Security Directory

M

Meier AG

meier.ch

54

Meier AG is a specialized communication and web development agency based in Schaffhausen, Switzerland, with a history rooted in the predecessor agency SOBAG since 1999 and formally established as Meier AG in 2019. The company offers a comprehensive suite of services including consulting, web development, web design, communication and PR, social media management, and ongoing support. Positioned as a reliable and innovative partner, Meier AG targets a broad range of clients from startups to large enterprises within Switzerland. The website reflects a professional and consistent brand image with clear navigation and rich content, supporting its market position effectively. Technically, the website is built on TYPO3 CMS with Bootstrap 4 and integrates modern technologies such as Google Analytics, Google Tag Manager, and Google Maps API. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. Privacy compliance is well addressed with a comprehensive privacy policy and an explicit cookie consent mechanism. From a security perspective, the site uses HTTPS and implements cookie consent but lacks explicit security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The domain registration details are consistent with the business claims, showing transparency and legitimacy. Overall, Meier AG presents a trustworthy and professional digital presence with solid technical infrastructure and privacy compliance. Strategic improvements in security policy publication and enhanced accessibility could further strengthen its posture.

S

Sportschule Dürnten

sportschule-duernten.ch

50

Sportschule Dürnten is a state-approved private secondary school in Switzerland specializing in education for sport talents and enthusiasts. The school offers a combination of academic programs including international Matura and extensive sports training options such as tennis, golf, and riding. Their business model integrates educational services with athletic development, targeting families and young athletes seeking a balanced and professional environment. The website reflects a niche market position with a focus on quality and family-friendly services.

F

Feratel Medien Technologien AG

feratel.it

69

Feratel is a medium-sized technology company specializing in providing digital solutions primarily for the tourism and media sectors. Their offerings include marketing, up-selling, assistance, data strategy, communication, and interface development services. The company has an established market presence with a professional and consistent brand image. The website is built on TYPO3 CMS and integrates modern tools such as Cookiebot for GDPR-compliant cookie management and Google Analytics for traffic analysis. The technical infrastructure is solid with good SSL configuration and security headers, ensuring a secure browsing experience for users. Privacy compliance is well addressed with clear policies and consent mechanisms. However, the site lacks visible contact information and a terms of service page, which could be improved to enhance business credibility and user trust. Overall, the website reflects a mature digital presence aligned with business goals and regulatory requirements.

E

Eidgenössische Turnveteranen-Vereinigung (ETVV)

etvv.ch

66

The Eidgenössische Turnveteranen-Vereinigung (ETVV) is a Swiss non-profit association dedicated to veteran gymnasts aged 50 and above within the Swiss Gymnastics Federation. The organization promotes camaraderie, ethical values, and the ideals of Swiss gymnastics, while also supporting youth sports through sponsorships. The website is bilingual (German and French), professionally designed, and provides clear organizational and contact information. Technically, it is built on the Jimdo Creator CMS platform, uses modern web technologies, and includes standard privacy and cookie consent mechanisms. Security posture is good with HTTPS enforced and appropriate security headers, though no explicit security policy or incident response information is provided. Overall, the site is trustworthy, compliant with GDPR, and serves its niche audience effectively.

The website 'Natur & Freizeit' is a Swiss non-profit organization focused on promoting respect for wildlife during snow sports activities. It provides educational content, guidelines, and resources to protect wildlife in designated areas, supported by Swiss federal and cantonal authorities. The site targets outdoor enthusiasts and nature conservation supporters, positioning itself as a niche environmental advocacy platform within Switzerland. Technically, the website is built on the Contao CMS platform, utilizing common JavaScript libraries and Google Analytics for tracking. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. Privacy compliance is partial, with a privacy policy likely located on the Impressum page but no explicit cookie consent found. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

ペライチは日本を拠点とするホームページ作成ツールのSaaS企業で、専門知識不要で誰でも簡単に高品質なホームページやランディングページを作成できるサービスを提供しています。600種類以上のテンプレートやフォーム、決済、予約、メールマガジンなど多彩な機能を備え、個人事業主や中小企業、フリーランスを主なターゲットとしています。技術的にはNext.jsを利用したモダンなフロントエンドを持ち、AWSのDNSを利用してホスティングされており、Google AnalyticsやFacebook Pixel、Mixpanelなど多様なマーケティング・分析ツールを活用しています。セキュリティ面ではHTTPSが有効でドメインは安定的に管理されていますが、DNSSEC未設定やセキュリティヘッダーの欠如、プライバシーポリシーやクッキーポリシーの不備が見られます。全体として高品質で信頼性の高いサービスですが、プライバシーとセキュリティの強化が推奨されます。

G

Go-Ahead Nordic

go-aheadnordic.no

52

Go-Ahead Nordic operates as a regional train service provider in Norway, connecting major cities such as Oslo, Stavanger, and Kristiansand. The company is part of the larger Go-Ahead Group and focuses on delivering passenger rail services with an emphasis on travel information and customer support. The website serves as a portal for travelers to plan journeys, check train status, and access company news. Technically, the site is built on a modern React single-page application hosted on Microsoft Azure, integrating analytics and marketing tools such as Google Analytics, Bing Ads, and Telia ACE Web SDK. The site demonstrates good mobile optimization, accessibility, and basic SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and published security policies would enhance trust. Overall, the domain registration aligns well with the business profile, indicating legitimacy and consistency. The site is safe for general audiences and does not contain any adult or questionable content.

