Security Directory

P

Publiepress

publiepress.com

0

Publiepress is a small Swiss-based consultancy specializing in web design, internet strategy, and WordPress development with over 25 years of experience. The company targets professionals, companies, communities, and associations, offering tailored digital communication and website solutions. The website is well-structured, bilingual (English and French), and showcases a portfolio of clients, reinforcing its market credibility. Technically, the site is built on WordPress using the Breakdance builder and Yoast SEO plugin, hosted by Infomaniak Network SA, a reputable Swiss provider. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided including a phone number, physical address, and a contact form. Overall, the site is professional and trustworthy but could improve in security and privacy compliance.

C

Course de l'Escalade

escalade.ch

0

Course de l'Escalade is a well-established event organizer focused on the popular running event held annually in Geneva, Switzerland. The website provides comprehensive information about the races, registration, schedules, and related activities, targeting runners, families, and the local community. The business model revolves around event management and promotion, supported by sponsorships and partnerships with notable Swiss companies. Technically, the website is built on WordPress with modern web technologies, including jQuery and Google Tag Manager, and integrates cookie consent via Axeptio. The site is mobile-optimized and offers good SEO and accessibility features. Security posture is strong with HTTPS enforcement and multiple security headers, although explicit security policies and incident response information are not publicly available. Overall, the website is professional, trustworthy, and compliant with GDPR, but could improve transparency by adding terms of service and vulnerability disclosure policies.

M

Mirabaud Asset Management

mirabaud-am.com

0

Mirabaud Asset Management is an independent asset management firm specializing in active investment strategies across equities, fixed income, and private assets. The company emphasizes sustainable and high conviction investment approaches, targeting institutional and private investors. The website reflects a strong market position under the Mirabaud Group umbrella, offering detailed information on capabilities, funds, and corporate governance. Technically, the website is built on TYPO3 CMS with modern integrations such as Google Tag Manager and OneTrust for cookie consent, indicating a mature digital infrastructure. The site is well-optimized for SEO, mobile-friendly, and provides a professional user experience with clear navigation and comprehensive content. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and published incident response or vulnerability disclosure policies. The absence of WHOIS registration data is a notable concern, potentially impacting trustworthiness, though the professional presentation and branding mitigate this risk. Overall, the website demonstrates a high level of professionalism and compliance with privacy regulations, but could improve transparency in security policies and domain registration details to enhance trust and security posture.

L

Linkgroup AG

linkgroup.ch

0

Linkgroup AG is a Swiss-based agency specializing in publishing across multiple channels, offering comprehensive services including corporate communication, financial and sustainability reporting, digital strategy, content creation, and media production. Positioned as a leading Swiss agency, it targets corporate clients seeking integrated communication solutions. The website reflects a mature digital infrastructure leveraging modern web technologies, consent management via Usercentrics, and analytics through Google Tag Manager, indicating a strong digital maturity. Security posture is solid with HTTPS enforcement, consent defaults denying tracking until user approval, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are absent, representing an area for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting a positive risk profile.

E

Login Event Wise - Wise

eventwise.ch

0

The website eventwise.ch serves as a login portal for the Event Wise platform, presumably an event management service based in Switzerland. The site is minimalistic, focusing primarily on user authentication without publicly exposing detailed business or security policies. The technical infrastructure leverages modern JavaScript libraries such as Bootstrap Datetime Picker, FullCalendar, Vue.js components, Spectrum Colorpicker, and SurveyJS, indicating a contemporary front-end stack. However, the site lacks visible SEO optimization, comprehensive content, and accessibility features. Security posture is basic with no detected security headers or explicit SSL/TLS configuration details, and no privacy or cookie policies are present, which may impact compliance with GDPR and other regulations. The domain uses privacy protection in WHOIS, which is common for small businesses but reduces transparency. Overall, the site is functional but requires improvements in security, privacy compliance, and business transparency to enhance trust and regulatory adherence.

O

Online Travel Information Services AG

onlinetravel.ch

0

Online Travel Information Services AG is a Swiss-based, medium-sized company specializing in rail travel technology solutions. Established in 2013, it offers a suite of B2B products including a Rail API Gateway, Travelshop booking platform, and affiliate integrations, positioning itself as a market leader with over 30 years of experience in rail technology. The website reflects a professional and consistent brand image targeting travel industry businesses and agencies seeking seamless rail booking solutions across Europe. Technically, the site is built on WordPress with modern plugins and tracking tools, optimized for SEO and mobile use, though some security headers could be improved. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Security posture is solid with HTTPS and secure forms, but lacks publicly available security policies or incident response contacts. Overall, the site is trustworthy, well-maintained, and business credible.

I

Interhome AG

interhome.ch

0

Interhome AG is a well-established Swiss company specializing in the rental of holiday homes, apartments, and chalets across Europe. With a founding date in 1965 and a parent company relationship to Hotelplan Group, Interhome holds a strong market position in the European hospitality sector. The website serves tourists and holidaymakers seeking vacation rentals, offering a broad portfolio of properties. Technically, the site employs modern web technologies including Vue.js and Tailwind CSS, with integrations for Google Analytics and Tag Manager, reflecting a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the website enforces HTTPS, uses modern security headers, and shows no signs of vulnerabilities or exposed sensitive data. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and aligned with the company's business claims.

