Security Directory

W

webways AG

sozjobs.ch

0

sozjobs.ch is a specialized online job portal focused on social and healthcare professions in Switzerland, operated by webways AG. It holds a strong market position as the largest Swiss job portal in its niche, offering comprehensive job listings, employer profiles, and user-friendly search and application features. The website is professionally designed, mobile-optimized, and provides clear navigation and detailed filtering options tailored to its target audience of job seekers and employers in the social and healthcare sectors. Privacy and cookie policies are well implemented, reflecting GDPR compliance.

G

GLARNAIR Flugdienstleistungen

glarnair.ch

0

GLARNAIR Flugdienstleistungen is a Swiss-based aviation company established in 2009, offering flight school services, charter and taxi flights, and customized sightseeing flights with airplanes and helicopters. The company targets individuals aspiring to become pilots as well as customers seeking private charter or scenic flights. The website is professionally designed using WordPress with the Avada theme and integrates SEO best practices via Yoast SEO. It includes structured data for enhanced search engine understanding and uses Google Analytics for visitor tracking. Contact information is clearly presented, enhancing business credibility. Technically, the website employs modern web technologies including HTTPS, jQuery, and SEO plugins, ensuring moderate performance and good mobile optimization. However, some security best practices such as security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. No forms collecting personal data are present on the homepage, reducing immediate privacy risks. From a security perspective, the site uses HTTPS and a honeypot anti-spam plugin, but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. WHOIS data confirms the legitimacy of the domain and its alignment with the business claims, indicating a trustworthy entity. Overall, the website is safe, professional, and credible but could benefit from enhanced privacy and security features. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to improve transparency and trust.

A

Anderthalb.ch

anderthalb.ch

0

Anderthalb.ch is a Swiss-based web agency specializing in programming, consulting, design, hosting, and support services primarily targeting businesses and organizations seeking comprehensive web solutions. The company positions itself as a regional expert with a focus on delivering more than just websites, emphasizing quality and client satisfaction. The website reflects a professional and consistent brand image with clear service offerings and client showcases. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern JavaScript libraries such as jQuery and GSAP for animations, and integrates Google Tag Manager and Google Analytics for tracking. The site is mobile-optimized with good SEO and accessibility basics, although there is room for improvement in accessibility features and additional security headers. From a security perspective, the website enforces HTTPS, employs cookie consent mechanisms compliant with GDPR, and uses session and CSRF protection cookies. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, Anderthalb.ch presents a trustworthy and professional online presence with solid technical implementation and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen the security posture and user experience.

W

Websamurai AG

websamurai.ch

0

Websamurai AG is a Swiss-based innovative web agency with offices in Aarau and Zürich, specializing in web design, programming, online shops, mobile apps, APIs, CMS systems, and online marketing services. The company targets both B2B and B2C clients and has nearly a decade of experience, positioning itself as a trusted and creative partner in the digital space. Their website reflects a professional and modern digital presence, leveraging WordPress CMS and various marketing and analytics tools to optimize user engagement and performance. Security posture is strong with HTTPS, reCAPTCHA, and obfuscated emails, though some security headers could be improved. Privacy and cookie policies are present and GDPR compliant, with active consent mechanisms. Overall, the company demonstrates a mature digital infrastructure and a solid market position in the Swiss technology sector.

C

Careerplus

careerplus.ch

0

Careerplus is a leading Swiss personnel consultancy specializing in the recruitment of qualified professionals for permanent and temporary positions across various sectors including finance, healthcare, energy, and manufacturing. The company targets job seekers and employers within Switzerland, offering services such as recruitment, salary consulting, assessments, and interim management. The website is professionally designed, multilingual, and provides a comprehensive job search experience with detailed filtering options. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS and secure forms, though explicit security and privacy policies are not prominently published. Overall, the domain registration aligns well with the business claims, supporting legitimacy and trustworthiness.

