTTPS and uses standard security practices, though it lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong, with GDPR-aligned privacy and cookie policies and consent mechanisms in place. However, WHOIS data is privacy protected, limiting domain registration transparency. Overall, the website is professional, secure, and compliant, with a low risk profile. Strategic recommendations include enhancing security headers, publishing incident response policies, and improving WHOIS transparency to bolster trust further.

I

International Organization of Motor Vehicle Manufacturers

oica.net

59

The International Organization of Motor Vehicle Manufacturers (OICA) is a well-established global industry association founded in 1998, headquartered in Paris, France. The organization focuses on promoting safer, cleaner, and smarter automotive manufacturing practices worldwide. Its website serves as a hub for industry news, statistics, event information, and member coordination, targeting automotive professionals and stakeholders globally. The business model is non-profit and essential within the transportation sector, with a medium-sized organizational footprint. Technically, the website is built on WordPress using Elementor and several Jet plugins, supported by OVH hosting. It employs modern web technologies including hCaptcha for form security and CookieHub for cookie consent management. The site demonstrates good SEO practices with structured data and meta tags, and it is optimized for mobile devices with a moderate performance profile. From a security perspective, the site uses HTTPS and implements CAPTCHA and cookie consent mechanisms, but lacks advanced security headers and published security policies. No vulnerabilities or suspicious content were detected, but the absence of a privacy policy and terms of service pages represents a compliance gap. The WHOIS data confirms domain legitimacy and consistency with the organization's claims. Overall, the website is professional, trustworthy, and content-rich, but could improve privacy compliance and security posture by publishing relevant policies and enhancing HTTP security headers. Strategic recommendations include enabling DNSSEC, adding security and incident response policies, and conducting regular security audits to maintain trust and compliance.

F

Febetra

febetra.be

45

Febetra is a well-established Belgian federation representing transporters and logistics service providers, founded in 1996. The organization provides professional assistance, legal support, and information services to its members, positioning itself as a key player in the Belgian road transport sector. The website reflects this professional stature with comprehensive content, clear navigation, and multiple contact channels. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates essential tools such as Google Analytics and Tag Manager for analytics and marketing. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

B

Branchentag

branchentag.de

33

Branchentag is a professional trade fair organizer specializing in the wood industry sector in Germany, hosting a biennial event in Cologne that attracts exhibitors, visitors, and industry stakeholders. The website provides comprehensive information about the event, sponsors, and visitor services, positioning itself as a key industry gathering. Technically, the site is built on WordPress using Elementor and Astra theme, hosted on German servers, and employs modern web technologies with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

V

Valaisdigital

wirtschaft-wallis.ch

56

Wirtschaftsförderung Wallis, operated by Valaisdigital, is a government-affiliated economic promotion organization serving entrepreneurs and businesses in the Wallis region of Switzerland. The website provides comprehensive information about business support services, innovation assistance, financial aid, and real estate search, positioning itself as a key regional partner for economic development. The site is multilingual, with German as the primary language and links to French and English partner sites, enhancing accessibility for a diverse audience. Technically, the website is built on WordPress using modern plugins such as Elementor and Yoast SEO, ensuring good SEO optimization and mobile responsiveness. Security measures include HTTPS enforcement, standard security headers, and a GDPR-compliant cookie consent mechanism. However, explicit security policies and incident response contacts are not present, which could be improved. Overall, the website demonstrates a solid security posture and professional digital presence, supporting its role as a trusted government economic promotion entity.

W

Webspatz Webdesign GmbH

webspatz.ch

51

Webspatz Webdesign GmbH is a small, specialized web design and SEO agency based in Zürich, Switzerland. The company focuses on creating modern, responsive WordPress websites, Shopify shops, and providing SEO optimization services including local SEO. Their market position is that of a boutique agency offering personalized and high-quality digital services to small and medium-sized businesses. The website demonstrates a strong digital maturity with a well-structured WordPress platform, modern technologies such as Bootstrap and Slider Revolution, and integration of analytics tools like Google Analytics and Microsoft Clarity. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience.

