Security Directory

R

Restaurant Schlosserei

restaurant-schlosserei.ch

0

Restaurant Schlosserei is a socially responsible gastronomy business operating in Hünenberg, Switzerland, under the Stiftung zuwebe foundation. It offers breakfast and lunch menus with a focus on fresh, healthy meals and supports employment for people with disabilities. The website is well-structured, professionally designed, and provides clear contact and business information. It integrates modern tracking and consent management tools, ensuring GDPR compliance. The technical infrastructure includes Google Analytics, Google Tag Manager, and CookieYes for cookie consent, built on the MoveCMS platform. Security posture is solid with HTTPS and cookie management, though explicit security policies and incident response contacts are absent. Overall, the site is trustworthy and serves its target audience effectively.

S

Stiftung zuwebe

restaurant-story.ch

0

Restaurant Story is a socially responsible restaurant located in Baar, Switzerland, operated as a cooperative effort between Stiftung zuwebe and Alfred Müller AG. It offers breakfast and lunch with a focus on regional quality products and inclusive employment for people with and without disabilities. The restaurant also supports charitable projects such as water well funding in Cameroon. The website is professionally designed, mobile-optimized, and provides clear contact information and social media presence. Technically, it uses modern tools like Google Analytics, Tag Manager, and CookieYes for privacy compliance. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies. Overall, the domain registration is consistent and legitimate, supporting the business claims.

S

Stiftung zuwebe

wertsache.ch

0

Stiftung zuwebe operates a Swiss-based non-profit e-commerce webshop specializing in gift and food products such as Apéroplatten, Chlaussäcke, and Geschenkboxen. The website is professionally designed with consistent branding and clear navigation, targeting a general audience interested in regional specialty products. The technical infrastructure is built on the PepperShop platform using modern libraries like jQuery and Bootstrap, providing a responsive and user-friendly experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are not published. Overall, the site demonstrates good privacy compliance and business credibility with transparent contact information and social media presence.

The website okomo.com is currently a parked domain primarily used for domain leasing or sales. It lacks any substantive business content, services, or contact information. The site displays a prominent banner advertising the domain's availability for lease or joint venture, targeting domain investors or buyers. The technical infrastructure is minimal, relying on basic HTML, CSS, and JavaScript with Google Adsense and Google Ad Services scripts for monetization. There is no evidence of a content management system or advanced frameworks. Security posture is weak, with no visible security headers or HTTPS confirmation, and no privacy or cookie consent mechanisms implemented. WHOIS data raises concerns due to a future domain creation date and registration via a drop-catching registrar, indicating low legitimacy and trustworthiness. Overall, the site presents a low-risk profile but lacks business credibility and security maturity.

P

Pinterest

pinterest.com.au

0

Pinterest is a globally recognized technology company operating a leading visual discovery and social media platform. The website au.pinterest.com serves the Australian market segment, offering users access to a wide range of ideas including recipes, home decor, and style inspiration. The platform's business model centers on user-generated content and advertising revenue, positioning it as a major player in the technology and e-commerce sectors. The website demonstrates a high level of digital maturity with modern technologies such as React, advanced anti-bot and fraud prevention scripts, and robust hosting infrastructure on Amazon AWS. Security posture is strong, with HTTPS enforced and a comprehensive Content Security Policy in place, alongside third-party security services. However, the absence of explicit privacy and cookie policies, as well as lack of visible contact information for security incidents, indicates areas for compliance improvement. Overall, the site is professional, trustworthy, and safe for general audiences, reflecting Pinterest's enterprise status and market leadership.

R

Reshot

reshot.com

0

Reshot is a professionally designed online platform offering free icons and vector illustrations with commercial licenses and no attribution required. It targets designers and creatives seeking high-quality design assets for personal and commercial projects. The site is linked to Envato, a well-known creative subscription company, which enhances its market credibility. Technically, the website uses modern JavaScript frameworks, error monitoring via Rollbar, and cookie consent management through Cookiebot, indicating a mature digital infrastructure. The site is fast, mobile-optimized, and SEO-friendly, providing an excellent user experience. Security-wise, HTTPS is enforced and error monitoring is active, but there is a lack of visible security headers and no published security or incident response policies. The absence of WHOIS data is a concern but is mitigated by the professional presentation and Envato affiliation. Overall, the site is trustworthy and well-maintained, with room for improvement in explicit security disclosures and contact transparency.

M

Mixkit

mixkit.co

0

Mixkit is a free resource platform offering high-quality stock video footage, music, sound effects, and Premiere Pro templates targeted at video and content creators. It operates under the parent company Envato, a well-known digital assets marketplace, which strengthens its market position and credibility. The website is professionally designed with excellent content quality and clear navigation, catering to a broad audience of media producers seeking royalty-free assets. Technically, Mixkit employs modern web technologies including Turbo (Hotwire), Rollbar for error monitoring, Cookiebot for consent management, and integrates analytics tools such as Google Analytics and Facebook Pixel. The site is fast, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, uses multiple security headers, and has robust error monitoring, though it lacks a dedicated security policy or incident response contact. Privacy compliance is strong with explicit cookie consent mechanisms and links to comprehensive privacy and cookie policies hosted by Envato. Overall, Mixkit presents a trustworthy and professional online presence with minimal security or compliance gaps.

