Security Directory

D

DevFactory Sàrl

devfactory.ch

0

DevFactory Sàrl is a Swiss web agency specializing in custom digital solutions including web design, development, SEO, hosting, and artificial intelligence integration. With over 13 years of experience and a small dedicated team, they serve businesses seeking tailored digital transformation services primarily in Switzerland. Their market position is that of a niche, trusted local agency with a strong portfolio of projects and satisfied customers. Technically, the website leverages modern frameworks such as Laravel and Drupal, employs containerization technologies like Kubernetes and Docker, and integrates analytics and marketing tools such as Google Tag Manager and Facebook Pixel. The site is well-optimized for performance and mobile devices, reflecting a mature digital infrastructure. Security-wise, the site uses HTTPS and includes CSRF protection tokens, but lacks explicit security headers and visible security or incident response policies. Privacy compliance is partially addressed with a comprehensive privacy policy, but no cookie consent mechanism is present. Overall, the website is professional, trustworthy, and secure, with minor areas for improvement in privacy and security transparency.

P

PETZI

petzi.ch

0

PETZI is a Swiss federation representing music venues and festivals, providing a centralized platform for event listings, ticketing, and industry support. The website targets music venues, festival organizers, and attendees primarily within Switzerland. It offers services including event aggregation, points of sale information, association details, projects, publications, jobs, and workshops. The business operates as a non-profit federation with a clear focus on the Swiss music and festival sector. Technically, the website employs modern JavaScript frameworks such as Alpine.js and htmx, and uses Piwik/Matomo for analytics, indicating a moderate level of digital maturity with privacy-conscious tracking. The site is mobile-optimized and features good SEO practices, though it lacks explicit CMS identification and some advanced accessibility features. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several recommended security headers and does not provide a cookie consent mechanism, which may impact GDPR compliance. There is no visible security policy or incident response contact information, and no vulnerability disclosure policy is present. Overall, PETZI's website is professional, trustworthy, and well-aligned with its business purpose. The main risks relate to privacy compliance and security header implementation. Strategic improvements in these areas would enhance the site's security posture and regulatory adherence.

R

rsms

rsms.me

0

The website rsms.me is a personal portfolio and project showcase site for Rasmus Andersson, a Swedish software developer based in San Francisco. The site highlights various software projects, technical talks, and the Inter typeface family, targeting software developers and technology enthusiasts. The business model is primarily personal branding with some commercial activity through an online shop. The site is small in scale but well-established, with a domain registered since 2010. Technically, the site uses modern web standards including HTML5, CSS3, JavaScript, and WebAssembly. It is hosted behind Cloudflare DNS and likely CDN services, ensuring good performance and mobile optimization. Google Analytics and Google Tag Manager are used for user tracking, indicating moderate user tracking levels. SEO and accessibility are basic to good, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There are no visible privacy or cookie policies, nor contact information for security incidents or vulnerability disclosures. These gaps reduce the overall security and privacy compliance posture. Overall, the website is trustworthy and safe for general audiences, with no adult or questionable content. The domain registration is consistent and legitimate, with no suspicious patterns. Strategic recommendations include enabling DNSSEC, adding security headers, publishing privacy and cookie policies, and providing contact information for security and incident response to enhance trust and compliance.

V

Volkswagen Financial Services Schweiz AG

cupra-versicherung.ch

0

The website www.cupra-versicherung.ch is a professionally designed platform offering specialized car insurance products for CUPRA vehicles in Switzerland. It is operated by Volkswagen Financial Services Schweiz AG, a reputable entity within the Volkswagen Group, and leverages partnerships with Allianz for insurance services. The site targets CUPRA vehicle owners seeking tailored insurance solutions, providing clear segmentation for new and used cars, premium packages, and customer support channels. The content is well-structured, relevant, and consistent with the brand identity. Technically, the site uses the Umbraco CMS platform with modern JavaScript libraries such as Google Tag Manager and Swiper.js for enhanced user experience. The site is mobile-optimized with lazy loading images and responsive design. However, some SEO and accessibility features could be improved. Security is robust with HTTPS enforced and nonce attributes on scripts, but lacks some security headers and explicit cookie consent mechanisms. From a security and compliance perspective, the site demonstrates good practices with no exposed sensitive data or vulnerabilities detected. The privacy policy is comprehensive and GDPR compliant, hosted on the parent company’s domain. Contact information is clearly provided, including a validated contact form. There is no evidence of a vulnerability disclosure policy or security.txt file, which could be areas for enhancement. Overall, the website presents a low-risk profile with strong business credibility and a solid technical foundation. Strategic improvements in security headers, privacy consent, and transparency on security policies would further enhance trust and compliance.

V

Volkswagen Financial Services Schweiz AG

seat-versicherung.ch

0

Volkswagen Financial Services Schweiz AG operates the website www.seat-versicherung.ch, providing specialized car insurance services for Seat vehicles in Switzerland. The site targets Seat owners seeking tailored insurance solutions for new and used cars, offering premium calculation tools and customer support. The business model is that of a bound insurance intermediary partnering with Allianz for insurance coverage. The website is well-branded, professionally designed, and consistent with the Seat and Volkswagen brand identities, positioning itself as a niche provider in the Swiss automotive insurance market. Technically, the website is built on the Umbraco CMS platform and uses modern JavaScript libraries and tracking technologies such as Google Analytics and Facebook Pixel. The site is mobile-optimized and performs moderately well, though accessibility and SEO optimizations are basic. Security-wise, the site enforces HTTPS and uses nonce attributes in scripts, but lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. Overall, the security posture is solid but could be enhanced by implementing security headers and explicit privacy compliance features. The domain registration aligns well with the business entity, supporting legitimacy and trustworthiness. No adult or questionable content is present, and the site is safe for general audiences. Strategic recommendations include adding cookie consent, security policies, and incident response information to improve compliance and user trust.