A

Astra

stadtautobahn.ch

69

The website stadtautobahn.ch serves as the official information portal for the renewal of the Stadtautobahn in St. Gallen, Switzerland, managed by Astra, the Federal Roads Office. It provides timely updates on construction, traffic conditions, and community engagement through news articles and an SMS notification service. The site targets local residents and commuters, offering clear and relevant content about the infrastructure project. Technically, the site is built on WordPress with Yoast SEO for optimization, uses Matomo for privacy-conscious analytics, and integrates Google reCAPTCHA to secure user input forms. The design is professional, mobile-optimized, and user-friendly, with consistent branding and trust indicators such as official logos and HTTPS encryption. Security posture is solid with HTTPS and form protections, though it lacks some advanced security headers and published security policies. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the domain registration aligns well with the website's governmental purpose and project timeline, indicating high legitimacy and trustworthiness.

A

Ariane Studio Sàrl

ariane-studio.ch

49

Ariane Studio Sàrl is a small media company based in Neuchâtel, Switzerland, specializing in video production, community management, digital design, and website creation. The company presents itself as a passionate creative studio focused on authentic storytelling and digital content creation for businesses. The website is professionally designed with rich multimedia content, including videos and social media integration, targeting businesses seeking to enhance their digital presence. The business model is service-oriented, focusing on creative digital solutions and video production services. The company was founded in 2017, consistent with the domain registration date, indicating a stable market presence. Technically, the website is built on WordPress using the Yoast SEO plugin and UIkit framework, ensuring good SEO optimization and mobile responsiveness. The site loads moderately fast and includes accessibility features, though some improvements could be made. Security posture is adequate with HTTPS enabled and use of spam protection plugins, but lacks explicit security headers and cookie consent mechanisms, which are recommended for GDPR compliance. Analytics are minimal, using Jetpack Stats for basic tracking. Overall, the security posture is solid but could be enhanced by implementing security headers and explicit privacy compliance features. The website shows no signs of malicious activity or vulnerabilities. Business credibility is high with clear contact information, legal pages, and consistent branding. The domain WHOIS data aligns well with the business identity, supporting legitimacy. Strategic recommendations include adding a cookie consent banner to improve privacy compliance, implementing security headers to strengthen security posture, and providing explicit incident response contact information to enhance trust and readiness. These improvements will help Ariane Studio maintain a professional and secure online presence while complying with relevant regulations.

T

Thurgau 360 Grad

thurgau360.ch

37

Thurgau 360 Grad is a small regional business specializing in providing virtual 360-degree tours and interactive digital marketing solutions for the tourism sector and local businesses in the Thurgau region of Switzerland. The website is professionally designed using WordPress and integrates various plugins to deliver rich multimedia content and interactive experiences. The company positions itself as a niche player offering innovative destination marketing tools to municipalities, hospitality providers, and tourist attractions. Technically, the site employs modern web technologies including Google Maps API, reCAPTCHA, and SEO plugins, ensuring a good user experience and moderate performance. Security posture is adequate with HTTPS enforced and use of reCAPTCHA, but lacks comprehensive security headers and explicit incident response policies. Privacy compliance is partially addressed with a privacy policy page but no visible cookie consent mechanism. Overall, the domain registration data aligns well with the business profile, indicating legitimacy and trustworthiness.

Q

Quality Media Network

qualitymedianetwork.de

52

Quality Media Network is a specialized digital advertising monetization platform targeting content creators and digital publishers primarily in Germany. The company offers premium advertising campaigns, technical support, and exclusive partnerships to help content creators maximize their revenue while maintaining high user experience standards. The website is professionally designed using WordPress with modern plugins and technologies, ensuring good SEO and mobile optimization. Security posture is solid with HTTPS and GDPR compliance via a consent management platform, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, well-branded, and provides clear business value to its target audience.