E

Envato Tuts+

tutsplus.com

0

Envato Tuts+ is a well-established online education platform founded in 2008, offering creative skills tutorials and courses to a global audience. It operates under the Envato brand, a recognized leader in digital assets and creative marketplaces. The platform targets creative professionals and learners seeking to enhance their skills through high-quality, expert-led content. The business model focuses on providing free and premium educational content, supported by advertising and Envato's broader ecosystem services. Technically, the website employs modern web technologies including JavaScript frameworks, Tailwind CSS, and Cookiebot for privacy compliance. It leverages Cloudflare for DNS and likely CDN services, ensuring fast performance and robust availability. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, Envato Tuts+ demonstrates strong practices such as enforced HTTPS, domain registration protections, and comprehensive cookie consent management. However, DNSSEC is not enabled, and explicit security policies or incident response contacts are not publicly disclosed, representing areas for improvement. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR and privacy regulations. It poses low risk to users and partners, with recommendations to enhance DNS security and transparency around security policies to further strengthen its posture.

P

Placeit

placeit.net

0

Placeit is a well-established online platform founded in 2013 that offers a suite of design tools including mockup generators, logo makers, video creators, and design templates. Positioned as a medium-sized business within the e-commerce sector, it serves designers, marketers, entrepreneurs, and content creators with subscription and pay-per-use models. The platform is integrated with the Envato ecosystem, enhancing its market presence and credibility. Technically, Placeit employs modern web technologies such as Next.js and React, hosted on AWS with Cloudflare DNS, ensuring fast performance and excellent mobile optimization. Security-wise, the site enforces HTTPS, uses security headers, and employs Cookiebot for cookie consent, though it lacks visible privacy and terms of service pages. The domain registration is consistent and legitimate, registered through MarkMonitor since 2013, aligning with the company's history. Overall, Placeit demonstrates a strong digital maturity and security posture with minor gaps in privacy compliance and contact transparency.

D

Diwa Mediamatik

diwa.ch

0

Diwa Mediamatik is a small Swiss technology company specializing in web design, hosting, and media services with over 30 years of experience. Their business model focuses on providing end-to-end internet presence solutions including CMS, SEO consulting, and media production primarily targeting clients in the Aargau region. The website demonstrates a solid technical foundation using modern web technologies and a proprietary CMS named Jasmin. While the site is well-structured, mobile-optimized, and includes a cookie consent mechanism, it lacks explicit security policies and terms of service. Security posture is moderate with room for improvement in headers and incident response transparency. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

L

LCK Möbelpflegeshop

lederpflege.de

0

LCK Möbelpflegeshop is a German-based e-commerce retailer specializing in furniture care products, particularly for leather, fabric, wood, and other furniture surfaces. With approximately 40 years of experience, the company has established itself as a trusted provider with partnerships with leading furniture manufacturers. The website offers a comprehensive product catalog, a product finder tool, and customer support services, targeting both consumers and furniture retailers. Technically, the site uses a modern but traditional tech stack including jQuery, Bootstrap, and Swiper.js, hosted on RZone servers. Security practices include HTTPS and cookie consent via Cookiebot, but lack explicit security headers and published security policies. Overall, the site is professional, well-branded, and trustworthy, though it could improve privacy and security transparency.

C

CAMO Leathers A/S

ca-mo.com

0

CAMO Leathers A/S is a Danish leather manufacturing company specializing in supplying various leather types, leather care products, and leather samples. The company targets both businesses and consumers interested in leather materials and maintenance. Their website is built on WordPress and integrates common plugins such as Contact Form 7 and YouTube Embed Plus, indicating a moderate level of digital maturity. The site is mobile optimized and provides clear navigation and professional content. Security posture is good with HTTPS and reCAPTCHA implemented, though additional security headers and cookie consent mechanisms are recommended to enhance compliance and protection. Overall, the domain registration and business information are consistent and trustworthy, supporting a positive risk profile.

A

Amer Sports

amersports.com

0

Amer Sports is a globally recognized group managing a portfolio of iconic sports and outdoor brands, serving millions of athletes and consumers worldwide. The company emphasizes sustainability, ethics, and innovation, positioning itself as a leader in the retail and manufacturing sectors of sports equipment and apparel. Their website reflects a mature digital presence with comprehensive corporate information, brand showcases, and career opportunities. Technically, the site is built on WordPress with modern integrations such as Google Tag Manager and hCaptcha, ensuring good performance and security. Security posture is strong with HTTPS and form protections, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting the company's reputable market position.

