Security Directory

ZuluTrade is a well-established social trading platform founded in 2007, offering services that connect traders and investors globally. It enables users to follow and copy trading strategies, positioning itself as a leader in the financial technology sector focused on social and copy trading. The platform targets retail and professional investors seeking automated and social trading solutions. Technically, the website employs modern frameworks such as Bootstrap and integrates analytics tools like Google Analytics and Tag Manager, providing a responsive and user-friendly experience. Security-wise, the site enforces HTTPS, implements key security headers, and maintains privacy and cookie policies compliant with GDPR. However, the absence of WHOIS data and public security policies slightly detracts from its transparency and trustworthiness. Overall, ZuluTrade presents a professional and secure platform with room for improvement in domain transparency and security communication.

S

Swiss FinTech Association

swissfinte.ch

0

The Swiss FinTech Association is a well-established non-profit organization dedicated to fostering the development of the Swiss FinTech ecosystem. It serves as a neutral hub connecting various stakeholders including startups, corporates, investors, and professionals in finance and technology. The association offers key services such as advocacy, mentoring, marketplace access, and organizes networking events to strengthen the FinTech community in Switzerland. The website reflects a strong market position as the leading FinTech hub in the country, with a clear focus on community engagement and ecosystem development. Technically, the website is built on WordPress using a modern stack of plugins and frameworks including Yoast SEO, WPBakery Page Builder, and Mailchimp integration for newsletter subscriptions. The site demonstrates good mobile optimization, SEO practices, and a moderate performance profile. The technical infrastructure supports a professional and user-friendly experience for visitors. From a security perspective, the site enforces HTTPS and shows no signs of exposed sensitive data or vulnerabilities in the visible content. However, it lacks some advanced security headers and does not provide explicit security policies or incident response information. Privacy compliance is mostly addressed with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a notable gap. Overall, the website presents a low-risk profile with strong business credibility and professional content. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers to further strengthen the security posture.

T

Twinstake

twinstake.io

0

Twinstake is a professional institutional-grade staking service provider specializing in non-custodial staking solutions for digital assets. The company positions itself as a trusted partner for institutional investors and digital asset managers, offering optimized performance, compliance, risk mitigation, and enhanced reporting. Their market position is strengthened by backing from notable technology firms such as Nethermind and Webn, and they maintain a strong compliance posture with published policies and certifications. Technically, the website is built on Webflow with modern technologies including Google Tag Manager and reCAPTCHA, ensuring good performance, mobile optimization, and user experience. Security practices include HTTPS enforcement, spam protection on forms, and a responsible disclosure process, though some security headers are missing and no security.txt file is published. The absence of WHOIS domain registration data is a concern and should be verified to confirm domain legitimacy. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for its target institutional audience.

M

Maerki Baumann & Co. AG

archip.ch

0

Maerki Baumann & Co. AG operates as an independent Zurich-based private bank specializing in blockchain and cryptocurrency asset management services. The website presents a professional image targeting private and corporate clients interested in custody, trading, staking, crypto investment advice, asset management, and NFT custody. The bank emphasizes generational expertise and a focused business model in the finance sector. Technically, the website is built on Drupal 10, integrates Google Tag Manager and Cookiebot for consent management, and demonstrates good mobile optimization and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be further enhanced. The website uses multiple third-party advertising and tracking services with transparent consent. Overall, the domain registration data aligns well with the website's claims, indicating a legitimate and trustworthy entity. No critical security or content safety issues were detected.

J

JayBee AG

jaybeeconsulting.ch

0

JayBee AG is a Swiss-based consulting firm specializing in simplifying regulatory and compliance processes for sectors including Fintech, Crypto, Banking, and Asset Management. The company positions itself as a goal-oriented partner providing pragmatic and innovative solutions to empower business success. Their website reflects a niche market focus with professional branding and client testimonials that enhance trust. Technically, the site is built on WordPress with Elementor and integrates SEO and analytics tools such as Rank Math and Google Tag Manager, indicating a modern digital infrastructure. Security posture is solid with HTTPS enforced, but could be improved by adding security headers and explicit incident response policies. Privacy compliance is partially addressed with a privacy policy present, but lacks cookie consent mechanisms. Overall, the site is accessible, professional, and trustworthy with moderate user tracking and good content quality.

S

SIX Digital Exchange

sdx.com

0

SIX Digital Exchange (SDX) is a pioneering financial market infrastructure provider offering the world's first fully regulated digital exchange and central securities depository based on blockchain technology. It operates under the regulatory oversight of FINMA and is part of the reputable SIX Group. SDX provides a secure and transparent platform for issuance, trading, settlement, and custody of digital assets, targeting institutional investors, issuers, and market participants interested in digital securities and tokenized assets. The website reflects a mature digital presence with comprehensive content, strong branding, and advanced technical implementation using WordPress and Elementor frameworks. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is missing or privacy protected, which slightly reduces transparency but is likely justified given the regulated financial nature of the business. Overall, SDX presents a trustworthy and professional digital asset exchange platform with a strong market position and clear regulatory compliance.