A

all about FUNGI

allaboutfungi.net

45

all about FUNGI is a small German e-commerce business specializing in the sale of vital mushroom products such as Lions Mane, Cordyceps, and Reishi. The website is built on a modern WordPress platform using WooCommerce and Elementor, providing a professional and user-friendly shopping experience. The company appears to be well-positioned in a niche market focused on natural health supplements. Technically, the site uses common industry tools including Google Analytics, Klaviyo, and Borlabs Cookie for GDPR-compliant cookie management. Security posture is adequate with HTTPS enforced, though some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is partial, with cookie consent mechanisms but no visible privacy policy or terms of service. Contact information is not readily available, which may impact user trust. Overall, the site is safe, well-branded, and functional, but could improve transparency and security practices.

The website 'Bloggers Unite' hosted at xperta.es is a basic WordPress blog platform primarily serving general audiences with blog content. The site currently contains minimal content, including the default 'Hello world!' post, indicating it may be newly established or under development. The business model appears to be content publishing with no evident commercial or transactional services. Technical infrastructure is based on WordPress CMS with standard web technologies such as HTML5, CSS3, and JavaScript. The site demonstrates moderate mobile optimization and basic SEO but lacks advanced technical or security features. Security posture is minimal with no detected security headers or policies, and the site lacks privacy, cookie, or terms of service documentation. The domain registration is privacy protected, which is common for small personal blogs but limits trust signals. Overall, the site scores low to moderate on content quality, security, and privacy compliance, reflecting a basic web presence without professional or business-grade features.

T

Telefónica

telefonica.es

49

Telefónica is a leading telecommunications company in Spain, offering a broad range of telecom and digital services. The website reflects a mature and professional digital presence, targeting both general consumers and business customers. It emphasizes sustainability, talent, and innovation as key pillars of its business. The technical infrastructure is based on WordPress with modern tracking and consent management tools, ensuring GDPR compliance and a good user experience across devices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the website is trustworthy, well-maintained, and aligned with the company's established market position.

B

BrandShelter™

safebrands.com

10

BrandShelter™ is a specialized service provider focused on protecting brands and intellectual property through comprehensive domain management, monitoring, and enforcement solutions. As part of Team Internet PLC, a major player in domain management, BrandShelter leverages industry expertise and global reach to serve businesses and trademark owners worldwide. Their offerings include brand protection, domain registration, SSL certificates, DNS services, and legal enforcement support, positioning them as a trusted partner for safeguarding online brand assets. Technically, the website is built on WordPress with a modern tech stack including jQuery, HubSpot, Google Tag Manager, and Visual Website Optimizer, ensuring good performance, mobile optimization, and SEO readiness. The site employs multiple analytics and marketing tools with appropriate privacy and cookie policies, reflecting a mature digital infrastructure. From a security perspective, BrandShelter demonstrates strong practices such as HTTPS enforcement and ISO/IEC 27001 certification. However, the absence of visible security headers and a public incident response policy suggests room for improvement. The WHOIS data is unavailable or not found, which may be due to privacy protection or querying issues, but the website's professional presentation and association with Team Internet PLC mitigate concerns about legitimacy. Overall, BrandShelter presents a secure, professional, and trustworthy online presence with comprehensive brand protection services. Strategic recommendations include enhancing security header implementation, publishing incident response and vulnerability disclosure policies, and clarifying WHOIS registration details to strengthen trust further.

S

Skippers

skippers.ch

9

Skippers is a Swiss-based e-commerce website specializing in sailing and boating products and services. The website is built on a WordPress platform using WooCommerce for e-commerce functionality and Elementor for page building. The site employs modern web technologies including Google Fonts, Matomo analytics, and WP Rocket for performance optimization. While the site is technically sound with HTTPS enabled and some security best practices like reCAPTCHA, it lacks explicit privacy and cookie policies, as well as contact information, which are critical for compliance and user trust. The domain registration data aligns well with the website's business claims, indicating legitimacy. Overall, the website presents a professional front but would benefit from enhanced privacy compliance and security headers to improve trust and security posture.