V

Volkswagen Financial Services Schweiz AG

skoda-versicherung.ch

0

Volkswagen Financial Services Schweiz AG operates a specialized insurance website offering comprehensive car insurance solutions tailored for Škoda vehicle owners in Switzerland. The site emphasizes partnership with Zurich Versicherungs-Gesellschaft AG and provides flexible insurance packages, premium calculation tools, and dedicated customer support. The business targets Škoda customers seeking reliable and brand-aligned insurance coverage. Technically, the website is built on the Umbraco CMS platform, leveraging modern JavaScript libraries and tracking tools such as Google Analytics and Facebook Pixel. The site is mobile-optimized with good performance and SEO practices. Security posture is solid with HTTPS and secure form handling, though explicit security headers and cookie consent mechanisms are recommended to enhance compliance and protection. Overall, the domain registration and business information are consistent and trustworthy, reflecting a legitimate and professional insurance service.

V

Volkswagen Financial Services Schweiz AG

audi-versicherung.ch

0

The website www.audi-versicherung.ch is a professionally designed insurance service platform operated by Volkswagen Financial Services Schweiz AG, targeting Audi vehicle owners in Switzerland. It offers tailored insurance products for new and used Audi cars, including premium packages with extended coverage and benefits. The site integrates official Audi branding and partners with Allianz for insurance processing, positioning itself as a niche provider within the automotive finance and insurance sector. The business model is that of a bound insurance intermediary, providing bundled services and customer support through partner garages and direct contact channels. Technically, the site is built on the Umbraco CMS platform, utilizing modern JavaScript libraries and tracking tools such as Google Analytics and Facebook Pixel. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is strong with HTTPS enforced and nonce-based script loading, though some security headers and explicit policies could be improved. Privacy compliance is partial, with a comprehensive privacy policy linked externally but lacking a cookie consent mechanism and terms of service page. Overall, the website demonstrates high business credibility and trustworthiness with minor areas for enhancement in privacy and security transparency.

V

Volkswagen Financial Services Schweiz AG

volkswagen-versicherung.ch

0

Volkswagen Financial Services Schweiz AG operates a specialized insurance website offering comprehensive auto insurance solutions tailored for Volkswagen vehicle owners in Switzerland. The business leverages a partnership with Zurich Versicherungs-Gesellschaft AG to provide flexible and premium insurance packages, emphasizing customer service and claims support. The website targets Volkswagen customers seeking reliable and customized insurance coverage, positioning itself as a niche provider within the Swiss automotive insurance market. Technically, the website is built on the Umbraco CMS platform and employs modern web technologies including JavaScript frameworks, lazy loading for images, and tracking tools such as Google Tag Manager and Facebook Pixel. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Performance is moderate, with room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses nonce attributes in scripts to mitigate certain risks. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and there is no visible incident response or vulnerability disclosure information. Privacy compliance is partially addressed with a comprehensive privacy policy linked externally, but lacks an explicit cookie consent banner. Overall, the security posture is solid but could benefit from enhancements to headers and transparency. The domain registration details are consistent with the business claims, showing legitimacy and transparency. Contact information is clearly provided, including phone numbers, an email address, and a contact form, enhancing trustworthiness. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and publishing incident response policies to strengthen compliance and security posture.

X

XING

xing.com

0

XING is a professional networking and job search platform primarily serving German-speaking professionals. The website offers extensive job listings, recruiter access, salary information, and employer reviews, positioning itself as a key player in the online recruitment market. The platform supports profile creation and personalized job matching, enhancing user engagement and service relevance. Technically, the website employs modern web technologies such as React and asynchronous JavaScript loading, ensuring a fast and responsive user experience optimized for mobile devices. Security practices include HTTPS enforcement and sandboxed iframes for third-party content, though explicit security headers were not detected in the provided data. The absence of WHOIS data is unusual but does not detract from the site's apparent legitimacy based on content and branding. Privacy and cookie policies were not found in the provided content, indicating an area for improvement in compliance transparency.

T

The Big Issue

bigissue.com

0

The Big Issue is a prominent UK-based social enterprise and street paper dedicated to supporting people experiencing homelessness or vulnerable housing situations. It operates by providing a hand up rather than a handout, selling street papers and running social initiatives to empower its target audience. The organization holds a leading market position within the UK social enterprise sector, with a clear mission and strong brand presence. The website reflects this mission with professional content, clear navigation, and consistent branding. Technically, the site is built on WordPress with modern SEO and analytics integrations, including Yoast SEO, Google Tag Manager, and HubSpot, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with GDPR-aligned cookie consent mechanisms and a comprehensive privacy policy. Overall, the site is trustworthy and professional, though the lack of WHOIS data introduces a minor trust gap that is mitigated by the organization's public reputation and social media presence.

