Security Directory

L

Le Monde

lemonde.fr

0

Le Monde is a prominent French media company providing comprehensive news coverage and analysis to a broad French-speaking audience. The website serves as a digital platform for delivering news, opinion pieces, and multimedia content, supported by a subscription and advertising business model. It holds a strong market position as one of France's leading newspapers with a significant digital presence. Technically, the website employs modern web technologies including JavaScript frameworks, advanced analytics tools, and a consent management platform to ensure GDPR compliance. The site is well-optimized for mobile and desktop users, with good performance and accessibility standards. From a security perspective, Le Monde demonstrates a mature posture with HTTPS enforcement, robust security headers, and privacy-conscious cookie consent mechanisms. However, there is room for improvement in publishing explicit security policies and vulnerability disclosure channels. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable source of news and information. Strategic recommendations include enhancing transparency around security policies and incident response, and maintaining vigilance on third-party script security.

A

Africa Business News Pty. Ltd.

cnbcafrica.com

0

CNBC Africa is a prominent media platform delivering business and finance news focused on the African continent. It targets business professionals, investors, and entrepreneurs interested in African markets, providing real-time market data, video content, and insightful analysis. The website demonstrates a mature digital infrastructure using modern web technologies such as React and Next.js, ensuring a responsive and user-friendly experience across devices. Security posture is strong with HTTPS enforcement and standard security headers, although there is room for improvement in incident response transparency and vulnerability disclosure. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. However, the absence of WHOIS registration data introduces some uncertainty about domain legitimacy, warranting further verification. Overall, CNBC Africa presents a professional, trustworthy, and content-rich platform with a solid business model in the media sector.

The website www.reuters.com is currently inaccessible due to a security challenge page that blocks content access via a captcha mechanism. This prevents extraction of meaningful business, technical, or security information from the site. The WHOIS lookup for the domain also failed to return any registration details, indicating either privacy protection or registry-level blocking of WHOIS data. Consequently, no metadata, contact information, or business details could be identified. The site appears to employ bot mitigation services, but this also limits external analysis capabilities. From a technical perspective, the site uses external captcha delivery scripts to enforce access control, but no other technologies or CMS platforms could be identified from the minimal HTML content. Security headers, SSL configuration, and other best practices cannot be assessed due to lack of accessible content. The security posture is difficult to evaluate given the blocking mechanisms, but the presence of a WAF or bot protection suggests an emphasis on security. However, the inability to verify WHOIS data and absence of visible policies or contact information lowers trust and compliance confidence. Overall, the site is rated low for analysis purposes due to content blocking and missing WHOIS data. Strategic recommendations include enabling public access for security and compliance audits, publishing clear privacy and security policies, and ensuring WHOIS data transparency to improve trustworthiness.

The Washington Post is a leading American news media organization established in 1877, providing comprehensive news coverage, investigative journalism, and multimedia content across various sectors including politics, business, technology, and lifestyle. The website serves a broad general audience with a subscription and advertising-based business model, maintaining a strong market position as a reputable national newspaper and digital news outlet. Technically, the site leverages modern web frameworks such as Next.js and React, integrates advanced analytics and consent management tools, and demonstrates good performance and mobile optimization. Security posture is robust with HTTPS enforcement, privacy compliance mechanisms, and use of industry-standard advertising and tracking technologies, although explicit incident response contacts and vulnerability disclosure mechanisms are not publicly evident. Overall, the site presents a professional, trustworthy, and well-maintained digital presence aligned with its business objectives.

T

TechCrunch

techcrunch.com

0

TechCrunch is a leading online media company specializing in technology news, startup coverage, and venture capital funding insights. Established in 2005, it has grown into a large, reputable platform serving technology enthusiasts, investors, and professionals globally. The website offers a broad range of services including news articles, podcasts, newsletters, and industry events such as TechCrunch Disrupt. Its market position is strong, supported by consistent branding and high-quality content.

The Economist is a globally recognized media organization founded in 1843, specializing in trusted daily reporting and in-depth analysis of politics, economics, business, and technology. The website serves a broad general audience with a business model based on subscriptions and advertising, offering articles, podcasts, and videos. The brand maintains consistent and professional digital presence with strong trust indicators including verified social media profiles and structured data markup. Technically, the site leverages modern web technologies such as React and Next.js frameworks, integrates advanced analytics and A/B testing tools like Parsely, Amplitude, and Optimizely, and employs New Relic for performance monitoring. Hosting appears to be on a robust cloud infrastructure, likely AWS, ensuring fast performance and excellent mobile optimization. The site implements comprehensive privacy and cookie policies with consent mechanisms, reflecting good compliance with GDPR. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes multiple security headers such as CSP and HSTS. While no explicit security policy or incident response contacts are publicly available, the site follows best practices in securing user data and tracking consent. No vulnerabilities or suspicious domains were detected, and no WAF or blocking mechanisms interfere with access. Overall, The Economist website demonstrates a mature digital infrastructure, strong content quality, and a high level of professionalism and trustworthiness. The absence of WHOIS data is noted but likely due to registry privacy policies rather than malicious intent. Strategic recommendations include publishing explicit security and incident response policies and establishing a vulnerability disclosure program to further enhance trust and security posture.