Headspin AS is a Norwegian creative agency based in Trondheim, specializing in integrated communication services including strategy, campaign development, design, text production, 3D visualization, website and app development, and film production. The company targets businesses and organizations seeking comprehensive communication and branding solutions. The website reflects a professional and consistent brand image with a medium-sized team and a solid client portfolio. Technically, the site is built on WordPress with modern technologies such as Google Fonts, Google Maps API, and multiple analytics platforms including Matomo and Plausible, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. Overall, the site is trustworthy and well-maintained, with clear business information and certifications such as Miljøfyrtårn enhancing credibility.

S

SJ Norge

sj.no

65

SJ Norge operates as a major Norwegian train service provider offering climate-friendly and comfortable travel options across multiple regional and long-distance routes. The company targets a broad audience including individual travelers, groups, and business clients, providing tailored travel solutions and extensive customer support. The website reflects a mature digital presence with comprehensive travel information, booking integration via a national travel planner, and active social media engagement. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, delivering a good user experience across devices. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, SJ Norge presents a trustworthy and professional online presence aligned with its transportation business.

Lay Theme is a specialized WordPress theme provider focused on creative professionals and portfolio websites. Established in 2015, the company offers a customizable theme with a unique layout tool called the Gridder, extensive customization options, WooCommerce shop support, and various addons to enhance website functionality. The website demonstrates a professional market position within the niche WordPress theme industry, targeting creatives who want visually appealing and customizable portfolio sites. Technically, the site leverages modern JavaScript libraries, video integration, and multiple marketing pixels, hosted on DreamHost. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service. Overall, the site is trustworthy and professional but could improve transparency and security practices.

Aio Frei is a small creative professional or artist specializing in sound art, listening performance, feminist listening practices, and related artistic projects. The website serves as a portfolio showcasing various projects, workshops, and publications. The target audience includes artists, researchers, and enthusiasts in experimental sound and performance arts. The business model is primarily portfolio-based, focusing on artistic exposure and engagement. Technically, the website is built on WordPress, utilizing jQuery and Swiper.js for frontend interactions. It is hosted by 1API GmbH and uses HTTPS with a valid SSL certificate. The site is moderately optimized for performance and mobile devices, with a responsive design and basic accessibility features. SEO optimization is basic, with essential meta tags present but no advanced structured data or rich snippets detected. From a security perspective, the website has HTTPS enabled and domain transfer protection. However, DNSSEC is not enabled, and no security headers were detected, which could be improved. There is no privacy policy, cookie policy, or terms of service, indicating gaps in compliance with GDPR and other privacy regulations. Contact information is limited to an email address, with no phone or physical address provided. No incident response or vulnerability disclosure mechanisms are present. Overall, the website is functional and professionally presented but lacks important privacy and security compliance elements. Strategic improvements in privacy policies, security headers, and DNS security would enhance trust and compliance.

H

Hubertus Design

hubertus-design.ch

43

Hubertus Design is a Swiss-based design studio specializing in graphic, book, editorial, branding, and multimedia design projects. The website serves as a portfolio showcasing a wide range of creative works for cultural institutions, architects, and enterprises, positioning itself as a niche player in the design industry. The business model is project-based, focusing on delivering high-quality design services to a professional audience. Technically, the website is built on WordPress and leverages several plugins including MonsterInsights for analytics, Getwid for blocks, and Animate Blocks for animations. It uses modern web technologies such as jQuery and Google Analytics with IP anonymization and opt-out features, indicating a moderate level of digital maturity. The site is mobile optimized and has good SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS with SSL and includes some privacy-conscious configurations in analytics. However, it lacks important security headers and does not provide vulnerability disclosure or incident response information. Privacy and cookie policies are absent, which is a compliance gap. No contact information is explicitly provided, which may affect user trust and support. Overall, the website is professional and content-rich but could improve in privacy compliance and security best practices. The risk level is moderate due to missing policies and security headers, but no critical vulnerabilities or blocking mechanisms were detected.