2

2L.COMM SA

kendros.com

0

Kendros.com operates as a specialized travel industry information portal primarily targeting travel agencies and tourism professionals. The platform aggregates and distributes daily information from various service providers, including travel offers, directories, visa information, and news updates. The business is linked to 2L.COMM SA, a Swiss company, and serves a niche market within the transportation and hospitality sectors. The website content is mostly in French and provides basic but relevant information for its target audience. Technically, the website is built on legacy ASP.NET WebForms technology with JavaScript enhancements and uses Google Analytics for visitor tracking. The site is moderately optimized with basic mobile and accessibility features but lacks modern security headers and advanced privacy compliance mechanisms. The absence of a clear cookie policy and GDPR compliance indicators suggests room for improvement in privacy practices. From a security perspective, the site uses HTTPS but lacks critical security headers such as Content-Security-Policy and anti-CSRF protections. No vulnerabilities were directly observed, but the missing WHOIS data for the domain raises concerns about domain registration legitimacy. Overall, the security posture is moderate but could benefit from enhancements to protect user data and improve trust. The overall risk assessment indicates a moderately trustworthy site with some compliance and security gaps. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers and form protections, and resolving domain registration transparency issues to strengthen legitimacy and user trust.

takeoverpractice.ch is a specialized online platform providing comprehensive access to Swiss takeover law, including legal provisions, case law commentary, and decision abstracts. Operated by the reputable Swiss law firm Schellenberg Wittmer Ltd, it targets legal professionals and financial market participants seeking authoritative and up-to-date information on public takeovers in Switzerland. The platform offers multilingual support and integrated search functions, enhancing its utility as a legal research tool. Technically, the website uses legacy JavaScript libraries such as jQuery 1.7.1 and Google Analytics for tracking, with a CMS likely based on Contao. While the site is professionally designed with clear navigation, it lacks modern security headers and cookie consent mechanisms, which impacts its privacy compliance and security posture. The WHOIS data confirms the domain's legitimacy and consistent registration details aligned with the business identity. Overall, the website is a credible and valuable resource but would benefit from technical and compliance improvements.

A

APEF

apef.ch

0

APEF is a well-established non-profit association founded in 1983 that supports the parents of students at Institut Florimont in Switzerland. The organization focuses on volunteer coordination, organizing school and charitable events, and providing resources to families. The website is professionally designed using WordPress and WooCommerce, with modern plugins such as Yoast SEO and Breakdance. It features multilingual support (French and English) and integrates social media channels for community engagement. Security measures include HTTPS, Google reCAPTCHA on forms, and standard security headers, although there is room for improvement in cookie consent and public security policies. Overall, the website reflects a trustworthy and credible organization with a clear mission and active community involvement.

A

Association des Anciens Elèves de l'Institut Florimont

floanciens.ch

0

The website represents the Association des Anciens Elèves de l'Institut Florimont, a non-profit alumni association established in 1920, serving former students and professors of Institut Florimont in Switzerland. It provides community engagement through events, information sharing, and membership services. The site is built on Drupal 8 and integrates Google Tag Manager for analytics. The design is professional, mobile-optimized, and accessible, with clear navigation and relevant content for its target audience. Security posture is moderate with HTTPS enabled and secure login forms, but lacks advanced security headers and published security policies. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the site is trustworthy and well-positioned within its niche but could improve in security and privacy transparency.

V

Ville de Morges

morgesavenir.ch

0

The website 'Morges Avenir' serves as an official information portal for the city of Morges, Switzerland, focusing on public works, infrastructure projects, and urban environment updates. It targets residents and users of the city, providing timely updates on construction, traffic disruptions, and public announcements. The site is positioned as a government service platform, offering transparency and communication about municipal projects. Technically, the website employs a modern tech stack including HTML5, CSS, JavaScript with jQuery and Bootstrap frameworks, and mapping technologies such as OpenLayers and proj4. It is mobile responsive and provides a moderate performance experience. The site integrates Google Analytics and Google Tag Manager for user tracking but lacks visible privacy and cookie policies, which is a compliance gap. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks visible security headers and formal security or incident response policies. The absence of privacy and cookie policies reduces its privacy compliance score. Overall, the security posture is moderate but could be improved with better header implementation and transparency. The overall risk assessment is low, given the official nature and trustworthy domain registration. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and publishing vulnerability disclosure and incident response information to enhance trust and compliance.

S

SIS Morget

sismorget.ch

0

SIS Morget is a regional fire and rescue service operating in the Morges region of Switzerland, staffed primarily by approximately 200 volunteer firefighters. The organization provides comprehensive emergency response services including firefighting, rescue operations, and public safety education. Their website reflects a strong community focus with active volunteer recruitment and engagement through social media platforms such as Instagram and TikTok. Technically, the website is built on WordPress using Elementor and Smart Slider 3, with modern web technologies and good mobile optimization. Security posture is solid with HTTPS enforcement and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission and audience.