The website reflio.com is currently inaccessible due to a paused deployment, as indicated by the minimal placeholder HTML content stating 'This deployment is temporarily paused' and a Vercel deployment ID. No business-related content, metadata, or contact information is available, preventing a full assessment of the company's services, market position, or technical maturity. The domain is registered with NameCheap since 2021 and uses Cloudflare DNS, which is consistent with a small or startup business setup. However, the lack of an active website significantly limits the ability to evaluate the company's digital presence or security posture. From a technical perspective, the site appears to be hosted on Vercel, but no scripts, analytics, or security headers are present in the provided content. The absence of privacy, cookie, or terms of service policies indicates non-compliance with common privacy regulations such as GDPR. No contact or incident response information is available, which is a concern for trust and security readiness. Security-wise, the lack of accessible content and security headers, combined with no visible SSL configuration details, suggests a minimal security posture at this time. The domain registration is legitimate and consistent, but the paused deployment status means the website is not currently operational, which is a critical issue for business credibility and user trust. Overall, the site scores very low on content quality, technical implementation, security posture, privacy compliance, and business credibility due to the paused deployment and lack of accessible information. Strategic recommendations include reactivating the website with full content, implementing security best practices, publishing privacy and cookie policies, and providing clear contact and incident response details to improve trust and compliance.

Achermann Sport is a well-established Swiss retail company specializing in ski, langlauf, running, and outdoor adventure equipment. With physical stores in Stans and Engelberg and a robust online shop, the company offers a wide range of products and services including equipment rental, ski service, and running shoe consultation. The website reflects a professional and trustworthy brand with clear business information and strong regional presence. Technically, the site is built on WordPress with WooCommerce and uses modern optimization and marketing tools, ensuring good performance and SEO. Security posture is solid with HTTPS and secure payment integration, though minor improvements in CSP and cookie consent are recommended. Overall, the site is safe, user-friendly, and compliant with GDPR requirements.

S

Schöffel PRO

schoeffel-pro.com

0

Schöffel PRO operates as a specialized e-commerce retailer focused on providing high-quality, customizable workwear and corporate clothing primarily targeting businesses and professionals in Germany. The website presents a professional and consistent brand image with a clear focus on its niche market. The technical infrastructure leverages modern web technologies including JavaScript, Cookiebot for consent management, and Google Tag Manager for analytics and marketing integration. The site is mobile-optimized and demonstrates good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers and policies could be enhanced. The absence of WHOIS data raises concerns about domain registration legitimacy, but the website content and operational indicators suggest a legitimate business presence. Overall, the site is safe, professional, and compliant with GDPR requirements.

J

Jet Systems Hélicoptères Services

jetbooking.fr

0

Jet Systems Hélicoptères Services operates an e-commerce platform specializing in helicopter flight experiences including introductory flights, panoramic tours, pilot initiation, and related services across regions in France such as Rhône Alpes, Auvergne, Côte d'Azur, and Corsica. The company positions itself as a direct service provider without intermediaries, offering a seamless booking experience from online purchase to flight execution. The website is professionally designed, multilingual (French and English), and includes rich structured data to enhance SEO and user engagement. The business targets general consumers interested in unique aerial experiences and tourism in France. Technically, the website is built on the PrestaShop CMS with Elementor page builder, leveraging modern web technologies including jQuery, Font Awesome, and Google Tag Manager. Hosting and domain registration are managed by reputable providers OVH and Cloudflare, ensuring reliable infrastructure. The site is mobile-optimized and performs moderately well, with good SEO practices and accessibility features. From a security perspective, the site enforces HTTPS with a valid SSL certificate and employs Google reCAPTCHA for form protection. However, it lacks explicit HTTP security headers and a cookie consent mechanism, which are important for GDPR compliance and enhanced security posture. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, showing domain registration in 2019, appropriate for the company's timeline. Overall, Jet Systems Hélicoptères Services presents a trustworthy and professional online presence with room for improvement in privacy compliance and security hardening. Strategic enhancements in cookie consent, security headers, and published security policies would strengthen user trust and regulatory adherence.

V

Victorinox

victorinox.com

0

Victorinox is a well-established Swiss brand known globally for its Original Swiss Army Knife and a broad range of quality products including cutlery, watches, travel gear, and fragrances. The website reflects a mature e-commerce platform with a strong brand presence and comprehensive product offerings targeting general consumers seeking premium Swiss quality. Technically, the site leverages modern web technologies such as React and Next.js, hosted on SAP cloud infrastructure, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and monitoring scripts in place, although the absence of public WHOIS data slightly impacts trust assessment. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and user-friendly, supporting Victorinox's market position as a premium retail brand.

