Security Directory

E

Eden Springs (Switzerland) SA

edensprings.ch

0

Eden Springs (Switzerland) SA operates as a specialized provider of water and coffee solutions targeting businesses and households within Switzerland. The company offers a range of products including water dispensers with gallons, plumbed water dispensers, and home water delivery services. As part of the Culligan group, Eden Springs holds a strong market position with a focus on quality, environmental responsibility, and customer service. The website reflects a professional brand image with consistent messaging and trust signals such as Trustpilot reviews. Technically, the website is built on Drupal CMS and leverages modern JavaScript libraries and tracking tools such as Google Tag Manager and Microsoft Clarity. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and accessible privacy and cookie policies. From a security perspective, the site enforces HTTPS and uses cookie consent best practices. However, explicit security headers and published security policies are absent, representing an area for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional controls and transparency. The domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the website. No WAF or blocking mechanisms interfere with content accessibility, allowing full analysis. Strategic recommendations include implementing stronger security headers, publishing incident response contacts, and enhancing accessibility features to further strengthen the site’s security and compliance stance.

D

de Sede Switzerland

desede.ch

0

de Sede Switzerland is a premium luxury furniture brand specializing in handcrafted leather furniture and designer sofas, masterfully crafted in Switzerland. The company targets affluent consumers and businesses seeking exclusive, high-quality seating solutions. Their e-commerce platform is built on Shopify, leveraging modern web technologies and ensuring a seamless user experience with excellent design, mobile optimization, and clear navigation. The website features comprehensive privacy and cookie policies with consent mechanisms, reflecting good privacy compliance. Security posture is strong with HTTPS enforcement, security headers, and form protection via hCaptcha, although explicit security policies and incident response information are absent. WHOIS data confirms the legitimacy of the domain and its alignment with the business claims. Overall, the website demonstrates a mature digital presence with high trustworthiness and professionalism.

S

Selectchemie AG

selectchemie.com

0

Selectchemie AG is a well-established Swiss company founded in 1969, specializing in supplying high-quality pharmaceutical and nutrition ingredients as well as generic finished dosage forms. The company operates globally with locations in 17 countries, offering comprehensive technical, scientific, regulatory, and commercial support along the entire value chain. Their business model focuses on being a full-service provider to pharmaceutical and nutrition industries, emphasizing quality, reliability, and innovation. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and analytics tools such as Google Tag Manager and Plausible Analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. However, some security headers are missing, and there is no explicit incident response or vulnerability disclosure information. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, aligning with GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a notable anomaly that requires further verification to confirm domain legitimacy and registration status. Overall, Selectchemie AG presents a professional and trustworthy online presence with strong business credibility and privacy compliance. Strategic improvements in security headers, incident response transparency, and domain registration verification would enhance their security posture and trustworthiness.

S

Swiss Finance Startups

swissfinancestartups.com

0

Swiss Finance Startups operates as a niche platform dedicated to the Swiss finance startup ecosystem, providing information and resources to finance professionals, startup founders, and investors. The website is built on WordPress and leverages common plugins such as Yoast SEO to enhance search engine visibility. Hosting is managed by a reputable registrar and DNS is handled via Cloudflare, ensuring reliable infrastructure. Security posture is moderate with HTTPS enabled and domain transfer protections in place, but lacks advanced DNS security features like DNSSEC and security headers. Privacy compliance is limited due to the absence of a privacy policy and terms of service, although a cookie consent mechanism is implemented. Overall, the website presents a basic but functional digital presence with room for improvement in security and compliance documentation.

G

gategroup

gategroup.com

0

gategroup is a global leader in airline catering and hospitality services, connecting people worldwide through culinary experiences. The company operates multiple brands and subsidiaries, serving airlines and airports with a comprehensive portfolio of food and hospitality solutions. The website reflects a mature enterprise with a strong market position and a clear focus on sustainability and corporate governance. Technically, the site is built on WordPress with modern tools like Elementor and integrates advanced analytics while maintaining good privacy compliance. Security posture is strong with HTTPS, security headers, and domain protections, though DNSSEC is not enabled. Overall, the site is professional, trustworthy, and well-optimized for users and search engines.

S

SwissCognitive | AI Ventures, Advisory & Research

swisscognitive.ch

0

SwissCognitive is a Switzerland-based organization dedicated to advancing artificial intelligence through ventures, advisory services, and research. Positioned as a global AI hub, it serves corporates, startups, and AI professionals by providing expert guidance, networking, and events. The website reflects a mature digital presence with a professional design, structured data, and active content updates, indicating a well-established brand in the AI ecosystem. Technically, the site is built on WordPress with modern plugins and analytics tools, offering moderate performance and good mobile optimization. Security posture is solid with HTTPS and no exposed sensitive data, though it lacks explicit security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies, which should be addressed to meet GDPR standards. Overall, the domain registration aligns well with the business profile, enhancing trustworthiness. Strategic recommendations include enhancing privacy disclosures, publishing security and incident response policies, and improving accessibility features to strengthen compliance and user trust.

E

elvatec ag

elvatec.ch

0

elvatec ag is a Swiss-based company specializing in lightning protection, surge protection, and electrical occupational safety solutions. With a history dating back to 1910 and as a subsidiary of DEHN SE, the company offers a comprehensive portfolio of products and services targeting construction, energy, industrial, and safety sectors. Their website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site is built on Drupal 10, employs modern JavaScript libraries, and integrates Google Tag Manager for analytics. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit security policies are absent. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the domain registration and WHOIS data align well with the company's identity, supporting legitimacy and trust.