V

Ville de Morges

morgesdialogue.ch

0

The website 'Morges Dialogue - Démarche Participative' is an official municipal platform dedicated to engaging the population of Morges, Switzerland, in urban planning and development projects. It provides detailed information on participatory processes, legal frameworks, and specific urban initiatives such as Prairie-Nord and Morges Gare-Sud. The site targets local residents, associations, and municipal stakeholders, aiming to foster transparent and inclusive urban development. Technically, the website is built with standard HTML5 and CSS3, with no detected advanced frameworks or CMS. The site is moderately optimized for performance and mobile devices but lacks advanced SEO and accessibility features. No analytics or tracking scripts were detected, indicating minimal user tracking. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are important for GDPR compliance. The SSL configuration could not be confirmed from the data provided. No incident response or vulnerability disclosure information is present. The domain WHOIS data aligns well with the municipal nature of the site, supporting its legitimacy. Overall, the website is a trustworthy and informative municipal resource but would benefit from enhanced security measures, privacy compliance, and technical modernization to improve user trust and regulatory adherence.

P

Patinoire des Eaux Minérales

patinoiremorges.ch

0

Patinoire des Eaux-Minérales is a local public ice rink facility in Morges, Switzerland, offering recreational ice skating, events, and group activities. The website serves as an information portal for schedules, pricing, regulations, and contact details, targeting local residents and visitors interested in ice sports. The business operates as a small-scale public service with a focus on community engagement and sports promotion. Technically, the site is built on WordPress using the Divi theme, with common plugins for GDPR compliance and analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enabled and some security plugins in use, but lacks explicit security headers and published security policies. Privacy compliance is basic with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the website is trustworthy and safe for general audiences, with room for improvement in security and compliance documentation.

C

Carac Media SA

carac.tv

0

Carac Media SA operates carac.tv, a Swiss French-language media platform offering live TV streaming, replay content, and program guides. Positioned as a niche broadcaster under Media One Group, it targets Swiss viewers interested in character-based TV content. The website employs modern web technologies including Nuxt.js and Vue.js, integrates advertising via Smart AdServer, and uses Google Tag Manager for analytics. Cookie consent is managed through Axept.io, reflecting some privacy compliance efforts. Security posture is solid with HTTPS and no visible vulnerabilities, though the absence of explicit privacy policies and security incident contacts indicates room for improvement. Overall, the site is professional, trustworthy, and well-branded, serving its audience effectively.

M

Media One Group

mesradios.ch

0

MesRadios.ch is a digital platform operated by Media One Group, the leading private radio group in French-speaking Switzerland. The platform provides centralized account management for multiple radio brands under Media One Group, targeting regional listeners in the Lake Geneva area. The website offers social login options and integrates Google reCAPTCHA for secure authentication. The business is well positioned in the regional media market with a focus on radio broadcasting and digital content delivery.

Media One Group is a prominent private media company operating in the French-speaking region of Switzerland, specializing in radio and television broadcasting. The group manages multiple radio stations and TV channels, serving a diverse audience with music, entertainment, and regional news. Their business model includes advertising sales, event sponsorship, and production services, positioning them as a leading media entity in the Lake Geneva area. Technically, the website is built on WordPress with modern plugins and tracking tools, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS and CAPTCHA usage, but lacks advanced security headers and explicit privacy policies. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

M

Maxi-Rires | Festival d'humour international

maxi-rires.ch

0

Maxi-Rires is an international humor festival website primarily targeting a general audience interested in comedy events. The site is built on WordPress using the Divi theme and includes WooCommerce, suggesting some e-commerce capabilities, likely for ticket sales or merchandise. The technical infrastructure is standard for small to medium event organizations, with moderate performance and good mobile optimization. However, the site lacks critical privacy and cookie policies, and no contact information or security policies are evident, which impacts its trustworthiness and compliance posture. The Google Analytics plugin is present but not configured, indicating limited user tracking at this time. Security headers are absent, and no incident response or vulnerability disclosure information is provided, which suggests a low security maturity level. Overall, the website is functional and professionally designed but requires significant improvements in privacy, security, and compliance to enhance trust and reduce risk.

B

BAM - La Voie des Sens

lavoiedessens.ch

0

BAM - La Voie des Sens is a niche tourism operator in Switzerland offering unique gourmet experiences aboard the historic Bière Apples Morges (BAM) train. The company focuses on culinary outings such as gastronomic meals, fondue, beer and burgers, brunch, and wine pairings, targeting tourists and locals interested in regional terroir and heritage. The website is professionally designed using WordPress and the Divi theme, with good SEO and mobile optimization. However, it lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers. Contact options are limited to a newsletter subscription form, with no direct emails or phone numbers visible. Social media presence on Facebook and Instagram supports brand trust. Overall, the site is credible and well-positioned in its market niche but should improve privacy compliance and security headers to enhance trust and regulatory adherence.

