Security Directory

B

BIO COMPANY SE

biocompany.de

50

BIO COMPANY SE operates as a regional organic supermarket chain primarily serving Berlin, Brandenburg, and Sachsen since 1999. The company focuses on providing high-quality, sustainable, and regional organic food products, supported by a strong online presence including an e-commerce shop, newsletter, and customer loyalty programs. Their market position is that of a trusted regional leader in organic retail with a medium-sized business footprint. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and Swiper.js, alongside specialized services like Matomo for analytics, Brevo for newsletters, and Uberall for store location mapping. The site is hosted on rzone.de infrastructure and uses a MODX CMS platform. Performance and mobile optimization are good, with a comprehensive cookie consent mechanism ensuring GDPR compliance. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and manages cookie consent effectively. However, it lacks publicly available formal security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent with the business claims, indicating legitimacy and trustworthiness. Overall, BIO COMPANY SE's website is professional, secure, and compliant with privacy regulations, supporting its business credibility and customer trust. Strategic improvements could focus on publishing formal security policies and enhancing security headers to further strengthen the security posture.

G

Gastronovi GmbH & Co. KG

gastronovi.com

57

Gastronovi GmbH & Co. KG operates a professional and comprehensive cloud-based software platform tailored for the gastronomy industry, offering modules for point of sale, inventory management, marketing, guest services, and payment processing. The company targets gastronomy businesses seeking digital transformation and operational efficiency. The website is well-designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site leverages TYPO3 CMS, Bootstrap, and modern JavaScript libraries, with integration of third-party services such as Google Tag Manager and Calendly. Security posture is good with HTTPS enforced and cookie consent mechanisms implemented, though some security headers could be improved. WHOIS data is unavailable, which is unusual but the website's professionalism and trust signals mitigate concerns. Overall, the site demonstrates a strong business and technical foundation with minor areas for security enhancement.

M

Moravskoslezské Investice a Development, a.s.

poho2030.cz

54

POHO2030.cz is the official website for a regional transformational program focused on revitalizing the Pohornická landscape in the Karviná region of the Czech Republic. Coordinated by Moravskoslezské Investice a Development, a.s. (MSID), the program addresses the socio-economic transition following the closure of coal mines. The website provides detailed information about projects, events, and partners involved in this regional development initiative. The target audience includes local residents, investors, government entities, and cultural organizations. Technically, the site is built on WordPress with modern front-end libraries such as Swiper.js and Lottie animations, ensuring a visually engaging and mobile-optimized experience. However, it lacks visible privacy and cookie policies, which impacts compliance scores. Security posture is good with HTTPS enforced, but security headers are not evident. No forms or data collection mechanisms are present on the homepage, reducing immediate privacy risks. Overall, the site is professional, trustworthy, and serves as an effective communication platform for the regional development program.

F

Festiwal Górnej Odry – 27-29 czerwca 2025

festiwalgornejodry.pl

46

Festiwal Górnej Odry is a regional cultural festival in Poland scheduled for June 27-29, 2025. The website serves as the main digital platform for event information, news, partner announcements, and program details. It enjoys official patronage from the Ministry of Sport and Tourism and partnerships with notable organizations such as GAZ SYSTEM S.A. The target audience includes local communities and cultural event attendees. Technically, the site is built on WordPress with Elementor and uses modern plugins and tracking tools. Security posture is adequate with HTTPS and cookie consent but lacks some advanced security headers and formal privacy documentation. The domain registration is consistent and legitimate, supporting the festival's recent establishment. Overall, the website is professional, trustworthy, and well-positioned for its purpose, though improvements in privacy compliance and security hardening are recommended.

A

Apty

apty.io

67

Apty is an AI-powered digital adoption platform focused on accelerating business processes by reducing onboarding time, minimizing errors, and maximizing ROI. The company targets enterprise clients seeking to enhance digital adoption through advanced AI capabilities. The website is built on WordPress with modern plugins and technologies, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protections, but lacks published security policies and vulnerability disclosures. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site presents a professional and trustworthy business presence with room for improvement in privacy and security transparency.

Q

QuickFrame

quickframe.com

61

QuickFrame operates a sophisticated video creation and insights marketplace platform that connects brands with vetted video professionals to produce high-quality video content across multiple styles and objectives. The company has established itself as a trusted partner with preferred partnerships with major digital advertising platforms such as Meta, LinkedIn, TikTok, and MNTN. Their platform supports end-to-end video production workflows including concept development, bid management, collaboration, and final delivery. Technically, the website is built on WordPress and leverages a modern tech stack with extensive analytics and marketing integrations, hosted on AWS infrastructure. The site is well-optimized for SEO, mobile, and accessibility, reflecting a mature digital presence. Security posture is solid with HTTPS and domain protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, QuickFrame presents a professional, trustworthy, and business-focused online presence with room for minor security and privacy enhancements.