H

Hugi Pro Sport GmbH

hugiprosport.ch

0

Hugi Pro Sport GmbH is a Swiss-based company founded in 2011, serving as the official Swiss general representative for the tennis and squash brand Tecnifibre. The company operates a professional website targeting both end customers and registered dealers, offering an online shop for sports products. The business model combines B2C and B2B e-commerce, focusing on retail distribution within Switzerland. The website is well-branded, consistent, and provides clear contact information, enhancing trust and credibility. Technically, the website is built on Joomla CMS with modern frameworks like Bootstrap 5 and integrates various libraries such as jQuery and Smart Slider 3. It uses Google Analytics for visitor tracking and is mobile-optimized with good SEO practices. Performance is moderate, and accessibility is basic but functional. Security is enforced via HTTPS with anonymized IP tracking in analytics, though some security headers are missing, and no explicit cookie consent mechanism is present. The security posture is solid but could be improved by adding standard security headers and formalizing incident response policies. No vulnerabilities or suspicious activities were detected. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Overall, the website presents a professional and secure platform for its retail operations. Strategic recommendations include implementing a cookie consent banner to enhance GDPR compliance, adding missing security headers, and publishing a security policy or incident response contact to improve transparency and readiness.

T

Tennis Academy System 4®

tennisparks-system4.com

0

Tennis Academy System 4® operates a local tennis academy based in Lutry, Switzerland, providing tennis training and related services. The website is built on the Wix platform, supporting multiple languages including French, German, and English, targeting tennis players and enthusiasts in the region. The business appears to be a small-scale service provider with a focus on tennis fundamentals and academy programs. Technically, the site uses Wix's Thunderbolt framework and standard JavaScript polyfills, with hosting and infrastructure managed by Wix.com. Performance and mobile optimization are moderate to good, but SEO and accessibility features are basic. Security posture is adequate with HTTPS enabled and some JavaScript security measures, but lacks important security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies or consent mechanisms. Overall, the site is safe, professional, and trustworthy for its intended audience but would benefit from enhanced privacy and security practices.

J

Joseph Tennisplatzbau AG

josephtennis.ch

0

Joseph Tennisplatzbau AG is a Swiss-based company specializing in tennis court construction, maintenance, and related services. Their offerings include various tennis court surfaces, lighting, irrigation, fencing, accessories, and training courses for court caretakers. The company operates an e-commerce platform powered by Prestashop, targeting tennis clubs, players, and coaches primarily within Switzerland. The website presents a professional and consistent brand image with clear navigation and product information. Technically, the site uses modern web technologies such as jQuery and Owl Carousel, with a moderate performance profile and good mobile optimization. Security-wise, the site enforces HTTPS and uses secure forms but lacks comprehensive security headers and published privacy or cookie policies, indicating compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance and security headers would enhance trust and regulatory adherence.

H

head.com

head.com

0

The website www.head.com is a commercial retail platform focused on sports equipment and accessories. The site employs modern frontend technologies such as React and integrates payment processing through Adyen Checkout, with customer review functionality powered by Yotpo. The website content is accessible without any WAF or security challenge blocking, indicating good availability. However, the site lacks visible privacy, cookie, and terms of service policies, as well as explicit contact information, which impacts compliance and trust. Security headers are not detected, and SSL configuration details are limited, suggesting room for improvement in security posture. Overall, the site appears legitimate and safe for general audiences but would benefit from enhanced transparency and security best practices.

F

Fourteen SA

14fourteen.com

0

14Fourteen is a Swiss-based company specializing in premium tennis apparel and sportswear, emphasizing Swiss quality and Italian design. The website serves as a corporate information portal and links to an e-commerce shop for tennis gear and accessories. The company positions itself in the premium sportswear market targeting tennis players and enthusiasts. Technically, the site is built on the BigCommerce platform using the Stencil framework, with integration of modern web technologies such as Google Fonts and Google Analytics 4. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or security policies. No direct contact emails or phone numbers are found on the corporate site, which may impact user trust. Overall, the domain registration data supports the legitimacy and maturity of the business. Strategic improvements include publishing comprehensive privacy and terms of service pages, enhancing security headers, and providing clear contact information to improve trust and compliance.

D

Decathlon

decathlon.ch

0

Decathlon is a large international retailer specializing in sports equipment and apparel, with a strong presence in Switzerland as evidenced by this localized splash page. The website serves as a language selection gateway, offering German and French options, and is designed with a professional and consistent brand identity. The technical infrastructure includes modern web technologies such as JavaScript, CSS, JSON-LD structured data, and integration with third-party marketing and tracking services like Ysance DMP and TagCommander. Performance optimizations such as font preloading and responsive design are present, contributing to a good user experience. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, the absence of explicit security headers and privacy/cookie policies indicates room for improvement in compliance and security best practices. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced transparency and security controls.

