Security Directory

Apptopia is a well-established company founded in 2004 that specializes in providing investor-grade mobile consumer activity data. Their services cater primarily to financial institutions, investors, and data teams seeking accurate and timely mobile app performance metrics to inform investment decisions. The company positions itself as a trusted leader in mobile data analytics with over 200 financial firms relying on their data across 3,500+ public companies. Technically, the website is built on WordPress using Elementor and integrates a comprehensive set of modern marketing and analytics tools including Google Analytics, HubSpot, TikTok Pixel, and others. The hosting infrastructure is robust, leveraging AWS DNS services, and the site is optimized for SEO and mobile responsiveness. Security posture is strong with HTTPS enforced, domain locking, and no visible vulnerabilities, though DNSSEC is not enabled. Privacy and cookie policies are present and indicate GDPR compliance, but explicit incident response contacts and vulnerability disclosure mechanisms are absent. Overall, the website demonstrates high professionalism, trustworthiness, and technical maturity, making it a reliable source for its target audience.

D

Datatrans

customerinitiatedpayments.com

0

The website www.customerinitiatedpayments.com serves as a demonstration and informational platform for customer initiated payment solutions powered by Datatrans, a reputable Swiss payment processor. It showcases various payment integration options including hosted payment pages, secure fields, payment links, and mobile SDKs, targeting businesses seeking seamless and secure payment processing capabilities. The site is professionally designed with good content quality, clear navigation, and mobile optimization, reflecting a mature digital presence. Technically, the site is built on Webflow with modern JavaScript libraries including jQuery and Datatrans-specific secure payment scripts. It employs HTTPS with excellent SSL configuration and integrates Cookiebot for cookie consent management, indicating attention to privacy compliance. However, some security best practices such as explicit security headers and incident response information are missing, which could be improved to enhance the security posture. From a security perspective, the site demonstrates strong use of secure payment technologies and privacy policies aligned with GDPR. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency, although the content and contact email align with the Datatrans brand. No critical vulnerabilities or exposed sensitive data were detected, but the lack of a security.txt or vulnerability disclosure policy limits transparency. Overall, the website presents a trustworthy and professional front for payment solutions but would benefit from improved domain registration transparency and enhanced security documentation. Strategic recommendations include implementing security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to strengthen trust and compliance.

D

Datatrans

datatrans.com

0

Datatrans is a Swiss-based payment solutions provider offering a flexible and customizable payment platform tailored for companies demanding advanced payment capabilities. The website presents a professional image with consistent branding and a clear focus on payment services, targeting business clients. The technical infrastructure leverages modern web technologies including Vue.js, and integrates reputable analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Cookiebot for privacy compliance. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and CSRF protection, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates good digital maturity and compliance with GDPR, supporting trustworthiness and business credibility.

W

Württembergische Gemeinde-Versicherung a.G.

wgv.de

0

Württembergische Gemeinde-Versicherung a.G. (WGV) is a German insurance company offering a broad range of insurance products including vehicle, household contents, accident, cyber, and legal protection insurance. The company targets private individuals, municipal clients, and young people through its SmartStart program. The website reflects a well-established regional insurer with a strong market position and a focus on competitive pricing and customer service. The digital presence is modern, leveraging Angular framework and consent management platforms to ensure privacy compliance and user experience. The site is well-structured, accessible, and optimized for mobile devices, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

M

Markel

markel.com

0

Markel is an established specialty insurance provider offering a wide range of insurance products and services primarily targeting the US market and global customers. The company operates multiple secure portals for customers, brokers, and agents, reflecting a mature digital infrastructure. The website is professionally designed, mobile-optimized, and implements comprehensive privacy and cookie consent mechanisms, indicating a strong commitment to user privacy and regulatory compliance. However, the absence of WHOIS data raises questions about domain registration transparency, which should be further investigated to ensure trustworthiness. The technical stack includes modern frameworks and CDN hosting, supporting fast performance and good accessibility. Security posture is strong with HTTPS enforcement and security headers, but the lack of explicit security policies and incident response contacts suggests room for improvement in transparency and readiness. Overall, Markel's digital presence is robust, professional, and trustworthy, with minor gaps in public security documentation and domain registration clarity.

V

Versicherungskammer Bayern

vkb.de

0

Versicherungskammer Bayern is a large regional insurance provider in Germany offering a wide range of insurance products including auto, home, liability, health, travel, life, and retirement insurance. The website targets private customers, families, professionals, farmers, companies, and municipal clients, providing comprehensive product information and multiple online service portals. The company emphasizes customer service with online claims reporting and contract management features. Technically, the website uses modern web technologies such as jQuery, Modernizr, and a consent management platform (Usercentrics), built on a CMS framework (OEVD CMS) with responsive design and accessibility considerations. Security posture is good with HTTPS enforced and sandboxed iframes, though some security headers could be improved. Privacy compliance is supported by a cookie consent mechanism but lacks explicit privacy policy and terms of service links in the provided content. No WAF or blocking mechanisms were detected, and the domain WHOIS data is limited but consistent with a legitimate business. Overall, the website is professional, trustworthy, and well-structured, suitable for its insurance business model.

