Security Directory

K

Kaufland

kaufland.hr

0

Kaufland.hr is the Croatian online presence of Kaufland, a large retail supermarket chain operating in Croatia since at least 2000. The website offers weekly promotions, recipes, and product information targeting general consumers in Croatia. The site is professionally designed with consistent branding and good user experience, optimized for mobile devices. Technically, the site uses modern marketing and analytics tools such as Google Tag Manager and Adobe Launch, and is likely built on Adobe Experience Manager. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security policies and vulnerability disclosure information. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the site is trustworthy and professional but could improve privacy compliance and security transparency.

A

A1 Hrvatska

a1.hr

0

A1 Hrvatska is a leading telecommunications provider in Croatia offering a comprehensive range of services including mobile phones, mobile tariffs, internet, and television. The website reflects a mature digital presence with consistent branding and a focus on consumer telecommunications services. The technical infrastructure is built on the Liferay CMS platform and integrates multiple modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, Visual Website Optimizer, and Exponea, indicating a sophisticated approach to user engagement and data-driven marketing. Security posture is strong with HTTPS enforced and use of security tokens and reCAPTCHA, although explicit security policies and vulnerability disclosures are not published on the homepage. Privacy compliance is moderate due to the absence of clearly accessible privacy and cookie policies, though a cookie consent mechanism is implemented. Overall, the website is professional, trustworthy, and safe for general audiences.

M

Maistra d.d.

maistra.com

0

Maistra d.d. is a leading Croatian hospitality company operating a portfolio of hotels, resorts, and campsites primarily in Rovinj, Vrsar, Dubrovnik, and Zagreb. The company is part of the Adris Group and targets tourists seeking premium accommodation and unique experiences in Croatia. The website offers comprehensive booking services, loyalty programs, and curated travel experiences, positioning Maistra as a prominent player in the Croatian tourism market. Technically, the website is built using modern frameworks such as Hugo and Vue.js, with integrations for analytics and error monitoring, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement and security headers, although public security policies and incident response contacts are not disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is a notable anomaly but does not significantly detract from the overall legitimacy given the professional presentation and external trust signals. Overall, Maistra's website demonstrates a high level of professionalism, technical sophistication, and user experience suitable for a large hospitality enterprise.

R

Republic of Croatia Government

gov.hr

0

The website gov.hr serves as the official portal for the Government of the Republic of Croatia, providing citizens with access to information and a variety of e-government services. It is positioned as the primary digital gateway for Croatian residents to interact with government services, including profile management and official communications. The portal targets Croatian citizens and residents, offering a centralized platform for public service delivery. Technically, the site employs a modern technology stack including jQuery, Google Analytics, Google Tag Manager, and Google reCAPTCHA Enterprise, indicating a mature digital infrastructure. Accessibility is a strong focus, with features tailored for vision impaired and dyslexic users, and the site is mobile optimized with good SEO practices. From a security perspective, the site enforces HTTPS and integrates security measures such as reCAPTCHA. However, there is room for improvement in implementing security headers and publishing explicit security policies or vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. Overall, the site demonstrates a high level of trustworthiness and professionalism consistent with a government entity. Strategic recommendations include enhancing security header implementation, publishing privacy and security policies, and maintaining regular security audits to uphold compliance and user trust.

FastModel Sports is a well-established provider of basketball play diagramming and coaching software, targeting high school and small college coaches. The company operates an e-commerce platform built on Shopify, offering software products and playbook tools. The website is professionally designed with consistent branding and good user experience, reflecting its market leader position in the sports coaching software niche. Technically, the site leverages modern web technologies and integrates multiple analytics and marketing tools, hosted on AWS infrastructure with Shopify CMS. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates a mature digital presence aligned with its business goals and ownership by Hudl, a recognized parent company.

A

Agile Sports Technologies, Inc.

integratedbionics.com

0

Hudl, operated by Agile Sports Technologies, Inc., is a leading sports technology company specializing in athlete performance tracking solutions. Their Titan GPS product integrates hardware and software to provide coaches and teams with actionable insights through GPS data combined with video and stats. The company targets a broad audience including club, high school, collegiate, and professional sports organizations, positioning itself as a comprehensive performance platform. Technically, the website is built on Craft CMS, uses modern JavaScript libraries, and integrates marketing and analytics tools such as Google Tag Manager and Marketo. The site is well-optimized for performance, mobile responsiveness, and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers are not fully confirmed. The WHOIS data is unavailable, likely due to privacy or registry restrictions, but the website's professional presentation and consistent branding support its legitimacy. Overall, Hudl demonstrates a mature digital presence with a focus on user experience and compliance.

H

Hudl

balltime.com

0

Hudl is a leading sports technology company specializing in AI-powered video analysis and performance tools for volleyball and other sports. Their platform offers advanced analytics, video breakdowns, and recruiting tools designed to accelerate team development and athlete exposure. The website demonstrates a mature digital presence with professional design, multimedia content, and integrated marketing technologies. Security posture is strong with HTTPS, security headers, and privacy compliance mechanisms in place. However, WHOIS data is unavailable, limiting domain registration trust verification. Overall, Hudl presents a credible and trustworthy business with a robust technical infrastructure.