E

Estadão

estadao.com.br

0

Estadão is a leading Brazilian news media company with a long history dating back to 1875. It offers comprehensive news coverage across politics, economy, sports, culture, technology, and lifestyle, targeting a broad general audience. The website operates a subscription-based paywall model and provides diverse content formats including articles, podcasts, videos, and newsletters. The brand is well-established with consistent branding and strong trust indicators such as published ethics policies and social media presence. Technically, the website employs a modern technology stack including React, Google Analytics 4, Chartbeat, and a robust consent management platform. It uses Akamai for hosting and CDN services, ensuring fast performance and excellent mobile optimization. The site is SEO optimized and accessible, with lazy loading and service workers enhancing user experience. From a security perspective, the site enforces HTTPS with strong SSL configuration and security headers. It follows best practices in script loading and data protection, although it lacks a public security.txt or explicit incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, Estadão presents a professional, secure, and privacy-compliant digital presence with extensive content and strong business credibility. Strategic recommendations include publishing vulnerability disclosure information and incident response contacts to further enhance security transparency.

C

Correio Braziliense

correiobraziliense.com.br

0

Correio Braziliense is a leading Brazilian media company specializing in news coverage for Brasília, the Distrito Federal, and broader national and international topics. The website serves a general audience with a comprehensive offering of news articles, analyses, and video content. It operates a business model based on advertising and subscription services, positioning itself as a major player in the regional media market. The company maintains a consistent brand presence and integrates well with social media platforms to extend its reach. Technically, the website employs a modern digital infrastructure leveraging Amazon AWS for hosting and DNS, and integrates advanced advertising technologies including Google Ad Manager, Amazon APS, Taboola, and Prebid.js for programmatic ad bidding. Analytics are extensively used via Google Analytics and Chartbeat, with tracking mechanisms that indicate a mature digital marketing strategy. The site is mobile optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and uses asynchronous loading of scripts to reduce risk exposure. However, explicit security headers such as Content-Security-Policy and X-Frame-Options are not evident, and there is no published security policy or incident response contact information. No vulnerability disclosure or security.txt file is found, which could be improved to enhance transparency and trust. Overall, the website is professionally designed, content-rich, and trustworthy with a strong market position. The main risks relate to the absence of explicit security policies and vulnerability disclosure mechanisms. Strategic improvements in these areas would strengthen the security posture and compliance profile.

F

Forbes Brasil

forbes.com.br

0

Forbes Brasil is a leading business and economy media publication in Brazil, offering news, analysis, rankings, and branded content primarily targeting business professionals, investors, and entrepreneurs. The website is built on WordPress and leverages modern web technologies including Google Tag Manager, Cloudflare DNS, and performance optimizations like WP Rocket. The site is well-structured, mobile-optimized, and integrates social media channels effectively. Security posture is solid with HTTPS and reCAPTCHA usage, though explicit security headers and privacy compliance mechanisms like cookie consent are lacking. WHOIS data aligns well with the website's claims, indicating legitimacy. Overall, the site presents a professional and trustworthy digital presence with room for improvement in privacy and security policy transparency.

C

Chatbase

chatbase.co

0

Chatbase is a technology company specializing in AI-driven customer service agents. Their platform enables businesses to build, deploy, and manage AI support agents that enhance customer interactions across multiple channels. With over 9000 businesses worldwide using their services, Chatbase positions itself as a leading provider in the conversational AI space, offering integrations with major platforms such as Zendesk, Salesforce, Slack, and more. The website is professionally designed, mobile-optimized, and rich in content, providing clear information about their services and benefits. Technically, the site leverages modern web technologies including React and Next.js, likely hosted on a performant platform such as Vercel. The site demonstrates good SEO practices, accessibility, and fast loading times. Security is well addressed with HTTPS enforced and comprehensive security headers implemented. However, the site lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. From a security perspective, Chatbase maintains a strong posture with no visible vulnerabilities or exposed sensitive data. The presence of tracking scripts like Google Tag Manager and Facebook Pixel indicates moderate user tracking, but no aggressive or suspicious tracking was detected. The absence of contact information and security policies on the site is a gap that should be addressed to improve transparency and compliance. Overall, Chatbase presents a credible and professional online presence with a strong technical foundation and security posture. To enhance trust and compliance, it is recommended to publish comprehensive privacy and cookie policies, provide clear contact information, and include incident response and security policy details.

C

Common Good Cyber

commongoodcyber.org

0

Common Good Cyber is a recently established global initiative focused on identifying and implementing sustainable models to support critical cybersecurity functions across the internet community. It operates as a non-profit entity under the umbrella of the Global Cyber Alliance, collaborating with multiple ecosystem partners to strengthen internet security worldwide. The website serves as a knowledge hub, funding platform, and communication channel for cybersecurity stakeholders. Technically, the site is built on WordPress with modern plugins for SEO, sliders, and data tables, hosted via Cloudflare ensuring good performance and security. The security posture is solid with HTTPS enforced, cookie consent mechanisms, and bot protection via Google reCAPTCHA, although some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Contact information is available primarily via email and contact forms. Overall, the site presents a professional and trustworthy image suitable for its target audience.

M

MANOVA GmbH

webmark.eu

0

WEBMARK is a specialized Business Intelligence solution developed by MANOVA GmbH, focusing on integrating and analyzing data from business management, market research, and marketing to provide actionable insights through live online reports. The company positions itself as a consultancy-driven BI provider rather than a traditional software vendor, emphasizing strategic and analytical expertise. The website is professionally designed, well-structured, and targets businesses in tourism and related sectors. Technically, the site runs on WordPress with common libraries like jQuery and Bootstrap, and uses Piwik for analytics, reflecting a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and secure form handling, but could be improved by adding security headers and updating legacy libraries. Privacy compliance is weak due to missing explicit privacy and cookie policies. Overall, the site is trustworthy and credible with clear contact information and partner affiliations.