The website hellyhansen.com is currently inaccessible due to a CAPTCHA security challenge, preventing extraction of meaningful content or metadata. The domain is well-established, created in 1997, and registered through a reputable registrar, indicating a legitimate business presence. However, the lack of accessible content limits the ability to assess business descriptions, policies, or contact information. The technical infrastructure includes bot protection mechanisms, but no further technology stack details are available. Security posture cannot be fully evaluated due to content blocking, though domain registration status suggests standard protections are in place. Overall, the site appears to be a legitimate retail brand but requires removal or adjustment of WAF restrictions to enable comprehensive analysis.

Hamilton Watch Company is a well-established luxury watch brand offering a wide range of men's and women's watches that combine American heritage with Swiss precision. The website serves as the official e-commerce platform, showcasing collections such as Khaki, Ventura, and Jazzmaster. The brand is positioned strongly in the luxury retail market and is owned by the Swatch Group, a major player in the watchmaking industry. The site targets watch enthusiasts and general consumers seeking quality timepieces. Technically, the website is built on Magento, leveraging modern web technologies and performance monitoring tools, hosted likely via Akamai CDN, ensuring fast and reliable user experience. The site is mobile-optimized and accessible, with good SEO practices in place. Security posture is strong with HTTPS enforced, security headers implemented, and no visible vulnerabilities. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. However, explicit security policies and incident response information are not published, and no vulnerability disclosure program is evident. Overall, the website is professional, trustworthy, and secure, though it could improve transparency on security and incident handling. The WHOIS data is missing or protected, which slightly reduces trust but is mitigated by the brand's reputation and website quality.

M

Metaloop AG

metaloop.ch

0

Metaloop AG is a Swiss-based creative agency specializing in brand strategy, design, and identity development. The company targets businesses and organizations seeking comprehensive branding solutions to enhance their market presence. Their website reflects a professional and consistent brand image, showcasing their portfolio and emphasizing strategic creativity. Technically, the site is built on WordPress with Elementor and optimized for performance and SEO, indicating a mature digital infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though some improvements in security headers and privacy compliance could be made. Overall, the website presents a trustworthy and credible business with clear contact information and partner affiliations.

M

Medeco Cleantec

chemiefrei.com

0

Medeco Cleantec operates a German-language e-commerce website specializing in chemical-free, sustainable cleaning products under the green cleaning concept. The company targets environmentally conscious consumers seeking effective hygiene solutions without harmful chemicals. The website is built on the Shopify platform using the Debut theme, integrating multiple marketing and review tools to enhance customer engagement and trust. The business appears to be a small-sized retailer founded in 2018, with a consistent domain registration history and a clear focus on green cleaning innovation. Technically, the site is well-structured, mobile-optimized, and employs secure payment methods including Apple Pay and Shop Pay. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. However, explicit security policies and incident response information are not published, representing an area for improvement. Overall, the site demonstrates a good security posture with HTTPS enforcement and domain transfer lock, though enabling DNSSEC would further enhance DNS security. The website content is safe for general audiences, with no adult or questionable material detected.

E

easyname GmbH

events.at

0

events.at is a regional Austrian event portal focused on providing comprehensive information about cultural and entertainment events such as concerts, theater, parties, and festivals. It is associated with the KURIER media group, which is reflected in shared privacy policies and branding. The website employs modern web technologies and third-party services for content personalization and paywall management, ensuring a good user experience and monetization strategy. Privacy compliance is well addressed through a consent management platform (Didomi) and clear cookie policies. Security posture is strong with HTTPS and security headers, although explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and safe for general audiences.

M

Mediaprint Zeitungs- und Zeitschriftenverlag Ges.m.b.H. & Co KG

kurieranzeigen.at

0

KURIER Anzeigen is a prominent Austrian media advertising platform operated by Mediaprint Zeitungs- und Zeitschriftenverlag Ges.m.b.H. & Co KG, offering advertising solutions across a broad portfolio of print and digital media products. The website targets advertisers seeking to reach a high-quality readership in Austria, positioning itself as a leading quality daily newspaper with stable readership figures. The platform provides various advertising formats, newsletters, and event services to support its business model. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, DataTables, and FontAwesome Pro, combined with a GDPR-compliant consent management system (Didomi) and captcha protection (captcha.eu). The site is mobile-optimized and demonstrates good performance and accessibility standards, although some improvements in security headers and accessibility could be made. From a security perspective, the site enforces HTTPS and integrates bot protection and consent management, reflecting a mature security posture. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for enhancement in transparency and readiness. The lack of WHOIS data limits domain trust verification but the website content and branding indicate a legitimate and professional media business. Overall, the site presents a trustworthy and professional front for media advertising in Austria, with solid technical and privacy compliance foundations. Strategic improvements in security transparency and WHOIS data availability would further strengthen its credibility and risk posture.

