Security Directory

D

die Mobiliar

mobiliar.ch

0

Die Mobiliar is a leading Swiss insurance and pension company, established in 1826, serving both private individuals and businesses. The company holds a strong market position, insuring approximately one-third of Swiss households and enterprises. Their website offers comprehensive online services including premium calculators and damage reporting, reflecting a mature digital presence. The site is professionally designed, mobile-optimized, and provides clear navigation and contact options, supporting a high level of user trust and engagement. Technically, the site is built on Angular 20.1.0 with modern web standards, leveraging CDNs and analytics tools such as Google Analytics and Tealium for performance and marketing insights.

Itaú Unibanco is the largest private bank in Brazil, offering comprehensive financial services including retail and corporate banking, investment, and insurance. The website reflects a mature digital presence with extensive use of analytics and optimization tools, ensuring a high-quality user experience. The infrastructure leverages global CDN services and modern JavaScript frameworks, supporting fast and responsive access. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website demonstrates a high level of professionalism and trustworthiness consistent with a leading financial institution.

P

PRO Mervärde

promervarde.se

0

PRO Mervärde operates a Swedish membership benefits platform primarily targeting members of the PRO pensioners' organization and affiliated unions. The website offers various discounts, financial services including a Mastercard credit card, insurance, leisure, and travel offers. The business model focuses on providing value-added services to union members, positioning itself as a trusted partner in the Swedish market. The website is built on WordPress with modern SEO and consent management tools, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit privacy and terms policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

H

Hipotekarna Banka AD Podgorica

hipotekarnabanka.com

0

Hipotekarna Banka AD Podgorica is a well-established financial institution in Montenegro offering a wide range of banking services including retail and corporate banking, investment banking, and digital banking solutions. The website reflects a professional and comprehensive presentation of their services targeting both individual and business customers within Montenegro. The bank emphasizes accessibility through multiple channels including e-banking platforms and mobile banking. Technically, the website employs modern web technologies such as AngularJS, Bootstrap, and integrates security features like HTTPS and Google reCAPTCHA to protect user interactions. While the security posture is strong with encrypted connections and secure forms, there is room for improvement in implementing comprehensive security headers and explicit cookie consent mechanisms to enhance privacy compliance. The absence of WHOIS data for the domain introduces some uncertainty regarding domain registration legitimacy, but the overall professional appearance and detailed content suggest a legitimate banking entity. Strategic recommendations include enhancing privacy compliance, publishing security policies, and verifying domain registration details to strengthen trust and security posture.

M

Moneyhouse

moneyhouse.ch

0

Moneyhouse is a Swiss-based business information platform specializing in commercial register and economic data for over 630,000 active Swiss companies. It offers a freemium subscription model with premium access to detailed company and person dossiers, credit reports, and API integration services. The platform is positioned as a leading source for Swiss business data, supported by its parent company Neue Zürcher Zeitung AG, a reputable media organization. The website is professionally designed, multilingual, and targets SMEs and business professionals seeking reliable economic information. Technically, the site uses modern JavaScript frameworks, Google Tag Manager for analytics, and consent management tools to comply with privacy regulations. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, Moneyhouse demonstrates a mature digital presence with good privacy compliance and business credibility.

T

TOTVS TECHFIN

totvstechfin.com.br

0

TOTVS TECHFIN is a joint venture between TOTVS, Brazil's largest technology company, and Itaú, the largest private bank in Latin America. The company offers personalized financial services tailored for businesses, especially clients using TOTVS ERP systems. Their services include credit products, payment solutions such as Pix and boleto híbrido, and cash flow management tools. The website reflects a strong market position supported by major industry players and targets Brazilian businesses seeking integrated financial technology solutions. Technically, the site is built on WordPress with modern SEO and analytics tools, hosted on AWS infrastructure, and optimized for mobile devices. Security posture is good with HTTPS and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy or terms of service pages. Overall, the website is professional, trustworthy, and business-focused, with room for improvement in transparency and security disclosures.

V

VCM Schweiz

creditmanager.ch

0

VCM Schweiz is a Swiss non-profit association dedicated to advancing and professionalizing credit management within Swiss companies. The organization offers education, networking opportunities, standards, and publications to credit management professionals, positioning itself as a national platform with international connections. The website is well-structured, professionally designed, and targets credit managers and related professionals in Switzerland. Technically, the site is built on WordPress with WooCommerce and modern plugins, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS and CAPTCHA protections, though it lacks visible security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy business entity.