H

Hudl

statsbomb.com

0

Hudl Statsbomb is a leading provider of advanced football data and analytics solutions, serving professional teams and data science communities worldwide. Their platform offers granular event data, advanced modelling such as expected goals (xG), on-ball value (OBV), and aerial performance systems (HOPS), integrated seamlessly with the broader Hudl product suite. The website demonstrates a mature digital presence with modern technologies including Craft CMS, Google Tag Manager, and OneTrust for cookie consent, supporting a professional user experience with rich multimedia content and clear calls to action. Security posture is solid with HTTPS and form protections, though explicit security headers and a visible privacy policy are absent. WHOIS data is unavailable, likely due to registry restrictions, but the overall branding and content strongly support legitimacy. The site is well-optimized for SEO, accessibility, and mobile use, targeting sports professionals and analysts seeking actionable football insights.

R

Realtrack Systems SL

wimucloud.com

0

Wimucloud.com is a technology-focused website representing the Wimu Fit product by Realtrack Systems SL, a company founded in 2017. The site appears to offer fitness tracking solutions leveraging real-time tracking technology. The technical infrastructure is based on JavaServer Faces with PrimeFaces UI components, hosted likely on AWS infrastructure. The site uses Google Analytics and Google Tag Manager for user tracking but lacks visible privacy or cookie policies, which impacts compliance. Security posture is moderate with domain registration protections but missing HTTP security headers and DNSSEC. No contact information or social media presence is visible, limiting direct user engagement. Overall, the site is functional but basic in content and security maturity.

Schweizerische Ärzte-Krankenkasse (SAEKK) is a well-established Swiss cooperative specializing in healthcare insurance services tailored for medical professionals. With a history spanning over 125 years, SAEKK offers key services including income loss insurance (Taggeld), basic and supplementary health insurance, preventive coaching, and manages a significant real estate portfolio. The organization targets medical practitioners in Switzerland, positioning itself as a trusted insurer with a cooperative business model emphasizing member welfare. Technically, the website employs modern frameworks such as Next.js and React, integrates Vimeo for video content, and uses Google reCAPTCHA v3 for bot protection, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and secure form handling, though a dedicated security policy and incident response contact are absent. Overall, the site demonstrates high professionalism, excellent content quality, and strong trust indicators, making it a credible and reliable resource for its audience.

V

Versicherung der Schweizer Ärzte Genossenschaft

va-genossenschaft.ch

0

Versicherung der Schweizer Ärzte Genossenschaft is a Swiss cooperative insurance provider specializing in pension and risk protection products tailored for medical professionals. Established in 1926, it holds a niche market position with a strong focus on the healthcare sector. The website reflects a mature digital presence with professional design, clear navigation, and relevant content targeting Swiss doctors. Technically, the site is built on WordPress with modern plugins and tracking tools, offering moderate performance and good mobile optimization. Security measures include HTTPS, reCAPTCHA on forms, and no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site demonstrates high business credibility with multiple trust signals and comprehensive contact options.

B

bebold sàrl

bebold.ch

0

bebold sàrl is a Swiss-based digital agency specializing in web development, marketing, and design services primarily serving clients in Martigny and Lausanne. Their website presents a professional image with detailed service offerings across design, web, and marketing domains, targeting businesses seeking comprehensive digital solutions. The company positions itself as a creative and functional partner for digital projects, emphasizing user experience and strategic marketing. Technically, the website employs modern JavaScript libraries, Google Analytics for tracking, Google reCAPTCHA for form security, and a cookie consent mechanism via tarteaucitron.io, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and design quality. Security posture is solid with HTTPS enforced and reCAPTCHA integration, but lacks visible security headers and published security policies, which are areas for improvement. Privacy compliance is partial due to the absence of a privacy policy and terms of service, though cookie consent is implemented. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and security documentation.

C

CH Media

chmedia.ch

0

CH Media is a leading Swiss media company with a strong presence in the German-speaking region, operating approximately 70 brands across print, radio, TV, streaming, and digital platforms. Founded in 1836, it is a well-established family-run business emphasizing independent journalism and regional engagement. The website reflects a professional and comprehensive digital presence, showcasing their brands, services, and career opportunities. Technically, the site is built on Drupal 10, uses modern JavaScript libraries, and integrates Piwik PRO for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements are recommended in security headers and cookie consent mechanisms. Overall, the site is trustworthy, well-branded, and compliant with GDPR privacy policies.

The Discover LBJ website serves as the official digital archive for the Lyndon B. Johnson Presidential Library, providing access to a wide range of archival collections, digitized materials, and research resources. It targets researchers, historians, students, and the general public interested in presidential history and LBJ's legacy. The site is government-operated under the National Archives and Records Administration, positioning it as a trusted and authoritative source in its niche. Technically, the website is built on Drupal CMS with modern integrations such as React and Gutenberg editor components. It leverages Cloudflare for DNS and likely CDN services, ensuring moderate performance and good mobile responsiveness. Accessibility and SEO optimizations are well implemented, contributing to a positive user experience. From a security standpoint, the site enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC, security headers, and a formal security policy or incident response contact, which are areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Analytics usage includes Google Analytics and Tag Manager, indicating moderate user tracking. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in security and privacy compliance that, if addressed, would enhance its posture and user trust.