M

Moravskoslezské Investice a Development, a.s.

msid.cz

53

Moravskoslezské Investice a Development, a.s. (MSID) operates as a regional development agency focused on the Moravskoslezský kraj in the Czech Republic. The company aims to foster regional growth by supporting municipalities, businesses, and environmental initiatives. Their services include investment facilitation, marketing the region, environmental support, and managing land offers. The website is professionally designed, content-rich, and targets regional stakeholders including local governments, investors, and residents. The business model centers on regional development and sustainability, positioning MSID as a key player in the local government and real estate sectors. Technically, the website is built on WordPress with modern front-end technologies such as Tailwind CSS, Swiper.js, and DotLottie animations. SEO is well implemented with Yoast SEO plugin and structured data. The site is mobile optimized and uses analytics tools like Microsoft Clarity and Google Tag Manager. Performance is moderate with good user experience and navigation clarity. From a security perspective, the site enforces HTTPS and uses secure forms with consent checkboxes for newsletter subscriptions. However, it lacks visible security headers and cookie consent mechanisms, which are recommended for enhanced compliance and protection. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain trust verification, but the website content and business information appear legitimate and consistent. Overall, MSID's website demonstrates a mature digital presence with strong business credibility and good technical implementation. Strategic improvements in privacy compliance and security headers would further strengthen their security posture and trustworthiness.

P

Projekt LIFE COALA

lifecoala.cz

53

Projekt LIFE COALA is a government-backed environmental initiative focused on increasing climate resilience and sustainable development in the Moravian-Silesian region of the Czech Republic. The project is co-financed by the European Union LIFE program and involves multiple regional government and institutional partners. The website provides detailed information about project activities, partners, events, and public engagement efforts. The target audience includes local residents, farmers, public authorities, and stakeholders interested in climate adaptation. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile optimized, accessible, and well-structured with good SEO practices. However, no CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site uses HTTPS and secure forms but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. The absence of WHOIS data reduces domain trustworthiness, though the EU co-financing and partner ecosystem provide strong legitimacy signals. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and serves its public mission well. Strategic improvements in security headers, cookie consent, and domain registration transparency would enhance its security posture and compliance.

B

Blaues Kreuz Thurgau Schaffhausen

blaueskreuz-tgsh.ch

56

Blaues Kreuz Thurgau Schaffhausen is a well-established Swiss non-profit organization dedicated to alcohol addiction prevention, counseling, and support services. Founded in 1877, it operates under the umbrella of the national Blaues Kreuz Dachverband and offers a broad range of community-focused programs including youth camps, food assistance, and volunteer opportunities. The website reflects a mature digital presence with a clear focus on regional outreach and community engagement. Technically, the site employs a mix of modern and legacy web technologies, ensuring moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit incident response policies could enhance trust. Overall, the domain registration and WHOIS data align well with the organization's claims, supporting a high legitimacy score. The site uses Facebook Pixel and Google Analytics for user tracking, balanced with privacy compliance efforts. Strategic recommendations include strengthening security headers, publishing incident response information, and continuous monitoring of third-party scripts to maintain security and compliance.

E

Ebnat AG

ebnat.ch

57

Ebnat AG is a Swiss specialist company focused on manufacturing high-quality brushes and cleaning solutions for household and dental hygiene sectors. The company offers customized product development, private label, and white label services, emphasizing innovation, quality, and sustainability. Their market position is strong within the manufacturing industry, targeting B2B customers and brand owners. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive business information. Technically, the site uses modern technologies including Google Analytics, Google Tag Manager, Cloudflare Turnstile for bot protection, and Laravel Livewire framework. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

T

The Current

thecurrent.com

68

The Current is a professional news resource and community platform focused on marketing, advertising, and media industry trends. Owned by The Trade Desk, it offers high-quality content including articles, opinion pieces, podcasts, and videos targeted at marketers and advertising professionals. The website demonstrates a mature digital infrastructure using modern web technologies such as React, Next.js, and Google Tag Manager, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and privacy compliance mechanisms in place, although explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain is a notable gap but does not detract significantly from the site's credibility given its professional presentation and clear association with The Trade Desk. Overall, The Current is a trustworthy and well-maintained digital publication serving a specialized audience in the marketing sector.

I

Insomniac

insomniac.com

71

Insomniac is a prominent event promoter specializing in electronic music festivals and concerts, offering ticket sales, media content, and music streaming services. The website is professionally designed with rich multimedia content targeting dance music fans and event attendees. Technically, the site uses WordPress CMS with modern JavaScript libraries and integrates Google Tag Manager and OneTrust for analytics and cookie consent, reflecting a mature digital infrastructure. Security posture is good with HTTPS and cookie consent, but lacks explicit security headers and published privacy policies, which are areas for improvement. WHOIS data is unavailable or privacy-protected, which slightly reduces transparency but does not negate the site's legitimacy given its strong external partnerships and content quality. Overall, the site is trustworthy and well-positioned in the electronic music event market.