P

Patagonia Europe Coöperatief U.A.

patagonia.com

0

Patagonia Europe Coöperatief U.A. operates the eu.patagonia.com subdomain serving the UK and European markets, providing outdoor clothing and gear for activities such as climbing, surfing, skiing, fly fishing, and trail running. The company is a well-established global brand known for its commitment to sustainability and quality. The website is professionally designed, mobile-optimized, and uses a modern technology stack including Salesforce Commerce Cloud, Yottaa CDN, and various marketing and analytics tools. Security posture is strong with HTTPS enforcement, security headers, and consent management in place. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature and secure online presence. WHOIS data for the subdomain is not available, which is typical for subdomains, but the overall trustworthiness is high based on content and brand reputation.

D

Demos

demos.co.uk

0

Demos is a well-established UK-based non-profit think tank founded in 1996, focused on policy research, publishing, and hosting events to promote collaborative democracy and public service reform. The organization targets policymakers, government bodies, charities, and businesses, positioning itself as a leading cross-party think tank in Britain. The website reflects a professional and consistent brand image with clear communication of its mission and services. Technically, the site is built on WordPress, uses modern libraries like jQuery, and integrates Google Analytics and Tag Manager with a robust cookie consent mechanism, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security policies and headers suggests room for improvement. Overall, the site is trustworthy, compliant with GDPR, and provides comprehensive contact and policy information, supporting its credibility and transparency.

K

Knight Frank Korea

knightfrank.kr

0

Knight Frank Korea is a well-established real estate consultancy operating as part of the global Knight Frank network since 2010. The company provides a broad range of commercial and residential property services, including capital markets, occupier strategy, advisory, industrial logistics, and private wealth management. The website reflects a professional and comprehensive digital presence with strong branding and clear service offerings targeted at investors, homeowners, and developers in South Korea. Technically, the site uses ASP.NET Web Forms with modern integrations such as Google reCAPTCHA and TagCommander for privacy and marketing management. Security posture is generally good with HTTPS enforced and privacy policies in place, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, but the overall trustworthiness is supported by the global brand and consistent content. Recommendations include enhancing security headers, publishing incident response contacts, and improving direct contact information availability.

K

Knight Frank

knightfrank.qa

0

Knight Frank Qatar operates as a regional branch of the world's leading independent real estate consultancy, providing comprehensive commercial and residential property services in Qatar and the Middle East. The company leverages over 125 years of global experience and 13 years of regional presence to offer valuations, advisory, property management, and market research services. Their website reflects a professional and consistent brand image with a focus on client engagement through research reports and service offerings. Technically, the site is built on ASP.NET with modern JavaScript integrations and includes Google reCAPTCHA for form security. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. Security posture is solid with HTTPS and spam protection, though some security headers and explicit security policies are absent. Overall, the website is trustworthy, well-maintained, and aligned with the company's market position.

K

Knight Frank

knightfrank.us

0

Knight Frank is a leading independent real estate consultancy operating in the USA, offering residential and commercial property services including sales, lettings, and market research. The website is professionally designed with clear navigation and a focus on user experience, targeting property buyers, renters, and investors. The technical infrastructure includes a custom CMS, modern JavaScript libraries, and integration with Google reCAPTCHA for form security. Privacy and cookie policies are comprehensive and GDPR compliant, with a consent mechanism implemented. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which is justified for this business type. Overall, the site demonstrates a mature digital presence with good trust indicators and a high level of professionalism.

K

Knight Frank

knightfrank.co.za

0

Knight Frank South Africa is a leading independent real estate consultancy specializing in residential and commercial property services. The company offers a broad range of services including property sales, rentals, valuations, investment advisory, and corporate relocation. Their market position is strong, supported by a global network and authoritative market research. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content relevant to their target audience of property buyers, sellers, and investors in South Africa. Technically, the site uses ASP.NET with modern libraries and includes security features such as HTTPS and Google reCAPTCHA. Privacy and cookie policies are present with consent mechanisms, indicating good compliance practices. However, WHOIS data is unavailable, likely due to privacy protection, but the website's branding and external links support its legitimacy. Overall, the site demonstrates a mature digital presence with a solid security posture and good user experience.

K

Knight Frank India

knightfrank.co.in

0

Knight Frank India is a well-established international property consultancy specializing in residential and commercial real estate services. The company benefits from a strong global brand presence with over 125 years of history and a large network of offices worldwide. Their website reflects a professional and comprehensive digital presence, offering detailed property listings, research reports, and client services tailored to the Indian market. Technically, the site is built on ASP.NET with modern JavaScript libraries and includes essential features such as Google reCAPTCHA and cookie consent mechanisms, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and spam protection on forms, though there is room for improvement in security headers and published policies. Overall, the website is trustworthy, user-friendly, and compliant with privacy regulations, supporting Knight Frank's market position as a leading real estate consultancy in India.

K

Knight Frank Australia

knightfrank.com.au

0

Knight Frank Australia is a prominent real estate services provider specializing in commercial and residential property markets. The company leverages a global network and over 125 years of experience to deliver comprehensive property solutions including sales, leasing, valuations, advisory, and property management. Their website reflects a mature digital presence with well-structured content, clear navigation, and professional branding targeted at property buyers, sellers, investors, and lessees in Australia. Technically, the site is built on ASP.NET with modern integrations such as Google reCAPTCHA and TagCommander for privacy and marketing management. Security posture is strong with HTTPS enforced and spam protection on forms, though some HTTP security headers are not explicitly detected. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. The WHOIS data is privacy protected but consistent with a legitimate, established business. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a large enterprise in the real estate sector.