T

The University of Virginia

virginia.edu

0

The University of Virginia website serves as the official digital presence of a major public university in the United States. It offers comprehensive information about academic programs, admissions, research initiatives, student life, and community engagement. The site targets prospective and current students, faculty, staff, alumni, and visitors, positioning itself as a top educational institution in Virginia with a strong reputation for academic excellence and innovation. The content is rich, professionally designed, and well-structured, supporting a positive user experience across devices. Technically, the website employs a modern technology stack including jQuery, Font Awesome, Typekit fonts, and various third-party analytics and marketing tools such as Google Tag Manager, Facebook Pixel, Crazy Egg, and Parsely. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured content. However, there is room for improvement in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS with strong SSL configuration and avoids exposing sensitive data. While no critical vulnerabilities were detected, the absence of explicit security headers and a vulnerability disclosure policy suggests opportunities to strengthen the security posture. The WHOIS data is unavailable due to .edu domain restrictions, but the domain's legitimacy is supported by its institutional nature and consistent branding. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity, with minor gaps in privacy compliance and security best practices. Strategic enhancements in these areas would further solidify its position as a secure and user-centric educational platform.

The Occupational Safety and Health Administration (OSHA) is a U.S. federal government agency under the Department of Labor dedicated to ensuring safe and healthy working conditions by setting and enforcing standards and providing training, outreach, education, and assistance. The website serves as a comprehensive resource for employers, workers, and safety professionals, offering regulatory information, enforcement data, training resources, and contact channels. It holds a strong market position as the authoritative source for occupational safety and health in the United States. Technically, the website is built on Drupal 10 with modern frameworks such as Bootstrap and integrates Google services for analytics and translation. It demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate likely due to the extensive content and third-party integrations. The site uses HTTPS with strong SSL configuration and includes security headers, but could enhance security posture by adding more explicit headers and publishing vulnerability disclosure information. Security-wise, OSHA's website shows a mature security posture with no visible vulnerabilities or exposed sensitive data. However, it lacks a cookie consent mechanism and explicit incident response contact information, which are areas for improvement to align with privacy regulations and best practices. The WHOIS data is unavailable, which is typical for government .gov domains, but the domain's legitimacy is strongly supported by official branding and consistent government affiliation. Overall, the website is professional, trustworthy, and well-maintained, serving its public service mission effectively. Strategic recommendations include implementing cookie consent, publishing security policies and incident response contacts, and enhancing security headers to further strengthen trust and compliance.

The Mine Safety and Health Administration (MSHA) is a U.S. federal government agency under the Department of Labor dedicated to ensuring safe and healthful working conditions for miners. The website serves as a comprehensive portal for mine safety regulations, training programs, compliance assistance, enforcement data, and fatality reports. It targets miners, mine operators, government officials, and the public, providing authoritative information and resources. The site is well-branded with official government trust signals and uses a Drupal CMS infrastructure integrated with Google Tag Manager for analytics. Technically, the website is modern, mobile-optimized, and accessible, with a clear navigation structure and good SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and privacy policies are lacking. The WHOIS data is minimal due to the .gov domain nature, but the domain is legitimate and consistent with a government entity. Analytics usage is moderate, with some tracking via Google Tag Manager but no visible cookie consent mechanisms. Overall, the site is trustworthy and professional, though improvements in privacy compliance and explicit security headers would enhance its security and user trust. The current lapse in appropriations notice indicates a temporary pause in updates but does not affect the site's core functionality or legitimacy.

S

Schweizer Bauernverband

agrimpuls.ch

0

Agrimpuls is a service platform operated by the Schweizer Bauernverband (Swiss Farmers Association) offering agricultural internships domestically and abroad, labor law information, language stays, packaging materials for direct marketing, and related services. The website is well-structured, professionally designed, and targets agricultural professionals and students interested in practical agricultural experience. Technically, the site is built on TYPO3 CMS, uses modern web technologies including Bootstrap and Slick Slider, and integrates Google Analytics for visitor tracking. The site is mobile-optimized and accessible with clear navigation and content relevance. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers are not explicitly detected and no public security or incident response policies are published. WHOIS data aligns well with the business, confirming legitimacy. Overall, the site demonstrates good digital maturity and business credibility with room for security enhancements.

S

Schweizer Bauernverband

agriexpert.ch

0

Agriexpert operates as the legal and fiduciary department of the Schweizer Bauernverband (Swiss Farmers' Association), providing specialized services in agriculture-related legal, tax, real estate, and business planning domains. With approximately 40 employees, it serves agricultural clients in Switzerland, offering a comprehensive portfolio including valuation, legal advice, tax declarations, trust services, and real estate brokerage. The website reflects a mature digital presence with a professional design and clear navigation, targeting Swiss agricultural stakeholders. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and SEO tools such as Yoast SEO. It integrates Google Analytics for visitor tracking and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and accessible, with good performance metrics. From a security perspective, the website uses HTTPS and basic security best practices but lacks explicit security headers and incident response contact details. No vulnerabilities or suspicious domains were detected. WHOIS data confirms domain legitimacy and alignment with the business entity, enhancing trustworthiness. Overall, Agriexpert's website demonstrates a solid business and technical foundation with good privacy compliance and a trustworthy online presence. Minor improvements in security headers and incident response transparency could further strengthen its posture.