Lavenham Leisure Ltd. operates a professional e-commerce website specializing in premium quilted jackets and waistcoats, manufactured in-house at their Suffolk factory. The company positions itself as a British factory brand with a focus on quality and craftsmanship, targeting men and women seeking high-quality outerwear. The website is built on the Shopify platform, leveraging modern technologies such as React, Google Analytics, Facebook Pixel, and OneTrust for consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security policies and incident response contacts are absent. The absence of WHOIS domain registration data raises concerns about domain legitimacy, suggesting the need for further verification. Overall, the site demonstrates strong business credibility and technical implementation with room for improvement in transparency and security documentation.

D

DNEG

dneg.com

67

DNEG is a globally recognized leader in visual effects, animation, and creative technologies, serving the film, TV, and immersive content industries. With over 25 years of experience and multiple Academy Awards, DNEG partners with top filmmakers and studios to deliver cutting-edge digital production services. Their website reflects a mature digital presence with rich multimedia content and strong branding. Technically, the site uses modern frameworks like Next.js and React, integrates Vimeo for video hosting, and employs TrustArc for cookie consent management. However, some security best practices such as explicit security headers are not evident in the provided data. The absence of WHOIS registration details reduces transparency but does not detract significantly from the company's credibility given their established market position and external partnerships. Overall, DNEG demonstrates a solid security posture with room for improvement in security headers and incident response visibility.

A

Andermatt Sedrun Disentis

disentis-sedrun.ch

66

Andermatt Sedrun Disentis operates as a regional tourism destination website promoting the Disentis Sedrun area in Switzerland. The site targets tourists interested in mountain sports, cultural events, and leisure activities. The business model focuses on destination marketing and providing information and services related to tourism. The website is built on modern web technologies including Nuxt.js and integrates Google Analytics and Tag Manager for tracking. The technical infrastructure is moderately optimized for performance and mobile responsiveness. Security posture is good with HTTPS and security headers implemented, but lacks visible privacy and cookie policies, which impacts compliance. Overall, the site is professional and trustworthy but would benefit from enhanced privacy compliance and explicit contact information. Strategic recommendations include adding comprehensive privacy and cookie policies, improving accessibility, and publishing security and incident response information.

ペライチは日本市場向けに特化したホームページ作成ツールを提供する中規模テクノロジー企業であり、2013年創業の安定した事業基盤を持っています。600種類以上のテンプレートと多彩な機能を備え、専門知識不要で誰でも簡単に高品質なWebサイトを作成可能です。技術的にはAWSを基盤とし、Next.jsを含むモダンな技術スタックを活用し、Google AnalyticsやMixpanelなど複数の分析ツールを導入してデータドリブンな運営を行っています。セキュリティ面ではHTTPSを完全に実装し、ドメインの移管保護も設定されていますが、DNSSEC未導入やセキュリティポリシーの公開不足が改善点です。プライバシー面ではプライバシーポリシーは整備されているものの、クッキー同意メカニズムが未実装であり、GDPR対応は限定的です。全体として高品質で信頼性の高いサービスを提供しているものの、さらなるセキュリティ強化とプライバシー対応の充実が推奨されます。

Z

Zürcher Schneesportverband

zsv.ch

47

The Zürcher Schneesportverband (ZSV) is a Swiss non-profit sports association dedicated to promoting youth participation in various winter sports disciplines including Alpine skiing, cross-country skiing, biathlon, ski jumping, snowboarding, and freestyle skiing. The organization operates primarily within the Zurich region and serves as a key regional player in winter sports development. Their website provides event information, educational workshops, and resources to support athletes and enthusiasts. The site is well-structured, professionally designed, and uses modern web technologies to deliver content effectively to its target audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several popular plugins such as Yoast SEO and Contact Form 7. It employs Google Analytics and Tag Manager for user tracking and performance monitoring. The site is mobile-optimized and uses HTTPS with a strong SSL configuration, ensuring secure data transmission. However, it lacks some advanced security headers and a cookie consent mechanism, which are recommended for enhanced compliance and security. From a security perspective, the site demonstrates good practices such as secure forms and no visible exposure of sensitive data. There is no evidence of a published security policy or incident response contacts, which could be improved to enhance trust and readiness. The WHOIS data aligns well with the website's claims, showing consistent registrant information and no privacy protection, supporting the site's legitimacy. Overall, the ZSV website is a credible, well-maintained platform serving its community effectively. Strategic improvements in privacy compliance and security policy transparency would further strengthen its security posture and user trust.