K

Knight Frank

knightfrank.co.uk

0

Knight Frank is a well-established UK-based real estate company specializing in residential and luxury property sales and lettings, with a global presence spanning over 50 countries. The website reflects a mature digital infrastructure using modern technologies such as EPiServer CMS, JavaScript ES modules, and Azure Application Insights for analytics. The site is professionally designed, mobile-optimized, and provides comprehensive property search and service information. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR. Overall, the site is trustworthy and professionally maintained, though WHOIS data for the 'www' subdomain is unavailable due to domain naming rules, which does not impact the legitimacy of the main domain.

P

Pingdom

pingdom.net

0

Pingdom is a well-established SaaS provider specializing in website performance and availability monitoring services. As a part of SolarWinds, it holds a strong market position targeting businesses and IT professionals who require reliable uptime and performance analytics. The website demonstrates professional branding, clear product offerings, and a user-friendly experience with comprehensive content and multimedia integration. Technically, the site is built on WordPress with modern JavaScript libraries and tracking tools, optimized for performance and mobile responsiveness. Security posture is strong with HTTPS enforcement and security headers, although explicit security policies and incident response information are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which is common for commercial entities but slightly reduces transparency. Overall, the site is trustworthy and professionally maintained, with minor recommendations to enhance security transparency and incident response readiness.

C

CookieScript

cookie-script.com

0

CookieScript is a specialized SaaS provider offering comprehensive cookie compliance solutions tailored to meet GDPR, CCPA, and other global privacy regulations. The company positions itself as a Google CMP Gold Partner with strong market presence and high customer satisfaction ratings. Their key services include cookie banners, scanners, privacy policy generation, consent management, and advanced reporting, targeting website owners, agencies, and businesses requiring privacy compliance. Technically, the website is built on Joomla CMS, hosted on DigitalOcean with EU-based servers, and integrates modern web technologies and tracking tools such as Google Tag Manager and PageSense. Security posture is solid with HTTPS, CSRF protections, and EU data residency compliance, though improvements like DNSSEC and security headers are recommended. Overall, the website is professional, well-structured, and trustworthy, with no signs of malicious activity or content blocking.

T

Tirdzniecības centrs SPICE

spice.lv

0

Tirdzniecības centrs SPICE is a prominent retail shopping center in Latvia, offering over 200 fashion and lifestyle stores including well-known international brands. The website reflects a professional retail business with a clear market position targeting general consumers interested in fashion and lifestyle products. The business model focuses on providing a comprehensive shopping experience with a wide variety of stores and services. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with good mobile optimization and performance. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response information are not publicly available. Privacy compliance is strong with comprehensive privacy and cookie policies and active consent mechanisms. Overall, the website and business demonstrate legitimacy and professionalism with no critical security or content safety concerns.

K

Knight Frank

knightfrank.com

0

Knight Frank is a globally recognized independent real estate consultancy founded in 1896 and headquartered in London, UK. The company offers a broad range of residential and commercial property services including sales, lettings, investment advisory, occupier strategy, and valuations. With nearly 500 offices worldwide, Knight Frank serves a diverse international clientele seeking property solutions. The website reflects a mature digital presence with comprehensive content, professional design, and clear navigation, supporting their market leadership. Technically, the site is built on ASP.NET with modern front-end libraries and includes security features such as HTTPS and Google reCAPTCHA to protect user interactions. Privacy and cookie policies are well implemented with consent mechanisms, indicating good compliance with GDPR and related regulations. However, the WHOIS data for the domain is unavailable, which is inconsistent with the company's long history but may be due to privacy protection or query limitations. Overall, the website demonstrates a strong security posture and business credibility with minor recommendations for enhanced security headers and accessibility improvements.

F

Fanplayr, Inc.

privacyid.ai

0

PrivacyID is a technology solution offered by Fanplayr, Inc. that enables reliable user identification on websites while maintaining user privacy and control. Positioned as a privacy-first platform, it addresses challenges posed by evolving browser restrictions and privacy regulations by providing unique user identifiers per third-party service and a centralized dashboard for consent and data management. The website is professionally designed, targeting businesses and marketers seeking compliant user identification solutions in a cookieless world. Technically, the site uses modern JavaScript frameworks such as Vue 3, integrates Fanplayr's own SDK, and employs Google Analytics for tracking. Hosting is inferred to be on Amazon AWS infrastructure. Security posture is moderate with HTTPS enforced but lacks visible security headers and published security policies. Privacy compliance is basic, with no visible cookie consent mechanism or GDPR-specific disclosures on the site itself, though privacy and terms policies are linked on the parent domain. Contact is only available via a web form, with no direct emails or phone numbers provided. Overall, the site is trustworthy and functional but could improve transparency and compliance features.