P

Publicontext AG

investrends.ch

0

Investrends.ch is a Swiss-based professional news platform operated by Publicontext AG, targeting professional investors with up-to-date news and trends in asset management and finance. The website offers a variety of services including news articles, newsletters, event listings, advertorials, and a job board focused on the investment sector. It maintains a strong market position within the niche of Swiss financial news for professionals, supported by partnerships with reputable financial institutions and asset managers. Technically, the site is built on the ProcessWire CMS and utilizes a range of JavaScript libraries and analytics tools such as Matomo and Google Analytics, with privacy-conscious configurations like IP anonymization and cookie consent mechanisms. The site is mobile-optimized and features good SEO practices, though some technical debt is noted with the use of an outdated jQuery version and missing security headers. From a security perspective, the site enforces HTTPS and implements cookie consent and email obfuscation to protect user data. However, it lacks explicit security headers and uses an outdated JavaScript library, which could pose risks. No incident response or security policy information is publicly available. The WHOIS data confirms the legitimacy of the domain ownership by Publicontext AG in Switzerland, consistent with the website's business claims. Overall, investrends.ch presents a professional and trustworthy platform for its target audience, with good privacy compliance and business credibility. Security improvements are recommended to enhance protection and trust further.

J

jobchannel ag

emploi-bancassurance.ch

0

emploi-bancassurance.ch is a specialized Swiss job platform focusing on bancassurance employment opportunities, operated by jobchannel ag. It offers a comprehensive range of services including job listings, salary calculators, employer profiles, and career advice tailored to banking and insurance sectors. The platform targets job seekers and employers within Switzerland's financial services industry, positioning itself as a niche leader with a professional and user-friendly interface. Technically, the site employs modern web technologies such as JavaScript, jQuery, Bootstrap, and integrates Google Analytics and Tag Manager for tracking and marketing purposes. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security policies or incident response contacts. No vulnerabilities or suspicious elements were detected, and the domain registration aligns well with the business identity, supporting legitimacy. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a trustworthy and effective platform for its target audience.

J

jobchannel ag

versicherungsjobs-schweiz.ch

0

versicherungsjobs-schweiz.ch is a specialized online job platform focused on the Swiss insurance industry, operated by jobchannel ag. It provides comprehensive job listings, career advice, and company profiles tailored to insurance professionals and job seekers in Switzerland. The platform integrates trusted partner services such as Kununu for employer reviews, enhancing its market position as a niche leader in insurance recruitment. Technically, the website employs modern web technologies including JavaScript, jQuery, Bootstrap, and Google Tag Manager, ensuring a responsive and user-friendly experience. The site is well-optimized for SEO and mobile devices, with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses secure forms with validation, though it lacks explicit security headers and a published security policy. Privacy compliance is addressed with a clear privacy policy, cookie consent mechanism, and GDPR considerations. Overall, the website demonstrates a solid security posture and business credibility with no critical vulnerabilities detected.

R

Riverty Group GmbH

riverty.com

0

Riverty Group GmbH operates a professional and comprehensive website focused on providing Buy Now Pay Later (BNPL) financial services to both consumers and businesses primarily in Finland. The company offers a range of payment solutions including deferred payment options, installment plans, and debt management tools such as the MyRiverty portal and Back in Flow service. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Extensive use of analytics and marketing technologies is evident, with strong privacy compliance through Usercentrics consent management and detailed privacy policies. However, the absence of WHOIS data and registrant information introduces some uncertainty about domain registration details, though the overall site professionalism mitigates this concern. Security posture is good with HTTPS and monitoring tools in place, but could be improved by adding explicit security headers and publishing a security policy. Overall, the site represents a credible and trustworthy financial services provider with room for minor security and transparency enhancements.

F

Finansinspektionen

fi.se

0

Finansinspektionen is the Swedish financial supervisory authority responsible for ensuring a stable financial system, high consumer protection, and sustainable development in the financial sector. The website serves as an official government portal providing regulatory information, reports, warnings, and consumer guidance. It targets the general public, financial institutions, and consumers with a focus on transparency and public service. The domain is well-established since 1994, reinforcing its credibility and authority. Technically, the website uses a modern but straightforward technology stack including jQuery and FontAwesome, with custom JavaScript bundles and CSS for styling. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured navigation. Hosting details are not explicit, but the registrar is a reputable Swedish provider. Performance is moderate, suitable for a government informational site. From a security perspective, HTTPS is used, but DNSSEC is not enabled, and no explicit security headers were detected in the provided data. No vulnerabilities or exposed sensitive data were found. The site lacks a dedicated security policy or incident response contact information, which could be improved. Privacy compliance is good with clear privacy and cookie policies, though no explicit consent mechanism was detected. Overall, the website is trustworthy, professional, and well-aligned with its role as a government financial regulator. Recommendations include enabling DNSSEC, adding security headers, and publishing a security.txt file to enhance security posture and transparency.