P

Plastenco design s.r.o.

plastenco.cz

64

Plastenco design s.r.o. is a Czech-based eco-design studio specializing in transforming local plastic waste into innovative design products using advanced 3D printing technology. The company targets exceptional firms and architects interested in sustainable design and circular economy principles. Their business model revolves around product design, custom projects, workshops, and collaboration with academic and technological partners. The website demonstrates a professional and modern digital presence built on SvelteKit, with multimedia content and active social media integration. Security posture is adequate with HTTPS and cookie consent, but lacks some security headers and formal privacy documentation. The absence of WHOIS data limits domain trust assessment, though the website content and partnerships support legitimacy. Overall, the site is well-designed, content-rich, and aligned with the company's sustainability mission.

V

Virtuplex

virtuplex.cz

66

Virtuplex operates the world's largest commercial virtual reality labs with locations in Dubai, Bratislava, and Prague. The company specializes in providing immersive VR solutions for industries such as real estate, urban planning, retail, manufacturing, defense, and emergency services. Their offerings include concept validation, spatial optimization, interactive 3D presentations, live remote collaboration, and training simulations. The website reflects a mature digital presence with professional design, comprehensive content, and strong SEO practices. However, the lack of WHOIS data raises questions about domain registration transparency. Technically, the site uses WordPress with modern plugins and libraries, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms but could be improved by adding explicit security headers and publishing security policies. Overall, the site is trustworthy and business credible but would benefit from enhanced transparency and security documentation.

V

VITAMIN 2

vitamin2.ch

57

Vitamin 2 is a full-service advertising agency based in Eastern Switzerland, specializing in branding, design, web development, marketing, and communication services. The website showcases a professional portfolio with multimedia content and a strong client base, positioning the company as a reputable regional player in the media sector. The technical infrastructure is modern, leveraging frameworks like Livewire and Alpine.js, and integrates Google Tag Manager and Cloudflare Turnstile for performance and security. Security posture is solid with HTTPS and bot protection, but lacks visible privacy and cookie policies, as well as incident response contacts, which are important for compliance and trust. Overall, the site is well-designed, mobile-optimized, and user-friendly, reflecting a high level of digital maturity.

H

Hive

hive.co

65

Hive is a specialized marketing platform designed for live event promoters, offering integrated tools for email and SMS marketing, CRM, automation, and analytics to optimize ticket sales. The platform integrates seamlessly with popular ticketing providers, enabling real-time data synchronization and targeted fan engagement. Hive positions itself as a niche leader in event marketing technology, supported by a professional website with comprehensive resources and customer testimonials. Technically, Hive leverages modern web technologies including Webflow CMS, Google Analytics, PostHog, and Cookiebot for consent management, ensuring a fast, mobile-optimized, and accessible user experience. The site employs secure HTTPS connections and integrates multiple marketing and analytics tools, reflecting a mature digital infrastructure. From a security perspective, Hive demonstrates good practices such as HTTPS enforcement, secure form handling, and privacy compliance with GDPR indicators. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement. The WHOIS data is redacted, which is common but reduces transparency regarding domain ownership. Overall, Hive presents a trustworthy and professional online presence with strong business credibility and technical implementation. Strategic recommendations include enhancing security transparency, publishing incident response information, and improving direct contact availability to further strengthen trust and compliance.

D

DMarket

dmarket.com

69

DMarket operates as a specialized online marketplace focused on trading in-game virtual items such as skins for popular games including CS2, TF2, Dota 2, and Rust. The platform targets gamers and virtual asset traders, offering a secure and extensive inventory with features like instant sales, inventory refresh, and a mobile application for trading on the go. The website demonstrates a strong market position supported by a large user base and active community engagement. Technically, the site is built on modern frameworks such as Angular and integrates multiple analytics and marketing tools, ensuring a responsive and performant user experience across devices. Security posture is robust with HTTPS enforcement and use of security-focused browser extensions, although explicit security policies and incident response contacts are not publicly visible. Overall, the platform presents a professional and trustworthy environment for virtual item trading, with recommendations to enhance privacy compliance and transparency.

D

Domov Sue Ryder, z. ú.

neztratitsevestari.cz

45

The website 'Neztratit se ve stáří' is a professionally designed non-profit platform focused on providing advice, education, and support related to aging and elder care. It is supported by reputable partners such as Sue Ryder and ČSOB, indicating a strong market position within the Czech Republic's non-profit sector. The site offers a variety of services including advisory hotlines, educational courses, and case management articles targeted at seniors, caregivers, and professionals. The content is well-structured, relevant, and updated regularly, reflecting a mature digital presence. Technically, the website employs modern web technologies including Google Tag Manager and Vizus CMS, with good mobile optimization and SEO practices. The site is served over HTTPS with a solid SSL configuration, although explicit security headers are not evident in the HTML source. Cookie consent mechanisms and privacy policies are implemented, demonstrating compliance with GDPR requirements. However, there is room for improvement in accessibility and security best practices such as adding security.txt and incident response contacts. From a security perspective, the site shows a good posture with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data due to privacy protection is common for non-profits and does not detract from the site's legitimacy. Overall, the website presents a trustworthy and professional image with moderate to high security and privacy compliance. Strategically, the site should focus on enhancing security headers, publishing vulnerability disclosure policies, and improving accessibility to further strengthen its digital maturity and trustworthiness.