W

WebPros International GmbH

platform360.io

0

Plesk 360, operated by WebPros International GmbH, is a modern SaaS platform designed to empower IT professionals and server administrators with integrated server monitoring, license management, and configurable dashboards. The platform positions itself strongly within the Plesk and cPanel ecosystems, offering centralized management capabilities that cater to builders and IT teams. The website reflects a professional and consistent brand image, supported by comprehensive privacy and cookie policies, and a clear focus on user experience and accessibility. Technically, the platform leverages modern web technologies including Angular, Usercentrics for consent management, Google Analytics, Mixpanel, and Sentry for error tracking. Hosting infrastructure is robust, utilizing AWS DNS services, and the site demonstrates good performance and mobile optimization. Security practices include HTTPS enforcement, secure login forms, and domain registration protections, though there is room for improvement in implementing additional security headers and explicit incident response documentation. The security posture is solid with no critical vulnerabilities detected, and the domain registration aligns well with the business entity, enhancing trustworthiness. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the platform presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enabling DNSSEC, enhancing security headers, publishing incident response and vulnerability disclosure policies, and continuing to monitor third-party scripts for security risks to maintain and improve the security and compliance posture.

P

PricewaterhouseCoopers AG

pwc.ch

0

PricewaterhouseCoopers AG (PwC Switzerland) is a leading professional services firm specializing in auditing, consulting, tax, and advisory services. The company holds a strong market position in Switzerland, serving enterprises and individuals with a comprehensive portfolio of services. The website reflects PwC's brand consistency and professionalism, targeting Swiss and multinational clients seeking trusted financial and consulting expertise. The business model is centered on delivering value through expert advisory and assurance services, supported by a global parent company, PricewaterhouseCoopers International Limited. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies including jQuery, Adobe Launch, and Google Tag Manager for analytics. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance characteristics. Security is robust, featuring HTTPS, security headers, CSRF protection, and cookie consent mechanisms, demonstrating compliance with GDPR and industry best practices. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear policies and consent management. Business credibility is high, supported by transparent contact information, certifications like ISO 27001, and trust indicators. Overall, the website is a secure, professional, and trustworthy digital presence for PwC Switzerland.

L

Loxam

loxam.ch

0

Loxam is a leading European company specializing in the rental and sale of professional equipment for construction and industrial sectors, with a strong presence in Switzerland since 1996. The company offers a wide range of machinery and tools targeting private customers, businesses, and craftsmen. Their market position is reinforced by over 1100 agencies across 30 countries, positioning them as a market leader in equipment rental services. The website reflects this stature with comprehensive service offerings and clear contact channels. Technically, the site is built on SAP Hybris Commerce platform, utilizing modern web technologies such as Algolia for search and responsive design for mobile optimization. Security posture is solid with HTTPS enforcement and CSRF protections, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with clear cookie consent and detailed privacy policies. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives.

F

FEDERATION INTERNATIONALE DE L'AUTOMOBILE

fiawec.tv

0

The FIA WEC TV website serves as the official streaming platform for the Fédération Internationale de l'Automobile's World Endurance Championship. It offers live and on-demand motorsport content targeting endurance racing fans globally. The platform operates on a subscription model, providing access to premium racing content with a professional and consistent brand presence aligned with the FIA. Technically, the site leverages modern web technologies including React, integrates multiple third-party analytics and advertising tools, and uses secure payment processing via Stripe. While the site is mobile optimized and performs moderately well, there is room for improvement in accessibility and SEO. Security posture is generally good with HTTPS enforced and domain protections in place, but lacks visible security headers and published security policies. Privacy compliance is basic, with a cookie consent mechanism present but no explicit privacy or terms of service documents found in the analyzed content. Overall, the domain registration data confirms legitimacy and consistency with the FIA organization.

I

International Organisation of Employers

ioe-emp.org

0

The International Organisation of Employers (IOE) is a well-established global network representing over 150 employer and business organizations across more than 140 countries. Founded in 1920 and headquartered in Geneva, Switzerland, IOE serves as a powerful and balanced voice for business at the international level, advocating on social and employment policies and engaging with major international organizations. The website reflects a mature digital presence with professional design, multilingual support, and comprehensive content including news, events, policy priorities, and business networks. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and standard analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism and a comprehensive privacy policy indicating GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities or exposed sensitive data, although security headers could be improved and explicit incident response information is absent. Overall, the website and organization demonstrate a high level of professionalism and trustworthiness. The lack of WHOIS registrant data is mitigated by the organization's nature and consistent contact information. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure details, and maintaining ongoing audits of third-party scripts to sustain security and compliance.