G

German Underwriting GmbH

germanu.de

0

German Underwriting GmbH operates as a specialized Assekuradeur in Germany, offering exclusive and tailored insurance solutions primarily targeting insurance intermediaries and their commercial clients. Their product portfolio emphasizes modular Multi-Risk and Multi-Line insurance products designed for SMEs and industrial clients, complemented by dedicated claims management and digitalized insurance processes. The company positions itself as a trusted partner with a strong focus on customer-centric and flexible insurance coverage. Technically, the website is built on WordPress with modern plugins such as Gravity Forms for data collection and CleanTalk for anti-spam and bot detection. Cookie consent is managed via CookieMonkey, ensuring GDPR compliance. The site demonstrates good performance, mobile optimization, and accessibility, supported by structured data for SEO enhancement. From a security perspective, the site enforces HTTPS and employs bot detection and cookie consent mechanisms. However, it lacks published formal security policies, incident response contacts, and advanced security headers. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could benefit from formalized policies and additional security headers. The website is professional, trustworthy, and compliant with privacy regulations, making it a reliable digital presence for the company. Strategic improvements in security transparency and incident response readiness are recommended to further enhance trust and resilience.

G

GLS Bank

gls.de

0

GLS Bank is a well-established social-ecological bank in Germany, founded in 1974, offering sustainable banking products and services focused on positive social and environmental impact. The website demonstrates a strong market position with awards and recognitions, targeting private customers, companies, and non-profit organizations. Technically, the site uses TYPO3 CMS with modern web standards, good SEO, and excellent accessibility features. Security posture is moderate with HTTPS and consent mechanisms but lacks explicit security headers and published security policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Strategic improvements include publishing comprehensive privacy and security policies and enhancing security headers.

N

Neodigital Versicherung AG

twodigital.eu

0

Neodigital Versicherung AG operates as a digital insurance provider based in Germany, offering paperless and efficient insurance services tailored to customer needs. The company emphasizes customer-centric service with digital contract management and claims reporting through their platform myNeo. The website reflects a modern digital insurance business model with a focus on ease of use and efficiency. Technically, the website is built on WordPress CMS, utilizing Yoast SEO for optimization and Google Tag Manager for analytics. Cookie consent is managed via CookiePro, indicating attention to privacy compliance. Security posture is moderate with room for improvement in security headers and explicit security policies. No blocking or WAF mechanisms were detected, allowing full content access. Overall, the website presents a professional and trustworthy digital insurance service, though it lacks visible privacy and security policy documentation. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and security policies, and providing clear contact information for incident response.

M

MDT travel underwriting GmbH

mdt24-online.de

0

MDT travel underwriting GmbH operates as a specialized travel insurance agency based in Germany, offering a range of insurance products including annual policies, cancellation insurance, and health coverage for travelers. Established in 2008, the company positions itself as a trusted partner for both private and business customers, emphasizing personalized service and competitive pricing. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to its target audience. Technically, the site is built on WordPress with SEO optimization via Yoast and uses modern analytics tools such as Google Tag Manager and New Relic for performance monitoring. Security posture is solid with HTTPS enforced and no evident vulnerabilities, though explicit security headers and incident response information are absent. Overall, the site demonstrates a mature digital presence suitable for its business scope.

N

Neodigital Versicherung AG

neodigital.de

0

Neodigital Versicherung AG operates as a modern digital insurance provider based in Germany, offering paperless and customer-centric insurance services. The website emphasizes ease of use, digital contract management, and efficient claims reporting, targeting a broad audience seeking convenient insurance solutions. The company positions itself as a forward-thinking insurer leveraging digital technologies to enhance customer experience. Technically, the website is built on WordPress with Yoast SEO and integrates Google Tag Manager and OneTrust for cookie consent, indicating a moderate level of digital maturity. Hosting is provided by OVH, a reputable provider. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place; however, the absence of explicit privacy and terms of service pages, as well as missing security headers, suggests room for improvement. WHOIS data is minimal and lacks detailed registrant information, which slightly reduces trust but is not uncommon. Overall, the website is professional, secure, and user-friendly, but would benefit from enhanced transparency and security documentation.

W

Württembergische Versicherung AG

wuerttembergische.de

0

Württembergische Versicherung AG operates as a well-established insurance provider in Germany, focusing on comprehensive insurance products for private individuals including liability, legal protection, occupational disability, and accident insurance. The company maintains a strong market position supported by consistent branding and trust indicators such as TÜV certification and membership in the German Insurance Association (GDV). The website is professionally designed with excellent content quality, targeting private customers effectively. Technically, the site employs modern web technologies including Google Tag Manager and Usercentrics for consent management, hosted on Ecotel infrastructure. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.