M

MANOVA GmbH

manova.at

0

MANOVA GmbH is a specialized provider of business intelligence and market research services with a strong focus on the tourism sector. The company leverages over 20 years of experience to deliver customized data analysis, marketing analytics, and knowledge management solutions, including their proprietary WEBMARK tool for online surveys and benchmarking. The website is professionally designed, primarily in German, and targets businesses seeking data-driven insights in tourism and marketing. Technically, the site is built on WordPress with common libraries such as jQuery, Bootstrap, and Owl Carousel, though some libraries are outdated. Security posture is adequate with HTTPS enabled but lacks advanced security headers and visible privacy compliance mechanisms. The site uses Piwik analytics, indicating moderate user tracking with some privacy consideration. Overall, the website is trustworthy and professional but could improve privacy and security practices.

S

SPAR Handels AG

spar.ch

0

SPAR Handels AG is a well-established Swiss grocery retailer operating a website primarily in German, targeting local customers with fresh food offers. The website is built on TYPO3 CMS and uses modern web fonts from Typekit, indicating a moderate level of digital maturity. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are critical for compliance and trust. The absence of these elements suggests room for improvement in privacy compliance and security posture. Overall, the website is accessible and functional but would benefit from enhanced security and compliance features to better protect users and align with regulatory requirements.

C

Cembra Money Bank AG

lipo-mastercard.ch

0

The website lipo-mastercard.ch presents the LIPO Mastercard, a credit card product issued by Cembra Money Bank AG, targeting Swiss residents and customers of the LIPO retail chain. The site offers detailed information about the card's benefits, usage, and additional services such as mobile payment and a personalized card design option. The business is positioned as a niche financial service provider with a focus on customer loyalty through point collection and exclusive offers. Technically, the site employs modern web technologies including Google Tag Manager and OneTrust for analytics and cookie consent management, ensuring GDPR compliance and user privacy. Security measures such as HTTPS and security headers are properly implemented, though explicit security and incident response policies are not directly published on the site. Overall, the website is professional, trustworthy, and well-optimized for user experience and mobile devices.

IKEA Schweiz operates as a leading furniture and home goods retailer in Switzerland, offering a comprehensive online shopping platform alongside physical stores. The website provides a rich catalog of products, localized content in German, and multiple customer services including delivery, assembly, and loyalty programs. The technical infrastructure leverages modern web technologies such as React, cookie consent management via OneTrust, and A/B testing with Optimizely, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement and multiple security headers, although public security policies and incident response contacts could be enhanced. Overall, the site demonstrates high professionalism, compliance with GDPR, and trustworthy brand representation.

F

Fnac

fnac.ch

0

Fnac Suisse operates a comprehensive e-commerce platform specializing in cultural and technological products for the Swiss French-speaking market. As a subsidiary of the well-known Fnac brand, it holds a strong market position with a broad product catalog including books, electronics, games, and household appliances. The website demonstrates a mature digital infrastructure with modern technologies such as service workers, Adobe Experience Platform, and bot protection services, ensuring a smooth and secure user experience. Privacy compliance is well addressed with a cookie consent mechanism and a detailed privacy policy, reflecting adherence to GDPR standards. Security posture is robust with HTTPS enforcement, security headers, and bot mitigation, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and well-optimized for performance and accessibility.

Certo! One Mastercard is a cashback credit card product offered by Cembra Money Bank AG, a reputable Swiss financial institution. The website promotes the card's benefits including no annual fees, cashback rewards at favorite merchants, and additional insurance coverage. The target audience is consumers in Switzerland looking for a convenient and rewarding credit card solution. The company leverages modern digital marketing and analytics tools such as Google Tag Manager, Google Analytics, and OneTrust for cookie consent management, indicating a mature digital infrastructure. The website is well-designed, mobile-optimized, and accessible, providing a professional user experience. Security measures include HTTPS enforcement and Mastercard Identity Check integration, though explicit security headers and policies are not prominently published. Overall, the site demonstrates a strong security posture with room for improvement in transparency around privacy and security policies.

L

Locali

locali-ge.ch

0

Locali is a small Swiss e-commerce platform dedicated to promoting local consumption through subscriptions, fresh product baskets, neighborhood grocery stores, seasonal restaurant dishes, and gift cards. The website is built on a modern WordPress and WooCommerce stack with Elementor and several plugins enhancing e-commerce and user experience. The platform targets consumers in Geneva interested in sustainable and local products. Technically, the site uses HTTPS, cookie consent management, and integrates Google Ads and Analytics for marketing and tracking. Security posture is moderate with HTTPS enforced and nonce usage, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy policy or terms of service pages. WHOIS data is privacy protected, which is common but reduces transparency. Overall, the website is professional and functional with room for improvement in privacy and security disclosures.

L

L'ESPACE

lespacedapres.ch

0

L'ESPACE is a community-focused, modular venue located in Geneva, Switzerland, offering flexible spaces for meetings, conferences, and collaborative events. The website serves as a platform for room reservations, community event listings, and resource sharing, targeting local organizations and professionals interested in social economy and collective activities. Technically, the site is built on Drupal 9 with modern web technologies, providing good mobile optimization and accessibility. Security posture is moderate with HTTPS usage and secure forms but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security transparency.