P

Prevo-System AG

prevo.ch

0

Prevo-System AG is a Swiss-based software company specializing in providing the PAKT management system tailored for collective life insurance providers. The company is a joint venture involving msg systems ag, Baloise, and Helvetia Versicherungen, positioning it strongly within the Swiss insurance software market. Their product PAKT supports the entire lifecycle of collective life insurance administration, including BVG and over-obligatory occupational benefits, offering a comprehensive and integrated solution for insurers. The website reflects a professional and consistent brand image with clear business focus and customer testimonials from reputable insurance companies, indicating a solid market position. Technically, the website is built on Joomla CMS with modern frameworks such as Bootstrap and jQuery, enhanced by custom MSG group scripts and third-party integrations like hCaptcha for bot protection. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security measures include HTTPS enforcement and CSRF tokens, though some security headers are missing. Privacy compliance is well addressed with a clear cookie consent mechanism and a comprehensive privacy policy. The security posture is generally strong with no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy, incident response contacts, or vulnerability disclosure mechanisms suggests room for improvement in transparency and readiness. The domain registration aligns well with the business claims, supporting legitimacy and trustworthiness. Overall, Prevo-System AG presents a credible, professional, and secure online presence suitable for its target audience in the Swiss insurance sector. Strategic enhancements in security transparency and incident response communication would further strengthen trust and compliance.

L

Leading Portfolio Partners GmbH

lpp.eu

0

Leading Portfolio Partners GmbH is a German-based subsidiary of msg systems AG specializing in insurance portfolio management and revitalization services. The company operates in partnership with Swiss Re, offering innovative solutions such as legacy portfolio relief, new business development via sandbox environments, and professional insurance services through its subsidiary COMPIN GmbH. The website reflects a professional B2B service provider targeting insurance companies, emphasizing operational and economic relief for insurers. Technically, the site is built on the Ghost CMS platform, uses modern web technologies, and integrates privacy-conscious analytics (Plausible) and multilingual support (Weglot). Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though the absence of a cookie consent mechanism and security policy pages are noted. WHOIS data is unavailable due to EURid privacy restrictions, but the website's trust signals and business information support legitimacy. Overall, the site is well-designed, content-rich, and trustworthy, suitable for its professional audience.

M

msg Rethink Compliance GmbH

msg-compliance.de

0

msg Rethink Compliance GmbH is a specialized consulting and technology firm focused on Anti-Financial Crime Compliance, serving a broad international client base primarily in the financial sector. The company offers a comprehensive portfolio of services including advisory, compliance outsourcing, digital compliance solutions, and AI-driven compliance frameworks. Their market position is strong, supported by extensive consultant experience and integration within the larger msg Group corporate family. The website reflects a mature digital presence with modern technologies, effective consent management, and professional branding. Security posture is solid with HTTPS enforcement and ISO 27001 certification, though explicit security headers and incident response disclosures could be improved. Overall, the site is trustworthy, well-structured, and compliant with GDPR requirements.

M

msg for banking ag

msgforbanking.de

0

msg for banking ag is a well-established company specializing in innovative, platform-based digital solutions and consulting services for the banking and financial sector. With over 100 years of experience and a strong market position as a leader in bank steering and regulatory reporting, the company serves financial institutions with a broad portfolio including risk management, compliance, payments, and digital transformation. The website reflects a professional and comprehensive digital presence aligned with its business objectives and target audience. Technically, the site is built on Joomla CMS with modern JavaScript libraries and includes robust cookie consent management, analytics, and marketing tools. Security posture is good with HTTPS and consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact and business information.

R

Resurs Bank AB (publ)

resursbank.se

0

Resurs Bank AB (publ) is a well-established Swedish financial institution offering a broad range of financial services including savings accounts, loans, credit cards, factoring, and payment solutions tailored for both private individuals and businesses. The website presents a professional and comprehensive digital presence with clear navigation, rich content, and strong branding consistency. The company targets the Swedish market with a focus on everyday financial balance and accessible credit solutions. Technically, the website leverages modern technologies such as React, Google Tag Manager, and Google reCAPTCHA v3, ensuring a secure and user-friendly experience. Security posture is strong with HTTPS enforcement, bot protection, and cookie consent mechanisms, although some security headers could be explicitly published for enhanced protection. Overall, the site is trustworthy, compliant with GDPR, and provides transparent business and contact information.

I

Investor Summit Liechtenstein

investorsummit.li

0

Investor Summit Liechtenstein is a well-established event platform focused on connecting startups and investors within the finance sector in Liechtenstein. The website presents a professional image with consistent branding and highlights notable speakers and startup finalists, indicating a strong market position in regional event hosting. The technical infrastructure is based on the concrete5 CMS, utilizing modern tools such as Cookiebot for cookie consent, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile optimized and provides a good user experience, although some accessibility features could be improved. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks visible security headers and published security policies. Privacy compliance is partial, with a cookie policy and consent mechanism present but no explicit privacy policy or terms of service pages found. Contact information is not explicitly provided on the analyzed page, which could impact user trust and compliance. Overall, the website is credible and trustworthy, with room for improvement in privacy and security documentation.

P

PayPal Braintree

braintreegateway.com

0

Braintree Gateway, a PayPal-owned payment processing service, provides secure and reliable online payment solutions for merchants globally. The website analyzed is the login portal for Braintree users, featuring integration with PayPal login and strong branding consistency. The business operates in the finance and technology sectors, targeting businesses requiring payment gateway services. The site demonstrates a mature digital infrastructure with modern JavaScript libraries, Google reCAPTCHA for bot protection, and PayPal analytics for user behavior tracking. Security measures include HTTPS enforcement, CSRF tokens, and cookie consent mechanisms aligned with GDPR and CCPA regulations. However, explicit privacy policy and terms of service links are not present on this login page, which could be improved for transparency. The absence of WHOIS data is unusual but likely due to registrar or privacy service configurations rather than malicious intent. Overall, the website presents a professional and trustworthy interface for its users.