B

Bullish Global

bullish.com

0

Bullish Global operates a regulated and audited cryptocurrency exchange platform offering institutional and advanced traders access to spot, derivatives, margin trading, and custody services. The company holds tier-1 licenses, is regulated by the Gibraltar Financial Services Commission, and is audited annually by Deloitte & Touche LLP. Bullish is recognized as a top-five global spot trading venue for Bitcoin, emphasizing its strong market position and liquidity. The platform targets institutional clients and professional investors, providing a unified trading account and API access for advanced trading features. Technically, Bullish employs a modern web infrastructure built on Next.js and React, hosted behind Cloudflare, with integrated analytics via Piwik PRO and Google Tag Manager. The website is fast, mobile-optimized, and accessible, reflecting a mature digital presence. Security practices include HTTPS enforcement, multi-layer custody safeguards, offline key management, and strict segregation of customer assets, supporting a high-security posture. The security posture is robust, with no detected vulnerabilities or exposed sensitive data. The company maintains full reserve backing of customer assets and enforces rigorous KYC/AML compliance. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. However, minor improvements such as enabling DNSSEC and publishing a security.txt file could enhance security transparency. Overall, Bullish presents a trustworthy, professional, and secure platform with strong regulatory compliance and a clear focus on institutional crypto trading. Strategic recommendations include enhancing DNS security, formalizing incident response contacts, and increasing transparency around data protection officer details to further strengthen trust and compliance.

I

ISP Group

ispgroup.com

0

ISP Group is a Swiss-based financial services boutique established in 1993, specializing in asset services, investment management, and global markets access. The company targets institutional investors, asset managers, and family offices, offering a broad range of services including digital assets, securitisation, paying agent services, trading, wealth and asset management, and placement agent services. The firm operates globally with offices in Switzerland, Israel, Hong Kong, and Dubai, positioning itself as a trusted partner in the financial sector with strong regulatory compliance evidenced by FINMA licensing and SIX reporting membership. Technically, the website employs modern JavaScript libraries such as jQuery, Alpine.js, and Axios, alongside UI frameworks like Slick and Sly sliders, hosted on Azure DNS infrastructure. The site demonstrates good mobile optimization, SEO practices, and performance, though accessibility features are basic. Analytics are implemented via Google Analytics and Tag Manager with a cookie consent mechanism ensuring privacy compliance. From a security perspective, the site uses HTTPS with a strong SSL configuration but lacks DNSSEC and some recommended security headers. No vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contacts suggests room for improvement in transparency and readiness. The domain's WHOIS data is consistent with the business claims, showing a long-established domain without privacy protection, enhancing trust. Overall, ISP Group's website is professional, secure, and compliant with privacy regulations, reflecting a credible and trustworthy financial services provider. Strategic enhancements in security policy publication and DNS security would further strengthen its posture.

W

www.stremablefinance.com

streamablefinance.com

0

Streamable Finance is a fintech company founded in 2021, focusing on next-generation financial protocols leveraging Distributed Ledger Technologies (DLT). Their platform offers decentralized finance (DeFi) products including a decentralized exchange (SF DeFI – DeX), investment opportunities (Streamable Invest), and stablecoin solutions under the esCurrencies brand. The company targets fintech users, investors, and partners interested in programmable and instant money solutions. The website is professionally designed with consistent branding and clear navigation, supporting their market positioning as an innovative fintech protocol.

C

Crypto Finance AG

crypto-finance.com

0

Crypto Finance AG, part of the Deutsche Börse Group, operates a regulated and integrated platform enabling financial institutions to securely manage, trade, and store digital assets. The company holds regulatory licenses from FINMA and BaFin, including a MiCAR license for European operations, positioning it as a market leader in Switzerland and Germany. The website reflects a professional and trustworthy digital presence with detailed executive bios and clear service offerings in custody, trading, and staking of digital assets. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering good performance and mobile responsiveness. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security and incident response policies are not published. WHOIS data is missing, which slightly reduces trust but does not outweigh the strong regulatory and business signals. Overall, the site is a credible and professional representation of a regulated financial services provider in the digital asset space.

F

Fundnav Login

fundnav.lu

0

Fundnav.lu operates as a secure login portal primarily targeting professional investors and approved users who have undergone KYC verification by fund managers or issuers. The platform facilitates access to fund and security information, emphasizing compliance and restricting access to unauthorized or US persons. The website content is minimal but focused on secure access and legal disclaimers, reflecting a niche financial services business model. The site is consistent with a small Luxembourg-based finance entity founded around 2012. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, jQuery, and FontAwesome. Hosting is managed via EuroDNS nameservers, indicating a reputable DNS provider. The site demonstrates basic mobile optimization and accessibility but lacks advanced SEO and security headers. No analytics or tracking scripts were detected, suggesting minimal user tracking. From a security perspective, the site uses HTTPS (implied by form action URL), but no explicit security headers such as CSP or HSTS were found. The login form requires credentials but lacks visible anti-CSRF tokens. No incident response or security policies are published. The WHOIS data is consistent and transparent, supporting legitimacy. No WAF or blocking mechanisms were detected, and the content is accessible. Overall, Fundnav.lu presents a moderate risk profile with a need for improved privacy compliance, enhanced security headers, and more comprehensive contact information. The business credibility is solid given the domain age and consistent WHOIS data, but technical and privacy improvements would strengthen trust and security posture.