S

Schweizer Bauernverband

agriprof.ch

0

Agriprof.ch is a service platform operated by the Schweizer Bauernverband (Swiss Farmers' Association) focused on providing services and support for agricultural vocational education in Switzerland. The website targets stakeholders involved in agricultural professional training including vocational organizations, educational providers, and governmental bodies. It offers information and resources related to vocational training programs and acts as a partner in the Swiss agricultural education ecosystem. The site is well-branded and consistent with its parent organization, reflecting a medium-sized entity with a clear educational mission. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Google Analytics for tracking and responsive design for mobile users. The site demonstrates good SEO practices, accessibility, and performance. Cookie consent mechanisms and privacy policies are implemented, indicating a baseline compliance with GDPR requirements. However, some security best practices such as explicit security policies and incident response contacts are missing. From a security perspective, the site uses HTTPS with an excellent SSL configuration and no visible vulnerabilities or exposed sensitive data. The absence of advanced security headers and a formal vulnerability disclosure policy suggests room for improvement. The WHOIS data aligns well with the website's claims, reinforcing legitimacy and trustworthiness. Overall, agriprof.ch presents a professional, secure, and trustworthy online presence for its niche educational services. Strategic improvements in security policy transparency and incident response readiness would enhance its security posture and compliance maturity.

S

Schweizer Bauernverband

agristat.ch

0

The Schweizer Bauernverband (Swiss Farmers' Union) operates the Agristat service, which is the official statistical service for Swiss agriculture. Agristat provides comprehensive statistical data and analyses related to Swiss land and food economy, serving governmental bodies, agricultural organizations, and the public. The organization is well-established with a strong network including federal offices and industry partners, supported by a performance contract with the Swiss Federal Statistical Office. The website reflects a professional and consistent brand image, offering detailed content and resources relevant to its audience. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and analytics tools such as Google Analytics and Microsoft Clarity. It demonstrates good mobile optimization, accessibility, and SEO practices. The site uses HTTPS and cookie consent mechanisms, indicating attention to privacy compliance. However, some security headers are not explicitly present, and no public security or incident response policies are published. From a security perspective, the site shows a solid posture with no visible vulnerabilities or exposed sensitive data. The domain registration aligns well with the organization's identity, enhancing trustworthiness. The site is free from WAF blocking or content restrictions, allowing full content access. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility. Strategic recommendations include enhancing security headers, publishing a formal security policy and incident response contacts, and considering a vulnerability disclosure program to further strengthen trust and security posture.

A

Agrisano

agrisano.ch

0

Agrisano is a Swiss insurance provider specializing in tailored insurance solutions for farmers and agricultural workers. The company offers a comprehensive range of services including basic health insurance, supplementary insurance, pension plans, and employee global insurance. The website is professionally designed using TYPO3 CMS and targets the German-speaking Swiss agricultural community. The digital infrastructure includes privacy-conscious analytics via Matomo and Google Analytics, with a cookie consent mechanism in place. Security posture is solid with HTTPS and some security best practices observed, though there is room for improvement in security headers and incident response disclosures. Overall, the website is trustworthy, well-branded, and serves its niche market effectively.

S

Schweizer Bauernverband

sbv-usp.ch

0

The Schweizer Bauernverband (SBV) is the umbrella organization representing Swiss agriculture, focusing on supporting farming families through advocacy, market information, communication, and various services. The website reflects a well-established non-profit entity with a clear market position as the leading agricultural association in Switzerland. It offers comprehensive services including labor mediation, statistical publications, and policy guidance. The digital presence is mature, leveraging TYPO3 CMS, modern web technologies, and structured data to enhance SEO and user experience. Social media integration and multilingual support further demonstrate digital maturity. From a security perspective, the site employs HTTPS with good SSL configuration and includes cookie consent mechanisms, indicating compliance with privacy regulations such as GDPR. However, there is no explicit security policy or incident response information published, and security headers appear to be missing or not detected, which could be improved. No vulnerabilities or suspicious content were found, and the WHOIS data aligns well with the organization's identity, supporting legitimacy. Overall, the website is professional, trustworthy, and serves its audience effectively, though it could benefit from enhanced security disclosures and technical hardening. The risk profile is low, with no critical issues detected, making it a reliable source for stakeholders in Swiss agriculture.

N

Nanosystems S.r.l.

nanosystems.com

0

Nanosystems S.r.l. is an Italian technology company specializing in software solutions for IT professionals and businesses, focusing on remote support, backup, and IT management. Their key products include Supremo for remote desktop control, Uranium Backup for data protection, and Supremo Console for IT management. The company targets IT administrators and managed service providers with flexible and affordable software solutions. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and scripts, including GDPR-compliant cookie management and Google Tag Manager integration. Security posture is solid with HTTPS and bot protection, though some security headers and explicit policies are missing. The WHOIS data is unavailable, which raises some concerns about domain registration transparency, but the overall business credibility is supported by consistent branding and active social media channels. Strategic recommendations include enhancing security transparency and verifying domain registration details.

C

Cybersecurity and Infrastructure Security Agency

americabydesign.gov

0

America by Design is an official U.S. government initiative led by the Cybersecurity and Infrastructure Security Agency, aimed at modernizing and improving the design and user experience of government digital interfaces. The website serves as a National Design Studio initiative platform, promoting a presidential executive order to upgrade government digital services to be more user-friendly and modern. The target audience includes U.S. citizens and residents who interact with government digital services. Technically, the website is built using modern frameworks such as React and Next.js, hosted on Cloudflare, and optimized for performance and mobile devices. Security posture is good with HTTPS enforced and domain transfer protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional, trustworthy, and safe for general audiences.