N

Nordea Bank Abp, filial i Sverige

nordea.se

0

Nordea Bank Abp, filial i Sverige, operates a comprehensive banking website serving private individuals and businesses in Sweden. The site offers a wide range of financial services including loans, savings, investments, pensions, insurance, and digital banking solutions. The website is professionally designed with clear navigation and extensive content tailored to its target audience. Nordea holds a strong market position as a leading Nordic financial institution with a large enterprise footprint. Technically, the website employs modern web technologies, including asynchronous JavaScript loading, SVG logos, and tag management via Tealium and Adobe Target, indicating a mature digital infrastructure. Security posture is robust with HTTPS enforcement, security headers, and no detected vulnerabilities. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms and GDPR adherence. Overall, the website reflects a high level of professionalism, trustworthiness, and technical maturity, although WHOIS data for the subdomain www.nordea.se is missing, likely due to querying the subdomain instead of the root domain. This does not detract from the legitimacy of the site given the strong brand and security indicators.

B

Bankgirot

bankgirot.se

0

Bankgirot is a key Swedish financial infrastructure provider specializing in payment services including clearing, invoicing, and direct debit solutions. The company serves businesses and organizations in Sweden, offering a broad portfolio of payment-related services. The website reflects a mature and professional organization with a clear focus on supporting Swedish payment infrastructure and customer self-service. The presence of job listings and annual reports indicates an active and transparent business. Technically, the website uses modern JavaScript libraries and analytics tools, with a cookie consent mechanism aligned with GDPR requirements. Security posture is strong with HTTPS and secure forms, though some security headers and explicit policies could be improved. WHOIS data extraction failed due to querying a subdomain, but metadata and content suggest a legitimate and established entity. Overall, the site is well-designed, trustworthy, and compliant with privacy regulations.

N

Nasdaq

nasdaq.com

0

Nasdaq operates as a leading global stock exchange and financial data provider, delivering comprehensive market data, news, and financial technology solutions to investors and market participants worldwide. The website reflects Nasdaq's strong market position and commitment to providing timely and accurate financial information. Technically, the site is built on Drupal 10 and integrates multiple modern advertising and analytics technologies, ensuring a responsive and user-friendly experience across devices. Security posture is robust with HTTPS enforcement, security headers, and cookie consent mechanisms, although explicit security policies and incident response details are not publicly disclosed. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable resource for its target audience.

S

Synchrony Financial

syf.com

0

Synchrony Financial operates a comprehensive consumer financial services website offering credit cards, financing solutions, banking products, and a marketplace for deals and partner brands. The company positions itself as a premier provider in the finance sector with a strong focus on retail partnerships and consumer payment flexibility. The website is well-structured, professionally designed, and targets both consumers and businesses seeking financial products. The digital infrastructure leverages modern JavaScript libraries and performance monitoring tools, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforcement, security headers, and a public vulnerability disclosure page, although explicit security policy documentation is not found. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is a notable gap but does not detract significantly from the overall legitimacy given the professional presentation and external references. Overall, Synchrony.com demonstrates a mature, secure, and user-friendly online presence aligned with enterprise-grade financial services.

F

Fundrella

fundrella.com

0

Fundrella is a finance-focused digital platform designed to streamline fund selection and distribution by connecting professional investors and asset managers. The platform offers comprehensive tools for discovering, comparing, and monitoring funds, with a strong emphasis on ESG alignment and market insights. It serves a significant user base including major global asset managers and financial companies, positioning itself as a trusted resource in the investment industry. Technically, the website is built on modern web technologies including Webflow CMS, Google Fonts, and Microsoft Clarity for analytics. The site demonstrates excellent design quality, mobile optimization, and SEO practices, ensuring a fast and user-friendly experience. Hosting is managed via Webflow's CDN, contributing to good performance and reliability. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some recommended security headers and a dedicated security or incident response policy. Privacy compliance is partially addressed with clear privacy and cookie policies, though a cookie consent mechanism is absent. WHOIS data is unavailable, which slightly reduces trust but the professional content and contact details mitigate concerns. Overall, Fundrella presents a credible and professional online presence with strong business credibility and technical maturity. Strategic improvements in security headers, privacy consent, and WHOIS transparency would enhance trust and compliance.

B

BAB - Die Förderbank für Bremen und Bremerhaven

bab-bremen.de

0

BAB - Die Förderbank für Bremen und Bremerhaven is a regional development bank supporting public and private investments in the Bremen and Bremerhaven regions. It offers a range of financial products including grants, loans, participations, and guarantees to foster economic growth, housing development, and innovation. The institution partners closely with local economic development agencies BIS and WFB, positioning itself as a key player in regional economic strengthening and sustainability initiatives. The website reflects a professional and well-structured digital presence with clear navigation, accessibility features, and comprehensive information about funding programs and events. Technically, the website employs modern web technologies such as jQuery, Bootstrap, and FontAwesome, and is likely powered by a specialized CMS tailored for regional government entities. The site is mobile-optimized, accessible, and includes privacy-conscious analytics via Matomo without cookies. Security posture is solid with HTTPS enforced and secure form handling, though some security headers are missing and no explicit security policy or incident response contacts are published. Overall, the website demonstrates a mature digital infrastructure suitable for a public financial institution, with strong compliance to GDPR and privacy standards. The presence of certifications and partner logos enhances trustworthiness. No critical vulnerabilities or suspicious elements were detected, and the content is safe for general audiences. Strategically, BAB should consider publishing a formal security policy and incident response contacts to further enhance transparency and trust. Additionally, implementing recommended security headers would strengthen defense-in-depth. The current digital maturity supports BAB's mission effectively, but ongoing security and compliance improvements are advisable.