E

ESMA

esma.org

65

ESMA is an established international network promoting trade discussions between manufacturers and distributors primarily across Europe and globally. The organization has maintained a consistent online presence since 1998, reflecting a mature market position. The website is built on WordPress with modern plugins for SEO and cookie compliance, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enabled and domain registration protections in place, though DNSSEC is not enabled and no advanced security headers were detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is professional and trustworthy but could improve transparency and security practices.

I

ISBA

isba.org.uk

76

ISBA is a UK-based membership organization representing brand owners in the advertising industry. It provides advocacy, resources, events, and a knowledge hub to support marketers and brand owners. The website is professionally designed using Drupal 10, with modern web technologies and good mobile optimization. Privacy and cookie policies are comprehensive and GDPR compliant. Security posture is strong with HTTPS and secure forms, though security headers could be improved. WHOIS data for the queried domain is unavailable due to an invalid domain query, but the website content and branding indicate a legitimate and established organization.

T

TicketSpice

ticketspice.com

74

TicketSpice is a technology company specializing in event ticketing software designed to help event organizers, attractions, nonprofits, and reservation managers sell tickets online efficiently and affordably. Positioned as a leading SaaS provider, TicketSpice offers a comprehensive suite of features including a drag-and-drop event page builder, mobile ticketing, ticket scanning, reserved seating, add-ons sales, and fraud prevention. The platform emphasizes ease of use, customization, and cost savings compared to competitors. Technically, the website is built on modern web technologies including Webflow CMS, jQuery, and integrates multiple analytics and marketing tools such as Google Tag Manager, Hotjar, and TikTok Pixel. The site is mobile optimized, well-structured, and professionally designed, providing an excellent user experience. Security posture is good with HTTPS enforced and some security headers present, though there is room for improvement in explicit security policies and headers. Privacy compliance is addressed with a comprehensive privacy and cookie policy and GDPR indicators. However, the absence of WHOIS domain registration data is a notable anomaly that reduces domain trustworthiness. Overall, TicketSpice presents a professional and trustworthy online presence with strong business credibility but should address domain registration transparency and enhance security disclosures.

P

ProEx 2000

proex2000.cz

58

ProEx 2000 is a Czech Republic-based company specializing in roofing and construction materials and services. The website presents a professional and well-structured platform targeting homeowners and construction professionals seeking roofing solutions. The business model appears to be a mix of B2C and B2B sales with a regional focus. Technically, the website employs common modern JavaScript libraries and tracking tools such as Google Tag Manager and Facebook Pixel, indicating a moderate level of digital maturity. However, the absence of WHOIS data and lack of explicit privacy and security policies on the site reduce the overall trustworthiness and compliance posture. Security-wise, the site uses HTTPS but lacks visible security headers and documented incident response or security policies, which are areas for improvement. Overall, the website is functional and professional but would benefit from enhanced transparency and security measures to improve trust and compliance.

Dresch Sàrl is a Swiss company with a commercial website primarily in French, offering products and contact options via phone and email. The website is built on WordPress using the Divi theme and integrates Matomo analytics for user tracking. However, the site currently displays a 404 error page, indicating missing or inaccessible content, which negatively impacts user experience and trust. Contact information is clearly provided, but critical compliance documents such as privacy and cookie policies are absent. The technical infrastructure is modern but lacks some security best practices such as security headers and properly configured reCAPTCHA. Overall, the website demonstrates moderate technical maturity but requires significant improvements in content availability, security posture, and privacy compliance to enhance credibility and user trust.

W

World Aquatics Online

waqua.shop

69

World Aquatics Online operates an e-commerce platform specializing in aquatic-related apparel, accessories, and swim essentials. The website positions itself as an official licensed product store targeting general consumers interested in aquatic sports and lifestyle. The business is relatively new, with domain registration in late 2024, and operates primarily in Korea with English language support. The site leverages the Cafe24 e-commerce platform, integrating modern JavaScript libraries and Google Analytics for tracking. Security posture is adequate with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and security headers are minimal. Privacy and cookie policies are absent, indicating compliance gaps. Contact information is limited to contact forms without direct emails or phone numbers. Overall, the site presents a professional and consistent brand image but would benefit from enhanced privacy compliance and security hardening.