F

FICSA

ficsa.org

0

FICSA is a well-established federation representing international civil servants, advocating for their rights and working conditions within interagency bodies and legislative organs of the common system. The organization operates primarily as a non-profit entity based in Switzerland, with a global membership and over 70 years of history. Their key services include advocacy, training, webinars, publications, and organizing meetings and councils. The website reflects a professional and consistent brand image with clear navigation and relevant content targeted at international civil servants and related stakeholders. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Slick Carousel, and Select2. It uses Google Fonts and integrates social media SDKs for Facebook and Twitter, alongside AddThis for sharing. The site is mobile-optimized with good SEO and accessibility basics, though there is room for improvement in accessibility compliance. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, DNSSEC is not enabled, and there is no visible security policy or incident response information. The site includes a cookie consent mechanism and privacy policy, indicating basic GDPR compliance. No critical vulnerabilities or suspicious domains were found. WHOIS data confirms the domain's legitimacy and long-standing registration consistent with the organization's profile. Overall, the website presents a trustworthy and credible digital presence with good content quality and technical implementation. Strategic recommendations include enabling DNSSEC, publishing a security policy and incident response contacts, and enhancing accessibility features to improve compliance and user experience.

E

European Geothermal Congress

europeangeothermalcongress.eu

0

The European Geothermal Congress 2025 website serves as the official platform for a major event focused on the geothermal energy sector in Europe. It provides comprehensive information about the congress, including programme details, sponsorship and exhibition opportunities, and registration. The site targets industry professionals, researchers, policymakers, and financiers interested in geothermal energy and the energy transition. The business model revolves around event organization, sponsorship, and networking facilitation within the energy sector. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder, Contact Form 7, and Mailchimp integration for mailing list management. The site is well-structured, mobile-optimized, and uses HTTPS with a good SSL configuration. However, some security best practices like security headers and explicit security policies are missing. From a security perspective, the site has a solid foundation with HTTPS enabled and no visible vulnerabilities or WAF blocking. However, it lacks published security policies, incident response contacts, and cookie consent mechanisms, which are important for compliance and user trust. The absence of direct contact emails and phone numbers limits immediate contact options but the presence of a contact form provides a communication channel. Overall, the website is professional and trustworthy, with good content quality and technical implementation. To enhance security posture and privacy compliance, it is recommended to implement security headers, publish security and incident response policies, and introduce a cookie policy with consent mechanisms. These improvements will strengthen user trust and regulatory compliance.

D

Dukascopy Bank

dukascoin.com

0

Dukascoin.com is the official website for Dukascoin (DUK+), a cryptocurrency project issued by Dukascopy Bank, a reputable Swiss financial institution. The site promotes the cryptocurrency with features such as free initial coins, staking rewards, and integrated banking services including multi-currency accounts and crypto lending. The business model leverages the trust and regulatory compliance of a Swiss bank to position Dukascoin as a credible crypto asset in the finance sector. Technically, the website uses standard web technologies including jQuery and Google Analytics, hosted on AWS infrastructure, with a moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and domain locked with multiple prohibitions, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy disclosures and security policies.

D

Dukascopy Bank

dukas.io

0

Dukascopy Bank operates a specialized crypto services platform offering clients the ability to buy, sell, store, and trade cryptocurrencies, including their proprietary Dukascoin. The bank leverages its Swiss regulatory status and FINMA authorization to provide fiduciary custody and blockchain operations, positioning itself as a pioneer in regulated crypto banking. The website reflects a mature digital infrastructure with integration of Google Tag Manager and AWS hosting, delivering a professional and mobile-optimized user experience. Security posture is solid with HTTPS and domain protections, though improvements such as DNSSEC and explicit security policies are recommended. Privacy compliance is currently weak due to absence of visible privacy and cookie policies. Overall, the site is trustworthy and well-branded but would benefit from enhanced transparency and security disclosures.

D

Dukascopy Bank SA

dukascopy.bank

0

Dukascopy Bank SA is a Swiss financial institution offering a broad range of banking services including multi-currency accounts, private and corporate banking, investment options, and payment card solutions. The bank emphasizes Swiss precision and innovation, providing a mobile app for seamless banking access. The website reflects a mature digital presence with professional design and comprehensive content targeting individuals and businesses seeking Swiss banking services. Technically, the site employs modern JavaScript libraries, analytics tools, and security best practices including HTTPS and security headers. However, public WHOIS data is unavailable due to .bank domain privacy policies, which is typical for regulated banking domains. The security posture is strong with no evident vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

A

ALSO Holding AG

alsocloud.eu

0

ALSO Holding AG operates a comprehensive cloud marketplace platform serving ICT industry customers across multiple European countries and beyond. The company provides a broad range of cloud and value-added services, targeting resellers, vendors, and end customers in the technology sector. The website reflects a mature digital presence with multi-language support, localized country portals, and extensive legal and privacy documentation, indicating a strong commitment to compliance and user experience. Technically, the site leverages a proprietary CMS platform with modern frontend technologies including Bootstrap and jQuery, integrated with advanced analytics and marketing tools such as Webtrekk, Marketo, and Usercentrics for consent management. The infrastructure supports multi-country operations with localized content and login portals, demonstrating a scalable and well-architected platform. Security posture is solid with enforced HTTPS and cookie consent mechanisms, though explicit security headers are not clearly visible in the HTML source. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is likely due to privacy protection, which is common for enterprises of this scale and does not detract from the domain's legitimacy. Overall, ALSO Holding AG presents a trustworthy and professional online presence with good compliance and security practices. Strategic recommendations include enhancing security headers, improving accessibility, and publishing explicit incident response and vulnerability disclosure policies to further strengthen trust and security culture.