H

Hinrichs & Partner

stb-hinrichs.de

0

Hinrichs & Partner is a German tax consultancy firm providing personalized and professional tax advisory and accounting services to a broad range of clients from small businesses to large enterprises. The firm emphasizes digital client engagement through its Kanzlei-App and maintains a strong commitment to environmental sustainability. The website is built on WordPress with modern plugins and technologies, offering a good user experience with clear navigation and mobile optimization. Security posture is solid with HTTPS and GDPR-compliant cookie management, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the website and domain registration indicate a trustworthy and legitimate business with active operations and a professional online presence.

B

Bigbank AS

bigbank.fi

0

Bigbank Suomi Oy operates as a consumer finance provider in Finland, specializing in personal loans and deposit products. The company is part of the larger Bigbank AS group, which has a strong presence in the Baltic and Nordic regions. The website is professionally designed, providing clear information and easy access to loan applications and customer support. The target audience is Finnish consumers seeking straightforward online financial services. Technically, the site uses modern frameworks such as Nuxt.js and integrates hCaptcha for bot protection, indicating a mature digital infrastructure. Security is robust with HTTPS, security headers, and no detected vulnerabilities, although a dedicated security policy and incident response contact are absent. Overall, the site demonstrates a high level of business credibility and compliance with privacy regulations.

The website bigbank.lv is currently inaccessible due to a Cloudflare security challenge page that blocks direct access to the site's content. This challenge page includes a Turnstile captcha verification step, indicating active protection against automated access or potential attacks. Due to this, no direct content, business information, or contact details are available for analysis. The domain is active and uses Cloudflare DNS services, consistent with a legitimate financial institution operating in Latvia. However, the lack of accessible content limits the ability to assess the website's privacy policies, security posture, or business credibility in detail.

A

Agicap

agicap.com

0

Agicap is a France-based SaaS company specializing in cash flow management software tailored for SMBs and mid-market companies across Europe. The platform offers comprehensive treasury management, accounts payable and receivable automation, and banking & ERP connectivity, positioning itself as a market leader with over 8000 clients and a 98% satisfaction rating. The website reflects a mature digital presence with modern technologies such as React, Gatsby, and integrations with major analytics and marketing platforms. Security posture is strong, with GDPR and ISO/IEC 27701 compliance, encrypted data storage on Google Cloud, and TLS for data in transit. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, the site is professional, well-structured, and trustworthy, with clear business and contact information.

F

FactSet

factset.com

0

FactSet is a leading enterprise provider of financial data, market insights, and analytics solutions, serving over 9,000 firms globally. The company offers advanced AI-powered tools designed to enhance productivity and decision-making for financial professionals, including portfolio managers and investment researchers. Their business model is subscription-based, focusing on delivering comprehensive financial data and analytics to institutional clients. The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, the website employs modern JavaScript frameworks (likely Vue.js), integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, Drift chat, and Pardot, and implements robust cookie consent mechanisms via OneTrust. The site is optimized for performance and mobile responsiveness, with good accessibility and SEO practices. From a security perspective, the site enforces HTTPS, uses security headers like Content Security Policy and Strict-Transport-Security, and avoids exposing sensitive data. However, explicit security policies and incident response contacts are not published, which could be improved. The absence of WHOIS data is unusual but likely due to registry query limitations rather than malicious intent. Overall, FactSet's website demonstrates a strong security posture, excellent content quality, and good privacy compliance, supporting its position as a trusted financial data provider.

T

The Vanguard Group, Inc.

vanguard.com

0

The Vanguard Group, Inc. is a leading global investment management company with a 50-year history, serving over 30 million investors worldwide. The company offers a broad range of financial products including mutual funds, ETFs, IRAs, and retirement plans, complemented by personalized financial advice and market insights. Vanguard's business model emphasizes low costs, long-term investment perspectives, and client ownership structure, positioning it as a trusted leader in the finance industry. Technically, the website leverages modern web technologies such as React and Next.js, with robust performance and excellent mobile optimization. The site employs advanced tag management and analytics tools including Adobe Launch and OneTrust for privacy compliance. Security is well implemented with HTTPS, Content Security Policy headers, and no visible vulnerabilities. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature digital infrastructure. Security posture is strong with best practices observed, though explicit security policy and incident response contacts are not publicly detailed. The WHOIS data for the subdomain is unavailable, likely due to it being a subdomain rather than a registered domain, but the main domain is well-established and trustworthy. Overall, the site is professional, secure, and compliant, with extensive tracking and advertising integrations managed transparently. The overall risk is low, with recommendations to publish explicit security policies and incident response information to enhance transparency and trust further. The site is safe for general audiences with no adult or questionable content detected.