S

Sopro

sopro.io

70

Sopro is a UK-based B2B prospecting and lead generation service founded in 2015. The company offers a multi-channel outreach platform designed to source and engage ideal prospects for businesses, enabling clients to focus on closing sales. Their services include lead generation, email marketing, demand generation, appointment setting, account-based marketing, and multi-channel marketing. The website demonstrates a mature digital presence with professional design, clear navigation, and strong trust signals such as customer reviews and awards. Technically, the site is built on WordPress with integrations including Google Tag Manager, HubSpot forms, and Cookiefirst for cookie consent management. Security posture is good with HTTPS and domain EPP protections, though DNSSEC is not enabled and no explicit security or privacy policies were found in the provided content. Overall, the site is trustworthy and well-positioned in the B2B marketing technology sector.

W

World Aquatics Online

shop-worldaquatics.com

69

World Aquatics operates an e-commerce platform specializing in aquatic-related apparel, accessories, and swim essentials. The website presents itself as an official licensed product store with a clear focus on aquatic sports enthusiasts. The business model is retail-oriented, leveraging the Cafe24 platform for its online presence. Market positioning appears to be niche within aquatic merchandise, targeting consumers interested in water sports and related lifestyle products. The site branding is consistent and professional, though lacking explicit business contact details and comprehensive policy disclosures.

E

Exostar

exostar.com

75

Exostar operates a secure and compliant collaboration platform targeting regulated industries such as aerospace, defense, healthcare, life sciences, and consumer services. The company provides a broad suite of solutions including cybersecurity, compliance management, supply chain collaboration, and clinical trials management. Their platform supports enterprise customers with secure access management and compliance readiness tools, positioning Exostar as a trusted partner in highly regulated sectors. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating digital maturity and good performance. Security posture is strong with HTTPS enforcement and secure login portals, though explicit security headers and incident response information are not publicly detailed. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the website reflects a professional and trustworthy enterprise business, though the absence of WHOIS data reduces transparency and slightly impacts trust. Strategic recommendations include publishing security headers, incident response contacts, and vulnerability disclosure policies to enhance security posture and trust.

The website kronaby.cz represents Janeba Time, s.r.o., a small Czech retail business specializing in hybrid smartwatches under the Kronaby brand. The site provides product information and links to partner e-commerce platforms for purchase. The business targets consumers interested in classic design smartwatches with advanced technology. The website is built on the Incomedia WebSite X5 Pro CMS and uses modern web technologies including jQuery, Swiper.js, and Google Analytics. It is hosted likely by Forpsi, a Czech hosting provider, with domain registration consistent with the business age and location. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks some security headers and visible privacy or terms of service pages. No contact emails or phone numbers are explicitly provided on the main site, which may impact user trust and compliance. Overall, the site is professional and functional with moderate technical maturity.

F

FM Director

fmdirector.com

59

FM Director is a UK-based, high-end printed magazine and digital media platform focused on the facilities management sector. It serves FM professionals and influencers by providing industry-leading content, including monthly magazine issues and features. The business operates under the Business Daily Group umbrella, leveraging a network of related FM services such as FM Recruiter and FM Directory. The website demonstrates a professional and consistent brand presence with clear contact information and active social media engagement. Technically, the site is built on WordPress with Elementor, employing modern web technologies and Google Analytics for tracking. While the site is well-structured and mobile-optimized, it lacks some advanced security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. The domain registration is consistent with the business age and shows no suspicious patterns, supporting the legitimacy of the website.

B

Beretta Defense

berettadefense.com

62

Beretta Defense is a defense sector company specializing in manufacturing and supplying a range of firearms and defense equipment including pistols, assault rifles, submachine guns, shotguns, and grenade launchers. They also provide armorer training courses and maintain product documentation to support law enforcement and military clients. The website presents a professional and consistent brand image targeting defense professionals and agencies. Technically, the site is built on WordPress with modern SEO and tracking tools, including Google Analytics and Cookiebot for cookie consent. Security posture is adequate with HTTPS and consent mechanisms but lacks visible security headers and published privacy or terms policies. WHOIS data is unavailable, which reduces transparency and trustworthiness. Overall, the site is functional and professional but would benefit from enhanced privacy disclosures and security practices.

W

Walservereinigung Graubünden

walserverein-gr.ch

58

Walservereinigung Graubünden is a well-established non-profit cultural association founded in 1960, dedicated to preserving and promoting the Walser language and alpine culture in the Graubünden region of Switzerland. The organization serves a membership base of approximately 2000 individuals and several municipalities, offering cultural events, publications, and a dedicated online shop. The website reflects a consistent brand identity and provides clear contact information and social media presence, supporting community engagement and cultural education. Technically, the site is built on the Contao CMS platform, utilizing modern JavaScript libraries for interactive features and responsive design, ensuring a good user experience across devices. Security posture is adequate with HTTPS enforced and secure login forms, but lacks explicit cookie consent and security headers, which are recommended for compliance and enhanced protection. Overall, the domain registration and WHOIS data align well with the organization's claims, indicating legitimacy and trustworthiness.