B

Bazar

bazar.at

0

Bazar.at is a well-established Austrian online classifieds platform operating since 1983, offering a broad range of classified ads including real estate, vehicles, clothing, and services. The platform targets the general Austrian public seeking to buy or sell goods locally. The website demonstrates a mature digital presence with modern Angular framework usage and integration of consent management tools to comply with GDPR requirements. Advertising is managed through Google GPT and privacy-conscious SDKs, reflecting a balanced approach to monetization and user privacy. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though the absence of explicit security policies and incident response contacts suggests room for improvement. The lack of WHOIS data limits domain ownership verification but does not detract significantly from the site's legitimacy given its operational history and content quality. Overall, bazar.at presents a professional, trustworthy, and user-friendly classifieds marketplace with good privacy compliance and moderate technical sophistication.

J

Job Immobilien Motor (JIM) Marketing GmbH

dibeo.at

0

DIBEO is an Austrian real estate platform operated by Job Immobilien Motor (JIM) Marketing GmbH, providing a comprehensive marketplace for various property types including apartments, houses, commercial properties, and land. The platform targets buyers, renters, and investors within Austria, offering advanced search and filtering capabilities to facilitate property discovery. The website is built using modern web technologies such as Angular and integrates third-party consent management and advertising SDKs to comply with privacy regulations and monetize through advertising. Technically, the website demonstrates a moderate to good level of digital maturity with responsive design, structured data for SEO, and a cookie consent mechanism that aligns with GDPR requirements. However, the absence of visible security headers and a published privacy policy or terms of service page indicates areas for improvement in compliance and security transparency. From a security perspective, the site uses HTTPS and consent management effectively but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The missing WHOIS data reduces domain trustworthiness slightly, but the presence of consistent business information and contact details supports legitimacy. Overall, the website presents a professional and trustworthy real estate service with good user experience and privacy compliance, though it would benefit from enhanced security disclosures and WHOIS transparency to strengthen trust and compliance posture.

T

Telekurier Online Medien GmbH & Co KG

kurier.tv

0

kurier.tv is a professional Austrian media website operated by Telekurier Online Medien GmbH & Co KG, providing video content including news, talk shows, documentaries, and magazine-style programming. The site targets a general German-speaking audience interested in current affairs and cultural content. The business model relies on advertising revenue with an option for users to subscribe for an ad-free experience. The domain is well established since 2010 and the website branding is consistent with the company identity. Technically, the site uses modern web technologies including lazy loading, SVG graphics, and integrates third-party consent management and payment services such as Didomi and Tinypass. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. The website enforces HTTPS and provides a comprehensive privacy policy and cookie consent mechanism, indicating good privacy compliance. However, some security best practices such as DNSSEC and security headers could be improved. No contact emails or phone numbers are explicitly found in the provided content, and no terms of service page was detected. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR requirements.

P

profil Redaktion GmbH

profil.at

0

profil.at is the digital presence of profil Redaktion GmbH, an established Austrian independent news magazine founded in 1970. The website offers a broad range of news, opinion articles, podcasts, and subscription services targeting politically and socially engaged Austrian readers. The business model combines advertising revenue with a subscription offering that includes an ad-free experience. Technically, the site uses modern JavaScript libraries, consent management tools like Didomi, and paywall/identity management via Piano.io, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security headers should be verified. The absence of WHOIS data reduces domain registration trust but does not detract from the site's evident legitimacy and professionalism. Overall, profil.at represents a reputable media outlet with strong privacy compliance and a solid digital presence.

E

easyname GmbH

futurezone.at

0

futurezone.at is a well-established Austrian technology news portal providing current technology news and digital trend reports primarily targeting technology enthusiasts and the general public interested in digital developments. The site operates under the parent company KURIER Medienhaus and offers a mix of editorial content and video media, monetized through advertising with an option for users to subscribe to an ad-free experience. The technical infrastructure leverages modern web technologies including lazy loading, consent management via Didomi, and Cloudflare DNS services, ensuring a responsive and user-friendly experience across devices. Security posture is strong with HTTPS enforcement and standard security headers, complemented by GDPR-compliant privacy and cookie policies. However, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a credible source in its market segment.