C

CembraPay AG

byjuno.ch

0

CembraPay AG is a leading Swiss financial services company specializing in flexible payment solutions such as invoice purchase, installment payments, monthly billing, and digital wallets. It operates primarily in the Swiss market, targeting both consumers and merchants, and is a subsidiary of the publicly listed Cembra Money Bank AG. The website presents a professional and user-friendly interface with clear navigation and multilingual support, reflecting a mature digital presence. Technically, the site employs modern web standards and integrates Google reCAPTCHA v3 to secure its contact forms, indicating a good level of security awareness. However, there is room for improvement in implementing comprehensive security headers and publishing explicit security policies. Overall, the site is secure, compliant with GDPR, and trustworthy, supported by consistent WHOIS data and transparent contact information.

The UNECE website is currently inaccessible due to a Cloudflare Turnstile CAPTCHA challenge that blocks direct content access. UNECE is a well-established United Nations regional commission focused on economic cooperation in Europe, headquartered in Switzerland. The domain registration data aligns with the organization's identity and history, indicating legitimacy and trustworthiness. However, the lack of accessible content prevents a full assessment of the website's privacy, security, and compliance posture. The technical infrastructure includes Cloudflare services for security and DNS, but no further details on CMS or frameworks are available. Security posture cannot be fully evaluated due to blocked content, but no immediate vulnerabilities are evident from the WHOIS data or visible scripts. Overall, the site is trustworthy but currently limited in accessible information, requiring resolution of the WAF challenge for comprehensive analysis.

ETA SA Manufacture Horlogère Suisse is a historic Swiss manufacturer specializing in the development and production of quartz and mechanical watch movements since 1793. As a subsidiary of the Swatch Group, it holds a significant position in the global watch industry, offering high precision and reliable calibres primarily to B2B customers. The company emphasizes quality, innovation, and customer service, supported by a professional and well-structured digital presence. The website reflects a mature business model focused on manufacturing and B2B commerce, including an online B2B shop interface.

F

FinTeX

fintex.ch

0

FinTeX is a Geneva-based IT consulting company specializing in finance industry solutions, particularly trading room deployments. The website presents a professional and consistent brand image with a focus on financial technology consulting. The technical infrastructure is built on WordPress with modern plugins such as Yoast SEO and Smart Slider 3, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly but lacks comprehensive privacy and cookie policies, which impacts compliance posture. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the site is legitimate and functional but would benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

Z

Zetcom

zetcom.com

0

Zetcom is a technology company specializing in software solutions and services tailored for museums, collections, corporate archives, and organizational management. Their website presents a professional and multilingual platform targeting institutions requiring collection management software. The company leverages modern web technologies including WordPress CMS with Elementor, Google Analytics, Hubspot marketing and analytics tools, and Cookiebot for cookie consent management. The technical infrastructure is solid with HTTPS enforced and a moderate performance profile. Security posture is good with no visible vulnerabilities, though explicit security headers and policies are absent. Privacy compliance is partially met with cookie consent but lacks a clear privacy policy and terms of service. The domain WHOIS data is missing, which raises concerns about registration transparency but does not detract from the website's operational professionalism. Overall, Zetcom demonstrates a mature digital presence with room for improvement in compliance documentation and security policy transparency.

H

Hérens Quality Asset Management

hqam.ch

0

Hérens Quality Asset Management (HQAM) is a specialized asset management boutique focused on serving institutional and private investors primarily in Switzerland. The company offers key services including asset management, investment advisory, and portfolio analysis. The website is professionally designed using WordPress with modern plugins such as Elementor and Rank Math SEO, indicating a mature digital presence. The site is well-structured, mobile-optimized, and includes a customer portal for client access. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is weak due to absence of explicit privacy and cookie policies. Overall, HQAM presents a credible and professional business front with room for improvement in privacy and security transparency.

E

Ente Ospedaliero Cantonale

eoc.ch

0

Ente Ospedaliero Cantonale (EOC) is a public healthcare organization managing a network of hospitals and medical institutes in the Canton of Ticino, Switzerland. The website serves as a comprehensive portal for patients, healthcare professionals, and researchers, providing detailed information on specialties, hospital locations, services, and ongoing research activities. The organization positions itself as a key regional healthcare provider with a strong emphasis on quality care and clinical research. Technically, the website employs modern JavaScript libraries such as jQuery, Swiper.js, and integrates Google Tag Manager and Hotjar for analytics and user behavior tracking. The site is mobile-optimized, accessible, and SEO-friendly with clear navigation and professional design. Security posture is good with HTTPS enforced and consent mechanisms for cookies and analytics, though it lacks explicit security policies or incident response information. Overall, the domain registration aligns well with the organization's identity, supporting legitimacy and trustworthiness.

S

Selectchemie AG

selectchemie.ch

0

Selectchemie AG is a well-established Swiss company founded in 1969, specializing in supplying high-quality pharmaceutical and nutrition ingredients as well as generic finished dosage forms. The company operates globally with locations in 17 countries and offers comprehensive technical, scientific, regulatory, and commercial support along the entire value chain. Their business model focuses on being a full-service provider to pharmaceutical and nutrition industries, emphasizing quality, regulatory compliance, and supply chain reliability. Technically, the website is built on WordPress using the Elementor framework, incorporating modern web technologies such as Google Tag Manager and Plausible Analytics for tracking. The site is mobile-optimized, well-structured, and includes SEO best practices. Performance is moderate, with good accessibility and user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, with obfuscated contact emails to reduce spam. However, explicit security headers like Content-Security-Policy are not detected, and no incident response or vulnerability disclosure pages are present. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or domain registration issues, which slightly reduces trustworthiness. Overall, the website presents a professional and trustworthy front for Selectchemie AG, but domain registration transparency should be improved to enhance legitimacy and trust. Strategic recommendations include adding explicit security headers, publishing incident response contacts, and verifying domain WHOIS information.