A

AMAG

media-corner.ch

0

AMAG Medienportal serves as the official media and press release platform for AMAG, a major automotive group in Switzerland. The portal provides news, press releases, and media resources for AMAG and its associated automotive brands including Volkswagen, Audi, SEAT, ŠKODA, CUPRA, and Volkswagen Nutzfahrzeuge. The website targets media professionals, partners, and customers interested in automotive industry developments and AMAG's corporate activities. The business model focuses on corporate communication and brand promotion within the automotive and sustainable mobility sectors. Technically, the website is built on Drupal 10 CMS, utilizing modern JavaScript libraries such as jQuery and lightGallery, and integrates Google Tag Manager for analytics. The site is mobile-optimized, accessible, and includes a comprehensive cookie consent mechanism powered by OneTrust, reflecting a mature digital infrastructure. Performance is moderate, with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and employs cookie consent controls, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data confirms the domain's legitimacy and consistency with the business claims, reinforcing trustworthiness. Overall, AMAG Medienportal is a professional, secure, and compliant corporate media platform with strong branding consistency and good user experience. Strategic improvements could include enhancing security headers, publishing security policies, and adding incident response contacts to further strengthen trust and compliance.

V

Volkswagen Financial Services Schweiz AG

vvd-suisse.ch

0

Volkswagen Financial Services Schweiz AG operates as a specialized insurance and financial services provider tailored primarily for drivers of Volkswagen Group brands in Switzerland, including Volkswagen, Audi, SEAT, ŠKODA, and VW commercial vehicles. The company offers key services such as auto insurance, warranty insurance, and installment insurance, positioning itself as a trusted partner for vehicle owners. The website reflects a professional and consistent brand presence with clear contact information and multiple social media channels, enhancing customer engagement and trust. Technically, the website is built on the Umbraco CMS platform and leverages modern web technologies including jQuery, Bootstrap, Google Analytics, and Adobe Dynamic Tag Management. The site is mobile-optimized with good SEO practices and moderate performance. Security-wise, HTTPS is enforced with email obfuscation techniques to reduce spam, but lacks explicit security headers and incident response policies publicly available. Privacy compliance is partially addressed with a privacy policy present but no cookie consent mechanism detected. Overall, the security posture is solid but could be improved by implementing additional security headers and formalizing incident response and vulnerability disclosure policies. The domain registration details align well with the business claims, indicating legitimacy and trustworthiness. The website content is safe for general audiences and professionally presented. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security and incident response policies, and adding security headers to strengthen defense against common web threats.

S

Securitas AB

securitasgroup.com

0

Securitas AB is a global leader in security services, offering a comprehensive portfolio that includes intelligence, advisory, safety, technology, and operational management services. The company leverages decades of experience and advanced technology to provide innovative security solutions worldwide. Their website reflects a mature digital presence with strong branding and extensive regional coverage through multiple subsidiary domains. Technically, the site employs modern analytics and consent management tools, ensuring compliance with privacy regulations such as GDPR. Security posture is robust with HTTPS enforcement and security headers, though explicit security policies and incident response information are not prominently published. Overall, the site is professional, trustworthy, and well-optimized for user experience and accessibility.

S

SECURITAS SK

securitas.sk

0

SECURITAS SK is a Slovak branch of the international Securitas Group, specializing in private security services such as physical protection, reception services, mobile patrols, remote monitoring, and security technologies. The website presents a professional image with consistent branding and clear navigation, targeting businesses and individuals seeking security solutions in Slovakia. Technically, the site uses modern analytics and consent management tools, including Google Tag Manager, Microsoft Clarity, and OneTrust, and is built on the EPiServer CMS platform. Security posture is strong with HTTPS enforcement, nonce-based script loading, and cookie consent mechanisms, although explicit security and incident response policies are not published. Overall, the site is trustworthy, compliant with GDPR, and well-optimized for SEO and accessibility.

B

Base Design

basedesign.com

0

Base Design is a professional international branding agency specializing in creating culturally impactful brands through design and technology. The company operates globally with offices in Brussels, New York, Geneva, and Melbourne, offering services such as branding, typography, identity, and digital experiences. Their website reflects a high level of professionalism with excellent design quality, clear navigation, and comprehensive content showcasing their portfolio and thought leadership. Technically, the website is built on modern frameworks including Next.js and React, ensuring fast performance and mobile optimization. The site employs cookie consent mechanisms compliant with GDPR and uses analytics tools like Google Analytics and Plausible for visitor insights. Security best practices are observed with HTTPS enforcement and security headers, although no explicit security policy or incident response information is published. The security posture is strong with no evident vulnerabilities, but the absence of WHOIS data and domain registration information raises concerns about domain legitimacy and transparency. This discrepancy impacts the overall trust score despite the professional appearance and content quality. Strategically, the company should consider publishing detailed security and incident response policies and clarifying domain registration details to enhance trust. Overall, Base Design presents as a credible and mature digital branding agency with room for improvement in transparency and security communication.

C

CASINO GRANGE DELUX théâtres Le Locle

grange-casino.ch

0

CASINO GRANGE DELUX is a cultural venue located in Le Locle, Switzerland, offering theatre performances and event programming primarily focused on local and regional audiences. The website presents a professional and consistent brand image with clear event listings and contact information, positioning itself as a key player in the regional hospitality and cultural sector. The business model revolves around ticket sales, venue rental, and cultural event hosting. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good SEO and mobile responsiveness. Security posture is solid with HTTPS and no visible vulnerabilities, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy and security disclosures.