I

itopie informatique

itopie.ch

0

itopie informatique is a Geneva-based non-profit cooperative focused on providing ethical, sustainable, and citizen-oriented IT services. Their offerings include repair and resale of refurbished professional-grade computers, IT infrastructure management, web services, training, and secure data wiping. The cooperative model and local anchoring position them uniquely in the Geneva market as a trusted provider for professionals, students, and individuals seeking responsible IT solutions. Technically, the website is built on WordPress with a modern theme and plugins, including privacy-respecting Matomo analytics and MailPoet for newsletters. The site is well-structured, mobile-optimized, and professionally designed, reflecting a mature digital presence. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website demonstrates a strong commitment to privacy, ethics, and community engagement.

The website dns.pl is the official portal for the Polish national domain registry operated by NASK, a well-established and authoritative entity in Poland since 1998. It provides comprehensive domain registration, management, and security services including DNSSEC and Registry Lock, targeting domain registrants, registrars, and government entities. The site is professionally designed with excellent content quality, clear navigation, and multilingual support, reflecting a mature digital presence. Technically, it employs modern JavaScript frameworks (likely Vue.js), uses Matomo for analytics, and integrates Google Fonts and Material Design components, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced, DNSSEC enabled, and cookie consent mechanisms in place, though some security headers could be improved and a security.txt file is absent. Overall, the domain registration data aligns perfectly with the website's purpose and ownership, indicating high legitimacy and trustworthiness.

E

Home

eifu.online

0

The website eifu.online operates as a specialized platform providing users the ability to download manufacturer information by entering a Key-Code. The service targets manufacturers and customers who require access to detailed manufacturer data. The business model is focused on information delivery, with a simple user interface and limited content beyond the core search functionality. The domain is registered since 2016, indicating a stable presence, and the site is hosted by CSL Computer Service Langenbach GmbH. Technically, the site uses an ASP.NET Web Forms framework with legacy JavaScript libraries such as jQuery 1.10.2 and featherlight.js for UI components. While HTTPS is enabled and a Thawte SSL certificate is present, the site lacks modern security headers and uses outdated libraries, which could pose security risks. Privacy compliance is minimal, with a privacy policy page available but no cookie consent mechanism or GDPR compliance indicators. Contact information is limited to a single support email address, with no phone or physical address provided. Overall, the site is functional but basic in design and security posture.

S

Sinclair Pharma

sinclair-college.com

0

Sinclair College is a specialized online educational platform focused on aesthetic medicine, targeting healthcare practitioners seeking comprehensive training and professional development. The platform offers a variety of learning resources including treatment videos, webinars, interactive case studies, and a supplementary mobile app to enhance accessibility and learning convenience. The business operates under Sinclair Pharma, with a domain registered since 2016, indicating a mature and established presence in its niche market. Technically, the website is built on the Totara LMS platform, leveraging Moodle core components, and integrates modern web technologies and third-party marketing tools such as Google Analytics, Facebook Pixel, and HubSpot. The site is mobile-optimized and presents a professional design with clear navigation, supporting a positive user experience. Security-wise, the website enforces HTTPS and domain registration protections but lacks DNSSEC and advanced security headers. Privacy compliance is basic, with privacy and cookie policies present but no explicit consent mechanisms. Contact information is limited on the public site, and no incident response or security policies are disclosed. Overall, Sinclair College demonstrates a solid business and technical foundation with room for improvement in security and privacy transparency.

U

Urlaub am Bauernhof

urlaubambauernhof.at

0

Urlaub am Bauernhof is a well-established Austrian tourism platform specializing in farm holiday accommodations and experiences. The website targets families and tourists seeking authentic rural stays in Austria, offering a variety of farm types and regional activities. The platform is professionally designed with consistent branding and multilingual support, enhancing its appeal to both local and international visitors. Technically, the site employs modern web technologies including JavaScript modules, CSS variables, and service workers, and integrates cookie consent management via Cookiehub and analytics through Google Tag Manager. Security posture is solid with HTTPS enforced and basic best practices observed, though the absence of explicit privacy and terms of service pages indicates room for compliance improvement. Overall, the site is trustworthy and user-friendly, but would benefit from enhanced transparency and contact information to strengthen user confidence and regulatory adherence.

F

feratel media technologies AG

feratel.com

0

feratel.com is a professional media and technology company specializing in providing live webcams, flyingcams, and weather forecasts across Europe. The website offers extensive real-time visual content and weather data, targeting travelers, tourists, and the hospitality industry. The company appears to have a strong market presence in Europe with a focus on travel inspiration and real-time information services. Technically, the website is built using modern frameworks like Astro, employs Google Tag Manager with consent management for privacy compliance, and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS and security headers in place, though explicit security policies and incident response contacts are not published. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration status. Overall, the site is professional, content-rich, and privacy-conscious but would benefit from clearer business and security transparency.

G

Governor’s Office of Homeland Security and Emergency Preparedness

getagameplan.org

0

The website getagameplan.org serves as an official emergency preparedness resource affiliated with the Louisiana Governor’s Office of Homeland Security and Emergency Preparedness. It provides comprehensive information and tools for disaster readiness, including cybersecurity plans, hurricane preparedness, and disaster recovery assistance. The site targets residents, families, and businesses within Louisiana, positioning itself as a trusted government resource. The business model is non-commercial, focusing on public safety and community resilience. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Slick Carousel, hosted on Amazon AWS infrastructure. It uses Umbraco CMS and integrates Google Analytics and Google Custom Search for enhanced user experience. The site is mobile-optimized and includes accessibility features like an accessibility toolbar and multilingual translation support. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and security headers, which are recommended for enhanced protection. No sensitive data exposure or vulnerabilities were detected in the analyzed content. Privacy compliance is moderate, with a privacy policy present on a related government domain but no cookie consent mechanism detected. Overall, the website demonstrates a solid risk posture with minor areas for improvement in security headers and privacy compliance. It is a credible and trustworthy government resource with a clear mission and audience.