L

Loylogic

loylogic.com

0

Loylogic is a global loyalty and rewards solutions provider with over 20 years of experience, serving more than 50 million members worldwide. The company specializes in designing and operating engagement programs, including points and miles optimization, channel incentives, employee motivation, and gamified reward experiences. Their business model focuses on B2B partnerships with consumer brands, banks, travel companies, and telecom providers, leveraging a global merchant network and advanced technology platforms such as PointsSphere™, Cashcutter™, and Ultimate™. Loylogic positions itself as a market leader with a strong reputation, supported by industry awards and extensive client testimonials. Technically, the website is built on Webflow with modern JavaScript libraries like Swiper.js for interactive content and Google Tag Manager for analytics. The site demonstrates excellent design quality, mobile responsiveness, and SEO optimization. However, there is no explicit evidence of advanced security headers or cookie consent mechanisms, which are areas for improvement. The absence of WHOIS data for the domain raises questions about domain registration transparency, although the website content and business information appear credible and professional. From a security perspective, the site uses HTTPS and secure form inputs but lacks visible security policies or incident response information. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a strong business presence with minor gaps in privacy compliance and domain registration transparency. Strategically, Loylogic should enhance its security posture by implementing security headers, publishing incident response and vulnerability disclosure policies, and ensuring GDPR cookie consent compliance. Addressing the WHOIS data inconsistency would also improve trustworthiness. These steps will strengthen the company's digital maturity and reduce potential risks.

A

Austrenis Capital SA

frigate.ch

0

Austrenis Capital SA is a Swiss-based investment business service provider specializing in asset management, investment advice, financial intermediary services, and documentary maintenance of financial and investment operations. The company targets investors seeking secure investment opportunities and operates a multipurpose investment platform. The website presents a professional and consistent brand image with clear navigation and relevant content, positioning Austrenis as a niche player in the finance sector in Geneva, Switzerland. Technically, the website uses modern web technologies including jQuery, AjaxForm, and Cloudflare Zaraz for script management and analytics. The site is hosted behind Cloudflare, providing good SSL configuration and moderate performance. Mobile optimization and accessibility are adequate but could be improved. SEO practices are basic with minimal meta descriptions and no structured data. From a security perspective, the site enforces HTTPS and uses secure form submission. However, it lacks explicit security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. The contact form posts data to an external domain (frigate.ch), which may raise data protection concerns. No incident response or vulnerability disclosure information is available, indicating room for improvement in security maturity. Overall, the website scores moderately well in business credibility and technical implementation but falls short in privacy compliance and security best practices. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, clarifying data handling for forms, and enhancing GDPR compliance to improve trust and reduce risk.

M

MEDENA AG

medena.ch

0

MEDENA AG is a Swiss-based company specializing in the manufacturing and development of cosmetics, medical devices, and food supplements. With over 50 years of experience, the company offers a broad range of services including contract manufacturing, quality management, regulatory consulting, product development, and research. Their market position is that of an established, certified manufacturer serving international clients with a focus on compliance and quality standards such as ISO 13485, ISO 22716, and ISO 9001. The website reflects a professional B2B business model targeting companies seeking manufacturing and regulatory support in the healthcare and cosmetics sectors. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and has good SEO and accessibility basics. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with a cookie consent mechanism and GDPR-aligned policies. Overall, the site is trustworthy and professionally maintained, supporting the company's credibility in its sector.

O

Osservatorio europeo di giornalismo (EJO)

ejo.ch

0

The Osservatorio europeo di giornalismo (EJO) is a specialized academic and media research network focused on journalism and media industry analysis across Europe. Affiliated with the Università della Svizzera italiana, it provides research dissemination, news articles, and events targeting media professionals, researchers, and students. The website is well-structured, multilingual, and content-rich, reflecting a mature digital presence since 2015. Technically, it leverages WordPress CMS with common plugins for analytics, forms, and user engagement, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS and privacy compliance, though some security headers could be improved. No critical vulnerabilities or WAF blocks were detected. Overall, the site demonstrates high trustworthiness and professionalism appropriate for an academic media observatory.

E

Esri Schweiz

esri.ch

0

Esri Schweiz operates as a leading provider of geospatial information systems and solutions based on the ArcGIS platform, targeting private sector, government, and academic customers in Switzerland. The website content emphasizes spatial analysis, indoor mapping, and integration of artificial intelligence to enhance geospatial insights. The company is positioned as an enterprise-level entity with a strong brand presence consistent with its parent company Esri Inc. The digital infrastructure leverages Adobe Experience Manager CMS, modern JavaScript frameworks, and multiple analytics and marketing tools, indicating a mature digital presence. Security posture is generally strong with HTTPS and no visible vulnerabilities, but lacks explicit security headers and published privacy or cookie policies, which are areas for improvement. Overall, the website is professional, content-rich, and trustworthy, though privacy compliance and contact transparency could be enhanced.