L

Le Romandie Music Club

leromandie.ch

0

Le Romandie Music Club operates a well-established concert venue and cultural space in Lausanne, Switzerland, focusing on contemporary music and cultural events. The website presents a professional and consistent brand image with clear event programming and ticketing options, targeting a general audience interested in live music and cultural activities. The business model is that of a non-profit association, active since 2004, with a strong local market position as a cultural hub. Technically, the website uses modern frontend technologies such as Alpine.js and integrates popular analytics and tracking tools like Google Analytics and Facebook Pixel. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, HTTPS is enforced and CSRF tokens are present, but the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and security posture. Overall, the domain registration details align well with the business claims, supporting the site's legitimacy.

O

Open New Media GmbH

hotelsuite.de

0

hotelsuite, a brand of Open New Media GmbH, offers integrated software solutions tailored for the hospitality industry, focusing on enhancing direct sales through a suite of products including an online booking engine, digital check-in, email marketing automation, and online payment solutions. The company positions itself as a specialized Oracle partner, providing seamless PMS integration and a comprehensive guest journey ecosystem. The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with modern plugins and frameworks, hosted on kasserver.com, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though it lacks explicit security policies and some security headers. Overall, the site is trustworthy, compliant with GDPR, and well-suited for its target audience of hotels and hospitality businesses.

W

Workvivo

workvivo.com

0

Workvivo is a leading employee experience platform designed to unify internal communications and engagement for enterprises with both frontline and desk-based employees. Backed by Zoom's technology, it offers a mobile-first, consumer-inspired app that integrates with over 40 HR and productivity tools, enabling organizations to boost engagement, improve retention, and foster company culture. The platform supports omni-channel communications, employee listening, recognition, and digital workplace capabilities, positioning it as a comprehensive solution in the employee experience market. Technically, the website is built on modern frameworks such as Next.js and React, with integrations of HubSpot for marketing and analytics, CookiePro for consent management, and Sentry for error tracking. The site is well-optimized for performance, mobile responsiveness, and accessibility, with strong SEO practices and rich multimedia content enhancing user engagement. From a security perspective, the site employs HTTPS with strong SSL configuration and implements key security headers. Cookie consent mechanisms are in place, and no exposed sensitive data or vulnerabilities were detected in the content. However, explicit security policies and incident response contacts are not publicly available, which could be improved to enhance trust and compliance. Overall, the website presents a professional, trustworthy, and technically mature digital presence. The absence of WHOIS data limits domain registration insights, but the strong brand association with Zoom and the quality of the site content support its legitimacy. Strategic recommendations include publishing detailed security and incident response policies and considering a vulnerability disclosure program to further strengthen security posture.

The website 'Deutschland per Rad entdecken' is operated by the Allgemeiner Deutscher Fahrrad-Club e.V. (ADFC), a reputable non-profit organization focused on promoting cycling tourism in Germany. The site provides comprehensive information on cycling routes, regions, and related services, targeting both experienced cyclists and newcomers. It serves as an inspiration and planning resource for environmentally friendly and recreational cycling holidays. The business model centers on information dissemination and community engagement rather than direct commercial sales. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as jQuery and Bootstrap for responsive design. It integrates Matomo analytics with privacy-conscious settings and Google Tag Manager for marketing and tracking purposes. The site is well-structured, mobile-optimized, and includes clear navigation and search functionality, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements a robust cookie consent mechanism compliant with GDPR. While explicit security headers are not fully documented in the HTML, no critical vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contacts suggests room for improvement in transparency and readiness. Overall, the security posture is solid but could benefit from enhanced header configurations and formal policies. The domain WHOIS data is minimal but consistent with the organization's profile, showing no signs of privacy protection or suspicious registration patterns. The website is fully accessible without WAF or blocking mechanisms, indicating stable hosting and operational status. Social media integration and partner links further enhance trust and outreach. Strategic recommendations include implementing comprehensive security headers, publishing a security policy and incident response contacts, adding a terms of service page, and maintaining regular updates of third-party libraries to sustain security and compliance.

I

Industrie- und Handelskammer (IHK)

ausbildung-macht-mehr-aus-uns.de

0

The website 'Ausbildung macht mehr aus uns' is an official vocational training portal operated by the Industrie- und Handelskammer (IHK) network in Germany. It provides comprehensive information about apprenticeships, career guidance, and regional IHK contacts, targeting young people, parents, and companies interested in vocational education. The site features rich multimedia content, including videos and interactive job matching tools, reflecting a strong commitment to engaging its audience effectively. Technically, the site is built using the Astro framework and employs Matomo analytics, indicating a modern and privacy-conscious infrastructure. The hosting appears reliable, and the site is mobile-optimized with good SEO practices. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security headers and formal security policies, which are areas for improvement. Privacy compliance is limited due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned within the education sector in Germany, but could enhance its compliance and security posture to align with best practices.

G

GRÜN Handwerk Digital GmbH

direktistbesser.de

0

DirektIstBesser is a German-based campaign and e-commerce platform operated by GRÜN Handwerk Digital GmbH, focused on promoting direct personal contact between local craftsmen and their customers. The website offers a webshop with promotional products such as stickers, buttons, postcards, and other items designed to strengthen local business relationships. The campaign emphasizes the value of local, personalized service in the craftsman sector. Technically, the website is built on WordPress with WooCommerce and uses modern plugins and libraries including Borlabs Cookie for privacy compliance and Google Site Kit for analytics. The site is well-structured, mobile-optimized, and provides clear contact information and legal pages, supporting a professional online presence. Security-wise, HTTPS is enforced and cookie consent mechanisms are implemented, though security headers are not explicitly detected and no dedicated security or incident response policies are published. WHOIS data is consistent with the business location and domain registration status, supporting legitimacy. Overall, the site presents a trustworthy and professional digital footprint for a small-sized business in the craftsman promotional products niche.