K

KURIER

freizeit.at

0

freizeit.at is a lifestyle portal operated under the Austrian media brand KURIER, offering content on culinary, travel, love, fashion, and trends. It targets a broad general audience interested in lifestyle topics and operates on an advertising-funded model with an optional subscription for an ad-free experience. The website is well-branded and consistent with the parent company’s media presence. Technically, the site uses modern JavaScript frameworks, Cloudflare for DNS and CDN, and integrates third-party services for subscription management and consent management, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is robust with clear privacy and cookie policies and a consent mechanism. Overall, the site is professional, trustworthy, and well-optimized for users.

F

Franz Kaldewei GmbH & Co. KG

kaldewei.com

0

Franz Kaldewei GmbH & Co. KG operates the website www.kaldewei.com, presenting itself as a manufacturer and supplier of high-quality bathroom products including bathtubs, showers, and washbasins made from steel enamel. The company targets a broad audience interested in bathroom design and renovation, offering tools such as an online bathroom planner. The website is professionally designed using TYPO3 CMS and integrates modern web technologies including Google Tag Manager and Usercentrics for consent management. Despite the professional presentation, the absence of publicly available WHOIS data for the domain raises some transparency concerns. The website is fully accessible without any WAF or security challenge blocking content.

F

follow.it

follow.it

0

follow.it is a mature news aggregation platform founded in 2006, offering personalized news delivery services to readers and publishers. The website is built using modern frontend technologies, likely Vue.js, and integrates advertising through Google Adsense. The platform positions itself as a comprehensive news solution, targeting a broad audience interested in curated news content. Technically, the site demonstrates good security practices with HTTPS and DNSSEC enabled, but lacks visible security headers and formal privacy or cookie policies. Contact and incident response information are not readily available, which may impact user trust and compliance. Overall, the site is functional and professional but could improve transparency and security posture.

B

blue Cinema

bluecinema.ch

0

blue Cinema is a regional cinema chain operating in Switzerland, offering movie screenings, events, and ticket booking services. The website targets general moviegoers and provides up-to-date movie listings and showtimes. The business model focuses on entertainment and leisure through cinema experiences, with additional offerings such as games and special events. The company maintains a consistent brand presence and a professional online interface.

E

ENAIP Internationaler Bund GmbH

enaip-ib.ch

0

ENAIP Internationaler Bund GmbH operates the website www.enaip-ib.ch, providing adult education and vocational training primarily in Luzern and Zürich, Switzerland. The company offers a broad range of courses including construction trades, language courses, IT, and company-specific training. The website reflects a well-established educational institution with over 48 years of experience and eduQua certification, indicating quality standards in Swiss adult education. The target audience is adults seeking professional development and continuing education in the region. Technically, the website uses modern frameworks such as Bootstrap and integrates Google reCAPTCHA and Altcha CAPTCHA for security. The presence of Google Analytics and Google Adsense indicates moderate user tracking and advertising practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Contact information is comprehensive and transparent, including phone, email, physical addresses, and social media channels. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

C

Centro di Formazione Professionale OCST

cfp-ocst.ch

0

Centro di Formazione Professionale OCST is a well-established vocational training center based in Switzerland, offering a wide range of professional courses including languages, construction, commerce, accounting, and IT. The organization targets adults and professionals seeking continuing education and qualification preparation. The website reflects a mature digital presence with a modern tech stack and good mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though dedicated security and incident response policies are not publicly detailed. The business demonstrates high credibility with clear contact information, certifications such as eduQua, and membership in Travail.Suisse Formation. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

H

Hotellerie Gastronomie Verlag (Abteilung der Hotel & Gastro Union)

gastrojob.ch

0

Gastrojob.ch operates as a specialized job platform serving the hospitality, gastronomy, and tourism sectors primarily in Switzerland. It is affiliated with the Hotellerie Gastronomie Verlag and the Hotel & Gastro Union, providing a trusted channel for employers and job seekers within these industries. The platform offers categorized job listings, direct access to applicant profiles, and subscription-based job alerts, positioning itself as a key resource in the Swiss hospitality employment market. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including Google Tag Manager and reCAPTCHA for analytics and security. The site demonstrates good mobile optimization and SEO practices, with a moderate performance profile. Security posture is solid with HTTPS enforced and form protections in place, though explicit security headers and policies could be improved. Privacy compliance is well addressed with clear cookie consent mechanisms and a comprehensive privacy policy aligned with GDPR. Overall, Gastrojob.ch presents a professional, trustworthy, and functional online presence with room for enhancement in security transparency and direct contact information.