N

NAEF PARTNERS AG

naefpartners.ch

52

NAEF PARTNERS AG is a Swiss-based boutique consulting firm specializing in corporate development, sales performance, change management, and leadership coaching. The company targets business professionals and organizations seeking tailored consulting services to enhance strategy implementation and leadership effectiveness. Their market position is that of a high-end consulting boutique with a focus on personalized and human-centric business development approaches. Key services include strategy development, leadership empowerment, sales optimization, and change management interventions. Technically, the website is built on the SilverStripe CMS platform and incorporates modern web technologies such as Google Analytics and Google Tag Manager for analytics, along with jQuery-based UI components like Fancybox and Flexslider. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be improved. Performance is moderate with asynchronous loading of analytics scripts. From a security perspective, the site enforces HTTPS with an excellent SSL configuration and anonymizes IP addresses in Google Analytics, reflecting some privacy awareness. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options, and does not provide a cookie consent mechanism or a published security policy. No vulnerability disclosure or incident response contacts are present, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and well-aligned with the business's consulting focus. The main risks relate to privacy compliance gaps and missing security best practices. Strategic improvements in these areas would strengthen the security posture and regulatory adherence, supporting the company’s credibility and client trust.

Bänziger Hug is a Swiss-based design agency founded in 2011 by Samuel Bänziger and Olivier Hug. The agency specializes in print and interactive design, offering services such as book design, exhibitions, publications, identities, and website design primarily for cultural institutions, businesses, and individuals. The company has a strong market position within its niche, supported by numerous prestigious design awards, indicating a high level of professional recognition and trust. Technically, the website is built using modern web standards including HTML5, CSS3, and JavaScript, with the use of Modernizr for feature detection and Google Analytics for visitor tracking. The site is mobile optimized and performs moderately well, though accessibility features are basic. The absence of a CMS or hosting provider information limits deeper infrastructure insights. From a security perspective, the website benefits from HTTPS with excellent SSL configuration, but lacks important security headers such as Content-Security-Policy and X-Frame-Options. No forms or input fields are present, reducing attack surface, but the absence of privacy and cookie policies indicates compliance gaps. WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional website content. Overall, the website is professional and trustworthy in appearance and content, but the lack of WHOIS transparency and privacy compliance policies present moderate risks. Strategic improvements in security headers, privacy documentation, and domain registration transparency are recommended to enhance trust and compliance.

Atelier Varga is a Swiss-based creative agency specializing in visual design, web design, corporate identity, and editorial design services. The website showcases a comprehensive portfolio of projects primarily in cultural, architectural, and artistic domains, targeting clients seeking high-quality visual communication solutions. The business operates as a small, niche design atelier with a consistent brand presence and a professional online portfolio. Technically, the website is built on WordPress, utilizing common plugins such as Yoast SEO and Google Analytics for SEO and visitor tracking. The site demonstrates good mobile optimization and moderate performance but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and use of a security plugin, but it lacks important security headers and a vulnerability disclosure mechanism. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanism. Contact information is not explicitly provided on the homepage, which may affect user trust and compliance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security practices.

InnovationsTransfer Zentralschweiz (ITZ) is a regional innovation support organization based in Central Switzerland, founded in 2021. The company focuses on assisting startups, SMEs, and private individuals with innovation development, coaching, funding facilitation, and intellectual property consulting. The website presents a professional and consistent brand image, targeting innovation-driven businesses and individuals in the region. Technically, the site is built on WordPress with the Breakdance builder and integrates SEO and analytics tools such as Yoast SEO and Google Analytics. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit security and incident response policies are not published. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the site is well-structured, compliant with privacy regulations, and trustworthy.

F

Freight and Transit Company Limited (FTL)

ftl.mu

56

Freight and Transit Company Limited (FTL) is a well-established logistics service provider founded in 1994, operating primarily in Mauritius, Madagascar, and South Africa. The company offers a comprehensive range of logistics services including air and sea freight, customs clearing, warehousing, project cargo management, and handling of perishable and dangerous cargo. Their website reflects a professional and consistent brand image, targeting businesses requiring reliable logistics solutions in the Indian Ocean and African regions. Technically, the website is built on Drupal 9 and incorporates modern web technologies such as Google Analytics, Facebook Pixel, and Google reCAPTCHA to enhance user experience and security. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security-wise, the website enforces HTTPS and uses CAPTCHA to protect forms, but lacks some security headers and explicit security policies. The WHOIS data is unavailable due to privacy protection, which is common but reduces transparency. Overall, the website is trustworthy and professional, with room for improvement in privacy compliance and security documentation.

א

אוריין בע״מ

orian.com

62

Orian Ltd. is a publicly traded Israeli logistics company offering comprehensive supply chain management solutions. The company operates as part of an international group, providing sea and air freight, domestic transportation, customs brokerage, e-commerce logistics, and specialized services such as cargo insurance and clinical trials logistics. The website is professionally designed, primarily in Hebrew, targeting business clients and investors. Technical infrastructure includes modern JavaScript libraries, Google Analytics, and Tag Manager, indicating a mature digital presence. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks explicit security headers and detailed privacy compliance mechanisms. The absence of WHOIS data raises concerns about domain registration legitimacy, though the business content and investor relations links support its authenticity. Strategic improvements in privacy policies, security headers, and incident response disclosures are recommended to enhance trust and compliance.

P

Panafric Global Logistics

panafricglobal.com

47

Panafric Global Logistics is a professional logistics service provider offering a wide range of freight forwarding and logistics solutions including air and ocean freight, customs clearance, warehousing, trucking, and project cargo services. The company emphasizes its extensive sector expertise and operational scale, including over 30 years of experience, 13 offices, and a large fleet of trucks. The website is built on a modern WordPress platform using Elementor and related plugins, with good design quality and mobile optimization. Security posture is adequate with HTTPS and secure forms, but lacks published privacy and cookie policies, security headers, and incident response information. WHOIS data is missing, which raises concerns about domain legitimacy despite the professional website content. Overall, the site is functional and trustworthy in appearance but requires improvements in compliance and transparency.