S

SIX

ebill.ch

0

eBill is a digital invoicing platform operated by SIX Group AG, serving primarily the Swiss market. It enables over 3.7 million registered users to receive and pay invoices securely and conveniently within their online banking environment. The service is well integrated with 95% of Swiss financial institutions, positioning it as a market leader in digital invoicing in Switzerland. The website provides comprehensive information about eBill's features, benefits, and usage, targeting both private and business customers. The business model focuses on streamlining invoice processing and payments digitally, enhancing user convenience and security.

S

SIX

six-group.com

0

SIX is a leading Swiss financial market infrastructure provider connecting financial markets with infrastructure, data, and services. The company operates multiple specialized platforms including the Swiss Stock Exchange, securities services, banking services, and financial information products. Their website reflects a mature enterprise with a broad service portfolio targeting financial institutions and market participants. The digital presence is professional, well-structured, and optimized for multiple languages and devices. Technically, the site uses modern web technologies including Adobe Experience Manager CMS, Google Analytics, and OneTrust for privacy compliance. Security posture is strong with HTTPS enforced and secure login portals, though explicit security policies and vulnerability disclosures are not publicly visible. WHOIS data is unavailable, which slightly reduces transparency but is not uncommon for large enterprises. Overall, SIX demonstrates a high level of digital maturity and business credibility.

B

Banque Cantonale Vaudoise

bcv.ch

0

Banque Cantonale Vaudoise (BCV) is a well-established Swiss bank founded in 1845, serving primarily the canton of Vaud. It offers a broad range of banking services including retail banking, SME credit, private banking, asset management, and digital banking solutions such as e-banking, Apple Pay, and TWINT. The bank holds a strong market position as the leading bank in its region with a high credit rating (AA by Standard & Poor's) and a large customer base of approximately 370,000 clients. The website reflects a mature digital infrastructure built on Adobe Experience Manager, with modern JavaScript technologies and integration with Adobe Analytics for data insights. The design is professional, mobile-optimized, and user-friendly, supporting clear navigation and comprehensive content relevant to its audience.

B

Bigbank Group

bigbank.eu

0

Bigbank Group operates as a financial institution specializing in banking services such as loans and deposits, targeting individuals and businesses in Europe. The website is professionally designed using modern frameworks like Nuxt.js and Bootstrap, with moderate performance and good mobile optimization. Security posture is limited based on the provided data, with no visible security headers or privacy policies, indicating room for improvement in compliance and security best practices. Overall, the website presents a credible business front but lacks visible privacy and security documentation, which are critical for trust and regulatory compliance.

EXPERTsuisse is a well-established Swiss professional association specializing in auditing, taxation, and fiduciary services, celebrating its 100-year anniversary in 2025. The organization positions itself as a trusted expert body providing knowledge, industry insights, and events to professionals and companies in the Swiss finance sector. The website reflects this with rich content including expert Q&A, event information, and historical milestones. Technically, the site is built on the Contao CMS, uses modern web technologies including Lottie animations, and integrates Google Tag Manager for analytics. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are absent. Contact information is complete and transparent, enhancing trust. Overall, the site is professional, credible, and well-maintained.

R

Retreeb

retreeb.com

0

Retreeb is a payment application platform that enables users to support social causes financially every time they make a payment via QR code, without additional cost. The website presents a modern, mobile-optimized interface built on Webflow, integrating analytics and consent management tools to enhance user experience and compliance. However, the absence of a publicly accessible privacy policy and terms of service pages, combined with missing WHOIS registration data, introduces concerns regarding transparency and domain legitimacy. The technical infrastructure leverages contemporary tools such as Amplitude Analytics, Google Tag Manager, and Sentry for monitoring, indicating a mature digital setup. Security posture is adequate with HTTPS enforced and consent mechanisms in place, but could be improved with explicit security headers and clearer compliance documentation.

B

Bigbank AS

bigbank.ee

0

Bigbank AS is a well-established Estonian bank specializing in loan products for both individuals and businesses, with a strong regional presence in the Baltic states and Finland. The company operates primarily through an online platform, offering personal and business loans, refinancing options, and related financial services. Their market position is that of a specialized lender with a focus on digital banking solutions. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with responsive design and good SEO practices, indicating a mature digital infrastructure. Security posture is strong, with HTTPS enforced, security headers present, and bot protection via hCaptcha, although explicit security policy documentation is absent. Overall, the website is professional, trustworthy, and compliant with GDPR, supported by clear privacy and cookie policies. The WHOIS data confirms legitimacy with consistent registrant information and domain age aligning with the company's history.