V

Vaudoise Assurances

vaudoise.ch

0

Vaudoise Assurances is a well-established Swiss insurance company founded in 1895, offering a broad range of insurance products and services to both private individuals and enterprises. The company holds a strong market position in Switzerland with diversified offerings including automobile, household, life, corporate, assistance, and savings insurance. The website reflects a professional and comprehensive digital presence with multi-language support and clear customer engagement channels. Technically, the site uses modern web technologies such as Google Tag Manager and Google Maps API, and is built on the Sitefinity CMS platform. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and secure forms, although some security headers are missing and no explicit security policy or incident response information is published. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, the website is trustworthy, professional, and aligns well with the company's business profile.

M

Mondadori Media Spa

altervista.org

0

Altervista.org is a well-established platform owned by Mondadori Media Spa, offering free website and blog creation services primarily targeting individuals and small businesses interested in online presence and monetization. The platform emphasizes ease of use, unlimited hosting space, WordPress compatibility, and monetization options such as Google Adsense and affiliate marketing. It holds a strong market position in Italy, especially in the food blogging niche, with a history dating back to 2000. Technically, the website employs modern JavaScript libraries including Swiper.js and Rellax.js for UI enhancements, integrates Google Tag Manager and Nielsen tracking for analytics, and is optimized for mobile devices with good SEO and accessibility practices. The site uses HTTPS with excellent SSL configuration, though security headers are not explicitly detected in the provided data. From a security perspective, the site demonstrates good practices such as secure login mechanisms and no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are comprehensive and GDPR compliant, with clear user consent mechanisms. However, the WHOIS data is malformed and incomplete, which raises some concerns about domain registration transparency, though the website content and branding strongly indicate legitimacy. Overall, Altervista.org presents a professional, trustworthy, and user-friendly platform with a solid business model and technical foundation. Strategic improvements in security header implementation and enhanced transparency in domain registration would further strengthen its security posture and trustworthiness.

Quintech Fire Services Ltd. is a Canadian small business specializing in firefighting services, consulting, training, and equipment sales. The company positions itself as a provider of high-quality, safe, and efficient fire service solutions with a focus on technical advancements. Their market presence spans North America with a proven track record. The website is built on the Weebly platform, utilizing standard web technologies including jQuery and Google Analytics. The site is mobile optimized and provides clear navigation and professional content. Security posture is adequate with HTTPS and reCAPTCHA implemented, but lacks advanced security headers and explicit privacy policies. WHOIS data is unavailable, which raises concerns about domain registration legitimacy, though the website content and contact information appear professional and consistent with a legitimate business.

A

aquiferdist.com

aquiferdist.com

0

The website www.aquiferdist.com presents minimal accessible content, primarily a React application shell with no visible business description, metadata, or contact information. The domain WHOIS data is missing, indicating the domain may be unregistered, expired, or otherwise not properly registered, which raises significant legitimacy concerns. The technical infrastructure includes modern frontend technologies such as React and Google Tag Manager, but lacks essential SEO metadata and security headers. The absence of privacy and cookie policies, contact details, and trust indicators further diminishes the site's credibility and compliance posture. Overall, the site appears incomplete or under development, limiting its utility and trustworthiness.

ABC Fire and Safety Equipment Ltd. is a well-established Canadian company specializing in fire safety equipment and services, operating since 1979 primarily in Winnipeg and surrounding areas. The company offers a comprehensive range of products including firefighting gear, PPE, fire suppression systems, and certified servicing, targeting both business and consumer markets. Their market position is that of a trusted local leader with certified technicians and recognized certifications such as COR. Technically, the website is built on the Volusion ecommerce platform with modern JavaScript libraries and frameworks, providing a good user experience with mobile optimization and moderate performance. Security posture is solid with HTTPS and standard security headers, though improvements such as CSP headers and vulnerability disclosure mechanisms are recommended. Privacy compliance is basic, with privacy and terms pages present but lacking cookie consent and GDPR-specific features. Overall, the site is professional, trustworthy, and safe for general audiences.

H

Hendrickson Sales LLP

hendricksonsales.com

0

Hendrickson Sales LLP is a small business specializing in firefighter safety products, founded and operated by individuals with extensive firefighting experience. The website serves as a direct sales platform targeting fire departments and firefighters, emphasizing safety and community service. The technical infrastructure is based on GoDaddy Website Builder, leveraging standard web fonts and JavaScript widgets, with hosting provided by GoDaddy. The site is moderately optimized for mobile and performance, but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled and service workers registered, but lacks important security headers and visible security policies. Privacy compliance is minimal, with no privacy or terms of service pages found, though a cookie consent banner is present. Overall, the website is functional and trustworthy for its niche audience but would benefit from enhanced security and compliance measures.