G

GRÜN Handwerk Digital GmbH

dashandwerk.de

0

DasHandwerk.de is a specialized online platform dedicated to supporting the German handcraft sector, particularly Innungsfachbetriebe and Kreishandwerkerschaften. It offers services such as a business search, exclusive partner offers (Vorteilswelt), and premium business profiles to increase visibility and provide added value to handcraft businesses. The platform is operated by GRÜN Handwerk Digital GmbH and partners with reputable companies like Aral, IKK classic, and Dell Technologies to provide exclusive benefits. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, targeting handcraft businesses and their customers in Germany. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and various plugins for SEO, social sharing, forms, and cookie management. It uses HTTPS with good SSL configuration and implements GDPR-compliant cookie consent mechanisms. While explicit security headers are not clearly detected, the site follows good security practices such as no exposed sensitive data and opt-out options for analytics tracking. From a security perspective, the site shows a mature posture with no visible vulnerabilities or suspicious content. However, it lacks publicly available security policies or incident response contacts, which could be improved. The domain registration data is consistent and transparent, supporting the legitimacy of the business. Overall, DasHandwerk.de presents a trustworthy, professional, and compliant digital presence for the German handcraft industry, with room for enhancement in security transparency and incident response readiness.

The website 'BerufePilot' primarily serves as a container for an embedded JotForm application, likely related to career or job guidance services. The site lacks direct content, business descriptions, or contact information, limiting its ability to convey a clear business identity or market position. Technically, the site uses basic HTML, CSS, and JavaScript with reliance on JotForm's platform for form functionality. Mobile optimization appears adequate due to responsive iframe styling, but SEO and accessibility features are minimal. Security posture is weak, with no detected security headers, privacy policies, or cookie consent mechanisms, and no visible contact or incident response information. The WHOIS data is minimal and does not provide registrant details, reducing trustworthiness. Overall, the site is accessible without WAF or blocking mechanisms but scores low on content quality, privacy compliance, and security best practices.

B

Better Business Act

betterbusinessact.org

0

The Better Business Act website serves as a professional advocacy platform focused on reforming UK company law to align shareholder interests with social and environmental impact. Supported by a coalition of over 3,000 UK businesses, the campaign positions itself as a leading voice in sustainable business practices. The website provides resources, news, and calls to action to engage businesses and the public in its mission. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC, suggesting room for improvement. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service detected in the provided content. Overall, the site is trustworthy and professionally maintained, though enhancing privacy and security policies would strengthen its compliance and user trust.

O

OneTrust

cookiepro.com

0

OneTrust is a leading enterprise technology company specializing in privacy, security, and governance software solutions. Their CookiePro product offers a comprehensive consent management platform trusted by over 750,000 websites globally. The company targets enterprises and organizations needing to comply with privacy regulations such as GDPR and CCPA, providing tools to streamline consent and preference management. OneTrust holds a strong market position as a privacy compliance leader with a broad portfolio of integrated solutions.

E

ESG Business Institute

esg-bi.org

0

The ESG Business Institute operates as a global educational and networking platform dedicated to Environmental, Social, and Governance (ESG) principles. Founded in 2021 and headquartered in Singapore, it serves a medium-sized community of over 5,000 members across more than 35 countries. The organization offers a variety of sustainability courses, certificates, and global events, leveraging partnerships with reputable institutions such as eCornell and Deloitte. The platform is built on the Moodle LMS, providing a structured and scalable learning environment. Technically, the website employs a modern tech stack including Moodle, Bootstrap, YUI, jQuery, and Swiper.js, with Google Tag Manager integrated for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses domain registration protections but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements in security headers and incident response transparency are advised. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. The absence of direct contact emails or phone numbers is noted, with contact primarily via web forms. The website content is safe, professional, and targeted at a general audience interested in ESG education and leadership. Strategically, the ESG Business Institute is well-positioned as a niche educational provider in the ESG domain, with a credible and consistent online presence. Continued focus on security enhancements and transparency will further strengthen trust and compliance.

G

Global Reporting Initiative

globalreporting.org

0

Global Reporting Initiative (GRI) is a well-established non-profit organization founded in 1999 that provides globally recognized sustainability reporting standards. The website serves as a professional platform targeting businesses, governments, NGOs, and sustainability professionals, offering standards, guidance, and training to support ESG reporting. The organization holds a leading market position in the sustainability reporting sector. Technically, the website employs modern analytics and consent management tools such as Google Analytics, Hotjar, and Cookiebot, hosted with Cloudflare DNS services, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and implementing security headers. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with no signs of blocking or WAF interference.

C

Canto

imagerelay.com

0

Canto is a technology company specializing in digital asset management and product information management solutions, having evolved from Image Relay. The company positions itself as a leader in the DAM market with integrated PIM capabilities, targeting product-driven brands and dynamic teams. Their platform offers centralized management of product images, descriptions, and specifications, combined with collaboration tools and integrations to accelerate go-to-market strategies. Technically, the website is built on modern frameworks such as Vue.js and employs a variety of marketing and analytics tools including Google Tag Manager, Facebook Pixel, and Hotjar. The site is well-optimized for performance, mobile responsiveness, and SEO, providing an excellent user experience. Security-wise, the site enforces HTTPS and uses a consent management platform for privacy compliance, though explicit security headers are not detected in the HTML source, indicating room for improvement. The absence of WHOIS data reduces trust slightly but the professional presentation and comprehensive policies support a strong legitimacy profile. Overall, the website demonstrates a mature digital presence with good security posture and privacy compliance.