S

Southern Cross Life Insurance

southerncrosslife.co.nz

0

Southern Cross Life Insurance, underwritten by Chubb Life Insurance New Zealand Limited, offers life insurance products targeting New Zealand residents. The company positions itself as the most trusted life insurance brand in New Zealand, providing coverage options up to $1 million, with additional benefits such as accidental death cover and advanced funeral benefits. The website is professionally designed with clear navigation and strong branding consistency, supporting a direct-to-consumer business model with online quoting and application capabilities. Technically, the site leverages modern JavaScript libraries, a Sitecore CMS platform, and Azure CDN hosting, delivering moderate performance and good mobile optimization. Security posture is generally strong with HTTPS enforced and no exposed sensitive data, though the absence of security headers and cookie consent mechanisms are areas for improvement. The lack of WHOIS data limits domain trust verification, but the website content and branding strongly support legitimacy. Overall, the site demonstrates a mature digital presence with room for enhanced privacy compliance and security best practices.

Financial Management Software, Inc. (FMSI) operates a professional website offering appointment scheduling and workplace management software solutions tailored for retail banks and credit unions. The company positions itself as a trusted provider with over 25 years of experience, focusing on improving branch operations and member experiences through data-driven tools. The website content is well-structured, targeting financial institutions with clear messaging and service descriptions. Technically, the website uses standard modern web technologies including HTML5, CSS3, JavaScript, and Google Fonts, with Cloudflare DNS services. The site is mobile optimized and performs moderately well, though accessibility features are basic. No CMS or advanced frameworks are detected. Security posture is moderate with HTTPS implied but lacking explicit security headers and DNSSEC. Privacy and cookie policies are absent, which impacts compliance and user trust. Security evaluation shows no critical vulnerabilities or exposed sensitive data, but the absence of security headers and incident response information suggests room for improvement. The WHOIS data confirms a long-established domain consistent with the business claims, enhancing legitimacy. Overall, the site is professional and safe but would benefit from enhanced privacy compliance and security best practices. Recommendations include implementing privacy and cookie policies, adding security headers, enabling DNSSEC, and providing incident response contacts to improve trust and compliance.

B

BX Swiss AG

regservices.ch

0

BX Swiss AG operates regservices.ch, a specialized platform providing regulatory compliance services under the Swiss Financial Services Act (FinSA). The company offers a FINMA authorized Prospectus Review Office and maintains a Swiss Register of Client Advisors, facilitating prospectus examination, deposit, and advisor registration. The website targets financial institutions, client advisors, and regulatory bodies within Switzerland, positioning itself as a niche service provider in the Swiss financial regulatory ecosystem. The business model revolves around regulatory compliance facilitation and digital service delivery for financial market participants. Technically, the website is built on WordPress with modern plugins and SEO tools, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS and some best practices but lacks certain security headers and explicit vulnerability disclosure mechanisms. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

T

TraderFox GmbH

traderfox.com

0

TraderFox GmbH is a well-established German company founded in 2006, specializing in trading software and financial research services for retail investors and active traders. Their offerings include a browser-based trading terminal, portfolio analysis tools, stock screeners, real-time news feeds, and educational masterclasses. The company has a strong market position in the German-speaking region with over 100,000 registered users and partnerships with reputable data providers such as dpa-AFX, Morningstar, Factset, and Deutsche Börse. The website is professionally designed, mobile-optimized, and provides clear subscription and product information.

T

Traders Cup | Börsenspiel für Strukturierte Produkte

traders-cup.ch

0

Traders Cup is an educational online platform based in Switzerland that offers a trading game focused on structured financial products. It targets individuals interested in learning trading skills through a gamified experience, offering prizes valued over CHF 25,000. The platform leverages a WordPress CMS with Elementor and integrates performance and privacy tools such as WP Rocket and Borlabs Cookie. The website is well-structured, mobile-optimized, and uses HTTPS with proper security headers, reflecting a mature technical infrastructure. However, direct contact information and explicit security policies are not prominently available, which could be improved to enhance trust and compliance. Overall, the site presents a professional and trustworthy front for its niche educational service.

B

BXPlus

bxplus.ch

0

BXPlus operates as a specialized membership portal providing exclusive investment and trading content related to the Swiss stock exchange BX Swiss. The website targets investors and traders interested in Swiss financial markets, offering curated information and membership benefits. The business model focuses on content exclusivity and community engagement within the Swiss finance sector. Technically, the site is built on WordPress with a modern plugin ecosystem supporting events and membership management. The infrastructure includes standard security practices such as HTTPS and cookie consent mechanisms, though lacks explicit privacy and terms of service documentation. Security posture is strong with appropriate headers and SSL configuration, but could be improved by publishing formal policies and incident response contacts. Overall, the site presents a professional and trustworthy front for its niche audience, with room for enhanced compliance and transparency.

P

Paypal Casinos Info

paypalcasinosinfo.com

0

PayPalCasinosInfo.com is a niche informational website focused on providing guides and reviews about PayPal casinos in Canada. The site targets Canadian online gamblers interested in secure and convenient payment methods via PayPal. The business model appears to be affiliate or informational, offering content about online gambling options, casino innovations, and payment solutions. Technically, the site is built on WordPress using the Elementor page builder, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with a privacy policy and terms of service present but no cookie consent mechanism. Overall, the site is moderately trustworthy but could improve transparency and security practices.