N

National Association of State Treasurers

findyourunclaimedproperty.com

0

MissingMoney.com is the official unclaimed property search website operated under the auspices of the National Association of State Treasurers. It serves as a centralized platform for individuals to search for unclaimed property held by various state governments in the United States. The website's market position is strong as the authoritative source for unclaimed property information, targeting individuals seeking to recover lost assets. The business model is public service-oriented, providing free access to government-held data. Technically, the website employs modern web technologies including Angular framework, Cloudflare CDN and DNS services, and integrates analytics and marketing tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized and demonstrates good performance and SEO practices. However, it lacks some advanced security configurations such as DNSSEC and explicit security headers. From a security perspective, the site enforces HTTPS and benefits from Cloudflare's protection mechanisms. The domain registration is consistent and long-standing, indicating legitimacy. However, the absence of a visible privacy policy, terms of service, and vulnerability disclosure reduces privacy compliance and transparency. No WAF blocking or content restrictions were detected, indicating full accessibility. Overall, MissingMoney.com presents a trustworthy and professional government service platform with moderate technical maturity and security posture. Strategic improvements in privacy documentation, security headers, and DNSSEC implementation would enhance compliance and security posture further.

L

Louisiana Office of Motor Vehicles

expresslane.org

0

The Louisiana Office of Motor Vehicles website serves as the official digital portal for Louisiana's motor vehicle services, including driver's license issuance and renewal, vehicle registration, appointment scheduling, and compliance with REAL ID requirements. It targets Louisiana residents and businesses, providing comprehensive government services with a focus on accessibility and user convenience. The site is well-branded and consistent with government standards, reflecting a large, established government entity founded in 1998. Technically, the website employs modern web technologies such as Bootstrap, Font Awesome, Google Analytics, and Google Tag Manager, hosted on a CMS platform likely Umbraco. The site is mobile-optimized and includes accessibility features like an accessibility toolbar. Performance is moderate with good SEO basics, though privacy and cookie policies are missing, which is a compliance gap. From a security perspective, the site uses HTTPS with a clientTransferProhibited domain status, indicating stable ownership. However, DNSSEC is not enabled, and security headers beyond HTTPS are not explicitly detected. No vulnerabilities or malicious content were found. The absence of privacy and cookie policies reduces privacy compliance scores. Overall, the website is trustworthy and professional, with strong business credibility but room for improvement in privacy compliance and security hardening. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and implementing a vulnerability disclosure policy.

The website campaign-image.com presents a minimal online presence with only a basic HTML page stating the site is live. There is no substantive business information, metadata, or user engagement features. The domain is registered since 2015 with a reputable registrar, indicating some level of legitimacy, but the lack of content and policies suggests the site is either under development or abandoned. Technically, the site lacks modern web technologies, security headers, and DNSSEC, which limits its security posture. No privacy or cookie policies are present, indicating non-compliance with GDPR and related regulations. Overall, the site has a low maturity level and minimal trust signals, posing a moderate risk from a security and compliance perspective.

B

Biofruits SA

biofruits.ch

0

Biofruits SA is a medium-sized Swiss company specializing in the retail and commercialization of organic fruits and vegetables sourced from seven local producers in the Valais region. The company operates both physical stores and an online shop, offering a variety of organic products including fresh produce, juices, compotes, and gift boxes. Their market position is strong regionally, supported by multiple certifications such as BioSuisse and ISO standards, which enhance their credibility and trustworthiness. Technically, the website is built on the Umbraco CMS and leverages modern JavaScript libraries and marketing tools including Google Tag Manager, Facebook Pixel, and Sendinblue for analytics and customer engagement. The site is mobile-optimized with good SEO practices and a clear navigation structure, providing a positive user experience. From a security perspective, the website uses HTTPS with good SSL configuration and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms, which are areas for improvement to enhance security posture and transparency. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with moderate tracking and marketing practices. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and establishing incident response contacts to further strengthen security and compliance.

Z

Zenhäusern

chezzen.ch

0

Chezzen is a Swiss-based bakery and catering service provider specializing in fresh products and professional service with regional expertise in Valais. The website presents a professional image with clear navigation and relevant content targeting both general consumers and professionals in hospitality. The technical infrastructure leverages modern web technologies including Umbraco CMS, Bootstrap 5, Google reCAPTCHA, and analytics tools, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS, security headers, and form protections, though explicit privacy and security policies are missing. Overall, the site is trustworthy and well-maintained but could improve compliance documentation and transparency.