B

Bolle & Cie SA

bolle.ch

0

Bolle & Cie SA operates a well-established Swiss wine retail business with a history dating back to 1865. Their website, bolle.ch, serves as an e-commerce platform offering a variety of Swiss wines including their flagship La Licorne collection. The company targets wine consumers and enthusiasts primarily in Switzerland, leveraging a professional online presence with clear branding and consistent messaging. The business model focuses on direct online sales, complemented by wine tastings and events, positioning Bolle & Cie as a reputable player in the Swiss wine retail market. Technically, the website is built on the Shopify platform using the Dawn theme, incorporating modern web technologies and third-party marketing and analytics tools such as Google Tag Manager and Sendinblue. The site demonstrates good performance, mobile optimization, and accessibility standards. Security measures include HTTPS enforcement, standard security headers, and captcha protection on forms, reflecting a mature security posture. However, explicit security policies and incident response information are not publicly available. From a security and compliance perspective, the site includes comprehensive privacy and cookie policies with consent mechanisms, indicating GDPR awareness and compliance. No critical vulnerabilities or suspicious activities were detected. The WHOIS data confirms the legitimacy of the domain registration, consistent with the company's Swiss origins and long history. Overall, bolle.ch is a professionally managed e-commerce site with strong business credibility, good technical implementation, and solid security practices. Strategic improvements could include publishing detailed security policies, incident response contacts, and terms of service to enhance transparency and trust further.

N

Nanoxi Sàrl

nanoxi.com

0

Nanoxi Sàrl is a Swiss web agency based in Sion, Valais, specializing in web creation, ecommerce solutions, SEO/SEA, mobile applications, and Microsoft-based IT consulting. The company targets SMEs, associations, and local entities seeking digital transformation with a focus on quality and proximity. Their market position is strengthened by partnerships with Microsoft and Google certifications, offering a comprehensive digital service portfolio. Technically, the website uses modern web standards, Umbraco CMS, and integrates analytics tools such as Google Analytics and Mouseflow, indicating a mature digital infrastructure. Security posture is good with HTTPS and no visible vulnerabilities, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. Overall, the website is professional, well-branded, and trustworthy, though privacy compliance needs enhancement.

E

ello communications SA

myello.ch

0

ello communications SA is a Swiss telecommunications company based in Neuchâtel, offering services including television, radio, internet, data transfer, and telephony. The company emphasizes local production, ecological responsibility, and strong data protection practices. The website serves as a login portal for customers to access their personal accounts and highlights the company's commitment to privacy and local hosting. Technically, the website employs modern web technologies such as Google Tag Manager, Stripe.js, and Modernizr, with responsive design and good SEO practices. Security measures include HTTPS enforcement and CSRF protection on forms, though explicit security headers and cookie consent mechanisms are absent. The security posture is solid with no visible vulnerabilities or exposed sensitive data, but the lack of published incident response and vulnerability disclosure policies suggests room for improvement. Privacy compliance is strong, with a comprehensive privacy policy and a named Data Protection Officer. Overall, the website is professional, trustworthy, and well-aligned with the company's business model and market positioning. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance the security and compliance profile further.

E

ello Mail :: Welcome to ello Mail

ellomail.ch

0

ello Mail is a Swiss-based webmail service platform providing users with email access and management capabilities through a web interface. The website primarily serves as a login portal for users to access their email accounts. The platform uses the Roundcube webmail system with custom skins and scripts to deliver its service. The target audience is general users requiring secure and reliable email services. The business model is focused on providing webmail hosting and management, with no explicit information on market positioning or company size. Technically, the website employs standard web technologies including jQuery, Bootstrap, and Google Fonts, delivering a basic but functional user experience. Mobile optimization and accessibility are present but minimal, and SEO practices are basic. Security posture shows use of HTTPS and secure login forms with CSRF tokens; however, no advanced security headers or policies are detected, and privacy and cookie policies are absent, which may impact user trust and compliance. No contact information or social media presence is visible on the login page, limiting transparency. Overall, the website is functional but lacks comprehensive privacy, security, and business information disclosures.

I

ISP Solutions SA

isp-solutions.net

0

ISP Solutions SA is a Swiss-based telecommunications and IT infrastructure service provider specializing in colocation rack services, dedicated physical servers, network transit, leased lines, VPNs, firewall management, and consulting. The company targets businesses and IT professionals seeking reliable hosting and network solutions primarily in Switzerland. Their website is professionally designed, mobile-optimized, and provides comprehensive service descriptions and contact information. The presence of the Certified Swiss Hosting badge adds to their trustworthiness. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, Font Awesome, and integrates Google Analytics and Tag Manager for user tracking. Security posture is moderate with HTTPS implied but lacks explicit security headers and formal privacy or cookie policies, which are compliance gaps. WHOIS data is incomplete and inconsistent, which raises some legitimacy concerns, though the website content and certifications suggest a legitimate business. Overall, the website scores well in business credibility and technical implementation but needs improvements in privacy compliance and WHOIS transparency.