P

P&V Group

travailleravecvivium.be

0

The website travailleravecvivium.be serves as a career and employment portal for Vivium, a brand under the P&V Group, a well-established insurance company in Belgium. The site targets job seekers primarily in the Dutch and French-speaking regions of Belgium, providing information about working at Vivium and related employment opportunities. The business model focuses on insurance services and employer branding to attract talent. The domain is registered since 2016, consistent with the business's operational timeline, and the website branding aligns with the parent company, P&V Group.

F

Funds365 LLC

fundnav.io

0

FundNav, operated by Funds365 LLC, is a specialized SaaS platform focused on investor relations and fund management. The platform offers services such as digital onboarding, KYC/AML compliance, capital call management, and a stake marketplace for peer-to-peer trading. Targeting fund managers and issuers, FundNav aims to streamline investor communication and compliance processes. The website is professionally designed using WordPress with the Avada theme and integrates modern plugins for SEO and forms. Marketing efforts include Google Ads and Illow banner integration. Security posture is adequate with HTTPS and domain transfer protection, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Contact is primarily via web forms, with no direct emails or phone numbers publicly listed.

M

MontLake

montlakeucits.com

0

MontLake operates a leading independent UCITS platform designed to provide investors and advisors with access to traditional and alternative investment fund expertise through a regulated and transparent structure. The website presents a professional and well-structured platform focused on finance and investment solutions, targeting investors interested in UCITS funds. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and OneTrust for cookie consent, and uses Google Tag Manager for analytics. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is good with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and a published privacy policy. The absence of WHOIS registration data is a concern for domain legitimacy, though the website content and presentation support a credible business. Overall, the site scores well on business credibility and content quality but should improve privacy compliance and security best practices.

B

BX Swiss

bxswiss.com

0

BX Swiss operates as a Swiss regulated stock exchange with a long historical legacy dating back to 1884. The website presents a professional platform offering market data, trading information, and tools for investors and financial professionals. The company targets investors and market participants primarily within Switzerland but also offers access to international shares and ETFs. The business model centers on providing regulated trading services and market infrastructure under FINMA supervision. Technically, the website employs modern JavaScript libraries including SignalR for real-time data, Google Analytics for tracking, and Swiper.js for UI components. The site is mobile optimized, accessible, and SEO friendly, though some improvements in security headers and cookie consent mechanisms are recommended. Performance is moderate with a clean and professional design. Security posture is solid with HTTPS enforced and no visible sensitive data exposure. However, the absence of security headers and lack of published security policies or incident response contacts represent areas for enhancement. Privacy compliance is basic with a privacy policy present but no explicit cookie consent mechanism. Overall, the website is trustworthy and professional, though the lack of WHOIS registration data introduces some uncertainty about domain legitimacy. Strategic recommendations include improving security headers, implementing cookie consent, publishing security and incident response policies, and verifying domain registration transparency.

A

Alpharank

alpharank.io

0

Alpharank is a specialized technology company providing a no-code online branch sales guidance system tailored for banks and credit unions. Their platform integrates seamlessly with existing loan origination and account opening processes to deliver comprehensive funnel visibility and data-driven guidance, helping financial institutions optimize digital sales and increase funded accounts. The company positions itself as a trusted partner with proven ROI and a strong client base across the US financial sector. Technically, Alpharank leverages modern web technologies including Webflow CMS, HubSpot marketing and analytics tools, Google Tag Manager, and Amazon CloudFront for hosting. The website is well-optimized for performance, mobile responsiveness, and user experience, reflecting a mature digital infrastructure. However, explicit privacy and terms of service pages are not found, and security headers are not evident, indicating areas for improvement in compliance and security posture. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. The WHOIS data is privacy protected, which is common for this business type, and no suspicious domain registration patterns are detected. Overall, the security posture is good but could be enhanced with additional transparency and technical controls. The overall risk assessment is low, with the website demonstrating professionalism, trustworthiness, and a clear business focus. Strategic recommendations include publishing comprehensive privacy and security policies, implementing security headers, and establishing a vulnerability disclosure program to further strengthen trust and compliance.

F

Financial Management Software, Inc.

fmsiportal.com

0

Financial Management Software, Inc. operates the FMSI Analytics & Scheduler platform, providing specialized analytics and scheduling software solutions targeted at financial institutions and organizations. The platform emphasizes secure user authentication, including two-factor authentication and strong password policies, to protect sensitive financial data. The company has a stable domain presence since 2011, indicating established operations in the finance software sector. Technically, the website is built on Microsoft ASP.NET Web Forms with modern frontend libraries such as jQuery and Bootstrap, hosted with DNS managed by Cloudflare and domain registration via GoDaddy. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility and SEO features. Security practices include enforced password complexity and two-factor authentication; however, the absence of DNSSEC and HTTP security headers suggests room for improvement. From a security posture perspective, the site shows a moderate maturity level with secure login mechanisms but lacks published privacy, cookie, and security policies, which impacts compliance and user trust. No vulnerability disclosure or incident response contact information is available, limiting transparency. The domain registration data aligns well with the business profile, supporting legitimacy. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security header implementation, and public contact information to improve trust and regulatory adherence.