Atelier Varga is a Swiss-based creative agency specializing in visual design, web design, corporate identity, and editorial design services. The website showcases a comprehensive portfolio of projects primarily in cultural, architectural, and artistic domains, targeting clients seeking high-quality visual communication solutions. The business operates as a small, niche design atelier with a consistent brand presence and a professional online portfolio. Technically, the website is built on WordPress, utilizing common plugins such as Yoast SEO and Google Analytics for SEO and visitor tracking. The site demonstrates good mobile optimization and moderate performance but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and use of a security plugin, but it lacks important security headers and a vulnerability disclosure mechanism. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanism. Contact information is not explicitly provided on the homepage, which may affect user trust and compliance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security practices.

M

Martin Stoecklin & Melina Wilson

a-language.net

44

A Language is a small, concept-driven visual communication studio co-founded by Martin Stoecklin and Melina Wilson, specializing in design for print, web, interactive platforms, and physical spaces. The studio serves a niche market including cultural and academic institutions, artists, and businesses. The website acts as a professional portfolio showcasing their work and expertise. Technically, the site is built on WordPress, utilizing common libraries such as jQuery and Swiper.js, hosted by 1API GmbH with SSL enabled, ensuring secure connections. However, the absence of DNSSEC and security headers indicates room for improvement in security hardening. The security posture is moderate, with no critical vulnerabilities detected but lacking advanced protections and policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Contact is available only through a web form, with no direct emails or phone numbers published. Overall, the website is professional and well-designed but would benefit from enhanced security and privacy practices to improve trust and compliance.

Agenza GmbH is a specialized web agency based in Kriens near Luzern, Switzerland, focusing on WordPress websites, UX design, e-commerce solutions, and web platform development. The company serves a diverse clientele including SMEs, organizations, and startups, offering tailored digital solutions that emphasize accessibility, SEO, and user experience. Their market position is solid within the regional technology sector, supported by a portfolio of over 93 clients and positive testimonials. Technically, the website is built on WordPress using modern tools such as the Breakdance builder, WooCommerce for e-commerce, and Yoast SEO for optimization. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. Analytics and marketing integrations include Google Tag Manager, Google Ads, and LinkedIn Insight, indicating a moderate level of user tracking and marketing sophistication. From a security perspective, the site enforces HTTPS and follows good practices by avoiding exposed sensitive data and using reputable third-party scripts. However, explicit security headers and a formal security policy are absent, representing areas for improvement. Privacy compliance is strong with a comprehensive privacy policy and cookie policy, though a consent mechanism is not evident. Overall, Agenza GmbH presents a trustworthy and professional online presence with a strong focus on quality and client satisfaction. The website's security posture is good but could benefit from enhanced header policies and incident response transparency. The business is credible, well-branded, and aligned with its WHOIS registration data, supporting a high legitimacy score.

InnovationsTransfer Zentralschweiz (ITZ) is a regional innovation support organization based in Central Switzerland, founded in 2021. The company focuses on assisting startups, SMEs, and private individuals with innovation development, coaching, funding facilitation, and intellectual property consulting. The website presents a professional and consistent brand image, targeting innovation-driven businesses and individuals in the region. Technically, the site is built on WordPress with the Breakdance builder and integrates SEO and analytics tools such as Yoast SEO and Google Analytics. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security and incident response policies are not published. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the site is well-structured, compliant with privacy regulations, and trustworthy.

K

Klinikum Fulda gAG

klinikum-fulda.de

59

Klinikum Fulda gAG operates a large, modern hospital providing maximal healthcare services in the Osthessen region of Germany. The institution serves over 500,000 residents with inpatient and outpatient care, specialized clinics, and educational programs as a campus of the Universitätsmedizin Marburg. The website reflects a mature digital presence with comprehensive patient information, event announcements, and career opportunities. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is strong with HTTPS, cookie consent management, and no visible vulnerabilities. Privacy policies are comprehensive and GDPR compliant. Overall, the site projects high professionalism and trustworthiness.