L

Lia Rumantscha

liarumantscha.ch

52

Lia Rumantscha is a well-established Swiss public institution dedicated to the promotion and preservation of the Rumantsch language and culture. Founded in 1919, it offers a variety of services including language courses, cultural projects, financial support for initiatives, and translation services. The website reflects a strong cultural mission with clear communication and engagement with its target audience, including families, youth, and the Rumantsch-speaking community. Technically, the site is built on Drupal CMS with modern libraries such as Bootstrap and Swiper.js, and it employs Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

I

Institut für Kulturforschung Graubünden

kulturforschung.ch

62

The Institut für Kulturforschung Graubünden (ikg) is an independent research institution based in Chur, Switzerland, focusing on humanities, social sciences, and cultural studies related to the Alpine region, especially Graubünden. The website serves as a platform for disseminating research projects, publications, events, and membership information, targeting academics, researchers, and culturally interested audiences. The business model revolves around research, publication, and community engagement through events and memberships. Technically, the website employs modern web technologies including Google Analytics with IP anonymization, Google Tag Manager, Typekit fonts, and Swiper.js for interactive content sliders. The site is mobile-optimized, accessible, and SEO-friendly, though it lacks some advanced security headers. Performance is moderate, with a professional and consistent design. From a security perspective, the site uses HTTPS with good SSL configuration and respects user privacy with cookie consent mechanisms. However, it lacks explicit security headers and does not provide a public incident response or vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR principles. It effectively supports the institute's mission and audience engagement. Strategic improvements in security headers and transparency around incident response could further enhance its security posture and user trust.

V

Verein Parc Ela

parc-ela.ch

68

Verein Parc Ela operates the Parc Ela nature park located in the heart of Graubünden, Switzerland, uniting the three linguistic cultures of Romansh, German, and Italian. The organization focuses on preserving valuable landscapes, promoting cultural heritage, and fostering innovative projects and products through a network of engaged individuals. The website reflects a well-structured, professionally designed platform built on Drupal 10, with good mobile optimization and accessibility features. It employs Google Tag Manager for analytics and tracking, alongside a cookie consent mechanism, indicating a moderate level of privacy compliance. Security posture is strong with HTTPS and inferred security headers, though explicit security policies and incident response information are absent. Overall, the site presents a trustworthy and credible non-profit entity with a clear mission and community focus.

B

Bahnmuseum Albula AG

bahnmuseum-albula.ch

69

Bahnmuseum Albula AG operates a specialized railway museum in Bergün/Bravuogn, Switzerland, focusing on the heritage of the Rhätische Bahn. The museum offers exhibitions, special events, a shop, and a buffet, targeting tourists, railway enthusiasts, and local visitors. The website is built on Drupal 10 and integrates modern web technologies such as Vue.js and Google Tag Manager for analytics. The site is well-designed, mobile-optimized, and accessible, providing a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers and privacy policies are lacking. Contact information is clearly presented, and the WHOIS data confirms the legitimacy and consistency of the domain registration. Overall, the website reflects a professional and trustworthy institution with room for improvement in privacy and security disclosures.

F

Fabbrica d’Armi Pietro Beretta

beretta.com

70

Fabbrica d’Armi Pietro Beretta is a historic firearms manufacturer established in 1526, specializing in pistols, guns, and accessories for hunting and shooting. The company maintains a strong global presence with a professional website showcasing its products, services, and brand heritage. The site targets hunters, shooting sports enthusiasts, and tactical users, offering a comprehensive catalog and customer services such as extended warranties and manuals. Technically, the website is built on Adobe Experience Manager with modern JavaScript libraries and tracking tools, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and OAuth2 authentication, though explicit security headers and detailed privacy policies are lacking. WHOIS data is unavailable, which slightly reduces trust but the overall brand legitimacy is high based on content and external references. Strategic improvements include enhancing privacy transparency, publishing security policies, and adding contact information for incident response.

K

Kliping - Agencija za praćenje i analizu medija - Beograd

kliping.rs

50

Kliping is a Serbian media monitoring and analysis agency established in 2008, providing comprehensive press clipping, social media monitoring, detailed media analysis, and translation services. The company targets PR and marketing professionals and businesses seeking efficient media insights. Their digital presence is built on WordPress with Elementor, integrating modern tracking and analytics tools such as Google Analytics and Facebook Pixel. The website is professionally designed, mobile-optimized, and offers a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and reCAPTCHA, but lacks some advanced security headers and DNSSEC. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

M

Město Brušperk

brusperk-mesto.cz

51

The website www.brusperk-mesto.cz serves as the official online presence for the municipal government of Brušperk, a small town in the Czech Republic. It provides comprehensive information and services for residents and visitors, including municipal administration details, public notices, citizen portals, local news, and contact information. The site targets local citizens and stakeholders interested in municipal affairs. Technically, the website employs common web technologies such as jQuery, Bootstrap, and Swiper.js, with a custom or proprietary CMS. It is mobile-optimized and features a clear navigation structure, though accessibility features are basic. Security-wise, the site uses HTTPS and a cookie consent mechanism but lacks visible security headers and published privacy or security policies. The absence of WHOIS data reduces domain trustworthiness, though the content and official branding suggest legitimacy. Overall, the site is functional and professional but would benefit from enhanced privacy and security disclosures.