S

SEH Erkend Financieel Adviseur

erkendadvies.nl

0

SEH Erkend Financieel Adviseur operates a professional platform dedicated to connecting consumers in the Netherlands with certified financial advisors. Established since 1998, the organization emphasizes trustworthy, personalized financial advice covering mortgages, pensions, wealth management, and entrepreneurial financial planning. The website reflects a strong market position with a recognized quality mark and a broad network of advisors. Technically, the site is built on modern frameworks like SvelteKit, ensuring fast performance and excellent mobile optimization. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms, although explicit security and incident response policies are not published. Overall, the site is highly professional, compliant with GDPR, and trustworthy, making it a reliable resource for financial advisory services.

S

Stichting Erkend Hypotheekadviseur

seh.nl

0

Stichting Erkend Hypotheekadviseur (SEH) operates as a recognized quality mark and community for financial advisors in the Netherlands, focusing on certification, professional development, and sector visibility. Established in 1998, SEH supports over 5000 advisors with events, publications, and a digital platform to enhance trust and expertise in financial advice. The website is built on modern technologies like SvelteKit and integrates privacy-compliant tools such as Cookiebot and Google Analytics. Security posture is strong with HTTPS, security headers, and no evident vulnerabilities. Contact information and social media presence are clear and professional, supporting business credibility. Overall, the site demonstrates a mature digital infrastructure and a trustworthy business model.

V

Vivium

vivium.be

0

Vivium is a well-established Belgian insurance company specializing in employee benefits and group insurance products. As part of the P&V Group, it holds a strong market position targeting private individuals, self-employed professionals, and insurance brokers. The website reflects a professional corporate presence with multilingual support and clear segmentation of target audiences. The technical infrastructure leverages modern web technologies including React and Liferay CMS, ensuring a scalable and maintainable platform. Security measures such as HTTPS and Google reCAPTCHA are implemented, although visible security headers and explicit privacy policies are lacking. Overall, the website is functional and trustworthy but could improve in privacy compliance and security transparency.

D

Domains By Proxy, LLC

znd.co

0

ZND is a digital asset management platform operating in the finance and blockchain sectors, offering services that blend AI, real-time data, and both traditional and decentralized finance products. The website positions itself as a platform for exploring, earning, trading, and borrowing digital assets, targeting investors, traders, and blockchain enthusiasts. The domain is mature, registered since 2015, and uses privacy protection common in the industry. Technically, the site is built with the Framer framework, hosted behind Cloudflare DNS, and integrates Google Analytics for user tracking. The design quality and user experience are good, with mobile optimization and SEO practices in place. However, the site lacks visible privacy and cookie policies, contact information, and explicit security policies, which impacts its privacy compliance and trustworthiness scores. Security posture is moderate with HTTPS enabled but missing DNSSEC and security headers. Overall, the site is functional and professional but would benefit from enhanced transparency and security disclosures.

The website www.southstatebank.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) security challenge page employing Turnstile human verification. This prevents direct access to the site's content, limiting the ability to analyze business, security, and compliance details. The WHOIS lookup for the domain returned no data, indicating either the domain is not registered, is newly registered, or WHOIS data is withheld or privacy-protected. No privacy policies, cookie consent mechanisms, terms of service, contact information, or business descriptions are accessible. The site is protected by Cloudflare, indicating a focus on security, but the lack of accessible content and WHOIS data reduces trust and transparency. Overall, the site scores low on content quality, privacy compliance, and business credibility due to these access restrictions.

C

CAMPUS USA Credit Union

campuscu.com

0

CAMPUS USA Credit Union is a well-established financial institution based in Florida, providing a broad range of banking, loan, investment, and insurance services primarily to residents and employees in multiple Florida counties. The credit union emphasizes community involvement and member empowerment, positioning itself as a trusted alternative to traditional banks with a community-driven approach. Their market presence is supported by numerous physical branches and a strong digital presence, including online and mobile banking platforms. Technically, the website employs a modern technology stack including jQuery, Google Tag Manager, Facebook Pixel, and ASP.NET MVC framework, hosted on AWS infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Analytics and marketing tools are used responsibly, with moderate user tracking. From a security perspective, the site enforces HTTPS, uses secure login forms, and manages cookies securely. However, it lacks DNSSEC, explicit security headers, and a vulnerability disclosure policy. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The WHOIS data confirms the domain's legitimacy and long-standing registration, consistent with the business claims. Overall, CAMPUS USA Credit Union's website demonstrates a strong business credibility and technical maturity with minor gaps in privacy compliance and security best practices. Strategic improvements in cookie consent, DNS security, and vulnerability disclosure would enhance trust and compliance.

F

Florida Credit Union

flcu.org

0

Florida Credit Union is a well-established financial institution founded in 1954, serving personal and business customers primarily in Florida. The credit union offers a broad range of financial products including personal loans, mortgages, auto loans, business loans, checking and savings accounts, and credit cards. The website reflects a strong community and member-oriented approach with clear trust signals such as member testimonials and federal insurance by NCUA. Technically, the site is built on the Kentico CMS platform, hosted on Oracle Cloud DNS, and integrates multiple modern analytics and marketing tools. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced and secure login forms, though DNSSEC is not enabled and security headers are not explicitly observed. Privacy compliance is basic with a comprehensive privacy policy but lacking a cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

F

Fundplat

fundplat.com

0

Fundplat.com is a Zurich-based multimedia and events platform targeting professional investors, focusing on finance, innovation, and lifestyle. The platform offers multimedia content such as interviews, clips, and videos, alongside exclusive events like Afterworks, Breakfasts, Roundtables, and Summits, bridging markets between Switzerland, Germany, Dubai, and Abu Dhabi. The business model centers on providing high-quality content and networking opportunities for finance professionals. Technically, the website is built on WordPress, hosted on SiteGround, and uses common web technologies including jQuery, YouTube and Vimeo APIs, and Google Analytics. The site is mobile-optimized with good navigation and professional design. Security posture is moderate with HTTPS enforced and domain protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security practices.