G

Groupe Marill

groupe-marill.com

56

Groupe Marill is a well-established family-owned business group with a history dating back to 1896, operating primarily in the Horn of Africa region. The group offers a diversified portfolio of services including maritime agency, logistics, insurance, automobile distribution, and industrial equipment supply. Their website reflects a professional and consistent brand image, targeting businesses and individuals requiring these services in the region. Technically, the website is built on Drupal 7 with several JavaScript libraries and uses Google Analytics for tracking with IP anonymization enabled. However, some technologies like jQuery 1.8 are outdated, and there is a lack of modern security headers and DNSSEC implementation. Security posture is moderate with HTTPS enabled but missing several best practices. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data supports the legitimacy of the business with consistent and long-term domain ownership.

S

Spider AF

spideraf.com

77

Spider AF is a specialized digital marketing security company focused on combating ad fraud, click fraud, and invalid leads. The company offers a SaaS platform trusted by over 500 companies to protect marketing budgets by detecting and preventing fraudulent activities. Their key services include ad fraud detection, invalid click filtering, fake lead detection, and website risk monitoring. The website is professionally designed, targeting digital marketers and advertisers concerned with marketing security. Technically, the site is built on Webflow and leverages modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, PostHog, and Visual Website Optimizer, hosted on AWS infrastructure. The site is mobile optimized and performs moderately well.

S

Stiftung Kinderhilfe Sternschnuppe

sternschnuppe.ch

53

Stiftung Kinderhilfe Sternschnuppe is a Swiss non-profit foundation established in 1993 dedicated to supporting children with illnesses or disabilities by fulfilling their wishes, providing leisure activities, and supporting related projects. The foundation operates primarily through donations and fundraising, with clear mechanisms for donors including IBAN and QR code payment options. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content for its target audience. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Analytics, and reCAPTCHA, ensuring a functional and secure user experience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the site lacks explicit security policies or incident response contacts. Overall, the domain registration data aligns well with the foundation's identity, indicating high legitimacy and trustworthiness.

F

Frizzy Foundation

frizzyfoundation.org

40

Frizzy Foundation is a small non-profit organization dedicated to supporting children with special needs in Switzerland and abroad. Their mission includes promoting mental and physical health through outdoor activities and infrastructure development. The website content is minimal but relevant, providing basic information about the foundation's purpose and contact emails. The domain is well-established since 2011, consistent with the foundation's history, and registered without privacy protection, enhancing transparency. Technically, the website is hand-coded with basic HTML and CSS, utilizing Google Analytics and Google Tag Manager for tracking. Mobile optimization and accessibility are basic, and no CMS or advanced frameworks are detected. Security posture is moderate with domain transfer protection but lacks DNSSEC and security headers. No cookie consent mechanism is present despite analytics usage, indicating a privacy compliance gap. Security-wise, the site shows no critical vulnerabilities or malicious indicators but would benefit from improved security headers, DNSSEC, and explicit security policies. The absence of a cookie policy and consent mechanism is a compliance risk under GDPR. Overall, the website is functional and trustworthy but could improve in privacy and security practices to enhance user trust and regulatory compliance.

S

Swiss Olympic

swissolympic.ch

63

Swiss Olympic is the umbrella organization for Swiss sports and serves as the National Olympic Committee of Switzerland. It supports and strengthens its members, including 83 national sports federations and 30 partner organizations, representing approximately 18,300 clubs and 2.2 million active sports participants. The organization is well-established with a strong market position and recognized trust indicators such as ISO 9001:2015 certification and partnerships with major national and international brands. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience of sports organizations, athletes, and partners. Technically, the website employs modern JavaScript libraries including jQuery, Slick Carousel, JWPlayer, and integrates Google Analytics and Tag Manager for analytics. Accessibility tools like Eye-Able are implemented, and the site is mobile-optimized with good SEO practices. Performance is moderate, with no critical technical issues detected. However, no CMS or hosting provider details were identified. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security policy pages, incident response contacts, and security headers such as Content-Security-Policy. No vulnerabilities or exposed sensitive data were found. The WHOIS data shows privacy protection consistent with organizational privacy needs, and no suspicious patterns were detected. Overall, the website is secure, professional, and compliant with privacy regulations, with room for improvement in formal security disclosures and enhanced security headers. The risk level is low, and the site effectively supports the organization's mission and stakeholder engagement.

H

Hessischer Gründerpreis – Die Auszeichnung 🏆

hessischer-gruenderpreis.de

52

The Hessischer Gründerpreis website represents a well-established regional business award platform focused on startups and business successors in Hessen, Germany. It provides visibility, networking, media exposure, and professional support to companies in their first five years of operation or succession. The platform is backed by reputable partners and sponsors, including financial institutions, industry associations, and government bodies, enhancing its credibility and market position. Technically, the website is built on Joomla CMS with modern front-end frameworks like UIkit and uses common analytics and consent management tools such as Google Analytics, Google Tag Manager, and Usercentrics. The site is mobile-optimized, accessible, and SEO-friendly, with structured data implemented for enhanced search engine understanding. From a security perspective, the site enforces HTTPS and includes CSRF tokens, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable digital presence for the Hessischer Gründerpreis initiative.