K

Kattokorko.fi

kattokorko.fi

0

Kattokorko.fi is a Finnish loan comparison and brokerage platform operated by Etua Oy, a well-established company founded in 2008. The website offers consumers the ability to compare unsecured consumer loans with interest rates below 10%, facilitating loan applications to multiple financial institutions through a single form. The platform targets Finnish residents aged 25 and above with stable income and good credit history. The site integrates partner logos from reputable lenders and includes customer reviews via Trustpilot, enhancing trust and market credibility. Technically, the site is built on WordPress with modern SEO and tracking tools, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy and terms policies are comprehensive and linked to the parent company Alma Media's domain, indicating compliance with GDPR. Overall, the site presents a professional, trustworthy, and user-friendly service in the Finnish finance sector.

E

Etua Oy

etua.fi

0

Etua Oy operates a Finnish loan comparison platform, Etua.fi, providing consumers and businesses with competitive loan offers by aggregating multiple lenders. The company holds a solid market position in Finland's finance sector, leveraging digital tools to facilitate loan brokerage and financial advice. The website is built on WordPress, utilizing modern technologies such as Google Tag Manager and Trustpilot integration to enhance user trust and marketing effectiveness. The site demonstrates good mobile optimization and SEO practices, supporting a positive user experience. Security posture is strong with HTTPS enforcement and security headers, though the absence of a public security policy and incident response details suggests room for improvement. Privacy compliance is well addressed with clear privacy and cookie policies aligned with GDPR requirements. Overall, the website reflects a professional and trustworthy financial service provider with moderate technical maturity and a solid security baseline.

C

CORE d.o.o.

core.hr

0

CORE d.o.o. operates the Catapult Trading Platform, a customizable electronic trading software solution targeting brokerage firms and traders. The platform emphasizes modular architecture, multi-device accessibility, and extensibility with brokerage-specific add-ons. The company is positioned as a niche provider in the finance technology sector with a focus on delivering tailored trading infrastructure. Technically, the website uses standard HTML5, CSS, and jQuery, but lacks modern security practices such as HTTPS and security headers. The site is functional with good content quality but limited privacy and compliance features. Security posture is weak due to missing HTTPS and insecure external resource loading. Overall, the domain registration data supports the legitimacy and longevity of the business. Strategic improvements in security and privacy compliance are recommended to enhance trust and protect user data.

EVERYPAY is a Greece-based payment processing company offering a comprehensive payment gateway and marketplace payment solutions. The company is authorized and regulated by the Bank of Greece and holds PCI DSS Level 1 certification, positioning it as a trusted player in the financial technology sector. Their services cater primarily to businesses and developers seeking reliable and customizable payment acceptance solutions, including APIs and plugins for popular e-commerce platforms. The website reflects a mature digital presence with excellent design, mobile optimization, and clear navigation, supporting a positive user experience. Technically, the site leverages modern web technologies such as React and Next.js, ensuring fast performance and responsiveness. The presence of detailed developer documentation and sandbox API endpoints indicates a strong focus on developer enablement and integration ease. Security is robust, with HTTPS enforced, multiple security headers, and real-time anti-fraud transaction analysis. The company demonstrates compliance with privacy regulations through clear privacy and cookie policies and consent mechanisms. No critical vulnerabilities or security issues were detected. However, the absence of a public incident response policy and security.txt file suggests areas for improvement in transparency and vulnerability management. Overall, the website and business exhibit a high level of professionalism, trustworthiness, and technical sophistication, suitable for their target market. Strategic recommendations include enhancing incident response transparency, publishing vulnerability disclosure channels, and maintaining continuous security audits to uphold trust and compliance standards.

A

Alma Insights

doks.fi

0

Alma Insights operates a website focused on providing AML (Anti-Money Laundering), sanctions, and ESG (Environmental, Social, and Governance) compliance automation services under the DOKS brand. The company targets financial institutions and businesses requiring regulatory compliance solutions, positioning itself as a niche provider in the Finnish market. The website content is professionally presented, emphasizing automation and reliability in meeting regulatory obligations. Technically, the site is built using modern web technologies such as React and Gatsby, hosted on a reputable platform (WP Engine), and demonstrates good mobile optimization and SEO practices. However, the site lacks explicit privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with no detected security headers or incident response contacts, indicating room for improvement in security best practices. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security transparency.

A

Arvopaperi

arvopaperi.fi

0

Arvopaperi is a Finnish financial media platform providing investment news, market data, and analysis targeted at investors and market participants. It operates under Alma Talent Oy, a reputable media company in Finland. The website uses a modern React-based frontend with multiple third-party integrations for advertising, analytics, and consent management. Security posture is strong with HTTPS and security headers, though explicit privacy and cookie policies are not found in the provided content. The site is well-branded and professionally designed, serving a medium-sized audience in the finance sector.