S

Swiss Networking Solutions

swns.ch

0

Swiss Networking Solutions (SNS) is a Switzerland-based telecommunications company specializing in secure, reliable global MPLS and data connectivity solutions. Their services target operators, service providers, enterprises, and MVNOs, offering flexible, personalized network connectivity to extend international footprints and scale business opportunities. The company emphasizes robust infrastructure, secure private connectivity, and optimized performance with strong SLAs. Their website reflects a professional, well-structured digital presence with modern technologies such as Joomla CMS, UIkit framework, and integrated consent management via Usercentrics, ensuring GDPR compliance. Analytics are implemented through Google Analytics and Google Tag Manager, supporting moderate user tracking with privacy considerations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies could be improved. WHOIS data is unavailable, limiting domain trust assessment, but the website's professionalism and content quality support legitimacy. Overall, SNS presents as a credible, specialized B2B telecommunications provider with a mature digital presence.

U

Universitäts-Kinderspital beider Basel (UKBB)

ukbb.ch

0

The Universitäts-Kinderspital beider Basel (UKBB) is a leading pediatric university hospital located in Basel, Switzerland. It provides specialized medical care for children and adolescents, alongside active research and educational programs. The website reflects a professional healthcare institution with a clear focus on patient care and academic excellence. The digital infrastructure is based on WordPress with Elementor, delivering a responsive and user-friendly experience. Security posture is solid with HTTPS and standard security headers, though improvements in CSP and vulnerability disclosure are recommended. Privacy compliance is strong, with comprehensive GDPR-aligned policies and cookie consent mechanisms. Overall, the website demonstrates high trustworthiness and professionalism, suitable for its healthcare audience.

B

Bucher Municipal

buchermunicipal.com

0

Bucher Municipal is a globally recognized manufacturer and supplier of municipal vehicles and equipment, specializing in sustainable and efficient cleaning technologies. The company targets municipalities and urban infrastructure sectors, offering a broad range of products including sweepers, sewer and drainage equipment, refuse equipment, winter maintenance machinery, and construction equipment. Their market position is strong as a world leader in municipal vehicles, supported by a professional and multilingual website that reflects their global reach. Technically, the website is built on Drupal 9 and leverages modern analytics and tracking tools such as Google Tag Manager, Hotjar, and Microsoft Clarity. The site is hosted on Amazon CloudFront CDN, ensuring fast performance and excellent mobile optimization. Security measures include HTTPS enforcement and a Content Security Policy, although additional security headers could enhance protection. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations. However, the absence of WHOIS registration data reduces transparency and slightly impacts trustworthiness. No explicit security policy or incident response information is published, which could be improved. Overall, Bucher Municipal's website demonstrates a mature digital presence with strong business credibility and technical implementation. Strategic improvements in domain transparency and security policy publication would further enhance trust and compliance.

D

Dukascopy Bank SA

dukascopy.com

0

Dukascopy Bank SA is a Swiss-based financial institution specializing in online forex, CFD, binary options, and cryptocurrency trading, complemented by retail and corporate banking services. With over 20 years of market presence, it offers a comprehensive suite of trading platforms including JForex, MetaTrader 4 and 5, and binary options platforms, targeting retail and institutional clients globally. The bank emphasizes Swiss-quality service, competitive spreads, and multi-currency account offerings, positioning itself as a leading Swiss forex broker and bank with a strong digital presence. Technically, the website employs modern web technologies such as SVG graphics, Google Tag Manager, Hotjar analytics, and JSON-LD structured data for SEO. The site is mobile-optimized, accessible, and well-structured with clear navigation and multilingual support. Performance is moderate with room for optimization. Security best practices are observed with HTTPS enforcement, security headers, and consent management for cookies, though explicit security policies and incident response information are not prominently published. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is good, with GDPR-aligned cookie and privacy policies. However, the WHOIS data for the domain is missing or unavailable, which is unusual for a regulated financial entity and may indicate privacy protection or registrar issues. Despite this, the website content, branding, and regulatory disclosures support the legitimacy of the business. Overall, Dukascopy Bank SA's website reflects a mature, professional financial services provider with robust digital infrastructure and security practices. The main risk lies in the lack of transparent WHOIS data, which should be addressed to enhance trust and compliance visibility.

W

World Rowing

worldrowing.com

0

World Rowing is an established international sports federation responsible for organizing rowing events worldwide, including the upcoming 2025 World Rowing Cup in Lucerne, Switzerland. The website serves as an official platform to provide event information and promote the sport to athletes, fans, and the rowing community. The domain is long-standing, registered since 1999, and hosted on a reliable infrastructure with AWS DNS and CDN services, reflecting a mature digital presence. Technically, the website employs modern JavaScript frameworks such as Vue.js, uses Google Tag Manager for analytics and marketing, and implements HTTPS with appropriate security headers. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. However, some standard compliance elements like a dedicated privacy policy and terms of service pages are not detected on the event page, though a cookie consent mechanism is present. From a security perspective, the site demonstrates good practices including HTTPS enforcement and clientTransferProhibited domain status, but lacks DNSSEC and a published security.txt file for vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data aligns well with the website's claims, supporting legitimacy and trustworthiness. Overall, the website is professional, secure, and credible, serving its purpose effectively. Enhancements in privacy compliance documentation and security disclosures would further strengthen its posture.