A

aha - Zweckverband Abfallwirtschaft Region Hannover

aha-region.de

62

The website www.aha-region.de represents the regional public waste management authority 'aha - Zweckverband Abfallwirtschaft Region Hannover' in Germany. It provides comprehensive waste disposal services for private households and businesses, including container services, recycling, composting, and special waste management. The site targets a broad audience including residents and commercial customers within the Hannover region. The business model is focused on public service delivery in the environmental sector, positioning itself as a key regional player in waste management and sustainability. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and integrates modern tools such as Google Tag Manager, Google Analytics, and Cookiebot for cookie consent management. The site is hosted on German servers (htp-tel.de) and demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, indicating a commitment to user privacy and data protection. However, explicit security headers and detailed security policies are not evident in the provided data. No vulnerabilities or exposed sensitive data were detected. The absence of a published privacy policy or terms of service page is a notable gap in compliance documentation. Overall, the website is professional, trustworthy, and safe for general audiences. It effectively communicates its public service mission but could improve transparency by publishing comprehensive privacy and security policies and providing clear contact information. Strategic recommendations include enhancing security headers, incident response readiness, and compliance documentation to strengthen trust and regulatory adherence.

S

Sophienklinik GmbH

sophienklinik.de

48

Sophienklinik GmbH operates as a modern private hospital in Hannover, Germany, specializing in multimodal pain therapy and other healthcare services. It is positioned as one of the largest and oldest private hospitals in Germany, offering comprehensive medical care through a network of specialist doctors. The website reflects a professional healthcare provider targeting patients and medical professionals, emphasizing quality management and certifications. Technically, the website is built on WordPress with a robust plugin ecosystem including Yoast SEO, Defend WP Firewall, and Complianz GDPR for privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is strong with HTTPS enforced and firewall protections, though some security headers are not explicitly detected. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. No critical vulnerabilities or suspicious content were found. Overall, the website presents a trustworthy and professional digital presence for the healthcare provider.

L

Landessportbund Nordrhein-Westfalen e. V.

vibss.de

30

The website www.vibss.de serves as an information and advisory portal for sports clubs primarily in the German state of Nordrhein-Westfalen. Operated by the Landessportbund Nordrhein-Westfalen e. V., a non-profit organization, it offers comprehensive resources on club management, sports practice, legal matters, and digital transformation including AI assistance. The site is well-positioned as a regional leader in supporting sports associations with a clear focus on practical and legal guidance. Technically, the site is built on the TYPO3 CMS platform, integrates Google Analytics and Tag Manager for tracking and search functionalities, and is hosted likely via Deutsche Telekom infrastructure. The website demonstrates good mobile optimization, structured navigation, and professional branding consistency. Security-wise, the site enforces HTTPS, implements GDPR-compliant cookie consent mechanisms, and avoids exposing sensitive data, though it lacks explicit security policies or incident response contacts. Overall, the site is trustworthy, compliant, and serves its target audience effectively.

B

Börsenblatt

boersenblatt.net

70

Börsenblatt.net is a leading German trade magazine website serving the book industry, providing news, background information, and services for book retailers and publishers. The site is professionally designed, mobile-optimized, and integrates multiple analytics and advertising technologies, including Google Analytics, Matomo, and Revive Adserver. The website demonstrates a mature digital infrastructure with comprehensive cookie consent management and GDPR compliance. However, the WHOIS data for the domain is unavailable, which raises moderate concerns about domain registration transparency. No explicit contact emails or phone numbers are present on the site, which could impact user trust and business credibility. Overall, the website is secure with proper HTTPS and security headers, and it maintains a high level of content quality and user experience.

S

StiftungSchweiz

spendenschweiz.ch

58

SpendenSchweiz is a Swiss non-profit online donation platform operated by StiftungSchweiz, offering donors access to over 900 charitable organizations and projects. The platform facilitates easy, secure donations and enables users to start their own fundraising campaigns. The website is professionally designed, SEO optimized, and uses modern WordPress technologies including jQuery, Slick Carousel, and Intercom for user engagement. Google Analytics and Google Tag Manager are employed for traffic analysis. Security posture is strong with HTTPS and secure forms, though explicit privacy and cookie policies are missing, which impacts compliance. No incident response or vulnerability disclosure information is provided. Overall, the platform is trustworthy and well-positioned in the Swiss charitable sector, but could improve transparency and privacy compliance.

F

Filmexplorer

filmexplorer.ch

61

Filmexplorer is a Swiss non-profit association dedicated to providing a rich cultural media platform focused on film as an experiential art form rather than a commodity. The website offers curated film critiques, interviews, podcasts, and festival coverage, targeting film enthusiasts and cultural audiences primarily in Switzerland. The platform maintains a consistent and professional brand image with excellent content quality and user experience. Technically, the website employs modern web technologies including Swiper.js for interactive sliders, a consent manager for GDPR-compliant cookie handling, and Google Analytics for visitor insights. The site is mobile-optimized and SEO-friendly, though no specific CMS or hosting provider details are evident. Performance is moderate with good accessibility features. From a security perspective, the site uses HTTPS with an effective cookie consent mechanism and email obfuscation to reduce spam. However, it lacks explicit security policies, incident response contacts, and terms of service pages. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms the legitimacy and consistency of the domain registration. Overall, Filmexplorer presents a trustworthy, well-maintained cultural media website with strong privacy compliance and a clear focus on its niche audience. Strategic improvements could include publishing security policies and incident response information to enhance transparency and trust.