B

Berliner Ukulele Festival

berliner-ukulele-festival.de

50

The Berliner Ukulele Festival website represents a small cultural event organizer focused on Ukulele music festivals in Berlin, Germany. Established in 2016, the festival has become a recognized event within the German-speaking Ukulele community. The website is built on WordPress with a modern tech stack including WooCommerce, Yoast SEO, and Borlabs Cookie for consent management. The site is well-branded, mobile-optimized, and provides rich visual content including professional photography. However, it lacks explicit privacy and terms of service pages, and does not provide direct contact information or security incident response details. The SSL configuration is excellent, and no major vulnerabilities or suspicious patterns were detected. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

M

Musikhaus Jörgensen

musikhaus-joergensen.de

43

Musikhaus Jörgensen is a well-established music retail business based in Düsseldorf, Germany, founded in 1930. The company specializes in selling music notes, books, various musical instruments including string, wind, percussion, electronic instruments, and digital pianos, with a premium partnership for Yamaha Clavinova products. The website serves as an informational and contact portal with links to an external online shop and partner sites. Technically, the site is built on WordPress with jQuery and uses Matomo for analytics, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and professionally designed, though it lacks some advanced accessibility features and cookie consent mechanisms. Security posture is adequate with HTTPS enabled but lacks explicit security headers and formal security policies. Overall, the site is trustworthy and credible for its business domain but could improve compliance and security transparency.

C

Cantus-Riedel Berlin

cantus-riedel.de

44

Cantus-Riedel Berlin is a well-established music retail business operating since 1910 in Berlin-Charlottenburg. The company offers a broad range of music-related products including sheet music, instruments, accessories, classical CDs, and merchandise. It also hosts events such as workshops and concerts, targeting musicians, composers, music teachers, and music enthusiasts. The business model combines a physical store with an online shop presence, positioning it as a trusted local retailer with a strong community focus. Technically, the website is built on WordPress using the Twenty Twelve theme, enhanced with jQuery and Matomo analytics for visitor tracking. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. However, there is room for improvement in security headers and privacy compliance, particularly regarding cookie consent mechanisms. From a security perspective, the site uses HTTPS and does not expose sensitive information or vulnerable libraries. Nonetheless, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The use of Matomo analytics without a cookie consent banner indicates partial GDPR compliance. Overall, the security posture is adequate but could be strengthened with additional best practices. The overall risk assessment is low given the nature of the business and the absence of critical vulnerabilities or suspicious indicators. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and maintaining regular updates to the CMS and plugins to enhance security and compliance.

B

Bauer & Hieber

bauer-hieber.com

45

Bauer & Hieber is a well-established German retailer specializing in music sheets and related products, with a history spanning over 100 years. The company operates multiple physical branches and an online shop, targeting musicians and music enthusiasts primarily in Germany. Their website is built on WordPress and includes a blog partnership with MusiKosmos, enhancing their content offering. Technically, the site uses standard web technologies including jQuery and Matomo for analytics, but lacks advanced security headers and cookie consent mechanisms. Security posture is moderate with HTTPS enabled but missing some best practices. The absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Privacy policy is present and GDPR compliant, but cookie consent and incident response information are missing. Overall, the website provides relevant business content but could improve in technical and security aspects to enhance trust and compliance.

R

Revive Adserver

revive-adserver.com

66

Revive Adserver is an open source ad serving platform targeting advertisers, publishers, and ad networks. It positions itself as a popular free alternative in the ad serving technology space, providing software for managing and delivering ads. The website is built on WordPress using the Divi theme and incorporates SEO best practices via the Yoast SEO plugin. The technical infrastructure is modern and mobile-optimized, though hosting details are not disclosed. Security posture is moderate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and branding appear professional and trustworthy. Overall, the site is safe for general audiences and serves a niche technology market.

P

Panafric Global Logistics

panafricglobal.com

47

Panafric Global Logistics is a professional logistics service provider offering a wide range of freight forwarding and logistics solutions including air and ocean freight, customs clearance, warehousing, trucking, and project cargo services. The company emphasizes its extensive sector expertise and operational scale, including over 30 years of experience, 13 offices, and a large fleet of trucks. The website is built on a modern WordPress platform using Elementor and related plugins, with good design quality and mobile optimization. Security posture is adequate with HTTPS and secure forms, but lacks published privacy and cookie policies, security headers, and incident response information. WHOIS data is missing, which raises concerns about domain legitimacy despite the professional website content. Overall, the site is functional and trustworthy in appearance but requires improvements in compliance and transparency.