A

ANOC Association of National Olympic Committees

anoc.tv

0

The ANOC.tv website serves as the official digital platform for the Association of National Olympic Committees, a Swiss-based non-profit organization dedicated to supporting and promoting Olympic committees worldwide. The site offers comprehensive coverage of sporting events, news, and specialized programs such as sustainability workshops, targeting Olympic committees, sports professionals, and enthusiasts. The business model focuses on media dissemination and informational services within the Olympic sports ecosystem. Technically, the website leverages modern web technologies including React, Google Tag Manager, Stripe.js, and push notification SDKs, indicating a mature digital infrastructure. The site is mobile-optimized with good design quality and user experience, although some accessibility and SEO aspects could be enhanced. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks advanced security headers and explicit security policies or incident response contacts. WHOIS data is transparent and consistent with the organization's identity, supporting domain legitimacy. Overall, the website presents a professional and trustworthy front with moderate privacy compliance and security posture. Strategic improvements in privacy policy publication, security headers, and incident response transparency would enhance compliance and user trust.

S

SIUS AG

sius.com

0

SIUS AG is a Swiss-based manufacturer specializing in electronic target scoring systems primarily for sports shooting and military applications. With over 50 years of market presence, SIUS AG holds a leading position globally and serves as the official ISSF Results Provider, underscoring its prominence in the shooting sports industry. The company targets shooting sports enthusiasts, military clients, and international shooting organizations, offering high-quality electronic scoring solutions and related services. The website is professionally designed using the Wix platform, providing essential business information and contact details, though it lacks comprehensive privacy and security disclosures. Technically, the site employs modern web technologies typical of Wix-hosted sites but shows room for improvement in security headers and privacy compliance. The absence of WHOIS data raises concerns about domain registration transparency, which slightly impacts trustworthiness despite the professional presentation. Overall, the site reflects a medium-sized manufacturing business with a solid market position but could enhance its digital security and compliance posture to align with best practices.

S

SportAccord

aimsisf.org

0

The Alliance of Independent Recognized Members of Sports (AIMS) operates as a non-profit international sports alliance representing various independent sports federations. The organization is positioned as a key stakeholder in the global sports governance ecosystem, partnering with major entities such as the International Olympic Committee (IOC), SportAccord, WADA, and ITA. The website serves as a communication platform providing news, member federation information, and partnership details to its target audience of sports professionals and federations worldwide. Technically, the website is built on WordPress using the Elementor page builder, hosted on StableServer infrastructure. The site demonstrates good mobile optimization, clear navigation, and a professional design, although some accessibility features could be improved. Performance is moderate, with no major technical issues detected in the HTML content. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but DNSSEC is not enabled and some security headers are not explicitly detected, suggesting room for improvement. From a security and compliance perspective, the website lacks explicit privacy, cookie, and terms of service policies, which impacts its privacy compliance score. No incident response or vulnerability disclosure information is available, and no direct contact emails or phone numbers are provided, limiting transparency in communication channels. The WHOIS data is consistent and transparent, confirming the legitimacy of the domain ownership and alignment with the organization's identity. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance measures, improved security header implementation, and clearer contact information to strengthen user trust and regulatory adherence.

S

SportAccord

sportaccord.com

0

SportAccord is a globally recognized organization dedicated to connecting International Sport Federations, cities, right holders, and businesses to shape the future of sport. The website reflects a professional and well-established entity with a strong market position in the sports event and federation engagement sector. Key services include organizing major events such as the SportAccord Convention and the International Federation Forum, alongside providing platforms for sustainability and membership applications. The technical infrastructure is built on WordPress with modern plugins and analytics tools, ensuring a robust digital presence. Security posture is strong with HTTPS enforcement, security headers, and monitoring tools like New Relic, although explicit security policies and incident response details are not publicly disclosed. Overall, the website demonstrates high professionalism, good privacy compliance, and trustworthy business credibility.

S

SportAccord

gaisf.sport

0

SportAccord is a globally recognized organization dedicated to connecting International Sport Federations, cities, right holders, and businesses to shape the future of sport. The website reflects a professional and well-structured platform offering information about major events such as the SportAccord Convention and the International Federation Forum. The organization positions itself as a key player in the sports event and federation engagement sector, supported by the International Olympic Committee and a broad network of partners. The digital infrastructure is built on WordPress with modern plugins and analytics tools, ensuring a good user experience and performance. Security posture is strong with HTTPS enforcement and privacy compliance mechanisms like Usercentrics CMP. However, WHOIS data is privacy protected, limiting transparency on domain ownership, though this is common and justified for such entities. Overall, the website demonstrates a mature digital presence with good content quality, technical implementation, and business credibility.

I

International Olympic Committee (IOC)

olympic.org

0

Olympics.com is the official digital platform of the International Olympic Committee (IOC), providing authoritative and comprehensive coverage of the Olympic Games, athletes, sports, and related news. The website serves a global audience of sports enthusiasts, athletes, and stakeholders by delivering live event coverage, video highlights, original series, and historical Olympic content. It is positioned as the primary source for Olympic information and media worldwide. Technically, the site employs a modern technology stack including JavaScript frameworks (likely React), advanced search via Algolia, customer identity management through Gigya, and robust analytics with Google Tag Manager and Conviva. The site is hosted on a high-performance CDN (Akamai), ensuring fast load times and excellent mobile optimization. Accessibility and SEO practices are well implemented, supporting a broad and inclusive user experience. From a security perspective, Olympics.com enforces HTTPS with strong SSL configuration and implements key security headers such as Content-Security-Policy and Strict-Transport-Security. The site uses a comprehensive cookie consent mechanism compliant with GDPR, and no critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public WHOIS record and lack of visible incident response contacts or vulnerability disclosure pages suggest areas for improvement in transparency and security communication. Overall, Olympics.com demonstrates a mature digital presence with strong content quality, technical infrastructure, and security posture. The main risks relate to WHOIS data opacity and limited direct contact information for security incidents. Strategic recommendations include enhancing incident response visibility, publishing a security.txt file, and continuous monitoring of third-party scripts to maintain security integrity.