D

Derivative

derivative.ca

66

Derivative is a Canadian software company specializing in TouchDesigner, a visual development platform targeting creative professionals and media artists. The company has a strong market position in the niche of media server and visual development software, supported by an active community and comprehensive learning resources. The website reflects a mature digital presence with professional design and consistent branding. Technically, the site is built on Drupal 7 with modern JavaScript libraries and hosted on AWS infrastructure, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS and domain transfer protections, though DNSSEC is not enabled and security policies are not publicly documented. Privacy compliance is partial, with privacy and terms pages present but lacking cookie consent mechanisms. Overall, the site is trustworthy and professional, with room for improvement in security and privacy transparency.

Brogramming is a small, specialized web development business operated by Fabian Voegeli based in Zürich, Switzerland. The company focuses on delivering custom web development projects primarily for cultural heritage institutions, academia, art galleries, and architecture firms. Their portfolio demonstrates expertise in modern web technologies including Next.js, React, Craft CMS, WordPress, and Gatsby, reflecting a mature and technically competent digital infrastructure. The website showcases a broad network of partners and clients, reinforcing its niche market position. Technically, the website employs a modern tech stack with frameworks like React and Next.js, and integrates Google Analytics for user tracking. The site is mobile optimized with good SEO practices, though accessibility features are basic. Hosting and DNS are managed through Key-Systems GmbH and firestorm.ch DNS servers. Performance is moderate, with room for improvement in security configurations. From a security perspective, the site lacks visible security headers and DNSSEC is not enabled, which are areas for enhancement. The domain is secured with clientTransferProhibited status, and HTTPS is presumed but not explicitly confirmed in the data. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is professional and trustworthy with a solid business foundation and technical implementation. However, it would benefit from improved security practices and formalized privacy compliance to enhance user trust and regulatory adherence.

The website www.overenezakaznikmi.sk is a Slovak language platform focused on customer verification and review aggregation services. It targets a general audience in Slovakia, providing a service platform that likely helps businesses and consumers verify customer feedback. The site demonstrates a modern design with mobile optimization and basic accessibility features. Technically, it employs Google Analytics and Google Tag Manager for user tracking and analytics, alongside a privacy consent mechanism via the Privacy Center SDK, indicating some level of GDPR awareness. However, the absence of an explicit privacy policy and terms of service reduces its privacy compliance maturity. Security-wise, the site uses HTTPS but lacks visible security headers and detailed security policies, which suggests room for improvement in its security posture. No critical vulnerabilities or adult content were detected, and the domain WHOIS data is privacy protected, which is common for small businesses but slightly reduces transparency. Overall, the website scores moderately in content quality, technical implementation, security, privacy compliance, and business credibility, resulting in an overall AI score of 68.

The website garancianakupu.sk operates as a Slovak e-commerce purchase guarantee platform affiliated with Heureka Group a.s. It provides customers with assurances on purchases made through the Heureka Košík system, including money-back guarantees and support for order issues. The site targets Slovak online shoppers and certified e-shops, positioning itself as a trusted intermediary in the Slovak e-commerce market. The business model revolves around enhancing consumer confidence and supporting e-shops with certification and guarantee services. Technically, the website uses AngularJS for frontend rendering, includes Google Analytics for tracking, and employs modern HTML5 and CSS3 standards. The site is mobile-optimized and presents a professional design with clear navigation. However, it lacks advanced accessibility features and modern frameworks. No CMS or hosting provider details are evident from the content. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks visible security headers and published security or incident response policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. The domain WHOIS data is consistent and indicates a legitimate, established business presence since 2009. Overall, the website is functional, trustworthy, and professionally presented but would benefit from enhanced privacy compliance, security hardening, and transparency regarding data protection and incident response.

T

TITLIS Bergbahnen AG

titlis.ch

72

TITLIS Bergbahnen AG operates a leading mountain tourism website promoting the TITLIS mountain region in Central Switzerland. The site offers information on skiing, hiking, cable cars, accommodation, restaurants, and events, positioning itself as a premier destination for tourists and adventure seekers. The technical infrastructure is modern, leveraging Next.js and React frameworks, with integrated analytics and marketing tools such as Google Analytics, Facebook Pixel, and Cookiebot for consent management. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit privacy and terms of service pages are not detected in the provided content. Overall, the website is professional, well-branded, and trustworthy, supporting the business's market position.

S

SMEC

smec.com

66

SMEC is a global engineering and consultancy firm specializing in infrastructure, energy, transport, and international development sectors. The company operates in over 40 countries and emphasizes sustainable and practical solutions. Their website is built on WordPress and integrates common analytics and tracking tools such as Google Analytics and MonsterInsights. The site is professionally designed with good content quality and clear navigation, targeting government and private sector clients. Security posture is adequate with HTTPS and reCAPTCHA usage, but could be improved by adding more security headers and explicit incident response policies. The absence of WHOIS data reduces transparency but the website content and branding suggest a legitimate and established business.