Q

Quartz Solution

quartzsolution.com

0

Quartz Solution is a small technology service provider based in Aurangabad, India, specializing in software development, web and mobile application development, digital marketing, SEO, and ERP software solutions. The company targets local businesses and manufacturers seeking tailored IT services to improve operational efficiency. Their website presents a professional image with clear service offerings and client testimonials, supported by active social media channels. Technically, the site uses modern frontend frameworks and libraries, is mobile optimized, and includes Google Analytics for user tracking. However, the absence of WHOIS registration data raises concerns about domain legitimacy and transparency. Security posture is moderate with HTTPS enabled but lacks important security headers and cookie consent mechanisms. Privacy compliance is basic with a privacy policy present but no explicit GDPR indicators or cookie consent. Overall, Quartz Solution appears to be a legitimate small business with room for improvement in security and privacy practices.

B

burda style Abo-Shop

burdastyle-abo.de

0

burdastyle-abo.de is a German-language subscription e-commerce website specializing in magazine subscriptions for the burda style brand and related publications. It offers various subscription types including annual, gift, mini, and flexible subscriptions, with benefits such as price discounts, premium rewards, and free delivery. The site targets sewing enthusiasts and fashion magazine readers, positioning itself as a direct publisher subscription service with a medium-sized market presence in Germany. Technically, the site runs on the OXID eShop Enterprise Edition platform, uses modern JavaScript libraries, and integrates advanced consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and GDPR compliance evident through consent mechanisms, though some security headers and explicit security policies are absent. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO, with no signs of blocking or malicious content.

F

FOCUS Magazin

focus-magazin.de

0

FOCUS Magazin is a well-established German news magazine focusing on politics, economy, research, and technology. It operates a multi-channel publishing business model including print subscriptions, digital subscriptions, e-paper sales, and mobile app distribution. The website reflects a mature digital presence with consistent branding and a clear target audience of general news readers in Germany. The company leverages multiple brand extensions and maintains a strong social media footprint. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and advanced consent management via Sourcepoint, ensuring GDPR compliance. Analytics tools such as Google Analytics and Facebook Pixel are used with user consent mechanisms in place. Security posture is solid with HTTPS enforced and consent management implemented, though some security headers and explicit security policies are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with room for improvement in publishing security policies and incident response contacts.

N

Nerves

nerves.ch

0

Nerves is a Zurich-based creative agency specializing in digital strategy, design, branding, and digital services since 2009. The company targets ambitious brands and companies seeking to enhance their digital presence and brand identity. Their market position is that of an established, small-sized agency with a strong focus on creative digital solutions. The website reflects a professional and modern digital infrastructure, leveraging advanced JavaScript libraries such as Three.js for interactive 3D graphics and Google Analytics 4 for user tracking. The technical implementation is solid with good mobile optimization and SEO practices. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some improvements like security headers and incident response information could be added. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is trustworthy and professional, supporting the company's credibility in the creative media sector.

B

BNESIM

bnesim.com

0

BNESIM is a telecommunications company specializing in providing eSIM and SIM card solutions for international travelers, professionals, and IoT users. The company positions itself as an award-winning global provider with coverage in over 200 countries, offering affordable and easy-to-use mobile data plans. Their business model focuses on e-commerce sales of digital and physical SIM products, VPN services, and portable WiFi devices, targeting a global audience of travelers and enterprises. Technically, BNESIM's website is built on WordPress using modern page builders like Elementor and WPBakery, integrated with SEO and analytics tools such as Yoast SEO, Google Analytics, TikTok Pixel, and Trustpilot for customer reviews. The site is mobile-optimized, well-structured, and performs moderately well, with good SEO practices and accessibility features. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and visible incident response or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy, warranting caution. Overall, BNESIM presents a professional and trustworthy online presence with strong business and marketing signals, but should improve transparency in domain registration and security policies to enhance trust and compliance.

C

Cittadini del Mondo

cittadinidelmondo.org

0

Cittadini del Mondo is a small non-profit organization based in Ferrara, Italy, focused on supporting immigrant integration and protecting immigrant rights. Founded in 1993, it offers services such as Italian language courses and after-school programs. The organization also engages in social monitoring projects related to racial profiling and media discrimination. The website reflects a community-oriented mission with clear contact information and multimedia content supporting its cause. Technically, the site is built on Joomla CMS with Yootheme and UIkit frameworks, providing a modern and responsive user experience. Security posture is adequate with HTTPS and GDPR-compliant cookie consent, though it lacks advanced security headers and formal security policies. Overall, the site is trustworthy and professionally maintained, though WHOIS data is privacy protected, limiting domain registration transparency.

N

N/A

tournamentsoftware.com

0

Tournamentsoftware.com provides a specialized software platform designed to manage tournaments, leagues, and ladders for racket sports such as tennis, badminton, padel, and squash. The website targets sports organizations and tournament organizers, offering tools to facilitate event management and analytics. The business operates in the technology sector with a medium-sized footprint, focusing on niche sports software solutions. The website is professionally designed with consistent branding and clear content relevant to its audience.