R

Raiffeisen Mirovinski fond

rmf.hr

0

Raiffeisen Mirovinski fond operates as a pension fund management entity in Croatia, offering mandatory and voluntary pension fund services. The website reflects a mature digital presence with comprehensive content about pension fund categories, member information, calculators, and financial literacy initiatives. The site is well-structured, mobile-optimized, and integrates cookie consent mechanisms aligned with GDPR requirements. Technically, the site is built on IBM WebSphere Portal technology, with standard web technologies and moderate performance. Security posture is good with HTTPS enforced and no visible sensitive data exposure, though security headers could be improved. WHOIS data is privacy-protected due to GDPR, but the domain and website content are consistent and trustworthy. Overall, the site serves its target audience effectively with a professional and compliant digital platform.

B

BLKB Fund Management AG

blkb-fm.ch

0

BLKB Fund Management AG is a Swiss financial services company specializing in fund management and real estate investment advisory. It operates as a fully regulated entity under FINMA supervision and is a wholly owned subsidiary of the Basellandschaftliche Kantonalbank. The company targets qualified and institutional investors in Switzerland, offering sustainable property funds and comprehensive real estate advisory services. The website reflects a professional and consistent brand image with clear business information and a focus on transparency and compliance. Technically, the site uses modern web technologies, including a strict Content-Security-Policy, multiple analytics tools, and is optimized for mobile devices. Security posture is strong with HTTPS and CSP headers, though explicit security policies and incident response disclosures are absent. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. Overall, the website and business demonstrate high credibility and trustworthiness within the Swiss financial sector.

A

Allfunds Bank S.A.U.

webfg.com

0

Allfunds Bank S.A.U. operates as a leading WealthTech platform with over 20 years of experience, providing a comprehensive digital ecosystem for fund distribution and wealth management. The company offers advanced tools including dealing, execution, ESG analytics, compliance, and blockchain technology to a global clientele of fund houses, distributors, and investors. Positioned as a major player in the finance sector, Allfunds manages assets exceeding €1.6 trillion and maintains a strong market presence with a large distributor network across 66 countries. Technically, the website leverages modern web technologies such as React and Emotion CSS, supported by Akamai CDN for hosting and performance. It integrates Google Analytics, Google Tag Manager, and LinkedIn Insight Tag for analytics and marketing, all managed with user consent mechanisms. The site is mobile-optimized, SEO-friendly, and accessible, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS with a strong SSL configuration and implements cookie consent for privacy compliance. While some security headers are not explicitly confirmed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The domain is well-established since 2000, registered through a reputable registrar, and consistent with the company's operational claims. Overall, Allfunds demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable and credible platform in the WealthTech industry. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing explicit incident response contacts to further strengthen security and trust.

B

Basellandschaftliche Kantonalbank

blkb.ch

0

Basellandschaftliche Kantonalbank (BLKB) is a well-established regional cantonal bank in Switzerland, providing a comprehensive range of banking services including accounts, mortgages, investments, pension planning, tax services, and digital banking solutions. The website reflects a professional and customer-focused approach targeting both private and corporate clients within the Basel-Landschaft region. The bank maintains a strong digital presence with active social media channels and modern web technologies. Technically, the site uses a secure HTTPS connection, implements a strict Content-Security-Policy, and integrates multiple analytics and marketing tools such as Matomo, Google Analytics, and Facebook Connect. However, explicit privacy and cookie policies are not found in the provided content, which is a compliance gap. Security posture is strong with no visible vulnerabilities or exposed sensitive data. Overall, the website is trustworthy, well-branded, and professionally maintained.

H

Hrvatski Telekom d.d.

kekspay.hr

0

KEKS Pay is a Croatian financial technology service offering a mobile application for fast, no-fee money transfers, bill payments, parking payments, and other financial transactions. Sponsored by Erste Banka and registered under Hrvatski Telekom d.d., the platform targets both individual consumers and business users, providing a convenient and secure payment ecosystem. The website is professionally designed, mobile-optimized, and provides clear information about its services and privacy practices. Technically, it leverages modern JavaScript frameworks (Vue.js, Nuxt.js) and integrates with major app stores for broad platform support. Security practices include encryption, biometric and PIN protection, and compliance with EU standards, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is trustworthy, well-maintained, and compliant with GDPR, with a strong market position in Croatia's fintech sector.

Z

Zavarovalnica Triglav, d.d.

triglav.si

0

Zavarovalnica Triglav, d.d. is a leading Slovenian insurance company offering a broad range of insurance products including vehicle, home, life insurance, and pension savings. The company targets both individual and business customers within Slovenia, leveraging a strong online presence and digital platforms for service delivery. The website reflects a mature business with consistent branding and comprehensive service offerings. Technically, the site uses a modern technology stack including jQuery, Bootstrap, and IBM WebSphere Portal, with integrations for analytics and cookie consent management. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance mechanisms in place, although explicit security policy and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting the company's market position as a reputable insurer.