H

HexaGroup SA

hexagroup.ch

0

HexaGroup SA is a Swiss-based consortium of five expert companies specializing in computer-aided design (CAD), product data management (PDM), and product lifecycle management (PLM) solutions, primarily serving manufacturing, construction, and engineering sectors in Switzerland and Liechtenstein. As an Autodesk Gold Partner, HexaGroup offers consulting, training, technical support, and software installation services, leveraging a strong partner network to cover multiple Swiss regions. The website is professionally designed, content-rich, and provides clear navigation, targeting business professionals and companies in relevant industries. Technically, the site uses modern JavaScript libraries and analytics tools but lacks some advanced security headers and cookie consent mechanisms, indicating room for improvement in privacy compliance and security posture. No direct contact emails or phone numbers are published, with contact primarily via forms. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the site presents a trustworthy and professional image with moderate technical maturity and security readiness.

K

KIS Communication

kiscommunication.ch

0

KIS Communication is a small Swiss-based graphic design and web development service provider founded in 2017 by Kim Sartori. The company offers branding, graphic design, and WordPress-based web services primarily targeting clients in the Broye vaudoise region. The website is professionally designed with a clear portfolio showcasing their work and provides multiple contact channels including email, phone, and social media links. Technically, the site is built on WordPress using modern frameworks like UIkit and includes SEO optimization via Yoast. Security measures include HTTPS and CAPTCHA on forms, but lack some standard security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and well-maintained but could improve in security and privacy compliance.

N

Nomady

nomady.camp

0

Nomady operates an online platform specializing in booking nature-centric campsites, cabins, and shelters primarily across Germany, Switzerland, Italy, and Austria. The company targets outdoor enthusiasts seeking authentic and private camping experiences. The website is professionally designed with excellent content quality and strong branding consistency, supported by active social media channels. Technically, the site leverages modern frameworks such as Next.js and React, with optimized performance and mobile responsiveness. Security posture is good with HTTPS enforced and no exposed sensitive data, though it lacks some security headers and formal privacy/cookie policies. WHOIS data is privacy protected but consistent with a legitimate hospitality business. Overall, Nomady presents a trustworthy and mature digital presence in the hospitality sector.

S

SI-Solutions GmbH

si-solutions.ch

0

SI-Solutions GmbH is a Swiss-based company specializing in SmartHome and ICT solutions, offering a range of services including module sales, downloads, and support. The company targets businesses and individuals interested in technology solutions for smart homes and ICT infrastructure. The website is built on a WordPress platform using Elementor, indicating a moderate level of digital maturity with basic mobile optimization and SEO features. However, the content is minimal and lacks comprehensive policy documentation. Security posture is adequate with HTTPS enabled but lacks important security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website presents a small technology service provider with room for improvement in security and compliance.

P

Proton AG

proton.me

0

Proton AG is a Swiss-based technology company specializing in privacy-focused digital services including encrypted email, VPN, cloud storage, password management, and AI assistant tools. With over 100 million users globally, Proton positions itself as a leader in privacy and security, emphasizing user data ownership and transparency. The company operates a subscription-based freemium business model, targeting privacy-conscious individuals and businesses. Technically, Proton employs modern web technologies such as React and Astro, with a performant, mobile-optimized, and accessible website. Security posture is strong, with HTTPS enforced, domain registration protections, and open-source transparency, though DNSSEC is not enabled and no security.txt file was found. Overall, Proton demonstrates a mature digital infrastructure and a high level of trustworthiness in the privacy technology market.

cadwork is a software company specializing in CAD/CAM and BIM solutions for wood construction, joinery, civil engineering, and contractor project management. The company targets professionals in construction and engineering sectors, offering tools that cover design, production, and machine control. The website indicates a regional presence primarily in Switzerland with multiple related domains serving other countries. Technically, the website uses modern frontend technologies such as Bootstrap and jQuery, providing a good user experience and mobile optimization. However, SEO and accessibility features are basic, and no CMS or hosting details are evident. Security posture is limited due to missing HTTPS verification and lack of security headers, and no privacy or cookie policies are present, indicating compliance gaps. WHOIS data is missing, reducing trustworthiness, but the website content and related domains suggest a legitimate business. Overall, the site is functional and professional but requires improvements in security, privacy compliance, and transparency.

The website cadwork.swiss is registered to Cadwork Holz AG, a Swiss company founded in 2016. However, the website content is currently inaccessible, returning a 403 Forbidden error page that blocks access to any business or informational content. This severely limits the ability to assess the company's online presence, services, or compliance posture. The domain registration data is consistent and legitimate, matching the company name and country. The technical infrastructure appears minimal with no DNSSEC enabled and no visible security headers or analytics scripts. The lack of accessible content and policies indicates a low digital maturity level at this time. Security posture is weak due to missing standard protections and the access restriction itself.