A

Angus Council

angus.gov.uk

67

Angus Council operates as the official local government authority for the Angus region in Scotland, providing a broad spectrum of public services including housing, council tax, benefits, planning, and community support. The website serves residents and businesses with accessible information and service portals, reflecting a mature public sector digital presence. The council maintains a strong market position as a regional government entity with a focus on community engagement and service delivery. Technically, the website is built on Drupal 10, leveraging modern web technologies and analytics tools such as Google Analytics, Google Tag Manager, and Siteimprove Analytics. The site is mobile-optimized, accessible, and incorporates a chatbot for enhanced user interaction. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. However, explicit security headers are not evident, and there is no public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a government website. Overall, the website is trustworthy, professional, and compliant with privacy regulations. The absence of WHOIS data limits domain age and registrant verification, but the .gov.uk domain and content strongly support legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and establishing a vulnerability disclosure program to further strengthen security and transparency.

L

Literary Review

literaryreview.co.uk

52

Literary Review is a reputable UK-based literary magazine established in 1979, focusing on book reviews and literary commentary. The website serves as a digital platform for its content, subscription services, and advertising. It targets readers interested in literature and culture, maintaining a consistent brand and high-quality content. Technically, the site is built on WordPress with common plugins and tracking tools, hosted by Easyspace Ltd. The site is moderately optimized for performance and mobile use, with good SEO and basic accessibility features. Security posture is solid with HTTPS and some security best practices, though improvements in HTTP security headers and cookie consent mechanisms are recommended. Privacy policies are present and GDPR compliant, but cookie consent is lacking. Contact information is limited to email and a contact form, with no phone or physical address listed. Social media presence is active, enhancing engagement. Overall, the site is professional, trustworthy, and safe for general audiences.

D

Dezeen

dezeen.com

65

Dezeen is a globally recognized online architecture, interiors, and design magazine offering a wide range of content including news, features, awards, jobs, events, and educational courses. The website demonstrates a mature digital presence with strong branding, comprehensive content, and active social media engagement. The technical infrastructure leverages WordPress CMS, modern JavaScript libraries, and integrates multiple advertising and analytics platforms such as Google Analytics, Algolia, and Amazon Ads, indicating a well-developed digital marketing strategy. Security posture is solid with HTTPS enforced and Content Security Policy in place, though additional security headers and a public security policy could enhance trust. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user privacy and consent management. The absence of WHOIS data reduces domain trust slightly but does not detract from the overall legitimacy and professionalism of the site.

T

Talormade

talormade.no

56

Talormade is a specialty coffee roastery and bakery based in Oslo, Norway, established around 2018. The company offers freshly made bakery products and specialty coffee, including a subscription membership for regular coffee bean deliveries. Their market position is that of a local specialty retailer with a strong community presence and multiple physical locations. Technically, the website is built on Craft CMS, uses modern JavaScript, and integrates Google Analytics and reCAPTCHA for security and analytics. The site is well-designed, mobile-optimized, and uses HTTPS with appropriate security headers, indicating a good security posture. However, it lacks explicit privacy and cookie policies, as well as incident response and vulnerability disclosure information, which are important for compliance and trust. Overall, the website is professional and trustworthy but could improve privacy compliance and security transparency.

W

Wellnesshotel Golfpanorama

golfpanorama.ch

67

Wellnesshotel Golfpanorama is a premium hospitality business located in Lipperswil, Switzerland, specializing in wellness, golf, and luxury accommodation services. The website presents a comprehensive range of offerings including hotel rooms, spa and wellness treatments, golf packages, restaurant services, and business seminar facilities. The business targets leisure travelers, wellness enthusiasts, and corporate clients, positioning itself as a 4-star superior hotel in the Bodensee region. The site is professionally designed with multilingual support and strong branding consistency. Technically, the website employs modern JavaScript libraries, Google Tag Manager, Cookiebot for consent management, and integrates third-party booking and chat services. The CMS appears to be Kirby, supporting a well-structured and responsive design optimized for mobile devices. SEO and accessibility features are well implemented, contributing to a positive user experience. From a security perspective, the site uses HTTPS with good SSL configuration and implements cookie consent mechanisms. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, with a solid security posture and effective business presentation. Strategic improvements in security headers and incident response disclosures could further enhance the security maturity and trustworthiness of the site.

G

Goldgelb Zeit und Raum GmbH

goldgelb.ch

51

Goldgelb Zeit und Raum GmbH is a Swiss-based marketing and media production agency specializing in advertising photography, videoproduction, virtual reality, drone aerial photography, web design, SEO, and AI-generated artwork. The company targets businesses and professionals seeking high-quality visual communication services to enhance their brand presence across web and print media. Their market position is that of a niche regional agency with a strong focus on creative and technological solutions for visual marketing. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder, Yoast SEO, and Slider Revolution. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized with good SEO practices and moderate performance. Some minor issues with lazy loading images were noted but do not significantly impact user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating good privacy compliance. However, security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and should be added to enhance security posture. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data confirms the legitimacy of the domain with consistent registrant information matching the business identity. Overall, the website presents a professional and trustworthy digital presence with good content quality and compliance. Strategic recommendations include enhancing security headers, fixing minor technical issues, and publishing explicit security and incident response policies to further strengthen trust and security culture.