O

Organisation cantonale valaisanne des secours (OCVS)

ocvs.ch

0

The Organisation cantonale valaisanne des secours (OCVS) is the official emergency coordination body for the canton of Valais in Switzerland. It manages professional and militia rescue services and prominently features the emergency telephone number 144. The website serves residents, visitors, and emergency responders by providing critical contact information, incident reporting, and general information about emergency services. The site is bilingual with French as the primary language and a German alternate site available. Technically, the website is built on WordPress 6.8.3 using the GeneratePress theme and Yoast SEO plugin, indicating a modern and SEO-optimized infrastructure. It employs HTTPS with good SSL configuration and uses common web technologies such as jQuery and Kadence Blocks. The site is mobile optimized and accessible with a clear navigation structure. From a security perspective, the site enforces HTTPS and uses some security best practices like email encoding to protect contact information. However, it lacks explicit security headers, a vulnerability disclosure policy, and incident response contact channels. Privacy compliance is limited due to the absence of a dedicated cookie policy and consent mechanism, which is critical for GDPR adherence. Overall, the website is trustworthy and professional, reflecting its governmental nature. Strategic improvements in privacy compliance and security policy transparency would enhance its security posture and user trust.

S

Ski World Cup

skicm-cransmontana.ch

0

The Ski World Cup Crans-Montana website serves as an official platform promoting the Audi FIS Ski World Cup events held in Crans-Montana, Switzerland. It provides detailed event schedules, news updates, and visitor information targeting ski sports enthusiasts, participants, and tourists. The site positions itself as a regional event promoter with a focus on winter sports and hospitality. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and integrations such as Google Tag Manager and ContentFry for social media content. The design is professional, mobile-optimized, and offers a clear navigation structure. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, though it lacks explicit security headers and publicly available security policies. No critical vulnerabilities or suspicious elements were detected. Overall, the website demonstrates a solid digital presence with good privacy compliance and trustworthy domain registration.

M

AgeCheck

morand.ch

0

The website www.morand.ch/en/agecheck/ serves as an age verification gateway, requiring users to confirm if they are over or under 18 years old before accessing further content. The site is minimalistic, focusing solely on compliance with age restrictions likely related to adult content or regulated products. The business behind the site appears to be Swiss-based, consistent with the domain registration data. The technical infrastructure includes common web tracking tools such as Google Analytics and Facebook Pixel, integrated via Google Tag Manager. The site uses JavaScript and jQuery for client-side interactions and form handling. Security posture is moderate; HTTPS is used, but no explicit security headers are detected, and no privacy or cookie policies are present on this page. The site does not expose sensitive data and does not show signs of WAF or content blocking. Overall, the site is functional but lacks comprehensive privacy and security disclosures.

A

Association Valaisanne des Musées

musees-vs.ch

0

The Association Valaisanne des Musées (AVM) is a Swiss non-profit organization established in 1981, serving as the umbrella organization for museums in the Valais region. The website provides comprehensive information about the association's activities, events, and coordination efforts for the local museum network. The site targets cultural institutions and the general public interested in museum-related content in Valais. Technically, the website is built on WordPress using the Divi theme, enhanced with modern plugins for SEO, caching, and cookie compliance, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a clear cookie consent mechanism and a comprehensive privacy policy. However, the site lacks explicit security policies and incident response information, which could be improved to enhance trust and preparedness. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission and audience.

T

theWinefamily.ch

thewinefamily.ch

0

theWinefamily.ch is a Swiss-based e-commerce retailer specializing in the sale of Swiss and international wines, targeting primarily francophone customers in Switzerland. The website offers a curated selection of wines from various countries and terroirs, emphasizing quality and direct delivery to consumers. The business operates on the Shopify platform, leveraging modern e-commerce technologies and integrations to provide a seamless shopping experience. The site demonstrates good branding consistency and professional design, with clear navigation and mobile optimization. Technically, the website is built on Shopify's Dawn theme, hosted on Shopify's CDN infrastructure, and uses various third-party marketing and analytics tools such as Nosto and Trusted Shops. Performance is moderate with good accessibility and SEO practices. Security posture is strong with HTTPS enforced and use of hCaptcha for form protection, though explicit security headers and policies are not fully documented. Privacy compliance is partial, lacking visible privacy and cookie policies or consent mechanisms. Overall, the site presents a trustworthy and professional front for wine retail, with clear contact information and legitimate WHOIS registration data. However, it would benefit from enhanced privacy disclosures and security policy transparency to improve compliance and user trust.

A

Atomwalk Technologies Private Limited

atomwalk.com

0

Atomwalk Technologies Private Limited offers a cloud-based AI and Blockchain powered ERP platform designed to streamline business operations for startups to large enterprises. Their comprehensive software suite covers CRM, HRM, manufacturing, inventory, project management, accounting, and lab management, targeting diverse industries such as manufacturing, healthcare, consultancy, NGOs, and energy. The company positions itself as an innovative technology provider with a focus on integrating cutting-edge technologies to enhance operational efficiency. Technically, the website is built using modern frontend technologies including React.js, JavaScript, and CSS, indicating a contemporary digital infrastructure. The platform appears to be cloud-hosted, supporting scalability and accessibility. The website design is professional with good mobile optimization and clear navigation, although some SEO and accessibility features could be improved. From a security perspective, the site lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance and user trust. No forms or contact information were detected in the provided content, limiting user engagement and support channels. The absence of WHOIS data for the subdomain is typical and does not raise immediate concerns but restricts full domain legitimacy assessment. Overall, the website presents a solid business offering with good technical implementation but requires enhancements in security posture, privacy compliance, and transparency to improve trust and regulatory adherence. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, publishing incident response and vulnerability disclosure information, and providing clear contact details to strengthen business credibility and user confidence.