V

Visa Europe

visaeurope.ch

0

Visa Europe operates as a leading digital and mobile payment network, providing a wide range of payment technologies and services including credit, debit, and digital wallets such as Apple Pay and Google Pay. The website targets both consumers and businesses primarily in Switzerland and Europe, positioning itself as a trusted market leader in the finance sector. The business model revolves around enabling secure, innovative payment solutions and supporting merchants and partners with advanced commerce technologies. Visa Europe is a subsidiary of Visa Inc., reflecting a large enterprise scale with a strong global presence. Technically, the website leverages modern web technologies including Stencil.js, jQuery, and integrates with third-party services like YouTube and Tealium for analytics and tag management. The site is hosted on Visa's CDN infrastructure, optimized for performance, mobile responsiveness, and accessibility. The content is well-structured with comprehensive metadata, SEO optimization, and multilingual support. From a security perspective, the site enforces HTTPS with strong SSL configurations and security headers such as CSP and HSTS. Privacy compliance is robust with clear privacy and cookie policies, including consent mechanisms aligned with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure information are not publicly available, representing areas for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity. The absence of critical vulnerabilities and the presence of strong privacy controls contribute to a favorable risk profile. Strategic recommendations include publishing detailed security policies and incident response contacts to enhance transparency and trust further.

C

CERN

visit.cern

0

The website visit.cern is the official visitor portal for CERN Science Gateway, providing comprehensive information about visiting CERN, including exhibitions, events, educational resources, and support opportunities. The site targets a broad audience including families, educational groups, and science enthusiasts, positioning itself as a leading educational and scientific outreach platform. The business model is non-profit, aligned with CERN's mission as a premier international scientific research organization. Technically, the site is built on Drupal 10 with modern web technologies such as Bootstrap, jQuery, and Matomo analytics, hosted on CERN's infrastructure, delivering fast and mobile-optimized performance with good accessibility and SEO practices. Security posture is strong with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and security headers could be improved. Privacy compliance is well addressed with a clear data privacy page and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained, reflecting CERN's reputable brand and mission.

C

CERN

home.cern

0

CERN is a globally recognized intergovernmental scientific research organization specializing in fundamental physics. The website serves as a comprehensive portal for scientific research, educational resources, news, and events related to particle physics. It targets scientists, educators, and the general public interested in physics and science. The site is professionally designed, well-branded, and provides rich, relevant content with clear navigation and mobile optimization. Technically, the website is built on Drupal 10 CMS, utilizing modern JavaScript libraries such as Owl Carousel and Prism.js, and employs Matomo for privacy-conscious analytics. The site is hosted securely with HTTPS and enforces clientTransferProhibited status on the domain, though DNSSEC is not enabled, representing a minor security gap. Security posture is solid with HTTPS and some security best practices, but lacks explicit security headers and a public vulnerability disclosure or security.txt file. Privacy compliance is partial due to the absence of visible privacy and cookie policies or consent mechanisms. Contact information is available primarily via contact forms and physical address, with no direct emails or phone numbers exposed. Overall, the website is trustworthy, authoritative, and well-maintained, with recommendations to improve privacy compliance and DNS security to enhance user trust and security posture.

C

CERN

cern.ch

0

CERN is a globally recognized intergovernmental scientific research organization specializing in fundamental physics. The website serves as a comprehensive portal for scientific information, news, events, and educational resources targeting scientists, educators, and the general public. It maintains a strong market position as a leader in particle physics research and public outreach. The technical infrastructure is modern, leveraging Drupal 10 CMS and open-source technologies, with good performance and mobile optimization. Security posture is strong with HTTPS enforcement and domain transfer protections, though DNSSEC is not enabled and explicit security policies are not publicly visible. Privacy and cookie policies are not clearly presented, indicating room for compliance improvement. Overall, the website is professional, trustworthy, and content-rich, reflecting CERN's authoritative status in science.

S

Schweizerische Schifffahrtsgesellschaft Untersee und Rhein AG (URh)

urh.ch

0

Schweizerische Schifffahrtsgesellschaft Untersee und Rhein AG (URh) operates passenger shipping services on the Rhine and Lake Constance, providing scheduled routes, excursions, group offers, and ship rentals. The company targets tourists, local travelers, and groups seeking leisure and event experiences on the water. Their market position is that of a regional transportation and tourism provider with a medium-sized business footprint in Switzerland. The website reflects a professional and consistent brand image with good content quality and clear navigation.

I

Infront Sports & Media AG

bravenew.sport

0

BraveNew.sport is a professionally developed digital platform operated by Infront Sports & Media AG, focusing on the future of sports and its societal impact. The website serves as a hub for research, thought leadership, and community engagement through blogs, videos, events, and downloadable eBooks. The platform leverages modern technologies including HubSpot CMS, Wistia for video hosting, and integrates marketing and analytics tools such as Google Tag Manager and Twitter Analytics. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance evident through clear policies and cookie consent mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the website demonstrates a mature digital presence with good content quality, technical implementation, and business credibility.

V

Viteos SA

viteos.ch

0

Viteos SA is a Swiss-based company specializing in sustainable and renewable energy solutions for both private individuals and professionals. Positioned as a partner in the energy transition, the company offers services that support sustainable energy adoption and renewable energy technologies. The website reflects a medium-sized enterprise with a clear focus on energy sector clients in Switzerland. Technically, the site is built on WordPress with modern SEO and cookie consent management tools, indicating a mature digital presence. The use of Google Tag Manager, Microsoft Clarity, and other analytics tools shows a commitment to data-driven insights while maintaining GDPR compliance through detailed cookie consent mechanisms. Security posture is solid with HTTPS enforced and bot protection via Google reCAPTCHA, though explicit security headers and policies could be improved. Overall, the website is professional, trustworthy, and well-optimized for user experience and privacy compliance.