N

New Zealand Tech Alliance

techalliance.nz

0

The New Zealand Tech Alliance is a coalition of over 20 independent technology associations and more than 1000 member organizations representing over 100,000 employees in New Zealand's tech sector. Coordinated by NZTech, it serves as a unified voice to promote and advance the technology ecosystem in New Zealand. The website is built on WordPress with a modern tech stack including Bootstrap and jQuery, providing a good user experience and mobile optimization. However, it lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the domain registration is consistent and legitimate, supporting the business's credibility.

D

Digital Identity NZ

digitaltrusthui.co.nz

0

Digital Trust Hui Taumata is a New Zealand-based annual conference focused on digital identity and trust ecosystems, co-created by NZTech and Digital Identity New Zealand (DINZ). The website serves as an information hub for the event, providing details on partnership opportunities, news updates, photo galleries, and registration. The target audience includes stakeholders in New Zealand's digital identity and trust sectors. The business operates as an event organizer and ecosystem facilitator with a strong local market position as a leading digital trust conversation platform.

A

Alitu

alitu.com

0

Alitu is a specialized SaaS company providing an all-in-one podcast creation platform that simplifies and automates the technical aspects of podcast production. Their service targets podcasters who want to produce and publish episodes quickly without technical headaches. The website is professionally designed with excellent content quality and clear navigation, supporting a strong user experience. Technically, the site leverages modern web technologies including Webflow CMS, multiple analytics and marketing tools, and is hosted with Cloudflare DNS. Security posture is good with HTTPS and domain locking, though DNSSEC is not enabled and privacy policies are not visible, indicating room for compliance improvement. Overall, the business appears credible and mature with a long-established domain and positive trust signals such as customer testimonials and third-party reviews.

D

diagraf GmbH

diagraf.ch

0

diagraf GmbH is a small graphic design atelier based in Bern, Switzerland, specializing in corporate design, branding, illustrative graphics, and web design services. The company targets brands and businesses seeking professional visual communication solutions. The website presents a professional portfolio with clear navigation and detailed references, positioning diagraf as a trusted local design service provider. Technically, the site uses modern web technologies including Svelte and Craft CMS, delivering a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS enforced but lacks security headers and published security policies. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

N

National Restaurant Association

restaurant.org

0

The National Restaurant Association operates as a leading membership organization representing the restaurant and foodservice industry in the United States. Their website provides comprehensive resources including advocacy, education, research, membership benefits, and events. The association targets restaurant industry professionals, suppliers, and stakeholders, positioning itself as a key industry voice with a long-standing history since 1996. The business model centers on membership services and industry support, with multiple partner and subsidiary sites enhancing its ecosystem. Technically, the website is built on the Kentico CMS platform and integrates modern marketing and analytics tools such as Google Tag Manager, Marketo Munchkin, Microsoft Clarity, Facebook Pixel, and LinkedIn Insight Tag. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The infrastructure is professionally maintained with HTTPS enforced and secure login mechanisms. From a security perspective, the site shows a solid posture with HTTPS, client transfer prohibited domain status, and no visible vulnerabilities or exposed sensitive data. However, it lacks DNSSEC and explicit security headers, and does not implement a cookie consent mechanism, which are areas for improvement. No incident response or security policy pages were found, indicating potential gaps in transparency. Overall, the website is trustworthy, professional, and well-aligned with its business goals. The domain registration data supports legitimacy with consistent and long-term ownership. Recommendations include enhancing security headers, enabling DNSSEC, adding cookie consent for GDPR compliance, and publishing security policies to strengthen trust and compliance.

RestaurantOwner.com is a well-established online platform dedicated to supporting independent restaurant owners and their teams through comprehensive business plans, resources, and training solutions. The website offers a subscription-based membership model providing access to a rich library of content including financial guidance, operations checklists, leadership training, marketing strategies, staffing tools, and startup growth advice. The platform also features an AI assistant named RObi to facilitate quick access to resources. With a community of over 76,000 members, RestaurantOwner.com positions itself as a leading resource in the hospitality sector for independent restaurateurs. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Font Awesome, and integrates third-party services including Google Analytics, Microsoft Clarity, Adobe Launch, and Vimeo for video content. The site is built on ColdFusion technology, indicated by .cfm URLs, and uses Cloudflare services for performance and security. The site is mobile-optimized with good SEO and accessibility practices, although some security headers could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policy and incident response information. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is unavailable from the queried source, which raises some concerns about domain registration transparency, but the professional presentation and active business presence mitigate these concerns. Overall, RestaurantOwner.com demonstrates a strong business and technical foundation with a good security posture. Strategic improvements in security headers, incident response transparency, and WHOIS data clarity would further enhance trust and compliance.

ServSafe International, operated under the National Restaurant Association Educational Foundation, provides internationally focused food safety training and certification programs. The website offers multilingual training and exam solutions tailored for the global hospitality and foodservice industry. The business is well established with a domain age of over a decade and clear association with a reputable parent organization. Technically, the site uses ASP.NET with common marketing and analytics tools such as Google Tag Manager and Marketo. While the site is functional and professionally designed, it lacks some modern security best practices such as DNSSEC and security headers. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism despite tracking scripts. Contact information is limited to a contact form with no direct emails or phone numbers visible. Overall, the site is trustworthy and serves its niche well but could improve security and privacy transparency.