A

APM SA

apmmaritimes.cm

33

APM SA is a Cameroonian maritime transport and logistics company established in 2017, with strategic offices in Douala, Yaoundé, and Kribi. The company positions itself as a reliable partner offering specialized services including maritime agency, stevedoring, customs operations, and transport. The website reflects a professional business presence with clear service offerings and leadership messaging. Technically, the site is built on WordPress using Elementor and Astra theme, hosted on MTN NS infrastructure. Security posture is moderate with HTTPS enabled but lacks security headers and has an expired domain, which poses risks. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but requires urgent domain renewal and enhanced security and privacy measures.

B

Bündnis StrukturWandeln

struktur-wandeln.de

57

Bündnis StrukturWandeln is a small non-profit civil society alliance focused on structural change in the Central German mining region. The website serves as an informational and advocacy platform targeting regional stakeholders and activists. Technically, the site is built on WordPress using modern block editor technologies and includes Matomo analytics for visitor tracking. The site is accessible, mobile-optimized, and uses HTTPS, but lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. WHOIS data is minimal and domain status is unusual, which reduces trustworthiness. Overall, the site is functional but could improve in privacy compliance and security best practices.

I

iEvolution GmbH

ievolution.ch

43

iEvolution GmbH is a Swiss-based web and logo design agency located in Wollerau, offering a range of digital design services including web design, eCommerce solutions, logo creation, and mobile app development. The company targets startups and small to medium-sized businesses primarily in Switzerland and Liechtenstein, providing fixed-price packages to ensure cost transparency. The website reflects a professional market position with clear service offerings and client references. Technically, the site is built on WordPress with common plugins such as Yoast SEO, Contact Form 7, and Mailchimp integration, indicating a mature digital infrastructure. Security measures include HTTPS enforcement and Google reCAPTCHA on forms, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is well-structured, mobile-optimized, and compliant with basic privacy and cookie consent requirements, though privacy policy documentation is lacking. The domain registration details align well with the business claims, supporting legitimacy and trustworthiness.

S

Sophienklinik GmbH

sophienklinik.de

48

Sophienklinik GmbH operates as a modern private hospital in Hannover, Germany, specializing in multimodal pain therapy and other healthcare services. It is positioned as one of the largest and oldest private hospitals in Germany, offering comprehensive medical care through a network of specialist doctors. The website reflects a professional healthcare provider targeting patients and medical professionals, emphasizing quality management and certifications. Technically, the website is built on WordPress with a robust plugin ecosystem including Yoast SEO, Defend WP Firewall, and Complianz GDPR for privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is strong with HTTPS enforced and firewall protections, though some security headers are not explicitly detected. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. No critical vulnerabilities or suspicious content were found. Overall, the website presents a trustworthy and professional digital presence for the healthcare provider.

C

CITIPOST GmbH

citipost.de

49

CITIPOST GmbH operates as a regional postal and logistics service provider in Germany, serving multiple cities through a network of subsidiaries and partner sites. The company focuses on affordable and punctual delivery services nationwide, targeting both business and private customers. The website reflects a professional presence with clear navigation and a localized branch finder feature, supporting customer engagement. Technically, the site is built on WordPress with common plugins such as LayerSlider and Contact Form 7, and integrates a consent management platform to comply with GDPR requirements. The site is mobile optimized and uses HTTPS, but lacks some advanced security headers and explicit incident response information. Overall, the security posture is moderate with room for improvement in formal security policies and header implementation. The domain WHOIS data is minimal but consistent with German hosting infrastructure, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences.