T

Tarifverbund OSTWIND

steigensieum.ch

51

The website steigensieum.ch serves as a promotional and informational portal for OSTWIND, a major public transport tariff association in Eastern Switzerland and Liechtenstein. It provides detailed information about monthly and yearly subscriptions, corporate offers, ticket comparisons, and alternatives to car commuting such as P+Rail. The site integrates with official OSTWIND and Swiss public transport services, offering users direct links to purchase tickets and subscriptions. The target audience includes commuters, seasonal travelers, and corporate employees seeking efficient public transport options. The website is professionally designed, content-rich, and well-branded, reflecting a strong market position in the regional transportation sector. Technically, the site is built on TYPO3 CMS and leverages modern JavaScript libraries such as jQuery and Swiper.js for interactive elements. It uses Google Maps API for mapping features and employs Matomo and Google Analytics for user tracking. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some security headers and a cookie consent mechanism, which are recommended for GDPR compliance. Overall, the security posture is solid with no critical vulnerabilities detected. However, improvements in privacy compliance and explicit security policies would enhance trust. The domain uses privacy-protected WHOIS, which is justified for this business type. The website demonstrates high professionalism and trustworthiness, supported by official partner links and social media presence. Strategic recommendations include implementing a cookie consent banner, publishing a security policy and incident response contacts, enhancing security headers, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

I

IN4OUT AG

in4out.ch

58

IN4OUT AG is a Swiss-based IT services company specializing in digital transformation, IT outsourcing, managed services, and security solutions. Positioned as a regional expert and Microsoft Gold Partner, the company targets businesses seeking comprehensive IT support and cloud services. Their website reflects a professional and consistent brand image with clear service offerings and customer engagement channels. Technically, the site is built on Orchard CMS and leverages common analytics tools such as Google Analytics and Piwik/Matomo, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and avoids exposing sensitive data but lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. WHOIS data confirms the legitimacy and transparency of the business, matching the website's claims and location. Overall, the website presents a trustworthy and professional front for IN4OUT AG, with moderate tracking and good business credibility.

Golf & Country Club Neuchâtel is a regional golf club located in Switzerland, offering an 18-hole golf course, driving range, teaching, competitions, pro-shop, and restaurant services. The website is built on Drupal 10 and integrates Google Analytics and Google Tag Manager for visitor tracking. A cookie consent mechanism is implemented using CookieYes, providing users with detailed control over cookie categories. However, the site lacks explicit privacy policy and terms of service pages, and no direct contact information is visible on the main pages. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the website presents a professional and user-friendly experience suitable for its target audience of golf enthusiasts and local visitors.

G

Gemini.no

gemini.no

62

Gemini.no is a well-established Norwegian research news portal jointly operated by NTNU and SINTEF, providing comprehensive and accessible scientific news across multiple disciplines including technology, health, environment, and society. The website demonstrates a mature digital infrastructure built on WordPress with modern analytics and tracking tools, ensuring good user experience and SEO optimization. Security posture is strong with HTTPS enforcement and privacy-conscious analytics configurations. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Contact information is available, though phone numbers are not explicitly listed. Overall, Gemini.no presents a professional, trustworthy, and content-rich platform serving a broad audience interested in research and science news.

Wesp is a Norwegian company specializing in the representation and distribution of outdoor and indoor furniture from six distinct producers. Their market position is niche-focused, targeting both large and small projects in public and private sectors. The website reflects a professional business model with clear service offerings including benches, planters, tables, and bicycle parking solutions. The company is a part of Wallax AS and has been operating since 2015, supported by a domain age consistent with this timeline. Technically, the website is built on WordPress using the Enfold theme and Avia framework, incorporating modern web technologies such as Google Analytics, Facebook Pixel, and Hotjar for analytics and marketing. The site is mobile-optimized with good SEO practices including structured data and meta tags. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA on forms, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic but present, with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, Wesp's website demonstrates a solid digital presence with good business credibility and moderate security posture. Strategic improvements in security headers, incident response policies, and enhanced privacy transparency would further strengthen their risk profile and trustworthiness.

A

Assemble

assemblestudio.co.uk

62

Assemble is a small, UK-based multi-disciplinary collective specializing in architecture, design, and art. The website serves as a portfolio showcasing a wide range of creative projects, emphasizing their expertise and diverse capabilities. The business operates in a niche creative sector with a focus on community and artistic architectural projects. Technically, the website is built using modern frameworks such as Next.js and React, with content sourced from a WordPress backend via API. The site demonstrates good SEO and mobile optimization but lacks comprehensive privacy and cookie policies, which impacts compliance. Security posture is generally good with HTTPS enforced and deferred script loading, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

L

London On The Inside Ltd

londontheinside.com

44

London On The Inside Ltd operates a leading independent digital magazine focused on curating the best events, lifestyle, food, and culture in London. Established in 2012, the company targets London residents and visitors seeking curated content and insider perks. The business model centers on digital publishing, advertising, and a membership program called Insiders, providing exclusive content and benefits. The website demonstrates a strong market position as a trusted source for London-centric lifestyle content.