G

gastroagentur

gastroagentur.ch

0

gastroagentur is a specialized communications agency focused on the hospitality and tourism sectors in Switzerland. They offer a comprehensive suite of services including content creation, media relations, storytelling, graphic design, and digital marketing tailored to the needs of the guest service industry. Their market position is that of a niche provider with deep industry knowledge, serving small to medium-sized clients in the hospitality domain. The website reflects a professional and consistent brand image with clear messaging and a user-friendly interface. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The use of Matomo analytics and Google reCAPTCHA v3 demonstrates attention to privacy and security. The site is mobile optimized and performs moderately well, though some improvements in accessibility and security headers could be made. From a security perspective, the site uses HTTPS and has implemented anti-bot measures on its contact form. However, it lacks explicit security headers and does not provide a security policy or incident response contact, which are areas for improvement. No vulnerabilities or suspicious content were detected. Overall, gastroagentur presents a trustworthy and professional online presence with minor compliance gaps, particularly in privacy and cookie policies. Strategic enhancements in security policies and compliance documentation would further strengthen their digital maturity and trustworthiness.

E

ELIZA QM

myeliza.de

0

ELIZA QM is a specialized provider of ISO 9001 compliant digital quality management software, targeting SMEs primarily in Germany and Switzerland. The company positions itself as a trusted partner for over 100 companies across 15 industries, offering tools to optimize quality management processes and facilitate ISO 9001 certification and audits. The website is professionally designed using Squarespace, with modern web technologies and analytics tools integrated, reflecting a moderate to high level of digital maturity. Security posture is strong with HTTPS and HSTS enabled, and cookie consent mechanisms in place, though explicit privacy and terms of service policies are missing. Contact information is not directly visible, which may impact user trust and compliance. Overall, the site presents a credible business with room for improvement in privacy compliance and contact transparency.

M

Monoplan AG

monoplan.ch

0

Monoplan AG is a professional interdisciplinary design firm specializing in architecture, interior, graphic, and product design, with a strong focus on project management and international experience. The company serves clients primarily in the real estate and hospitality sectors, offering a broad range of services from concept studies to brand development. Their market position is supported by a well-maintained portfolio and active social media presence. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for mobile and SEO, and secured with HTTPS. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is generally good with HTTPS and cookie consent, but lacks published security policies or incident response information. Overall, the website is professional and trustworthy, but domain registration verification is recommended.

D

Delivros Orell Füssli AG

delivros-orellfuessli.ch

0

Delivros Orell Füssli AG is a leading Swiss service provider specializing in the procurement, distribution, and utilization of media. The company positions itself as the top media procurement partner in Switzerland, targeting businesses and institutions requiring centralized media services. The website reflects a professional business model focused on media services with a clear market leadership claim within the Swiss market. Technically, the website is built on WordPress using Elementor and enhanced with Yoast SEO for search optimization. Cookie consent is managed via CookieYes, and Google Tag Manager is used for analytics and marketing tracking. The site demonstrates good mobile optimization and a moderate performance profile. Security-wise, HTTPS is enforced, but there is a lack of advanced security headers and explicit security or privacy policies, which could be improved to enhance trust and compliance. No signs of WAF or content blocking were detected, allowing full content accessibility. Overall, the website is credible and professionally maintained but would benefit from enhanced privacy and security disclosures to meet higher compliance standards.