N

National Restaurant Association Educational Foundation

servsuccess.com

0

ServSuccess is a comprehensive restaurant industry training and certification platform operated under the National Restaurant Association Educational Foundation. It offers career development opportunities through online courses and professional certifications tailored for restaurant workers, operators, and educators. The website positions itself as a leading solution in the hospitality sector with strong industry partnerships and recognized certifications. Technically, the site uses modern web technologies including Kentico CMS, Bootstrap, and integrates marketing and analytics tools such as Marketo and Google Analytics. The site is mobile optimized and provides a professional user experience with clear navigation and rich content. Security posture is good with HTTPS enforced and domain transfer protections, though improvements like DNSSEC and explicit security policies could enhance trust. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high business credibility and trustworthiness with no signs of suspicious or adult content.

S

ServSafe

servsafe.com

0

ServSafe is a prominent provider of food safety training and certification programs targeting food service professionals, instructors, and administrators. Their offerings include Food Manager, Food Handler, Alcohol, Allergens, Academic, and Workplace training, positioning them as a leader in the food safety education sector in the United States. The website is professionally designed with clear navigation and consistent branding, supporting a large-scale educational business model focused on online certification and training services. Technically, the site leverages a mix of modern front-end frameworks like Bootstrap and jQuery, integrated with ASP.NET WebForms on the backend, and employs various marketing and analytics tools such as Google Analytics, Microsoft Clarity, Marketo, and OneTrust for cookie consent management. The site demonstrates good mobile optimization and accessibility compliance, although performance is moderate due to the complexity of scripts and integrations. From a security perspective, the website enforces HTTPS and includes CSRF protections in forms, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR considerations. However, no explicit incident response or vulnerability disclosure policies were found. Overall, the website presents a trustworthy and professional front for ServSafe's business operations. The absence of WHOIS registration data slightly reduces trust but is likely due to privacy protection. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving contact information visibility to further strengthen trust and compliance.

ServSafe Brands, operated by National Restaurant Association Solutions, LLC, is a leading provider of training, certification, and benefits for professionals in the restaurant and hospitality industry. The website presents a comprehensive portfolio of brands including ServSafe, AHLEI, ServSuccess, and others, targeting career development and safety compliance in hospitality. The company positions itself as a market leader with a strong brand presence and a broad service offering tailored to hospitality professionals. Technically, the website employs modern marketing and analytics technologies such as Google Tag Manager, Microsoft Application Insights, and Marketo forms, built on the Kentico CMS platform. The site is well-structured, mobile-optimized, and demonstrates good SEO and accessibility practices. However, some security best practices like DNSSEC and security headers could be improved. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks explicit published security policies or incident response contacts. Privacy compliance is supported by a comprehensive privacy policy and terms of use, though no cookie consent mechanism was detected despite tracking scripts in use. Overall, the security posture is solid but could benefit from enhancements in security headers and transparency. The domain WHOIS data aligns well with the business claims, showing a consistent registration history and no privacy protection, indicating legitimacy. No blocking or WAF challenges were detected, allowing full content analysis. The site content is safe for general audiences, with no adult or questionable content detected.

A

American Hotel & Lodging Educational Institute

ahlei.org

0

The American Hotel & Lodging Educational Institute (AHLEI) operates a comprehensive hospitality education and certification platform, serving a global audience of hospitality professionals, educators, and students. The website offers a wide range of training programs, certification exams, academic resources, and international partnerships, positioning AHLEI as a leader in the hospitality education sector. The business model is primarily education and certification services supported by e-commerce for training materials and exams. Technically, the website leverages modern technologies including Kentico CMS, Microsoft Application Insights, Google Tag Manager, and marketing automation tools like Marketo, indicating a mature digital infrastructure. The site is well-optimized for mobile and accessibility, with strong SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy are absent. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve transparency around security and incident response. The domain WHOIS data for the subdomain is not separately available, which is typical for subdomains, and does not raise legitimacy concerns. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

The AHLA Foundation is a non-profit organization focused on strengthening the American hotel and lodging industry workforce through scholarships, training programs, mentorship, and anti-trafficking initiatives. The website presents a professional and content-rich platform targeting hospitality workers, donors, and industry partners. It offers clear navigation, donation mechanisms, and highlights partnerships with reputable organizations. Technically, the site uses WordPress CMS with common libraries such as jQuery and Font Awesome, and integrates analytics and monitoring tools like Google Tag Manager, Microsoft Clarity, and New Relic. Security posture is good with HTTPS and security headers implemented, though cookie consent mechanisms and explicit security policies are lacking. The absence of WHOIS data limits domain trust assessment but the overall digital presence supports legitimacy.

H

High Altitude Research Stations Jungfraujoch and Gornergrat

hfsjg.ch

0

The High Altitude Research Stations Jungfraujoch and Gornergrat operate as a Swiss international foundation dedicated to supporting scientific research at high altitude locations. The foundation provides infrastructure and facilitates research projects primarily in the fields of atmospheric, environmental, and astronomical sciences. Their market position is specialized and niche, serving academic and research communities with unique facilities. The website reflects a professional and consistent brand image, targeting researchers and scientific institutions. Technically, the website is built on WordPress 6.4.7 with modern JavaScript libraries such as jQuery 3.7.1 and uses optimization plugins like Autoptimize. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. However, there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX requests, indicating some security awareness. However, the absence of explicit security headers and published security policies limits the overall security posture. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is trustworthy and professionally maintained, with a strong legitimacy score based on WHOIS data and business consistency. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing incident response policies, and maintaining regular updates to WordPress and plugins to ensure ongoing security and compliance.