Mastercard.hr is the Croatian localized website of Mastercard, a leading global payments technology company. The site provides information about Mastercard's payment solutions and services tailored for the Croatian market, targeting consumers and businesses. The website reflects Mastercard's strong market position and brand consistency, offering key services such as payment cards, digital payment solutions, and merchant services. The site is professionally designed with excellent content quality and clear navigation, optimized for mobile devices and fast performance via Akamai CDN.

P

Privredna banka Zagreb

pbz.hr

0

Privredna banka Zagreb (PBZ) is a well-established Croatian bank founded in 1996, offering a comprehensive range of retail banking services including accounts, cards, loans, savings, and digital banking solutions. The website reflects a mature digital presence with clear navigation, professional design, and detailed product information targeting retail customers in Croatia. The domain age and registration details align with the bank's history and legitimacy, reinforcing trustworthiness. Technically, the site employs modern web technologies, CDNs, and analytics tools such as Google Tag Manager and Google Analytics, ensuring a robust infrastructure with good performance and mobile optimization. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some security headers and explicit security policies could be enhanced. Overall, the site demonstrates high professionalism, compliance with GDPR, and a strong business credibility profile.

A

Ant International

ant-intl.com

0

Ant International is a prominent global fintech and digital payment provider headquartered in Singapore, with operations spanning Asia, Europe, the Middle East, and Latin America. The company offers a suite of unified payment platforms and financial services designed to enable inclusive growth for merchants and consumers worldwide. Their portfolio includes brands such as AlipayPlus, Antom, Bettr, and WorldFirst, each targeting specific market needs from cross-border payments to embedded financial services. The website reflects a mature digital presence with a strong emphasis on sustainability, trust, and compliance.

B

Beacon Fund

beaconfund.com

0

Beacon Fund is a pioneering private debt fund focused on providing tailored financing solutions to SMEs in Vietnam, particularly those led by gender-diverse teams committed to social and environmental impact. The fund fills a financing gap for businesses too large for microfinance but underserved by traditional equity and banking options. Their market position as Southeast Asia’s first private debt fund dedicated to gender equality and social impact underscores their unique value proposition. The website reflects a professional and consistent brand with clear messaging and strong trust indicators such as 2X Fund membership and impact reporting. Technically, the site is built on a modern WordPress stack with Elementor and several plugins, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks security headers and formal privacy and cookie policies, which are compliance gaps. Overall, the website is safe, professional, and credible, though improvements in privacy compliance and security hardening are recommended.

V

Versicherung der Schweizer Ärzte Genossenschaft

va-genossenschaft.ch

0

Versicherung der Schweizer Ärzte Genossenschaft is a Swiss cooperative insurance provider specializing in pension and risk protection products tailored for medical professionals. Established in 1926, it holds a niche market position with a strong focus on the healthcare sector. The website reflects a mature digital presence with professional design, clear navigation, and relevant content targeting Swiss doctors. Technically, the site is built on WordPress with modern plugins and tracking tools, offering moderate performance and good mobile optimization. Security measures include HTTPS, reCAPTCHA on forms, and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site demonstrates high business credibility with multiple trust signals and comprehensive contact options.

Deloitte's Finnish website presents a comprehensive and professional digital presence for a global leader in professional services. The site offers detailed information on audit, consulting, financial advisory, risk management, and tax services tailored to Finnish clients. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries, and integrates multiple marketing and analytics tools such as LinkedIn Insight, Facebook Pixel, and Marketo, indicating a mature digital marketing strategy. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. WHOIS data is unavailable, likely due to privacy protection, which is justified for a global brand. Overall, the website is well-structured, accessible, and trustworthy, supporting Deloitte's market position as a leading professional services firm.

QuickBooks, a product of Intuit Inc., is a leading provider of cloud-based accounting and financial management software targeted primarily at small to medium-sized businesses, accountants, and self-employed professionals. The website presents a professional and polished digital presence, reflecting its market leadership and extensive user base of over 7 million businesses. The business model is subscription-based SaaS, offering a suite of services including accounting, payroll, tax preparation, invoicing, and expense tracking. Intuit's strong brand recognition and multiple subsidiaries such as Mint, TurboTax, and Credit Karma further consolidate its position in the finance and technology sectors. Technically, the website leverages modern web technologies including React and Next.js frameworks, integrated with advanced analytics and marketing tools such as Adobe Experience Platform, Segment, and Qualtrics. The site is optimized for performance, mobile responsiveness, and accessibility, ensuring a high-quality user experience. Security is robust with enforced HTTPS, comprehensive security headers, and adherence to industry standards like ISO 27001 and SOC 2. Privacy compliance is well-managed with clear policies, GDPR adherence, and consent mechanisms via OneTrust. The security posture is strong, with no detected vulnerabilities or exposed sensitive data. The domain WHOIS data is privacy protected, which is typical for large enterprises and justified given the business scale. The website maintains transparency with detailed security, privacy, and incident response information, including dedicated contact channels for security concerns. Overall, QuickBooks demonstrates a mature digital infrastructure, strong security culture, and high business credibility. Strategic recommendations include maintaining up-to-date third-party libraries, enhancing transparency on data retention, and continuous monitoring for emerging security threats to sustain trust and compliance in a dynamic regulatory environment.