B

BurdaVerlag Publishing GmbH

women-abo.de

0

Women-abo.de is a professional subscription platform operated by BurdaVerlag Publishing GmbH, specializing in women's magazines such as Lisa and its variants. The website offers multiple subscription types including annual, gift, mini, and referral programs, complemented by premium rewards to incentivize subscriptions. The target audience is women interested in lifestyle and home-related content. The platform is positioned as a reputable and established player in the German media subscription market, leveraging BurdaVerlag's brand strength. Technically, the website is built on the OXID eShop Enterprise Edition platform, integrating modern JavaScript libraries and analytics tools such as Google Tag Manager and Webtrekk. It employs a comprehensive GDPR-compliant consent management system (Source Point) and uses MarkMonitor for domain management, indicating professional infrastructure. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. From a security perspective, the site enforces HTTPS with excellent SSL configuration and integrates consent mechanisms for privacy compliance. However, it lacks explicit HTTP security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be enhanced with additional headers and formal security disclosures. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include implementing security headers, publishing a security policy, adding a security.txt file for vulnerability disclosure, and improving accessibility compliance to further strengthen trust and compliance.

Burda-foodshop.de is an e-commerce platform operated by BurdaVerlag Publishing GmbH, specializing in magazine subscriptions focused on food, cooking, and lifestyle. The website offers various subscription types including annual, gift, mini, and savings packages, targeting German-speaking consumers interested in culinary content. The platform is positioned as a direct publisher subscription service, emphasizing trust, convenience, and timely home delivery. Technically, the site is built on the OXID eShop Enterprise Edition CMS, leveraging modern JavaScript libraries and marketing tools such as Google Analytics, Webtrekk, and Kameleoon, with hosting managed via MarkMonitor nameservers. The site demonstrates good digital maturity with responsive design, SEO optimization, and a comprehensive consent management system for GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and formal security policies published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with no signs of adult or questionable content.

I

iKiosk

ikiosk.de

0

iKiosk is a German-based digital media platform offering a wide range of newspapers, magazines, and ePapers from over 200 publishers in multiple languages. The platform targets both individual consumers and businesses, providing flexible purchase options including subscriptions and single issues. The website is professionally designed with a consistent brand presence and offers multi-device access through web and mobile apps. Technically, the site uses modern JavaScript libraries, Google Tag Manager, Firebase Analytics, and Cloudflare DNS services, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and reCAPTCHA protecting forms, though some improvements such as security headers and explicit cookie consent are recommended. Overall, the site is trustworthy, compliant with GDPR, and provides a safe environment for digital content consumption.

L

LCK Leather Care Australia

lckaustralia.com.au

0

LCK Leather Care Australia operates as an e-commerce retailer specializing in leather care products sourced from Germany, targeting the Australian market. The website presents a professional and consistent brand image with a focus on product sales. Technically, the site is built on the OpenCart platform using the Journal3 theme, incorporating modern front-end libraries such as Bootstrap and Font Awesome, and includes Google reCAPTCHA for form security. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate with HTTPS enabled and bot protection in place; however, the absence of security headers and formal privacy and cookie policies indicates room for improvement. WHOIS data aligns well with the business claims, showing a legitimate and consistent registration. Overall, the site is functional and credible but lacks comprehensive privacy and security disclosures.

L

LCK Danmark

lckdanmark.dk

0

LCK Danmark operates as a specialized retailer focused on high-quality leather care products, targeting consumers and businesses in Denmark. The website presents a professional e-commerce platform built on WordPress and WooCommerce, offering a range of products categorized by leather types. The business is affiliated with CAMO Leathers A/S and LCK Möbelpflege, indicating a niche market presence with established partnerships. Technically, the site employs modern web technologies including Yoast SEO and Elementor, ensuring good SEO and user experience. However, the absence of privacy and cookie policies indicates a compliance gap with GDPR requirements. Security posture is adequate with HTTPS enforced but lacks advanced security headers and visible incident response policies. Overall, the site is functional, trustworthy, and professionally presented but would benefit from enhanced privacy compliance and security hardening.

L

LCK Schweiz AG

lckschweiz.ch

0

LCK Schweiz AG is a Swiss-based company specializing in professional cleaning and care products for furniture and automotive interiors, with over 35 years of experience. The company offers a broad product catalog, professional cleaning services, and dealer support, positioning itself as a trusted regional player in the retail sector. The website is well-structured, content-rich, and targets both end consumers and business customers in Switzerland. Technically, the site uses legacy JavaScript libraries and custom-built components, with moderate performance and basic mobile optimization. Security posture is moderate, with no HTTPS or security headers explicitly detected in the provided data, and outdated libraries present potential risks. Privacy compliance is good, with clear cookie consent and privacy policy documents available. Contact information is transparent and complete, enhancing business credibility.