C

Cornèr Banca SA

corner.ch

73

Cornèr Banca SA is a well-established Swiss private banking group with a history dating back to 1952. The company offers a comprehensive suite of financial services including private banking, loans, structured products, and digital banking solutions. Their market position is strong, supported by industry recognition such as ranking second in Switzerland for capital strength by The Banker TOP 1000 World Banks 2025. The website targets private clients, financial intermediaries, and institutional clients, emphasizing personalized portfolio management and investment advisory services. Technically, the website is built on OpenCms with modern JavaScript libraries like jQuery and Swiper, integrated with Adobe DTM for analytics and Google reCAPTCHA for security. The site is mobile optimized and SEO friendly, with a professional design and clear navigation.

D

DNStination Inc.

odds88.io

59

Odds88 is a US-based technology company specializing in sports API aggregation and risk management solutions for the sports betting industry. Founded in 2018, it offers a comprehensive suite of services including odds aggregation, APIs, iframe solutions, and advanced risk management tools. The company targets sports betting operators and partners, providing tailored data feeds and custom sports events to enhance betting experiences. The website demonstrates a professional digital presence with good SEO and structured data, reflecting a mature technical infrastructure built on WordPress and modern JavaScript libraries. Security posture is adequate with HTTPS and domain protections, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, Odds88 presents as a credible and established player in the sports technology sector with strong partner endorsements and customer testimonials.

H

Hennik Research, part of Nineteen Group

manufacturing-leaders.uk

47

Manufacturing Leaders' Summit is a well-established annual event targeting senior manufacturing executives and industry leaders in the UK. It provides a platform for knowledge sharing, networking, and industry insights, supported by a reputable parent company, Nineteen Group. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content focused on the manufacturing sector. Technically, the site is built on WordPress with modern libraries and integrates marketing and analytics tools such as HubSpot and Google Analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response details are absent. Overall, the site demonstrates high professionalism and trustworthiness, suitable for its target audience.

H

Hennik Research, part of Nineteen Group

manufacturing-digitalisation.com

61

Manufacturing Digitalisation Summit is a well-established annual event organized by Hennik Research, part of the Nineteen Group, targeting senior executives and industry visionaries in the manufacturing sector. The summit focuses on AI-driven digital transformation in manufacturing, offering networking, thought leadership, and sector-specific insights. The website reflects a mature event with strong market positioning and partnerships, including Smart Manufacturing Week. Technically, the site is built on WordPress with modern SEO and analytics integrations, hosted behind Cloudflare DNS. Security posture is solid with HTTPS and domain lock statuses, though DNSSEC is not enabled and explicit security policies are absent. Privacy and cookie policies are clearly presented with consent mechanisms, aligning with GDPR compliance. No direct contact emails or phone numbers are visible, which could be improved for user trust and support. Overall, the site is professional, secure, and business credible.

A

Alp Design – brand owned by Kong

alpdesign.it

53

Alp Design, a brand owned by Kong S.p.A., specializes in manufacturing high-quality equipment for speleology, canyoning, and rescue operations. Established in 1978, the company has a strong market position within its niche, offering a comprehensive product catalog including harnesses, bags, clothing, K9 harnesses, and rescue stretchers. The website reflects a professional and consistent brand image targeting professionals and enthusiasts in outdoor and rescue activities. Technically, the site is built on ASP.NET Web Forms with modern front-end libraries such as Bootstrap and Swiper.js, delivering a moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements are recommended in security headers and explicit security policies. Overall, the domain registration and business information are consistent and trustworthy, supporting the legitimacy of the website and its operations.

DMO Lužické a Žitavské hory, z.s. operates a regional tourism website promoting the Lužické hory area, a scenic region on the Czech-German border known for its natural beauty, cultural heritage, and glassmaking tradition. The website offers guides, itineraries, accommodation and gastronomy information, and an e-shop for souvenirs, targeting tourists and nature enthusiasts. The business is positioned as a small, regional destination management organization supported by local and regional partners. Technically, the site is built on WordPress with Elementor, uses modern web technologies, and integrates Google Tag Manager and Facebook Pixel for analytics and marketing. Security measures include HTTPS, Google reCAPTCHA v3 on forms, and GDPR cookie consent, though security headers could be enhanced. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with moderate tracking and good user experience.