R

ROOMZ SA

roomz.io

0

ROOMZ SA is a Swiss technology company specializing in wireless workplace management solutions including room booking, desk management, and digital signage. The company targets businesses adapting to hybrid work environments, offering scalable hardware and software solutions compatible with major collaboration platforms like Google, Outlook, and Teams. Their market position is supported by ISO certifications and strategic partnerships, reflecting a mature and trusted brand in the workspace technology sector. Technically, the website is built on WordPress with modern JavaScript libraries and frameworks, hosted on Azure infrastructure, and demonstrates good performance and mobile optimization. Security posture is strong with HTTPS, form protection via hCaptcha, cookie consent mechanisms, and ISO 27001 certification, though some HTTP security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact and legal information. No blocking WAF or suspicious content was detected, supporting a high trust score.

I

Insiders

insiders.live

0

Insiders.live SA is a Swiss sports technology company specializing in high-precision sports data devices and solutions that enhance athlete performance, competition, and storytelling. The company targets a broad audience including coaches, event organizers, broadcasters, media, sponsors, fans, and athletes. Their offerings include performance tracking, broadcast and second-screen solutions, wearable devices (INTENSE and INSPIRIT), and APIs for developers. The website demonstrates a solid market position with partnerships with professional sports teams and federations. Technically, the website is built on WordPress with WooCommerce and leverages modern technologies such as Google Analytics, Facebook Pixel, and UIkit for UI components. The site is mobile-optimized, SEO-friendly, and uses HTTPS with good SSL configuration. However, some security headers are missing, and there is no explicit cookie consent mechanism, which could be improved for GDPR compliance. From a security perspective, the site shows good practices like HTTPS enforcement and use of reCAPTCHA on forms, with no visible vulnerabilities or exposed sensitive data. The WHOIS data is privacy protected, which is common and justified for this business type, though it limits direct verification of registrant details. Overall, the site is trustworthy and professional with minor areas for improvement in privacy compliance and security headers. The overall risk assessment is low, with recommendations to enhance cookie consent, implement security headers, and add a vulnerability disclosure policy to strengthen security posture and compliance.

H

HURNI ENGINEERING Sàrl

hurni.ch

0

Hurni Engineering Sàrl is a Swiss-based company specializing in CAD, PDM, and PLM solutions primarily for the mechanical and horology industries. Established in 1984 and operating as a member of HexaGroup SA, the company offers consulting, development, installation, training, and support services. Their market position is solid within their niche, supported by over 20 specialized collaborators and a client base exceeding 1000. The website reflects a professional and consistent brand image with clear service offerings and a focus on Swiss industry sectors. Technically, the website employs a modern tech stack including jQuery, Kendo UI, and cookie consent management via tarteaucitron.js. It is built on the WebMaker CMS and ASP.NET MVC framework, with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a clear privacy policy and cookie management aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and suitable for its target audience. Strategic improvements in security headers and incident response transparency would enhance its security posture and trustworthiness further.

H

High DC

highdc.ch

0

High DC is a Swiss-based data center company operating a local cloud infrastructure at over 1000 meters altitude in La Chaux-de-Fonds. Founded in 2019, it focuses on providing reliable, secure, and ecological data hosting services to regional businesses, leveraging partnerships with local fiber optic providers and emphasizing environmental sustainability through free cooling technology. The website reflects a professional and consistent brand image with clear contact information and partner affiliations. Technically, the site is built on WordPress with modern plugins and SEO tools, offering moderate performance and good mobile optimization. Security posture is strong, supported by ISO 27001 certification and HTTPS enforcement, though some security headers and explicit privacy policies are missing. Overall, the site is trustworthy, business-focused, and compliant with basic GDPR requirements via cookie consent mechanisms.

Exoscale is a European cloud hosting provider specializing in GDPR-compliant, secure, and scalable cloud infrastructure services tailored for businesses across Europe. The company operates data centers in Switzerland, Austria, Germany, and Bulgaria, positioning itself as a reliable alternative to larger cloud providers with a strong emphasis on data sovereignty and compliance. Their service portfolio includes compute instances, managed Kubernetes, database-as-a-service, object and block storage, GPU servers, networking, and more, catering primarily to engineers and enterprises requiring high performance and regulatory adherence. Technically, the website demonstrates a mature digital presence with modern JavaScript integrations, cookie consent management via OneTrust, and marketing tools such as Beamer and Kiflo. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a professional and user-friendly design. The hosting infrastructure is self-managed on their own cloud platform, ensuring control over data and compliance. From a security perspective, Exoscale enforces HTTPS and implements comprehensive cookie consent mechanisms aligned with GDPR. The company holds recognized certifications including ISO27001, Cloud Security Alliance membership, and ISO27018, underscoring their commitment to security and privacy. However, explicit security headers are not evident in the HTML content, and no security.txt file was found, suggesting areas for improvement in transparency and security posture. Overall, the website and business present a trustworthy and professional cloud service provider with strong compliance and security focus. The absence of WHOIS data slightly reduces domain trust but is mitigated by the company's clear branding, certifications, and contact information. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit Data Protection Officer contact details to further strengthen trust and compliance.