Mastercard Strive is a global initiative launched in 2021 by Mastercard to empower ten million small businesses with innovative digital solutions aimed at building resilience and fostering growth. The website showcases various programs and initiatives across multiple regions including Africa, Asia Pacific, Europe, Latin America & Caribbean, and North America. The business model is non-profit and focuses on supporting micro, small, and medium enterprises (MSMEs) through technology and data-driven insights. The site is professionally designed with consistent branding and clear navigation, targeting small business owners and entrepreneurs worldwide. Technically, the website is built using modern web technologies such as React and Next.js, hosted on Amazon AWS infrastructure. It employs third-party services like Cookiebot for cookie consent management and Google Tag Manager for analytics. While the site is mobile-optimized and performs moderately well, there is a misconfiguration in the cookie consent mechanism and DNSSEC is not enabled, which are areas for improvement. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized changes. However, it lacks visible security headers and explicit security or incident response policies. No privacy or cookie policies are found, and no contact information is provided, which impacts privacy compliance and user trust. The domain registration is transparent and consistent with the business's founding timeline, indicating legitimacy. Overall, Mastercard Strive's website is a credible and professional platform supporting small businesses globally, but it would benefit from enhanced privacy compliance, clearer contact channels, and improved security configurations to strengthen trust and regulatory adherence.

M

Mastercard Center for Inclusive Growth

globalinclusivegrowthsummit.com

0

The Global Inclusive Growth Summit website is a professionally developed platform managed by the Mastercard Center for Inclusive Growth. It serves as a hub for information about the annual summit events focused on inclusive economic growth, sustainability, and social impact. The site features detailed speaker profiles, event agendas, multimedia content, and registration links, targeting leaders and practitioners in finance, government, and social sectors. The business model revolves around event organization and thought leadership, leveraging Mastercard's global brand and network to position itself as a key player in inclusive growth discussions. Technically, the website is built on WordPress with a custom Mastercard theme, utilizing modern web technologies including Google Tag Manager, Google Analytics 4, Facebook Pixel, and LinkedIn Insight Tag for analytics and marketing. The site is hosted via GoDaddy and uses HTTPS with a valid SSL certificate, though DNSSEC is not enabled. Performance and mobile optimization are good, with a clean, professional design and clear navigation. From a security perspective, the site benefits from HTTPS and domain registration protections but lacks DNSSEC and visible security headers, which are recommended for enhanced security. No privacy or cookie policies were found, indicating a gap in compliance with privacy regulations such as GDPR. Contact information is limited to a single email address, with no phone numbers or physical addresses provided. No incident response or vulnerability disclosure information is available. Overall, the website is trustworthy and professional, with strong business credibility and technical implementation. However, improvements in privacy compliance, security headers, and DNSSEC would enhance its security posture and regulatory adherence.

The Mastercard Center for Inclusive Growth is a social impact initiative and non-profit arm of Mastercard, dedicated to advancing sustainable and equitable economic growth and financial inclusion globally. Founded in 2014, it leverages Mastercard's business assets to support millions through grants, data analytics, partnerships, and thought leadership. The website is professionally designed, content-rich, and targets a global audience of social impact stakeholders, small businesses, and policymakers. Technically, the site uses modern frameworks such as Next.js and Builder.io CMS, with good mobile optimization and SEO practices. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be explicitly verified and a vulnerability disclosure policy is absent. Overall, the site is trustworthy and aligned with Mastercard's brand, though WHOIS data is unavailable due to privacy or query issues. Strategic recommendations include enhancing security headers, publishing incident response contacts, and formalizing vulnerability disclosure.

F

FINOS

finos.org

0

FINOS is a prominent non-profit foundation dedicated to fostering open source collaboration and standards development within the financial services industry. Affiliated with the Linux Foundation, it serves a large community of developers, technologists, and financial firms, providing projects, events, and resources to accelerate innovation and interoperability. The website reflects a mature digital presence with professional design, clear navigation, and active community engagement. Technically, it leverages HubSpot CMS and integrates multiple marketing and analytics tools, indicating a modern infrastructure. Security posture is solid with HTTPS and basic security headers, though additional headers and explicit privacy policies would enhance compliance and trust. The absence of WHOIS data due to privacy protection is common for organizations of this type and does not detract significantly from legitimacy. Overall, FINOS presents a trustworthy and authoritative platform in the fintech open source ecosystem.