K

Kaiser Partner Privatbank AG

kaiserpartner.bank

0

Kaiser Partner Privatbank AG is a Liechtenstein-based private trust bank specializing in wealth protection and growth for private and business clients, asset managers, and intermediaries. The company offers a range of services including investment solutions, banking services, and support for intermediaries, positioning itself as a trusted institution in the finance sector with a strong market presence and recent positive financial results. The website reflects a professional and modern digital presence, built on WordPress with integration of SEO and marketing tools, providing a user-friendly experience with clear navigation and mobile optimization. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the domain registration and website content align well, indicating a legitimate and credible financial institution.

U

Universal Investment

universal-investment.com

0

Universal Investment is a leading European fund service platform and Super ManCo, providing a broad range of fund services and management company solutions primarily targeting asset managers and institutional investors. The company positions itself as a market leader with comprehensive services including fund structuring, administration, portfolio management, and ESG reporting. Their digital presence reflects a mature and professional organization with a well-structured website offering multiple portals and services to clients. Technically, the website leverages modern frameworks such as Bootstrap 4 and integrates advanced analytics and tracking tools like Google Analytics and Microsoft Application Insights, combined with a robust cookie consent mechanism via Cookiebot. The site is mobile-optimized, accessible, and SEO-friendly, indicating a high level of digital maturity. From a security perspective, the site enforces HTTPS and employs cookie consent best practices, though explicit security headers are not fully confirmed. No critical vulnerabilities or security issues were detected in the content. The absence of WHOIS data is a concern but does not significantly detract from the overall trustworthiness given the professional site and business domain. Overall, the risk assessment is moderate to low with recommendations to enhance security headers and maintain regular audits of third-party scripts. The company should consider publishing more explicit contact information and security policies to further enhance trust and compliance.

I

iMaps ETI AG

imaps-capital.com

0

iMaps ETI AG is a Swiss-based financial services company specializing in the creation and issuance of Exchange Traded Instruments (ETIs), including Actively Managed Certificates (AMCs) and Fund-Linked Notes. The company targets financial institutions, asset managers, and investors seeking innovative investment products in the European market. Founded in 2018, iMaps ETI AG positions itself as a niche player offering white label solutions and a proprietary issuance platform to streamline ETI creation. The website infrastructure is built on WordPress with Elementor and Astra theme, leveraging modern web technologies and integrating marketing and analytics tools such as HubSpot and Google Ads. The site is multilingual, GDPR compliant, and features cookie consent mechanisms, reflecting a mature digital presence. Performance and mobile optimization are good, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but there is room for improvement by enabling DNSSEC, adding security headers, and publishing formal security policies and incident response contacts. No critical security issues were detected. The WHOIS data aligns well with the business profile, indicating legitimacy and consistent domain registration. Overall, iMaps ETI AG demonstrates a professional and trustworthy online presence suitable for its financial services business, with recommendations to strengthen security transparency and technical safeguards to further enhance trust and compliance.

G

Grant Thornton Switzerland / Liechtenstein

grantthornton.ch

0

Grant Thornton Switzerland / Liechtenstein is a well-established professional services firm providing audit, tax, advisory, and consulting services primarily to businesses in Switzerland and Liechtenstein. The firm operates as a member of the global Grant Thornton International network, positioning itself as a leading mid-tier player in the finance sector within its geographic market. The website reflects a professional and consistent brand image aligned with international standards, targeting corporate clients seeking high-quality financial and advisory services. Technically, the website employs modern analytics and marketing technologies such as Google Analytics, Microsoft Clarity, Optimizely, and OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO and accessibility features, although some technical details like CMS and hosting provider are not explicitly identified. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers. Privacy compliance is robust with comprehensive privacy and cookie policies and active consent mechanisms. However, the absence of a dedicated security policy, incident response information, and vulnerability disclosure mechanisms suggests areas for improvement in transparency and security maturity. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include publishing explicit security and incident response policies and implementing a vulnerability disclosure program to enhance trust and security posture further.

H

Hauck Aufhäuser Lampe Privatbank

hal-privatbank.com

0

Hauck Aufhäuser Lampe Privatbank operates as a private banking and wealth management institution primarily targeting private clients and investors. The website presents a professional image with clear branding and a focus on helping clients achieve their financial goals. The technical infrastructure is based on TYPO3 CMS, indicating a mature content management approach with good mobile optimization and accessibility. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enabled but lacking advanced security headers and explicit privacy policies. Overall, the site is functional and professional but requires improvements in transparency and security compliance to enhance trust.