Azooka.com is a website that appears to offer a free resume builder service. However, the current accessible content is limited to a maintenance placeholder page indicating temporary downtime. The domain is well-established, created in 2006, and registered with a reputable registrar, suggesting a legitimate business presence. The website targets job seekers or individuals looking to create resumes online. Due to the minimal content and lack of accessible features, the market position and detailed business model remain unclear. From a technical perspective, the website currently lacks visible technologies, scripts, or frameworks. The hosting provider is inferred from the nameservers as HostingMantra. There is no evidence of modern CMS usage or analytics tools. The website's performance, mobile optimization, and accessibility cannot be assessed due to the limited content. SEO optimization is poor given the absence of metadata and structured data. Security posture is weak or unassessable with the provided data. There is no indication of HTTPS enforcement or security headers. DNSSEC is not enabled, and no security policies or incident response information is published. The domain status clientTransferProhibited is a positive trust indicator, but the lack of privacy and cookie policies, as well as absence of security best practices, lowers the security maturity. Overall, the website is currently non-functional for end users, with minimal content and no visible security or privacy compliance measures. The risk level is moderate due to the lack of HTTPS and policies, but no malicious or suspicious content was detected. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, enabling DNSSEC, and improving content quality and technical infrastructure.

Oxford Nanopore Technologies is a leading biotechnology company specializing in nanopore sequencing technology that enables analysis of DNA and RNA with high accuracy and scalability. The company targets researchers, healthcare professionals, and biopharma sectors with a comprehensive portfolio of sequencing devices, library preparation kits, and data analysis software. Their website reflects a mature digital presence with excellent content quality, clear navigation, and strong branding consistency. Technically, the site leverages modern frameworks such as Vue.js and Nuxt.js, hosted likely on AWS infrastructure, and integrates multiple analytics and marketing tools to optimize user engagement and performance. Security posture is strong with HTTPS enforcement, security headers, and domain lock status, though there is room for improvement in publishing explicit security policies and vulnerability disclosure mechanisms. Overall, the domain registration data aligns well with the company's history and legitimacy, supporting a high trustworthiness rating.

T

Tetrate

tetrate.io

0

Tetrate is an enterprise technology company specializing in AI infrastructure and governance solutions, leveraging the Envoy proxy and Envoy AI Gateway. Their offerings focus on trusted connectivity, AI risk and cost governance, and platform services for enterprises. The company targets IT, FinOps, CISOs, and developers, positioning itself as a leader in AI operations and governance. The website demonstrates a mature digital presence with a modern tech stack, fast performance, and excellent mobile optimization. Security posture is solid with HTTPS and domain protections, though improvements are needed in explicit security policies and headers. Privacy compliance is weak due to missing policies and consent mechanisms. Overall, the site is professional, trustworthy, and content-rich, supporting Tetrate's market position as a key player in AI enterprise solutions.

S

Solo.io

solo.io

0

Solo.io is a technology company specializing in cloud and AI infrastructure solutions, offering a unified platform for secure and seamless cloud operations. Positioned as a top contributor in the CNCF community, Solo.io provides key services including cloud connectivity, API gateways, service mesh, and AI & agentic infrastructure, targeting technology teams and enterprises adopting Kubernetes and cloud-native technologies. The website reflects a mature digital presence with excellent content quality, professional design, and strong community engagement. Technically, the site leverages modern web technologies, including Webflow CMS, advanced analytics, and marketing tools, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms, though explicit security policies and incident response details are not publicly available. Overall, the site demonstrates high professionalism and trustworthiness, with privacy-protected WHOIS data typical for tech companies. Strategic recommendations include publishing detailed security policies, vulnerability disclosure, and enhancing transparency on compliance and certifications.

I

ITSP Magazine

itspmagazine.com

0

ITSP Magazine operates a modern multimedia platform focused on technology, cybersecurity, and societal issues through podcasts, webinars, and panels. The company targets professionals and enthusiasts interested in these domains, positioning itself as a niche media network with a clear mission to foster intellectual exchange globally. The website is professionally designed, mobile-optimized, and hosted on Squarespace, leveraging modern web technologies and standard analytics tools. Security posture is strong with HTTPS and HSTS enabled, complemented by privacy and cookie policies that indicate GDPR compliance. However, the absence of publicly available WHOIS data suggests privacy protection or recent domain registration, which slightly impacts transparency. Overall, the platform demonstrates a solid digital maturity and trustworthy presence in its market segment.

S

SANS Institute

sans.org

0

SANS Institute is a globally recognized leader in cybersecurity training, certifications, and research, serving over 40,000 professionals annually. The website offers a comprehensive portfolio of over 60 courses covering various cybersecurity domains including cyber defense, cloud security, AI security, and digital forensics. The platform is designed to serve both individuals and organizations with flexible training options, expert instructors, and industry-recognized GIAC certifications. The site is well-structured, mobile-optimized, and uses modern web technologies such as Next.js and React, ensuring a fast and accessible user experience. Technically, the website demonstrates strong digital maturity with HTTPS enforcement, security headers, and integration of advanced analytics tools like Google Tag Manager and Snowplow. The absence of exposed sensitive data and the use of secure forms indicate good security hygiene. However, explicit incident response and vulnerability disclosure policies are not publicly available, which could be improved to enhance transparency and trust. Overall, the security posture is robust with no detected vulnerabilities or blocking mechanisms. Privacy compliance is evident through the presence of comprehensive privacy and cookie policies with consent mechanisms. Business credibility is high, supported by strong branding, testimonials from major corporations, and recognized certifications. The domain WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. The website is safe for general audiences and does not contain any adult or explicit content.