Mastercard is a global technology company specializing in payment processing and digital economy solutions. The website reflects a mature, enterprise-grade digital presence with comprehensive content targeting consumers, businesses, governments, and innovators. It offers a wide range of services including consumer and commercial payments, cybersecurity, advisory, and AI-driven insights. The site is built on Adobe Experience Manager, indicating a robust technical infrastructure with modern web technologies and good mobile optimization. Security posture is strong with HTTPS, cookie consent mechanisms, and no visible vulnerabilities. However, WHOIS data is unavailable, which is unusual for a major brand but likely due to registry privacy or restrictions. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

C

CrossCountry Consulting

crosscountry-consulting.com

0

CrossCountry Consulting is a professional services firm specializing in integrated solutions for finance leaders including CFOs, private equity sponsors, and corporate functional leaders. The company offers services in accounting and risk management, technology-enabled transformation, and transaction advisory. Their market position is supported by strategic alliances with well-known technology partners such as NetSuite, Coupa, and Workday. The website demonstrates a high level of professionalism with comprehensive content and strong branding consistency. Technically, the site is built on WordPress with modern libraries and good SEO practices, though some security headers are missing. The security posture is solid with HTTPS enforced and no visible vulnerabilities, but could be improved with additional headers and incident response information. Privacy compliance is good with clear privacy and cookie policies, though a cookie consent mechanism is absent. The domain WHOIS data is unavailable, which raises moderate concerns about domain legitimacy, but the website content and external trust signals mitigate this risk. Overall, the site is well-positioned for its target audience with a strong digital presence and professional credibility.

C

Cembra Money Bank AG

lipo-mastercard.ch

0

The website lipo-mastercard.ch presents the LIPO Mastercard, a credit card product issued by Cembra Money Bank AG, targeting Swiss residents and customers of the LIPO retail chain. The site offers detailed information about the card's benefits, usage, and additional services such as mobile payment and a personalized card design option. The business is positioned as a niche financial service provider with a focus on customer loyalty through point collection and exclusive offers. Technically, the site employs modern web technologies including Google Tag Manager and OneTrust for analytics and cookie consent management, ensuring GDPR compliance and user privacy. Security measures such as HTTPS and security headers are properly implemented, though explicit security and incident response policies are not directly published on the site. Overall, the website is professional, trustworthy, and well-optimized for user experience and mobile devices.

Certo! One Mastercard is a cashback credit card product offered by Cembra Money Bank AG, a reputable Swiss financial institution. The website promotes the card's benefits including no annual fees, cashback rewards at favorite merchants, and additional insurance coverage. The target audience is consumers in Switzerland looking for a convenient and rewarding credit card solution. The company leverages modern digital marketing and analytics tools such as Google Tag Manager, Google Analytics, and OneTrust for cookie consent management, indicating a mature digital infrastructure. The website is well-designed, mobile-optimized, and accessible, providing a professional user experience. Security measures include HTTPS enforcement and Mastercard Identity Check integration, though explicit security headers and policies are not prominently published. Overall, the site demonstrates a strong security posture with room for improvement in transparency around privacy and security policies.

I

Intercontinental Exchange, Inc.

amex.com

0

The NYSE American website represents a key digital presence for Intercontinental Exchange, Inc., focusing on the small-cap equity market segment. It offers comprehensive market information, trading resources, and membership details tailored for growing companies and investors. The site blends traditional NYSE market maker features with modern electronic trading models, positioning itself competitively in the financial exchange sector. Technically, the site employs a modern React-based stack with various JavaScript libraries and a custom CMS, delivering a responsive and accessible user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response details are absent. Overall, the site is professional, trustworthy, and well-aligned with its business objectives, though WHOIS data is incomplete likely due to privacy protections.

K

Klarna

sofort.com

0

Klarna is a leading European payment service provider that has integrated Sofortüberweisung into its platform, offering customers a seamless, secure, and familiar payment experience. The website clearly targets German-speaking shoppers and merchants, providing detailed information about payment options, security features, and customer support. The site is professionally designed, mobile-optimized, and rich in content, reflecting Klarna's strong market position and brand consistency. Technically, the site leverages modern web technologies including React and Emotion CSS, and integrates widely used analytics and advertising services such as Google Analytics and DoubleClick. Security practices include HTTPS enforcement and secure login flows, though explicit security headers and incident response contacts are not evident on this page. The WHOIS data for the domain is unavailable, which is unusual but likely due to privacy protection or query limitations; however, the website content and branding strongly support legitimacy. Overall, Klarna's site demonstrates a mature digital presence with good security posture and privacy compliance, suitable for its role as a financial services provider.

C

Cembra Money Bank AG

cembra.ch

0

Cembra Money Bank AG is a leading Swiss financial institution specializing in consumer finance products including loans, leasing, credit cards, savings, and insurance. The company targets both private and corporate customers within Switzerland, positioning itself as a trusted and comprehensive financial services provider. The website reflects a mature digital presence with professional design, clear navigation, and multiple service portals. Technically, the site uses modern web technologies including Astro framework, Google Tag Manager for analytics, and OneTrust for cookie consent management, ensuring compliance with privacy regulations. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly detailed. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness. Strategic recommendations include publishing dedicated security and incident response policies and enhancing transparency around vulnerability disclosures.