The website girolabs.tech currently serves only a 404 Not Found error page, indicating that the content is inaccessible or the site is misconfigured. There is no visible business information, metadata, or structured data to analyze. The domain is registered with Namecheap since 2021 and is set to expire in 2026, which suggests a legitimate registration but the website itself lacks active content or services. The technical infrastructure is minimal, with hosting on LiteSpeed Web Server and no detected CMS or frameworks. Security posture is weak due to missing HTTPS information, lack of security headers, and absence of privacy or cookie policies. Overall, the site appears inactive or under development, resulting in a low trust and credibility score.

G

Grupo Expansión

expansion.mx

0

Expansión.mx is a leading Mexican digital media platform specializing in business, economic, political, and technology news. Operated by Grupo Expansión, it targets Spanish-speaking professionals and the general public interested in these sectors. The website offers a rich content experience with news articles, podcasts, and digital magazine editions, supported by a strong brand presence with over 50 years of history. Technically, the site employs modern web technologies including Google Tag Manager, Firebase SDKs, Facebook SDK, and advanced advertising platforms, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though privacy compliance is lacking due to missing explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and well-positioned in the Mexican media market, but should improve privacy transparency and user consent mechanisms to enhance compliance and user trust.

N

Noticias Ambientales

noticiasambientales.com

0

Noticias Ambientales is a specialized environmental news portal founded in 2010, directed by journalist Luis Pavesio. It provides national and international news focused on environment, climate change, energy, sustainability, animals, and related topics. The website targets a general audience interested in environmental issues and operates in multiple languages including English, Spanish, and Portuguese. The business model is media publishing with content monetization through advertising and newsletter subscriptions. The site maintains a consistent brand presence and leverages social media channels to extend its reach.

S

Sistema B Brasil

sistemabbrasil.org

0

Sistema B Brasil is a Brazilian non-profit organization dedicated to promoting sustainable and socially responsible business practices through the B Corporation movement. The website offers tools such as the B Impact Assessment, certification services, consulting, and professional training to help businesses measure and improve their social and environmental impact. The organization positions itself as a leader in Brazil and Latin America for impact-driven business certification and multi-sector collaboration. Technically, the website is built on WordPress with Elementor and uses modern SEO and analytics tools, hosted on HostGator Brazil. Security posture is adequate with HTTPS and domain transfer protection, but lacks advanced security headers and explicit privacy and cookie policies. The site is accessible, well-branded, and professionally designed, targeting businesses interested in sustainability and impact. Overall, the website reflects a credible and established organization with room for improvement in privacy compliance and security best practices.

I

iHeartMedia, Inc.

iheart.com

0

iHeartMedia, Inc. operates a leading digital media platform specializing in podcast streaming, news, sports, and lifestyle content. The website offers a rich catalog of popular and featured podcasts targeting a broad audience interested in diverse topics. The business model is primarily free streaming supported by advertising and subscription options, positioning iHeart as a major player in the media industry. Technically, the site leverages modern web technologies including React, JW Player, Adobe DTM, and Google Analytics, ensuring a fast, mobile-optimized, and accessible user experience. Security posture is strong with HTTPS enforcement, security headers, and use of recaptcha, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though the absence of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing transparency on security and data retention, and maintaining up-to-date third-party libraries.

Cloudflareinsights.com is a minimal landing page domain owned by Cloudflare, Inc., primarily serving as a pointer to Cloudflare's main web analytics product page. The business behind the domain is a major technology company specializing in web infrastructure and security services, with a strong market position and enterprise scale. The website itself lacks substantive content, policies, or contact information, indicating it is not a standalone service site but rather a redirect or informational placeholder. Technically, the site is hosted and managed by Cloudflare, leveraging their DNS and hosting infrastructure. The minimal content and use of SVG images contribute to fast loading times, but the site lacks modern SEO and accessibility features. No CMS or frameworks are detected, and no security headers are present in the provided data, though SSL is properly configured. From a security perspective, the domain registration is consistent and legitimate, with no suspicious patterns. However, the website lacks published privacy, cookie, or security policies, and no incident response or vulnerability disclosure information is available. The absence of these elements reduces the site's compliance posture and trust signals. No WAF blocking or security challenges were detected, and the content is safe for general audiences. Overall, the site scores moderately low due to minimal content and lack of compliance documentation but benefits from strong domain legitimacy and hosting by a reputable provider. Strategic improvements include publishing privacy and cookie policies, adding contact and incident response information, enabling DNSSEC, and implementing security headers to enhance trust and compliance.

V

VWO

vwo.com

0

VWO is a well-established enterprise SaaS company specializing in digital experience optimization, including experimentation and conversion rate optimization. The company holds a market-leading position and targets businesses seeking to improve their digital marketing and user experience outcomes. The website reflects a mature digital infrastructure with strong SEO, multilingual support, and modern marketing technologies such as Google Tag Manager and VWO's own SmartCode. Security posture is robust with HTTPS, security headers, and domain registration controls, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and well-optimized for performance and user experience.