V

Väikelaenud

jti.ee

0

The website jti.ee operates as a loan comparison platform primarily targeting Estonian consumers seeking small loans. It aggregates loan offers from well-known banks and financial institutions, providing users with transparent information on interest rates, fees, and loan terms. The platform emphasizes quick approval, clear conditions, and competitive rates, positioning itself as a convenient online resource for loan seekers in Estonia. The business appears to be small-sized and newly established, with a focus on finance sector services. Technically, the site is built on WordPress using Elementor and Contact Form 7, with Cloudflare DNS for domain management. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is moderate, with HTTPS enabled but lacking advanced security headers. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data raises concerns due to a domain creation date set in the future, which may indicate data inconsistency or placeholder information. Overall, the site is functional and professional but requires improvements in privacy compliance and security hardening.

E

EXPERTsuisse

expertsuisse.ch

0

EXPERTsuisse is a well-established Swiss professional association specializing in audit, tax, and fiduciary services. With nearly a century of history, it provides comprehensive training, certification, and support to federally certified experts. The website reflects a mature market position with a focus on professional education, industry news, and member services. Technically, the site employs modern web technologies including Turbo Frames, StimulusJS, and integrates privacy-conscious analytics. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR standards.

F

Finanzakzent AG

finanzakzent.ch

0

Finanzakzent AG is a Swiss financial advisory firm specializing in insurance and pension planning services tailored for doctors and dentists in the Bern region. The company positions itself as a trusted partner offering comprehensive and personalized financial and insurance trustee services. The website demonstrates a high level of professionalism with detailed expert profiles, partner affiliations, and rich content focused on the target audience. Technically, the site leverages modern frameworks such as Next.js and Prismic CMS, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are absent. Overall, the site reflects a mature digital presence with good compliance to privacy regulations and moderate user tracking.

L

Liberty Mutual

libertymutual.com

0

Liberty Mutual is a well-established global insurance company headquartered in Boston, Massachusetts, founded in 1912. The company offers a broad range of personal and commercial insurance products including auto, home, renters, and commercial insurance. It positions itself as a trusted insurer with over 100 years of experience, targeting both individual consumers and businesses. The website reflects a mature digital presence with comprehensive service offerings and 24/7 support capabilities. Technically, the site leverages modern web technologies such as React and Next.js, integrates multiple marketing and analytics tools including Google Tag Manager and Facebook Pixel, and demonstrates good performance and mobile optimization. Security posture is strong with HTTPS enforced and appropriate security headers, although explicit security policies and vulnerability disclosure mechanisms are not publicly available. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is privacy protected, which is typical for large enterprises. Strategic recommendations include enhancing transparency around security policies and incident response, and publishing a vulnerability disclosure policy to further strengthen trust.

S

SRG Schweizerische Revisionsgesellschaft AG

srgch.ch

0

SRG Schweizerische Revisionsgesellschaft AG is a Swiss-based consortium of revision experts providing auditing and financial revision services across multiple regional offices in Switzerland. The company is registered with the Swiss revision supervisory authority, indicating regulatory compliance and professional standing. Their website targets small and medium-sized enterprises (KMU) seeking expert revision and auditing services with industry-specific knowledge. Technically, the website is built on WordPress using the Divi theme, incorporating modern analytics tools such as Google Analytics and Google Tag Manager with IP anonymization, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and some privacy compliance measures in place, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, trustworthy, and well-structured, supporting the company's market position as a regional leader in revision services.

V

Vale Treuhand GmbH

valetreuhand.ch

0

Vale Treuhand GmbH is a Swiss fiduciary company specializing in fully digital bookkeeping and tax services. The company targets small to medium-sized businesses and individuals seeking efficient, paperless financial administration solutions. Their service model emphasizes online document uploads, remote consultations via Microsoft Teams, and professional fiduciary expertise. The website reflects a modern digital infrastructure with partnerships such as TREUHAND | SUISSE and Bexio Silver-Partner status, positioning them as a niche player in the Swiss finance sector. Technically, the website is built on the Webnode CMS platform, leveraging AWS Cloudfront for content delivery and integrating Google Tag Manager and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good SEO practices and uses secure HTTPS connections. However, there is room for improvement in security headers and incident response transparency. From a security perspective, the site demonstrates good baseline practices including HTTPS enforcement and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy, incident response contacts, or vulnerability disclosure mechanisms suggests moderate maturity in security governance. Overall, the website is professional, trustworthy, and well-aligned with its business objectives. Strategic enhancements in security policy transparency and incident response readiness would further strengthen its risk posture and client trust.

B

Büro im Flow

bueroimflow.ch

0

Büro im Flow is a Swiss-based fiduciary and financial consulting firm specializing in digital and personal services for private individuals and companies. The business emphasizes combining modern digital processes with personalized support to deliver efficient, reliable financial solutions including tax consulting, bookkeeping, and financial planning. The company operates under Buchhaltung WECHSLER and holds membership in SwissAccounting, enhancing its credibility in the Swiss market. The website is professionally designed using modern React and Next.js technologies, providing a good user experience with clear navigation and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy and cookie information present but no active consent mechanism. Overall, the website and business present a trustworthy and professional image suitable for their target Swiss clientele.