P

Paul Scherrer Institute PSI

psi.ch

0

The Paul Scherrer Institute (PSI) is Switzerland's largest research center for natural and engineering sciences, focusing on Matter and Material, Energy and the Environment, and Human Health. It operates large-scale research facilities and provides proton therapy services, positioning itself as a leading institution in scientific research and healthcare. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting researchers, industry partners, patients, and the general public. Technically, the site is built on Drupal 10 with modern web technologies and integrates Matomo analytics with privacy-conscious configurations. Security posture is strong with HTTPS and privacy-respecting analytics, though explicit security policies and vulnerability disclosures are not evident. Overall, PSI demonstrates high business credibility and trustworthiness with transparent contact information and organizational details.

I

International Arctic Science Committee

iasc.info

0

The International Arctic Science Committee (IASC) is a non-governmental organization dedicated to fostering international cooperation in Arctic research. The website serves as a hub for Arctic scientists, policymakers, and stakeholders, providing information on working groups, capacity building programs, events, and news related to Arctic science. The organization positions itself as a key facilitator in Arctic research collaboration, with a focus on scientific advancement and community engagement. Technically, the website is built on Joomla CMS with modern front-end technologies including Bootstrap and jQuery. It employs HTTPS with good SSL configuration and uses Google Analytics for visitor tracking. The site is mobile-optimized and features a professional design with clear navigation, although accessibility features could be improved. The presence of CSRF tokens in forms indicates attention to security in user input handling. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not provide publicly accessible security policies or incident response information. Privacy compliance is limited due to the absence of explicit privacy and cookie policies, which is a notable gap given GDPR requirements. The WHOIS data is privacy protected, which is typical for NGOs, and does not raise immediate concerns. Overall, the website is trustworthy and professional, serving its niche audience effectively. Strategic improvements in privacy compliance, security headers, and incident response transparency would enhance its security posture and regulatory adherence.

S

Swiss Polar Institute

swisspolar.ch

0

The Swiss Polar Institute website serves as a professional platform supporting Swiss polar science through funding, collaboration, and outreach. It targets researchers and institutions involved in polar and high-altitude research, providing tailored services and funding opportunities. The website is well-structured, content-rich, and reflects the organization's mission clearly. Technically, it is built on WordPress with modern plugins and frameworks, offering good performance and mobile optimization. Security posture is adequate with HTTPS and some security plugins, but lacks published security policies and incident response information. Privacy compliance is partial, with a privacy and cookie policy present but no active cookie consent mechanism. Overall, the site is trustworthy and credible, with room for improvement in security transparency and privacy compliance.

Y

Your Next Agency

yournextagency.com

0

Your Next Agency is a professional digital agency based in Amsterdam, specializing in design, development, and optimization of digital solutions. The company targets businesses globally seeking high-quality digital services and positions itself as a top-class agency with a strong brand presence and client portfolio. The website reflects a modern, well-structured, and mobile-optimized digital infrastructure leveraging contemporary technologies such as JavaScript frameworks, Google Analytics, and Cloudflare DNS services. Security posture is solid with HTTPS enforced and domain transfer protections in place, though improvements can be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the website demonstrates high professionalism and trustworthiness suitable for its business domain.

B

Bolden

bolden.nl

0

Bolden is an independent creative agency based in Amsterdam, specializing in brand strategy, brand identity, digital experiences, and e-commerce design since 2010. The company has established a strong market position with multiple industry awards such as the FONK150 Best Small Design Agency. Their target audience includes brands and businesses seeking professional digital and branding services. The website reflects a high level of professionalism, excellent design quality, and clear navigation, supporting their market reputation. Technically, the website employs modern web technologies including JavaScript ES modules, lazy loading with Lozad.js, and Google Analytics with IP anonymization, indicating a mature digital infrastructure. The site is mobile-optimized and performs well, with good SEO and accessibility features. However, the CMS and hosting provider are not explicitly identified. From a security perspective, the site uses HTTPS with strong SSL configuration and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; while a privacy policy and terms of service exist (in Dutch), there is no cookie consent mechanism or explicit GDPR compliance details. Incident response and security policy pages are absent. Overall, the website presents a low risk profile with strong business credibility and technical implementation. Strategic improvements in privacy compliance and security transparency would enhance trust and regulatory adherence.

J

Jedes Alter zählt

jedesalter.ch

0

The website 'Jedes Alter zählt' is a German-language site likely focused on community or educational content, as suggested by the presence of the Edwiser Bridge plugin which integrates Moodle LMS with WordPress. The site uses WordPress CMS with the Astra theme, indicating a standard and modern technical infrastructure. However, the content is minimal with no explicit business descriptions, contact information, or privacy and security policies, which limits the ability to fully assess the business model or market position. Technically, the site is moderately optimized for mobile and uses common web technologies but lacks advanced SEO and accessibility features. Security posture is weak due to absence of security headers and policies, and the domain WHOIS is privacy protected, reducing transparency. Overall, the site appears to be a small-scale or community-oriented platform with room for improvement in compliance, security, and business transparency.