Vereinshelden is a well-established non-profit organization focused on supporting volunteer engagement in sports within Niedersachsen, Germany. The website serves as a comprehensive platform offering funding, consulting, training, and recognition services to sports clubs and volunteers. It holds a strong regional market position supported by partnerships with key sports organizations and government entities. The digital infrastructure is based on WordPress with modern plugins and themes, ensuring good SEO, accessibility, and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements in security headers and incident response policies are recommended. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

The Niedersächsisches Institut für Sportgeschichte e.V. (NISH) is a specialized non-profit institute dedicated to documenting and researching the sports history of Lower Saxony and surrounding regions. Founded in 1981 and supported by the LandesSportBund Niedersachsen, it offers extensive archival resources, a specialized library, and collections related to various sports disciplines. The website serves as an information hub for sports clubs, educational institutions, researchers, and enthusiasts. Technically, the site is built on WordPress with standard plugins for contact forms, newsletters, and cookie management, providing a moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and incident response information are lacking. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact details and transparent policies.

R

RSG - Rollstuhl-Sportgemeinschaft Hannover '94 e.V.

rsghannover.de

9

RSG - Rollstuhl-Sportgemeinschaft Hannover '94 e.V. is a non-profit sports community organization based in Hannover, Germany, specializing in wheelchair and integrative sports. The website serves as an informational platform targeting local community members interested in inclusive sports activities. The organization has a long-standing presence since 1994, reflecting stability and community engagement. Technically, the website is built on WordPress using the Divi theme, leveraging common web technologies such as jQuery and standard CSS frameworks. The site is moderately optimized for mobile devices and offers a reasonable user experience, though content depth and SEO could be improved. Security-wise, the site employs HTTPS with good SSL configuration and standard security headers, but lacks explicit security policies or incident response information. Privacy compliance is partially addressed with a cookie consent mechanism, but the absence of a privacy policy and terms of service pages indicates compliance gaps. Overall, the website is functional and trustworthy for its niche audience but would benefit from enhanced privacy and security transparency.

S

STUCO Fullservice GmbH

fullservice-stuco.de

55

STUCO Fullservice GmbH operates as a specialist fullservice provider for promotional products in Germany, offering comprehensive services from product conception to logistics and e-shop solutions. The company targets businesses seeking scalable and sustainable promotional merchandise solutions. The website reflects a professional digital presence with a modern WordPress and Elementor infrastructure, enhanced by SEO plugins and consent management tools. While the technical setup is solid, there is room for improvement in privacy compliance and security best practices. The absence of a published privacy policy and terms of service represents a compliance gap, and security headers are not detected, which could be enhanced to improve security posture. Overall, the site is trustworthy and well-positioned in its niche, with active social media engagement and recognized certifications such as EcoVadis.

M

Musikosmos

musikosmos.de

44

Musikosmos is a German-based online blog and informational platform focused on music retail, education, and cultural events. It provides detailed articles about music learning methods, product news, and music festivals, targeting musicians, educators, and music enthusiasts. The site also promotes partner online shops and physical retail stores specializing in musical instruments and accessories. Technically, the website is built on WordPress using the Twenty Twelve theme, enhanced with jQuery and Matomo analytics for user tracking. The site is moderately optimized for mobile and SEO, with a good content structure and consistent branding. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and cookie consent mechanisms. Privacy policy is present and GDPR compliant, though cookie consent is missing. No direct contact emails or phone numbers are published, which may impact user trust and support accessibility. Overall, the domain registration data aligns well with the website content and business focus, indicating legitimacy and consistency.

A

Allegra Academy

allegra.academy

65

Allegra Academy is an educational platform specializing in bike tourism and slow traffic mobility, primarily serving the Graubünden region in Switzerland. The website offers online courses with multimedia content and certificates, targeting professionals involved in bike tourism such as product managers, municipal employees, hotel staff, and guides. The platform is positioned as a niche educational resource with a focus on enhancing knowledge and service quality in the bike tourism sector. Technically, the site is built on WordPress using popular plugins like LearnDash for LMS functionality, WooCommerce for e-commerce, and Elementor for design. It employs modern web technologies and is mobile-optimized with good SEO practices. Security-wise, the site uses HTTPS and Google Tag Manager but lacks some security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism but no clear privacy or terms of service pages. No direct contact or incident response information is provided, which could be improved to enhance trust. Overall, the site is professional, secure, and credible but could benefit from enhanced privacy and security disclosures.