K

kv zürich

kvz-moodle2.ch

0

The analyzed website is a Microsoft Azure Active Directory login portal for the kvzschulech.onmicrosoft.com tenant, serving the educational institution 'kv zürich' in Switzerland. It facilitates secure user authentication for access to services such as the kvz-moodle2.ch learning platform. The site leverages Microsoft's identity platform technologies, including OAuth2 and OpenID Connect, ensuring robust security and compliance with privacy standards. The presence of official Microsoft privacy and terms of service links further reinforces trustworthiness. From a technical perspective, the site is hosted on Microsoft Azure infrastructure, utilizing modern JavaScript frameworks and secure authentication flows. Performance and mobile optimization are good, with accessibility features implemented. Security headers and HTTPS enforcement are in place, contributing to a strong security posture. No vulnerabilities or suspicious content were detected. Overall, the website demonstrates a mature digital infrastructure aligned with enterprise-grade security practices. The lack of direct contact information on the login page is typical for such portals, with user support likely managed through the parent educational organization. The domain is a Microsoft-managed subdomain, consistent with the service provided, and no WHOIS data is available for the subdomain, which is expected. The risk assessment is low, with no critical issues identified. Strategic recommendations include maintaining up-to-date security libraries, conducting regular security audits, and monitoring for phishing attempts targeting the login portal to ensure continued protection of user credentials and data.

S

SV Restaurant

sv-restaurant.ch

0

SV Restaurant is a hospitality business operating a restaurant chain in Switzerland, offering menu plans and multiple store locations. The website is built using modern Angular framework and includes cookie consent mechanisms with default denial of ad and analytics storage, reflecting a basic level of privacy compliance. However, the site lacks explicit privacy policy, terms of service, and contact information, which are important for user trust and regulatory compliance. The technical infrastructure is modern but could benefit from enhanced security headers and accessibility improvements. Overall, the security posture is moderate with room for improvement in transparency and incident response readiness. Strategic recommendations include implementing comprehensive privacy and security policies, adding contact details, and enhancing security headers to improve trust and compliance.

T

TÜV Austria

tuv.at

0

TÜV Austria is a leading technical inspection association based in Austria, providing services in safety, quality, innovation, and training across more than 34 countries. The company offers a broad range of services including technical inspection, certification, consulting, and education, targeting businesses and organizations requiring compliance and quality assurance. The website reflects a mature digital presence built on WordPress with modern technologies such as Mapbox GL JS and Doofinder for enhanced user experience and search capabilities. Security posture is strong with HTTPS enforcement, security headers, and CAPTCHA protections on forms, although there is room for improvement in publishing explicit security policies and incident response information. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, TÜV Austria presents a trustworthy and professional online presence consistent with its market position.

D

Domaintechnik® | Webhosting & Domains aus Österreich | 1A Qualität

domaintechnik.at

0

Domaintechnik® is a web hosting and domain registration service provider based in Austria, emphasizing quality support and a broad software offering including a homepage builder. The company positions itself as an ICANN accredited registrar, targeting businesses and individuals in Austria seeking reliable hosting and domain services. The website is built on WordPress, utilizing modern SEO tools such as Rank Math and performance optimizations like lazy loading scripts. Social media presence is established via Facebook and Twitter/X. Security posture is moderate with HTTPS enforced, but lacks explicit security headers and privacy policies. No WHOIS data is available due to NIC.AT restrictions, but the website's professional presentation and branding suggest legitimacy. Privacy compliance and contact transparency require improvement to enhance trust and regulatory adherence.

C

Conférence romande des bureaux de l’égalité

egalite.ch

0

egalite.ch is a regional governmental and non-profit platform representing the Conférence romande des bureaux de l’égalité, which coordinates and promotes gender equality initiatives across French-speaking Swiss cantons. The website serves as an information hub and project coordinator for equality offices in cantons such as Berne (French part), Fribourg, Genève, Neuchâtel, Jura, Valais, and Vaud. It targets public institutions and citizens interested in gender equality and provides project information, news, and resources. Technically, the website is built on WordPress 6.8.3, leveraging modern web technologies including jQuery and WP Rocket for performance optimization. It uses standard plugins for GDPR compliance and cookie consent management, ensuring privacy compliance. The site is mobile-optimized with good SEO and accessibility features, although some accessibility aspects could be improved. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected and should be implemented. No critical vulnerabilities or exposed sensitive data were found. Incident response and security policies are not publicly available, which is a potential area for improvement. Overall, the website demonstrates a solid digital presence with good content quality and compliance posture. The domain registration is consistent with the organization's claims, enhancing trustworthiness. Strategic recommendations include enhancing security headers, publishing incident response policies, and adding a vulnerability disclosure mechanism to further strengthen security and trust.