Z

Z83

z83.ch

0

Z83 is a Swiss-based fiduciary and CFO partner specializing in supporting digital companies, startups, and SMEs with financial and HR processes. Their service offerings include accounting, CFO-as-a-Service, tax consulting, and audits, positioning them as a niche financial services provider in the Swiss market. The website is built on WordPress with Elementor and integrates modern technologies such as GSAP and Google Analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements can be made by adding security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting the company's credibility and market positioning.

T

TF Financial Services

tf-fs.com

0

TF Financial Services is a newly established financial services company founded in 2023, specializing in technology-infused CFO partnership and financial consulting aimed at business growth and transformation. The company targets businesses seeking expert financial leadership and transformation support. The website is built on WordPress using Elementor and Weglot for multilingual capabilities, indicating a modern and flexible technical infrastructure. Performance is moderate with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and explicit security policies on the site. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website presents a professional and trustworthy image suitable for its niche market.

S

SoHa Treuhand AG

soha-treuhand.ch

0

SoHa Treuhand AG is a Swiss fiduciary and consulting firm based in Zurich, specializing in personalized accounting, payroll, tax consulting, and CFO as-a-Service offerings. The company emphasizes a blend of digital solutions and personal client relationships to optimize efficiency without sacrificing service quality. Their market position targets SMEs and business owners seeking modern yet personal fiduciary services. Technically, the website is built on Webflow with modern animation libraries like GSAP and uses Cloudflare Turnstile for spam protection on contact forms, indicating a good level of digital maturity. Security posture is solid with HTTPS and captcha integration, though security headers and formal policies are absent. Overall, the site is professional, trustworthy, and well-structured, but could improve privacy compliance and security transparency.

D

Digitron GmbH

digi-tron.ch

0

Digitron GmbH operates as a digital bookkeeping and accounting service provider based in Switzerland, targeting businesses seeking online financial management solutions. The website is built on the Wix platform, leveraging standard Wix technologies and scripts, and presents content primarily in German. The business model focuses on delivering complete bookkeeping services digitally, positioning itself as a niche player in the Swiss finance sector. Technically, the website demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and a cookie consent mechanism in place; however, the absence of security headers and privacy policy pages indicates room for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic enhancements in privacy compliance, contact transparency, and security best practices would strengthen trust and compliance.

K

Kell Outsourcing GmbH

runmyaccounts.de

0

Kell Outsourcing GmbH is a German-based company specializing in outsourcing accounting and financial bookkeeping services. Established in 2004, the company positions itself as a leading provider in the field, emphasizing ISO 9001:2015 certification and GDPR compliance. Their services cover the full spectrum of classical bookkeeping, including accounts receivable, payment processing, and digitalization of accounting processes. The website targets medium-sized enterprises with significant transaction volumes and revenues, offering tailored outsourcing solutions to alleviate internal resource constraints and improve operational efficiency. Technically, the website is built on WordPress using modern plugins and libraries such as WPBakery Page Builder, jQuery, and Slick Slider. It integrates multiple marketing and analytics tools including Google Analytics, Microsoft Clarity, HubSpot, and Facebook Pixel, all managed with a robust cookie consent mechanism via Borlabs Cookie. The site is hosted on servers associated with kasserver.com, with HTTPS enforced and a generally good security posture, although some security headers could be enhanced. From a security perspective, Kell Outsourcing demonstrates strong compliance with quality and data protection standards, notably ISO 9001:2015 and GDPR. The site employs secure forms and encrypted data portals for client interactions. No critical vulnerabilities or suspicious activities were detected. However, the absence of explicit incident response contacts and vulnerability disclosure policies suggests room for improvement in transparency and readiness. Overall, the website reflects a professional, trustworthy, and mature business entity with a clear market focus and solid technical infrastructure. Strategic recommendations include enhancing security headers, publishing incident response information, and continuous monitoring of third-party plugins to maintain security and compliance standards.

R

Refina Treuhand AG

refina.ch

0

Refina Treuhand AG is a Swiss fiduciary company with over 30 years of experience, specializing in tax, auditing, fiduciary consulting, payroll administration, and accounting services. The website presents a professional image targeting businesses and individuals in Switzerland seeking trusted fiduciary services. The content is well-structured, primarily in German, and includes essential contact information and a cookie consent mechanism compliant with GDPR requirements. Technically, the site uses legacy jQuery 1.8.3, Google Analytics, and custom CSS, with basic mobile responsiveness and SEO optimization. Security posture is moderate, with no visible security headers and use of an outdated JavaScript library, but no critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is trustworthy and professionally maintained but could benefit from technical and security improvements.