L

LGT Private Banking

lgt.li

0

LGT Private Banking is a well-established global private bank with over 100 years of history, specializing in wealth management and investment solutions for wealthy clients. The company emphasizes sustainability and forward-looking investment strategies, serving ultra-high-net-worth individuals and financial intermediaries worldwide. The website reflects a mature digital presence with multiple language and location options, comprehensive content including news, insights, and career opportunities, and secure client login portals. Technically, the site uses modern JavaScript libraries, Piwik PRO analytics, and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is strong with HTTPS enforced and secure cookie handling, though explicit security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy standards.

V

VP Bank Ltd

vpbank.com

0

VP Bank Ltd is a well-established international private bank headquartered in Liechtenstein, offering a broad range of financial services including wealth management, investment advisory, financing, and e-banking. The bank operates across multiple financial centers including Switzerland, Luxembourg, Singapore, and the British Virgin Islands, reflecting a strong international presence and diversified market reach. The website content is professionally presented, targeting private clients and intermediaries with clear navigation and comprehensive service descriptions. Technically, the website is built on Drupal CMS and employs modern web technologies including SVG animations and a self-hosted Matomo analytics platform, complemented by a Usercentrics consent management platform ensuring GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, with no visible vulnerabilities or exposed sensitive data. However, explicit security headers and a published security.txt file are absent, and incident response contact details are not clearly provided, representing areas for improvement. The WHOIS data is unavailable, likely due to privacy protection, but the overall legitimacy of the domain and business is supported by consistent branding, detailed business information, and international regulatory compliance. Overall, VP Bank Ltd's website demonstrates a high level of professionalism, security awareness, and regulatory compliance, making it a trustworthy platform for its target audience. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and providing clearer incident response contacts to further strengthen trust and security posture.

B

Bolder Group

boldergroup.com

0

Bolder Group is a UK-based professional services firm specializing in corporate, funds, governance, and private wealth services. The company targets corporate clients, fund managers, and private wealth holders, offering tailored financial and governance solutions. The website reflects a mature and established business with a clear market position in the finance sector. Technically, the site is built on WordPress with modern analytics and marketing integrations, including Google Analytics, Microsoft Clarity, and HubSpot. Security posture is strong with HTTPS, security headers, and anti-spam measures, though it lacks a dedicated security policy or incident response information. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for its audience.

W

Waystone

waystone.com

0

Waystone is a prominent service provider in the asset management industry, specializing in institutional governance, administration, risk, and compliance services. The company offers a broad range of regulated fund solutions, administration services, compliance support, Cayman Islands solutions, and ETF platforms, targeting asset managers and institutional investors globally. Their market position is strong, supported by multiple subsidiaries and partnerships, indicating a well-established presence in the finance sector. Technically, the website is built on WordPress CMS with modern JavaScript libraries and integrates several third-party analytics and marketing tools such as Google Tag Manager, Crazy Egg, and Demandbase. The site is hosted on AWS Cloudfront CDN, ensuring good performance and global availability. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a notable anomaly, which may indicate privacy protection or recent domain registration, warranting further verification. Overall, the website demonstrates a professional and trustworthy digital presence with moderate to good security posture. Strategic recommendations include enhancing security headers, publishing clear privacy and incident response policies, and resolving WHOIS data inconsistencies to strengthen trust and compliance.

C

CreaTrust Sàrl

creatrust.com

0

Creatrust Sàrl is a well-established Luxembourg-based company specializing in corporate, investment fund, and family office services. With over 20 years of experience, it positions itself as a leading independent provider offering comprehensive solutions including company formation, fund setup, wealth structuring, and fintech platforms such as FundNav®, Intradomus®, and FundWire®. The company targets international clients, institutional investors, and high net worth individuals seeking to establish or manage entities in Luxembourg. The website reflects a professional and consistent brand image with detailed service offerings and client testimonials, reinforcing its market credibility. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Analytics, and Google Tag Manager, ensuring a responsive and user-friendly experience. Hosting is managed by EuroDNS S.A., and the domain is secured with HTTPS and clientTransferProhibited status, though DNSSEC is not enabled. The site lacks a cookie consent mechanism and explicit security or incident response policies, which are areas for improvement in privacy compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and use of reCAPTCHA, but could enhance its posture by enabling DNSSEC and publishing security policies. No vulnerabilities or suspicious activities were detected. Overall, Creatrust presents a trustworthy and professional online presence suitable for its financial services audience. Strategically, Creatrust should focus on enhancing GDPR compliance by implementing cookie consent and publishing detailed security and incident response policies. Enabling DNSSEC would further strengthen domain security. These steps will improve user trust and regulatory adherence, supporting the company’s strong market position in Luxembourg’s financial services sector.

G

GenTwo AG

gentwo.com

0

GenTwo AG is a fintech company specializing in assetization and financial engineering, aiming to expand the investment universe by making all assets investable. The company targets financial intermediaries such as banks, hedge funds, asset managers, family offices, and digital investors, offering a unique platform called GenTwo PRO along with other financial technology solutions. The website presents a professional and modern digital presence, leveraging advanced web technologies including Nuxt.js and Vue.js, integrated with HubSpot for marketing and analytics. Security measures are robust, with HTTPS enforced and appropriate security headers in place, although explicit security policies and incident response details are not publicly available. The absence of WHOIS registration data is a notable concern, suggesting the need for further verification of domain ownership. Overall, the website demonstrates a high level of professionalism, content quality, and compliance with privacy regulations, positioning GenTwo as a credible player in the fintech sector.