S

Sorglos Design AG

sorglos-design.ch

0

Sorglos Design AG is a Swiss-based company specializing in the retail and exhibition of premium wellness and outdoor living products including solid wood saunas, the Round Cube Sauna, sauna stoves by Huum, hot tubs, the proprietary low-smoke fireplace 'Feuerzunge', glamping accommodations, and garden furniture. The company targets consumers seeking high-quality wellness and outdoor lifestyle products, positioning itself as a niche premium provider in the Swiss market. The website reflects a professional and consistent brand image with a clear product focus and multiple social media channels to engage customers. Technically, the website employs modern web technologies such as Font Awesome 6 Pro, Google Fonts, and the Splide.js slider, likely built on Ruby on Rails given the presence of CSRF tokens and asset pipeline conventions. The site is mobile-optimized with good SEO practices and moderate performance. Google Analytics is integrated for user tracking, though no explicit cookie consent mechanism or privacy policy is present. From a security perspective, the site uses HTTPS with a valid SSL configuration and includes CSRF protection tokens, indicating a baseline security posture. However, it lacks advanced security headers and does not provide a vulnerability disclosure or security.txt file. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is consistent with the business claims, supporting legitimacy. Overall, the website is functional, professional, and secure at a basic level but would benefit from enhanced privacy compliance and security best practices to improve trust and regulatory adherence.

H

Hubert Inglin Transporte AG

inglintransporte.ch

0

Hubert Inglin Transporte AG is a Swiss transportation company specializing in transport, crane, and grapple services, serving trades such as carpenters, gardeners, metal and steel builders, and roofers. The company has over 30 years of experience, positioning itself as a reliable partner in the transportation sector. Their website provides detailed descriptions of their services and equipment, targeting businesses and professionals needing specialized transport and crane operations. Technically, the website is built using Incomedia WebSite X5 Evo CMS and employs common JavaScript libraries like jQuery and Anime.js. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Security-wise, the website lacks visible security headers and does not enforce cookie consent mechanisms, which are important for GDPR compliance. No incident response or security contact information is provided, indicating room for improvement in security posture. Overall, the website is professional and credible but could enhance its security and privacy compliance to better protect users and build trust.

G

Gemeinde Stansstad

stansstad.ch

0

Gemeinde Stansstad operates as the official municipal government website for the town of Stansstad in Switzerland. It provides residents and visitors with comprehensive information about local administration, politics, cultural events, and public services. The website targets local citizens and stakeholders, offering online administrative tools such as a citizen account and online service counters. The business model is that of a public sector entity focused on community engagement and service delivery. The site maintains a consistent and professional brand image with clear navigation and relevant content.

E

Einwohnergemeinde Cham

cham.ch

0

The Einwohnergemeinde Cham website serves as the official digital presence for the municipality of Cham, Switzerland. It provides comprehensive information and services related to local governance, community life, infrastructure, environment, education, and events. The site targets residents and visitors seeking municipal services and information. The business model is that of a government entity providing public services and information digitally. The website is well-branded, consistent, and includes trust indicators such as official contact details and certifications like Energiestadt GOLD. Technically, the site uses a modern CMS platform (i-web.ch) with Bootstrap for responsive design, ensuring good mobile optimization and accessibility. The performance is moderate with proper SEO and meta tags. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies could be improved. Privacy compliance is good, with clear privacy and cookie policies and user consent mechanisms. Overall, the site is trustworthy and professional, with clear contact information and partner links to regional and cantonal entities. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen security posture.

P

Popup Sauna GmbH

popup-sauna.ch

0

Popup Sauna GmbH operates a niche hospitality business offering exclusive panoramic sauna rentals at lakeside locations in Switzerland, specifically in Cham, Oberwil, and Stansstad. The company targets private individuals and groups seeking unique sauna experiences with easy online booking via a third-party platform. The website is professionally designed with consistent branding and clear navigation, supporting German and English languages. Social media presence on Instagram and Facebook enhances customer engagement. Technically, the site uses modern web technologies and a Flexbe CMS platform, delivering moderate performance and good mobile optimization. Security posture is strong with HTTPS and security headers, though lacking published security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and credible for its business scope.

P

Puratos

puratos.ch

0

Puratos is a well-established Swiss company specializing in manufacturing and supplying innovative bakery, patisserie, and chocolate ingredients. The website reflects a professional and consistent brand presence with a clear focus on B2B customers in the food manufacturing sector. The company offers a broad product range and supports customers with tailored solutions and an online ordering platform called My Puratos. Technically, the website is built on Adobe Experience Manager CMS with modern JavaScript frameworks and integrates Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Security posture is solid with HTTPS enforced and secure login mechanisms, although some security headers are missing and no explicit privacy or cookie policies were detected. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.