E

Ello Communications SA

ello.ch

0

Ello Communications SA is a local telecommunications service provider based in Neuchâtel, Switzerland, acting as a partner and distributor for Sunrise products. The company offers mobile, internet, and TV subscriptions, along with cloud services and customer support, emphasizing local presence and customer proximity. Their business model focuses on serving the canton of Neuchâtel with quality telecommunications solutions and personalized service. The website reflects a professional and consistent brand image with clear contact information and integration of modern digital marketing and analytics tools. Technically, the site is built on WordPress with popular plugins and frameworks, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS, security headers, and anti-bot measures, though explicit security and privacy policies are lacking. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. Strategic recommendations include enhancing privacy compliance documentation, adding incident response contacts, and improving accessibility features to further strengthen security and compliance.

R

Reichenbach SA

sols.ch

0

Reichenbach SA is a small Swiss company specializing in floor and wall coverings, offering a wide range of products such as parquet, moquette, linoleum, PVC, cork, wallpapers, curtains, and blinds. The company operates a physical showroom in Tolochenaz-Morges, targeting residential and commercial customers seeking quality floor and wall covering solutions. The website is professionally designed using WordPress CMS and includes clear navigation and product categorization, supported by social media presence on Facebook, Twitter, and Instagram. Technically, the website employs standard WordPress technologies with jQuery and common plugins for slideshow and social media integration. The site is mobile optimized and performs moderately well, though accessibility and SEO optimizations are basic. Security-wise, HTTPS is properly configured, and anti-spam CAPTCHA is used on forms; however, no advanced security headers or published security policies are present, indicating room for improvement in security posture. Overall, the website is trustworthy and professional but lacks formal privacy, cookie, and security policies, which are critical for compliance and user trust. There are no signs of malicious content or blocking mechanisms, allowing full content accessibility. Strategic improvements in privacy compliance and security best practices would enhance the site's credibility and protection.

F

Friderici automobiles

friderici-automobiles.ch

0

Friderici Automobiles is a reputable Hyundai car dealership based in the Morges region of Switzerland, offering a comprehensive range of automotive services including new and used vehicle sales, maintenance, repair, leasing, and bodywork. The company positions itself as an official Hyundai partner with a strong regional presence and a focus on customer satisfaction. The website is built on WordPress with modern plugins and technologies, providing a good user experience with clear navigation and mobile optimization. Security measures such as HTTPS, cookie consent, and reCAPTCHA are implemented, though there is room for improvement in security headers and policies. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Brasserie Docteur Gab's SA

docteurgabs.ch

0

Brasserie Docteur Gab's SA is a Swiss craft brewery established in 2001, specializing in the production and retail of craft beers and related products. The company targets general consumers and beer enthusiasts through both direct retail and wholesale channels, including bars, restaurants, and events. Their website reflects a small but professional business with a consistent brand and clear market positioning in the local craft beer sector. Technically, the website is built on the Umbraco CMS platform, utilizing modern JavaScript libraries and marketing tools such as Google Analytics, Facebook Pixel, and MailChimp. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks advanced security headers and dedicated security or incident response policies. Privacy compliance is basic, with a privacy policy available only in French and limited GDPR indicators. Overall, the website is trustworthy and professionally maintained, though improvements in security and privacy transparency are recommended.

D

Domaine de la Ville de Morges

domainedelaville.ch

0

Domaine de la Ville de Morges is a historic Swiss wine estate dating back to 1547, specializing in organic and natural wines certified by BIO SUISSE. Managed by Bolle & Cie since 2020, the Domaine offers wine production, tasting experiences, and direct sales through its boutique and caveau. The website reflects a mature digital presence with modern technologies such as Webflow CMS, Google Tag Manager, and cookie consent via Axeptio, ensuring compliance with privacy regulations. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. The site is professionally designed, mobile-optimized, and provides clear contact and business information, enhancing trust and credibility.

T

Transports de la région Morges Bière Cossonay SA

mbc.ch

0

Transports de la région Morges Bière Cossonay SA operates as a regional public transportation provider in Switzerland, serving the Morges, Bière, and Cossonay areas. The company offers train and bus services, ticketing options including online and SMS purchases, group and school transport, and tourism-related transport services. Their market position is that of a key regional transport operator with a focus on mobility and customer convenience. The website reflects a modern technical infrastructure built on React and Next.js frameworks, leveraging CDN hosting for performance and Bootstrap for responsive design. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content for its audience. Security posture is strong with HTTPS enforcement and security headers, though some compliance aspects like cookie consent and incident response information are missing. Overall, the site is trustworthy and professional, with room for improvement in privacy compliance and direct contact information availability.