I

International Federation of Mountain Guides Associations

ifmga.info

52

The International Federation of Mountain Guides Associations (IFMGA) is a globally recognized non-profit federation that represents professional mountain guides and coordinates national member associations. The organization focuses on maintaining high standards in training, certification, and safety for mountain guides worldwide. Their website reflects a professional and consistent brand presence, targeting professional guides and related stakeholders. Technically, the site is built on Joomla CMS with modern frontend technologies and is hosted via GoDaddy. The site is responsive and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and domain locking, but lacks DNSSEC and formal privacy and cookie policies, which are compliance gaps. No signs of blocking or WAF interference were detected, and the domain registration is consistent and legitimate. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and DNS security.

E

Emergency Services Times

emergencyservicestimes.com

66

Emergency Services Times (EST) is a well-established UK-based media publication dedicated to the emergency services sector, providing news, reports, webinars, and podcasts tailored for professionals in the blue light and emergency services community. The website demonstrates a solid market position as a leading information resource with nearly 25 years of history, supported by a parent company, Nineteen Group. The target audience includes emergency service professionals, government agencies, and technology providers in the sector. Technically, the website is built on WordPress with modern plugins such as Elementor and Yoast SEO, hosted on SiteGround. It uses standard web technologies including jQuery, Swiper.js, and integrates analytics and marketing tools like Google Analytics and HubSpot. The site is mobile-optimized and SEO-friendly, though performance is moderate and accessibility is basic. From a security perspective, the site enforces HTTPS and domain registration protections but lacks DNSSEC and advanced HTTP security headers. Privacy compliance is strong with clear cookie and privacy policies and consent mechanisms. However, no explicit security policy or incident response information is published. Overall, the website is professional, trustworthy, and compliant with GDPR, with minor technical and security improvements recommended to enhance DNS security and security headers. No content safety concerns are identified.

G

Gaming Technologies Association

gamingta.com

59

The Gaming Technologies Association (GTA) is an established Australian industry association representing gaming machine manufacturers and technology suppliers. Founded in 1994, GTA focuses on advocacy, policy leadership, and promoting responsible gaming practices within the Australian gaming industry. The website reflects a professional and consistent brand image targeting industry stakeholders, government entities, and hospitality venues. Technically, the site is built on WordPress with modern plugins and libraries, offering good mobile optimization and user experience. Security posture is solid with HTTPS and secure forms, though lacking published security policies and headers. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Privacy and cookie policies are missing, indicating compliance gaps. Overall, the site is functional and professional but would benefit from enhanced transparency and compliance documentation.

P

Pieps GmbH

pieps.com

43

PIEPS GmbH is a specialized manufacturer and retailer of premium alpine safety equipment, including avalanche beacons, probes, shovels, backpacks, and related accessories. The company targets both professional alpine guides and recreational enthusiasts, emphasizing safety, innovation, and reliability. Their market position is strong within the alpine safety niche, supported by advanced technology such as Bluetooth-enabled devices and proprietary interference protection systems. The website reflects a mature digital presence with multilingual support and a dedicated service portal for device management and warranty services. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities and WPML for multilingual content. It employs modern JavaScript libraries like Swiper.js and integrates cookie consent management and Google reCAPTCHA for security and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. From a security perspective, the site enforces HTTPS and uses security best practices such as CAPTCHA and cookie consent. However, explicit security headers are not clearly detected, and no public security policy or incident response contacts are provided. The absence of WHOIS data for the domain is a notable gap, potentially due to privacy protection or registrar policies, but the website's professional presentation and valid contact information mitigate concerns about legitimacy. Overall, PIEPS GmbH's website demonstrates a solid business and technical foundation with good security hygiene and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and clarifying domain registration transparency to further strengthen trust and compliance.

A

Australasian Gaming Expo

austgamingexpo.com

40

The Australasian Gaming Expo (AGE) is a well-established event organizer specializing in the gaming and hospitality industry in Australia. The website serves as a comprehensive platform for event information, exhibitor details, visitor registration, and industry news. It targets professionals and businesses within the gaming and hospitality sectors, positioning itself as a cornerstone event in the Australasian market. The business model revolves around event hosting, exhibitor services, and networking facilitation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and integrates Google Analytics and Google reCAPTCHA for analytics and security. The site is mobile-optimized and demonstrates good SEO practices, although performance is moderate. Hosting details are limited but the domain is registered with a reputable registrar and has a long history dating back to 2003. From a security perspective, the site uses HTTPS and implements reCAPTCHA for form protection, but lacks DNSSEC and explicit security headers. There is no visible cookie consent mechanism or detailed privacy compliance features, which could be improved. No incident response or vulnerability disclosure information is publicly available, indicating room for enhancement in security transparency. Overall, the website is professional, trustworthy, and serves its business purpose effectively. Strategic improvements in security headers, privacy compliance, and incident response transparency would strengthen its security posture and user trust.