K

Katzcy, LLC

katzcy.com

0

Katzcy, LLC is a women-owned small business specializing in advancing the cybersecurity workforce through a community of brands focused on cyber games, competitions, esports, events, and marketing. The company positions itself as a niche leader in cybersecurity workforce growth and diversification, operating multiple subsidiary brands that target various aspects of the cybersecurity ecosystem. The website reflects a professional and consistent brand image with comprehensive content and clear navigation, targeting cybersecurity professionals, organizations, and enthusiasts. Technically, the site is built on the HubSpot CMS platform, leveraging modern analytics and marketing tools such as Google Analytics, Facebook Pixel, Hotjar, and Google Tag Manager. The site is mobile-optimized and performs moderately well with good SEO and accessibility features. Security posture is strong with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy and cookie policies are present with consent mechanisms, indicating good privacy compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which slightly impacts the overall trust score. No critical vulnerabilities or security issues were detected in the website content.

Envision by WorldStrides is a well-established educational organization specializing in experiential learning and career exploration programs for students ranging from elementary to high school levels. As part of the larger WorldStrides portfolio, it offers immersive leadership development and career testing opportunities on top university campuses across the United States. The website reflects a mature digital presence with comprehensive program information, enrollment options, and strong branding consistency. The target audience includes students, parents, and educators seeking transformative educational experiences. Technically, the website leverages a modern technology stack including ASP.NET Web Forms, Sitecore CMS, Microsoft Azure hosting, and integrates multiple analytics and marketing tools such as HubSpot, Google Analytics, TikTok Pixel, and Microsoft Omnichannel Live Chat. The site is mobile optimized and demonstrates good SEO and accessibility practices, though some accessibility enhancements could be made. From a security perspective, the site enforces HTTPS and uses several security best practices, but lacks explicit security policy disclosures and vulnerability disclosure mechanisms. The absence of WHOIS domain registration data is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts trustworthiness. Overall, the site maintains a strong security posture with room for improvement in transparency and incident response readiness. Strategically, the site is positioned as a trusted leader in educational experiential learning with a large user base and strong parent company backing. Recommendations include enhancing security disclosures, verifying domain registration transparency, and improving accessibility compliance to further strengthen trust and compliance.

E

EUREF AG

euref.de

0

EUREF AG operates the EUREF-Campus in Berlin-Schöneberg, a pioneering real-world laboratory focused on renewable energy, sustainable mobility, and smart urban development. The campus hosts over 150 companies, research institutions, and start-ups, employing around 7,000 people. It serves as a collaborative hub for innovation, research, and education in energy transition and sustainability, positioning itself uniquely in the European market. Technically, the website is built on WordPress with the Enfold theme and integrates modern SEO and analytics tools such as Yoast SEO and Matomo. The site is mobile-optimized, accessible, and performs moderately well. Security practices include HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response contacts are not publicly detailed. The security posture is solid with no evident vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear cookie and privacy policies and GDPR adherence. The business credibility is high, supported by professional content, testimonials, and consistent branding. WHOIS data is minimal but does not raise concerns. Overall, the website and business present a trustworthy, professional, and well-maintained digital presence aligned with their sustainability mission.

D

D.LIVE

d-live.de

0

D.LIVE is a regional event management and venue service provider based in Düsseldorf, Germany. The company offers a platform for concerts, shows, sports events, and corporate events, positioning itself as the go-to contact for event organization in the region. The website is professionally designed using TYPO3 CMS, indicating a moderate level of digital maturity. Integration of Google Tag Manager and Usercentrics CMP shows awareness of marketing and privacy compliance requirements, although explicit privacy policies are not found on the main page. Security posture is adequate with HTTPS enabled but lacks visible security headers and formal security policies. Overall, the website is functional and professional but could improve transparency and security practices.

D

Düsseldorf Congress GmbH

duesseldorfcongress.de

0

Düsseldorf Congress GmbH operates the CCD Congress Center Düsseldorf, a premier international congress and event venue located in Düsseldorf, Germany. The company offers flexible event spaces, technical support, catering, and exhibitor services, targeting event planners, corporations, and exhibitors. The venue is strategically positioned near major transport hubs and the Messe Düsseldorf, enhancing its market appeal. The website demonstrates a high level of professionalism, with comprehensive content and clear navigation, supporting its strong market position in the hospitality sector. Technically, the site is built on WordPress with modern technologies and includes privacy compliance mechanisms such as cookie consent. Security posture is good with HTTPS and some security best practices, though some HTTP security headers could be improved. Overall, the domain registration and website content are consistent and legitimate, with no blocking or WAF interference detected.

M

Messe Düsseldorf GmbH

compamed.de

0

COMPAMED is a leading international trade fair and forum focused on high-tech solutions for the medical technology supplier sector. Organized by Messe Düsseldorf GmbH, the website serves as a comprehensive portal for exhibitors, visitors, and industry professionals, providing information on event participation, programs, and services. The site targets medical technology suppliers and related stakeholders, positioning itself as a premier marketplace for product development and industry networking. Technically, the website employs modern JavaScript libraries, tracking tools, and a cookie consent management platform, indicating a mature digital infrastructure. However, explicit privacy and security policy documents are not found, which could be improved to enhance compliance and user trust. Security posture is moderate with HTTPS usage and cookie consent but lacks visible security headers and incident response contacts. Overall, the website is professional, well-structured, and trustworthy, with room for improvement in privacy transparency and security documentation.