The website lcknederland.nl is currently inaccessible due to Cloudflare's Web Application Firewall (WAF) blocking the visitor's IP address, resulting in an access denied error page. This prevents any meaningful content or business information from being retrieved or analyzed. The domain is registered since 2010 with XS Anywhere B.V., indicating a potentially established business presence, but no further business details are available from the accessible content. The technical infrastructure relies on Cloudflare for security and performance, but no additional technologies or CMS platforms are detectable due to the blocked content. Security posture cannot be fully assessed, but the lack of DNSSEC and absence of visible security headers are noted. Privacy and compliance policies are not found, and no contact or incident response information is available. Overall, the site is currently non-functional for external visitors, limiting risk assessment and business evaluation.

T

Trusted Shops GmbH

trustedshops.com

0

Trusted Shops GmbH is a leading European trust brand specializing in e-commerce trust solutions. Their offerings include the Trusted Shops Trustmark, Buyer Protection, authentic customer feedback systems, and the eTrusted SaaS platform for real-time experience feedback. The company targets both consumers and businesses, providing services that enhance digital trust and security in online shopping environments. Their market position is strong, with over 30,000 companies using their solutions, and they maintain a consistent and professional brand presence. Technically, the website is built on modern web technologies including SVG graphics, JavaScript, and a Craft CMS backend served via a CDN. The site is optimized for performance, mobile responsiveness, and accessibility, with a well-structured navigation and comprehensive SEO metadata. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent management via Usercentrics, and GDPR adherence. From a security perspective, the site enforces HTTPS, implements security headers such as Content Security Policy, and avoids exposing sensitive data. However, explicit security policies and incident response information are not publicly detailed, and no vulnerability disclosure or security.txt files were found. Overall, the security posture is strong but could be enhanced by publishing more detailed security governance information. The overall risk assessment is low, with no signs of malicious content or suspicious domain registration patterns. Strategic recommendations include enhancing transparency around security policies and incident response, and adding vulnerability disclosure mechanisms to further build trust and security culture.

S

Schweizerische Bundesbahnen SBB

sbb.ch

0

The website www.sbb.ch serves as the official online portal for the Swiss Federal Railways (SBB), providing comprehensive travel information, ticketing services, and customer support for public transportation in Switzerland. It holds a strong market position as the national railway operator, offering services to a broad audience including daily commuters, tourists, and business travelers. The site is well-branded, multilingual, and professionally maintained, reflecting the enterprise scale and public sector nature of the organization. Technically, the site leverages modern web technologies including React and Next.js frameworks, supported by performance and monitoring tools such as New Relic and Adobe Launch. The infrastructure is optimized for fast loading, mobile responsiveness, and accessibility, ensuring a high-quality user experience. SEO and metadata are well implemented, enhancing discoverability and usability. From a security perspective, the website enforces HTTPS, employs multiple security headers, and integrates cookie consent mechanisms compliant with GDPR. While no explicit security policy or incident response information is published, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The domain registration is consistent with the official entity, reinforcing trust and legitimacy. Overall, the website demonstrates a high level of professionalism, security, and compliance, suitable for a critical national transportation service. Strategic recommendations include publishing dedicated security and incident response policies and enhancing transparency around vulnerability disclosures to further strengthen trust and security culture.

O

Find your community | SocialChorus

onfirstup.eu

0

The website advocate.onfirstup.eu serves as a community discovery platform associated with SocialChorus, enabling users to find their community by submitting their email address. The site is professionally designed with a clear focus on user engagement and community connection, targeting a general audience. The technical infrastructure leverages modern JavaScript libraries and fonts, with analytics implemented via a custom Sega Analytics script. Hosting appears to be managed through the onfirstup.eu CDN, ensuring reliable content delivery. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of security headers and privacy policies indicates room for improvement. The lack of visible contact information and company details limits business credibility slightly. Overall, the site is functional, secure, and professional but would benefit from enhanced privacy compliance and transparency.

F

Firstup, Inc.

socialchorus.com

0

Firstup, Inc. is a mature and reputable technology company specializing in AI-powered employee communication platforms. The company offers a SaaS solution that enables enterprises to engage their workforce through personalized, real-time communications tailored to individual roles. With a strong market position evidenced by Gartner leadership and multiple industry awards, Firstup serves a global clientele including major brands. The website reflects a high level of digital maturity, leveraging modern CMS (WordPress with Elementor), advanced analytics, and comprehensive SEO practices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response channels could be improved. Overall, the site is professional, trustworthy, and well-optimized for user experience and compliance.