H

Hugentobler & Bühler AG für Treuhand und Unternehmensberatung

hubtreuhand.ch

0

Hugentobler & Bühler AG is a Swiss-based medium-sized company specializing in fiduciary and business consulting services, including financial accounting, tax consulting, corporate consulting, succession planning, financial management, and personnel administration. With over 30 years of professional experience and a team of more than 20 specialists, the company holds a reputable position in the Swiss finance sector and is a member of the Swiss fiduciary association TREUHAND | SUISSE. The website reflects a professional and consistent brand image targeting Swiss businesses and private clients seeking trusted fiduciary services. Technically, the website is built on the Contao CMS platform and employs modern web technologies such as jQuery, Google Analytics, and Google Tag Manager. The site is mobile-optimized, SEO-friendly, and performs moderately well. However, it lacks a cookie consent mechanism despite using tracking scripts, which is a privacy compliance gap. Security-wise, the site uses HTTPS with anonymized IP tracking for analytics, but lacks explicit security headers and incident response information. Overall, the security posture is solid but could be improved by implementing cookie consent, security headers, and publishing security policies. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. No suspicious or malicious content was detected, and the site is safe for general audiences.

D

Duss Treuhand GmbH

dusstreuhand.ch

0

Duss Treuhand GmbH is a small Swiss finance services company based in Zug, specializing in fiduciary services, tax consulting, auditing, and accounting. The company targets private individuals, SMEs, and larger enterprises, emphasizing personalized and reliable service. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on Webflow, leveraging modern web technologies and providing a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and a cookie consent mechanism, but lacks advanced security headers and formal privacy or incident response policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Aebin Treuhand AG

aebin-treuhand.ch

0

Aebin Treuhand AG is a Swiss-based small finance and business consulting firm specializing in administration and advisory services for companies and private individuals. The company positions itself as a local trusted advisor in Pratteln, Switzerland, offering core services in financial and economic matters. The website reflects a professional and consistent brand image with clear contact details and affiliations to Swiss professional organizations, enhancing trustworthiness. Technically, the website is built using modern web technologies including Statamic CMS and Tailwind CSS, with a focus on performance and accessibility. The site is mobile-optimized and SEO-friendly, with no detected tracking or cookies, indicating a strong privacy posture. The absence of forms on the main page reduces attack surface, and the use of HTTPS ensures secure communications. From a security perspective, the site demonstrates good practices such as disabling automatic detection of emails and phone numbers to prevent scraping. However, explicit security headers are not visible in the HTML content and could be improved. No vulnerability disclosure or incident response information is provided, which could be enhanced to improve security transparency. Overall, the website is safe, professional, and trustworthy with a strong privacy focus. Strategic recommendations include adding explicit security headers, publishing a security policy and incident response contacts, and implementing a cookie consent mechanism if cookies are introduced in the future.

A

adminster ag

adminster.ch

0

adminster ag is a Swiss-based professional services firm specializing in accounting, tax, payroll, and consulting solutions tailored for small and medium-sized enterprises (KMUs) primarily in Zürich and Zug. The company positions itself as a trusted local partner offering comprehensive financial and administrative outsourcing services, including external CFO support and company formation assistance. Their market approach emphasizes personal, uncomplicated service with a strong focus on digital processes and client collaboration. The website reflects a mature digital presence with modern technologies such as WordPress, Breakdance builder, and SEO optimization tools, ensuring excellent user experience and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent implemented, although explicit security headers and incident response policies are not publicly detailed. Overall, the domain registration and website content are consistent and legitimate, supporting a high trustworthiness rating.

Ford Money is a UK-based financial services provider specializing in savings products such as flexible savers, fixed savers, and cash ISAs. The company leverages the trusted Ford brand and offers FSCS protection, positioning itself as a reliable and customer-focused savings provider. The website is professionally designed, mobile-optimized, and built on Adobe Experience Manager, indicating a mature digital infrastructure. It employs modern web technologies and integrates analytics and marketing tools such as Adobe Launch and Google Tag Manager. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and vulnerability disclosure policies could be improved. Overall, the site demonstrates good privacy compliance and business credibility, though WHOIS data for the www subdomain is unavailable due to domain naming rules, which does not detract from the legitimacy of the main domain fordmoney.co.uk. Strategic recommendations include enhancing security header implementation, publishing a security policy, and providing clearer contact information for data protection and incident response.

S

SMARTBROKER+

smartbrokerplus.de

0

SMARTBROKER+ operates as a cost-effective online brokerage platform based in Germany, offering a wide range of financial products including stocks, bonds, ETFs, derivatives, funds, cryptocurrencies, and savings plans. The platform targets retail investors seeking affordable and comprehensive trading services. The website demonstrates a professional design and clear branding, emphasizing its market position as a cost leader confirmed by Finanztest in 11/2024. Technically, the site is built on modern frameworks such as Next.js and integrates multiple marketing and tracking tools with a consent management platform, reflecting a mature digital infrastructure. Security-wise, the website enforces HTTPS and uses consent management but lacks explicit security headers and published security policies, indicating room for improvement in security transparency and incident response readiness. Overall, the site is accessible without WAF blocking, contains no adult content, and maintains a high trustworthiness level, though it would benefit from publishing privacy and terms policies and providing clear contact information.