A

Administration cantonale valaisanne

vs.ch

0

The website www.vs.ch serves as the official digital portal for the Administration cantonale valaisanne, representing the government of the Canton of Valais in Switzerland. It provides comprehensive information about governmental organization, public services, news, and thematic portals targeting residents and stakeholders within the canton. The site is well-branded with consistent governmental logos and offers multilingual support primarily in French and German. The business model is purely governmental, focusing on public service and information dissemination without commercial intent. Technically, the site is built on the Liferay CMS platform, leveraging modern web technologies including React, Alloy UI, AngularJS legacy components, and Matomo for analytics. The infrastructure appears robust with good mobile optimization, accessibility, and SEO practices. The site uses HTTPS with strong security headers and nonce-based Content Security Policy, indicating a mature security posture. Cookie consent mechanisms are implemented, reflecting GDPR compliance. Security-wise, the site demonstrates good practices such as secure authentication endpoints (OAuth2), no visible vulnerabilities, and no exposed sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. Overall, the site is trustworthy, professional, and safe for general audiences. Strategically, the site should consider publishing detailed security and incident response policies, adding vulnerability disclosure information, and enhancing contact transparency to further strengthen trust and compliance.

S

Seismo Verlag

seismoverlag.ch

0

Seismo Verlag is a specialized academic publisher based in Switzerland focusing on social science books, journals, and open access publications. The website is multilingual (German, French, English) and targets researchers, academics, and professionals in social sciences. The business model centers on publishing scholarly content with a niche market position in Swiss social science academia. The site features rich content including new releases, journal issues, and author interviews, reflecting a strong content strategy and professional presentation. Technically, the website uses a custom CMS with JavaScript libraries such as jQuery 2.2.4, Modernizr, and lazy loading for images. The site is moderately performant and mobile-optimized with good SEO practices. However, some modernization opportunities exist, such as updating libraries and improving accessibility features. From a security perspective, the site uses HTTPS but lacks visible security headers and does not provide explicit privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is present. No signs of WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. Overall, the website is professional, content-rich, and trustworthy for its academic audience but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

K

Kanton Zug

zg.ch

0

The website zg.ch is the official online portal for the Canton of Zug, Switzerland, serving as a comprehensive resource for residents, businesses, and visitors. It provides extensive information on public services including education, health, economy, social services, mobility, environment, politics, and security. The site is well-structured with clear navigation and a professional design consistent with government standards. Technically, it employs modern web technologies such as Bootstrap and Matomo analytics, ensuring a responsive and moderately performant user experience. Security posture is adequate with HTTPS enforced and asynchronous script loading, but lacks explicit security headers and published security policies. Privacy compliance is limited due to the absence of visible privacy and cookie policies or consent mechanisms. Overall, the domain registration and WHOIS data confirm the site's legitimacy as a government entity, with no suspicious indicators detected.

S

Stadt Zürich

stadt-zuerich.ch

0

The website www.stadt-zuerich.ch serves as the official digital portal for the city of Zurich, Switzerland. It provides comprehensive information about city administration, public services, and online resources for residents and businesses. The site is well-positioned as a trusted government resource, offering current news, event information, and service highlights tailored to its local audience. The business model is centered on public service delivery and transparent communication with the community. Technically, the site is built on Adobe Experience Manager (AEM) and employs modern web components, ensuring a responsive and accessible user experience. The infrastructure supports good performance and SEO optimization, with clear navigation and mobile-friendly design. Analytics are implemented via Adobe Analytics, though a visible cookie consent mechanism is absent. From a security perspective, the site enforces HTTPS and includes key security headers, reflecting a strong security posture. However, it lacks publicly visible security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced transparency and compliance. No vulnerabilities or suspicious content were detected. Overall, the website demonstrates a high level of professionalism and trustworthiness appropriate for a government entity. Strategic improvements in privacy compliance and security transparency would further strengthen its position and user confidence.

F

Fédération Fribourgeoise des Entrepreneurs

ffe-fbv.ch

0

The Fédération Fribourgeoise des Entrepreneurs (FFE-FBV) is a regional business federation based in Switzerland, primarily serving the construction and manufacturing sectors. The organization offers a range of services including professional training (initial, continuing, and advanced), administrative and technical support, labor market organization, and advocacy for its members. The website reflects a well-established entity with a clear market position supported by recognized certifications such as eduQua and ISO 9001. Their target audience includes entrepreneurs, construction professionals, trainees, and local businesses within the Fribourg region. The business model is membership-based, focusing on providing value-added services and fostering professional development.