The National Science Advice Network is a Swiss government-affiliated non-profit organization that provides independent scientific advice on crisis prevention and management. It collaborates with major Swiss research and education institutions to offer expert guidance to policymakers at federal and cantonal levels. The network organizes thematic clusters focusing on Public Health, Cybersecurity, Disinformation, and International Challenges, acting as an impartial scientific advisory body. Technically, the website is built using modern frameworks such as Nuxt.js and Tailwind CSS, hosted on reliable infrastructure with good performance and mobile optimization. The use of Statamic CMS and integration with Cloudinary for media assets indicates a mature digital infrastructure. Analytics are handled via privacy-focused Fathom Analytics, reflecting a minimal user tracking approach. From a security perspective, the site enforces HTTPS and follows several best practices, though explicit security headers and policies are not fully visible. There is no visible cookie consent mechanism, which may impact GDPR compliance. No vulnerabilities or suspicious content were detected, and the domain registration aligns well with the organization's identity. Overall, the website presents a professional, trustworthy, and well-structured platform suitable for its government advisory role. Strategic improvements in privacy compliance and security policy transparency would enhance its posture further.

The Rete nazionale di consulenza scientifica is a Swiss national scientific advisory network that provides independent, interdisciplinary expertise to support political and administrative bodies at the federal and cantonal levels, especially in crisis situations. Coordinated by the Swiss Federal Chancellery and involving key Swiss scientific institutions, it serves as a trusted bridge between science and policy. The website reflects a professional, government-backed entity with clear multi-language support and authoritative content. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, uses Tailwind CSS for styling, and integrates cloud services like Cloudinary for media and Fathom Analytics for privacy-focused tracking. The site is performant, mobile-optimized, and accessible, with good SEO practices. From a security perspective, the site enforces HTTPS, employs standard security headers, and does not expose sensitive data. However, it lacks a cookie consent mechanism and formal security or incident response policies, which are recommended for compliance and transparency. No vulnerabilities or suspicious patterns were detected. Overall, the site is trustworthy, well-maintained, and aligned with its institutional mission. Strategic improvements include enhancing privacy compliance with cookie consent, publishing security policies, and providing data protection officer contact details to strengthen user trust and regulatory adherence.

The Réseau national suisse de conseil scientifique is a Swiss national scientific advisory network providing independent expertise to political leaders and administration at both cantonal and federal levels. It focuses on crisis prevention and management in critical areas such as health, cybersecurity, misinformation, and geopolitical risks. The network operates under the coordination of the Swiss Federal Chancellery and collaborates closely with major Swiss scientific institutions, ensuring high credibility and trust. Technically, the website is built using modern frameworks including Nuxt.js and Tailwind CSS, hosted on reliable cloud infrastructure with CDN support. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital presence. Analytics are implemented via privacy-respecting Fathom Analytics, with minimal user tracking. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and incident response contact information, which are recommended for enhanced security posture. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website represents a trustworthy and professional digital presence for a government-affiliated scientific advisory network, with recommendations to improve security headers and privacy compliance to further strengthen its posture.

S

Schweizer Wissenschaftsrat

wissenschaftsrat.ch

0

The Schweizer Wissenschaftsrat website serves as the official online presence of the Swiss Science Council, a government advisory body focused on science policy and research development in Switzerland. The site targets government officials, researchers, and the public interested in scientific policy matters. It offers information about the council's activities and provides contact avenues primarily through a contact form. Technically, the website is built using modern frameworks such as Nuxt.js and Tailwind CSS, ensuring a responsive and professional user experience. The presence of Google Tag Manager indicates moderate analytics usage, balanced with a cookie consent mechanism to address privacy concerns. Security-wise, the site enforces HTTPS and includes standard security headers, reflecting a good security posture. However, it lacks explicit privacy, terms of service, and security policies, which are recommended for full compliance and transparency. Overall, the website is trustworthy, professionally maintained, and aligned with its government entity status.

S

Swiss National Science Foundation (SNSF)

snf.ch

0

The Swiss National Science Foundation (SNSF) is a prominent Swiss government-funded foundation dedicated to supporting excellent research across universities and institutions in Switzerland. It covers a broad spectrum of scientific disciplines and plays a pivotal role in shaping the national research landscape. The website reflects a professional, well-structured digital presence aimed at researchers, academic institutions, and policy makers. It offers comprehensive information on funding schemes, research initiatives, and organizational structure. Technically, the website leverages modern web technologies including Next.js and React, with integration of Google Analytics and Tag Manager for data insights. The site is hosted on reliable infrastructure with media assets served via Google Cloud Storage, ensuring fast performance and excellent mobile optimization. Security best practices are observed with HTTPS enforcement and a robust Content Security Policy. From a security standpoint, the site demonstrates a strong posture with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit privacy and cookie policies, as well as incident response and vulnerability disclosure information, which are recommended for enhanced compliance and transparency. The domain WHOIS data aligns well with the organization's identity, confirming legitimacy and trustworthiness. Overall, the SNSF website is a high-quality, trustworthy platform that effectively serves its target audience. Strategic improvements in privacy compliance and security transparency would further strengthen its position.