Report-URI Ltd. is a UK-based company specializing in website and email security solutions, focusing on detecting and mitigating advanced attacks such as Magecart and hostile JavaScript. The company offers a comprehensive suite of products including Content Security Policy management, threat intelligence, and compliance monitoring services, positioning itself as a market leader in browser security technologies. Their business model is subscription-based SaaS targeting organizations requiring robust security and compliance tools. Technically, the website is well-constructed using modern frameworks like Bootstrap and FontAwesome, hosted on Cloudflare's infrastructure ensuring fast performance and strong SSL/TLS security. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. However, DNSSEC is not enabled, and no cookie consent mechanism was detected, which are areas for improvement. From a security perspective, the site enforces HTTPS, uses Cloudflare DNS and CDN, and maintains domain transfer protection. It publishes relevant compliance documents such as PCI DSS Attestation of Compliance and penetration test reports, enhancing trust. No critical vulnerabilities or exposed sensitive data were found. Incident response and vulnerability disclosure mechanisms are not explicitly detailed, suggesting room for enhancement. Overall, the website demonstrates a high level of professionalism, security maturity, and business credibility. The risk profile is low with minor recommendations to improve DNS security and privacy compliance. Strategic enhancements in incident response transparency and cookie consent would further strengthen their security posture and regulatory adherence.

Envato Pty Ltd. operates Envato Elements, a leading subscription-based digital marketplace providing unlimited access to millions of creative assets including videos, audio, photos, graphic templates, and fonts. The company targets creative professionals and content creators globally, positioning itself as a comprehensive resource for creative projects. The website demonstrates a mature digital infrastructure with modern analytics, consent management, and performance optimizations, reflecting a high level of digital maturity. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the platform is trustworthy, professional, and compliant with privacy regulations such as GDPR.

The website regio-power.de is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. Due to this restriction, no business information, contact details, or policy documents are available for analysis. The domain is registered with multiple name servers under domain24.de, indicating standard DNS hosting, but no registrant or organizational data is provided to verify legitimacy or business claims. The lack of accessible content severely limits the ability to assess the company's market position, services, or technical infrastructure. Security posture cannot be evaluated beyond the observation that the site is blocked, and no security headers or SSL details are available. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user experience and low trustworthiness.

Golem.de is a well-established German IT news website targeting IT professionals and technology enthusiasts. It offers news, analysis, and a subscription service called Golem pur that allows users to access content without advertising and tracking cookies. The website demonstrates a professional design and consistent branding, with clear privacy and cookie policies that comply with GDPR requirements. The technical infrastructure includes custom consent management scripts and is hosted on syseleven.de, a reputable hosting provider. The site is mobile optimized and provides a moderate performance experience. Security posture is adequate with consent mechanisms in place, but lacks explicit security headers and published security policies. Overall, the website is trustworthy and professionally maintained, with room for improvement in security transparency and accessibility.

L

Logos Translations

logos.net

0

Logos Group is a professional translation and localization service provider with over 40 years of experience, specializing in technical, marketing, scientific, legal, and corporate content translation across more than 250 language combinations. The company targets businesses requiring comprehensive language services and offers a broad range of solutions including website localization, software and app localization, multimedia services, and eLearning solutions. Their market position is that of an established, reliable player with ISO certifications and a strong client portfolio. Technically, the website is built on Joomla CMS with modern frameworks and includes structured data for SEO. The site uses Matomo analytics, indicating a moderate level of user tracking with some privacy considerations. Security posture is good with HTTPS and CSRF protections, but lacks some security headers and explicit privacy/cookie policies. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the website is professional, trustworthy, and well-structured but would benefit from enhanced privacy compliance and clearer domain registration information.

B

billwerk plus

billwerk.plus

0

Billwerk+ is a technology company specializing in subscription and payment management solutions designed to help businesses grow, innovate, and optimize their operations. With a customer base exceeding 4000 companies, Billwerk+ positions itself as a reliable SaaS provider in the subscription economy space. The website reflects a mature digital presence with multilingual support and comprehensive content tailored to business clients. Technically, the site is built on WordPress using modern plugins and themes, with integrations for analytics and cookie consent management, indicating a focus on compliance and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the domain's privacy-protected WHOIS data is typical for commercial SaaS providers and does not raise legitimacy concerns. The site is professional, trustworthy, and well-optimized for SEO and mobile use.

C

cyon GmbH

cyon.ch

0

cyon GmbH is a well-established Swiss web hosting provider based in Basel, offering a comprehensive range of services including domain registration, various tiers of web hosting, managed servers, agency servers, and a sitebuilder platform. With over 20 years of market presence and a strong reputation evidenced by high Google ratings, cyon targets individuals and businesses in Switzerland seeking reliable and secure web infrastructure solutions. The company emphasizes personal support, security, and sustainability in its offerings. Technically, the website employs modern web technologies such as Alpine.js for interactivity, Matomo for analytics, and Helpscout for customer support, ensuring a fast, mobile-optimized, and accessible user experience. The infrastructure appears robust with CDN usage and secure HTTPS enforcement. SEO and accessibility best practices are well implemented. From a security perspective, cyon demonstrates strong practices including HTTPS with excellent SSL configuration, security headers, and secure forms. However, there is room for improvement in publishing explicit security policies and incident response contacts. No vulnerabilities or suspicious activities were detected. Overall, cyon GmbH presents a low-risk profile with a mature digital presence, strong business credibility, and good privacy compliance. Strategic recommendations include enhancing transparency around security policies and incident response, and formalizing vulnerability disclosure mechanisms.