E

Eidgenössische Finanzmarktaufsicht FINMA

finma.ch

0

The Eidgenössische Finanzmarktaufsicht FINMA is the Swiss federal financial market supervisory authority responsible for licensing, prudential supervision, and enforcement in the Swiss financial sector. It serves a broad audience including banks, insurance companies, asset managers, and the general public. The website is professionally designed, content-rich, and provides extensive regulatory information and resources. Technically, the site uses modern JavaScript frameworks and Matomo analytics, indicating a mature digital infrastructure. Security posture is strong with HTTPS and no visible vulnerabilities, though improvements in security headers and privacy policies are recommended. Overall, the site is trustworthy and authoritative, reflecting its role as a national regulator.

T

TAL Services Limited

tal.com.au

0

TAL Services Limited is a leading Australian life insurance provider offering a range of products including life insurance, income protection, total and permanent disability (TPD), and critical illness cover. The company operates both direct-to-consumer and through adviser partners, serving a broad Australian audience. It is part of the Dai-ichi Life Group, a major international insurance conglomerate. The website reflects a strong market position with clear branding, comprehensive product offerings, and a focus on customer engagement through tools like online quotes and calculators. Technically, the website is built on the Sitecore CMS platform and leverages modern web technologies including jQuery, Bootstrap, and multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, Facebook Pixel, and Hotjar. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. From a security perspective, the site enforces HTTPS with a DigiCert SSL certificate and employs various tracking and marketing scripts responsibly. However, explicit security headers are not clearly visible in the HTML, and there is no public vulnerability disclosure or incident response contact information. The WHOIS data is limited due to Australian domain policies but does not raise significant trust concerns given the professional nature of the site and its corporate affiliations. Overall, TAL's website demonstrates a mature digital presence with strong business credibility and good security posture, though improvements in cookie consent and transparency around security disclosures could enhance compliance and trust.

S

Stichting Erkend Hypotheekadviseur

mijnerkendfinancieeladviseur.nl

0

Stichting Erkend Hypotheekadviseur (SEH) operates as a professional certification and community organization for financial advisors in the Netherlands. Established in 1998, SEH provides a quality mark for financial advisors, supporting them with educational resources, events, a professional magazine, and a community platform. The website reflects a mature digital presence with modern technologies such as SvelteKit, MapLibre GL JS, and integrated cookie consent via Cookiebot, ensuring GDPR compliance. SEH maintains a strong market position as a trusted quality mark in the Dutch financial advisory sector, supported by transparent business information and active social media engagement. Security posture is robust with HTTPS, security headers, and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, secure, and user-friendly, serving its target audience effectively.

G

Global Payments Europe

globalpayments.com

0

Global Payments Europe operates a comprehensive worldwide commerce platform delivering payment technology and software solutions to millions of customers across over 100 countries. The company is positioned as a leading global payment processor with a strong market presence and a broad portfolio of services including omnichannel payments, point of sale solutions, and industry-specific software. The website reflects a mature digital infrastructure with professional design, good mobile optimization, and extensive use of analytics and marketing tools integrated with GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforcement and advanced fraud prevention technologies mentioned, though explicit security headers and incident response contacts are not visible. WHOIS data is unavailable, which limits domain registration trust analysis but the overall business credibility and branding consistency support legitimacy.

S

Sequoia

schf.com

0

Sequoia Heritage operates as a prominent investment and partnership firm, positioning itself as the partner of choice for ambitious builders. The website reflects a mature and established business with a focus on long-term strategic partnerships and capital investment. The business model centers on venture capital and private equity services, supported by a strong parent company, Sequoia Capital, and related subsidiaries. The site content is professionally presented, targeting investors and business partners in the finance sector. Technically, the website is built on WordPress with modern libraries and SEO optimizations, though some improvements in security headers and cookie compliance are recommended. The security posture is adequate with HTTPS and domain protections but lacks advanced DNS security and explicit security policies. Overall, the site is trustworthy and professional, with a low risk profile but room for enhanced compliance and security transparency.

E

EWAY Payments Pty Ltd

eway.io

0

EWAY Payments Pty Ltd operates the website eway.io, providing a secure and reliable online payment gateway platform primarily targeting Australian businesses and merchants. The company, founded in 2015, offers services that facilitate credit card payment processing from any device, positioning itself as an established player in the finance sector. The website demonstrates a professional design with good SEO practices and a moderate to fast technical infrastructure leveraging WordPress and various marketing and analytics tools. Security posture is generally good with HTTPS enabled, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is currently weak due to the absence of explicit privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy of the site.

L

LawPay

lawpay.com

0

LawPay is a specialized payment processing company serving the legal industry, providing secure and compliant solutions for law firms to accept credit card and eCheck payments. Positioned as a leader in legal payment solutions, it benefits from its affiliation with Global Payments Inc., enhancing its market credibility and reach. The website reflects a mature digital presence with modern technologies such as React and integrations with marketing and analytics platforms like Marketo and Google Tag Manager. Security is robust, with HTTPS enforcement and multiple security headers, though there is room for improvement in incident response transparency and vulnerability disclosure. Overall, LawPay demonstrates a strong security posture and business credibility, making it a trusted service provider in its niche.