Security Directory

N

Novartis CZ

novartis.cz

0

Novartis CZ is the Czech Republic branch of Novartis AG, a global pharmaceutical leader operating in over 140 countries with approximately 110,000 employees. The company focuses on innovative medical therapies in cardiology, neurology, ophthalmology, respirology, and oncology. The website reflects a mature digital presence with professional design, localized content, and comprehensive privacy and cookie policies. Technically, the site is built on Drupal CMS and integrates modern analytics and marketing tools such as Google Tag Manager, Crazy Egg, and TikTok Pixel, with appropriate consent mechanisms in place. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers should be verified. WHOIS data is incomplete, which slightly reduces transparency but does not detract from the site's legitimacy given the strong brand presence and consistent content. Overall, the site is well-positioned to serve its target audiences including patients, healthcare professionals, and researchers.

P

PentaGen s.r.o.

pentagen.cz

0

PentaGen s.r.o. is a specialized Czech company founded in 2006, focused on the supply and distribution of products for laboratory diagnostics and in vitro fertilization (IVF). The company targets laboratories, medical professionals, and IVF clinics primarily in the Czech Republic and Slovakia. Their business model is B2B distribution of specialized medical and genetic diagnostic products, supported by technical services and product expertise. The website reflects a professional and consistent brand image with clear navigation and relevant content for their niche market. Technically, the website employs modern JavaScript frameworks such as Vue.js and uses Google Tag Manager for analytics. It is hosted on Czech hosting infrastructure (Forpsi) and shows good mobile optimization and SEO practices. The site uses HTTPS with strong SSL configuration and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and a published security policy are absent. From a security perspective, the site demonstrates good practices including secure forms with captcha and GDPR consent, no exposed sensitive data, and minimal user tracking. The absence of a vulnerability disclosure policy or incident response contact limits transparency in security management. No WAF or blocking mechanisms were detected, and the WHOIS data is consistent with the business claims, indicating a trustworthy domain. Overall, the website scores well in content quality, technical implementation, security posture, privacy compliance, and business credibility. Recommendations include adding security headers, publishing a security policy, and establishing a vulnerability disclosure channel to enhance trust and security posture further.

M

Medplus

medplus.cz

0

Medplus.cz is a Czech Republic-based e-commerce platform specializing in healthcare and dental supplies. The website offers a broad catalog of over 6,390 products catering to both specialists and the general public, supported by expert advice and customer service via dedicated phone lines. The business model focuses on direct online sales with benefits such as free shipping over a certain order value and customer registration advantages. The site is well-positioned in the Czech healthcare supply market with a medium-sized operational scale. Technically, the website employs modern web technologies including Google Tag Manager, Microsoft Clarity, and Persoo personalization tools, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO practices and uses secure HTTPS connections with appropriate security headers. The presence of secure login forms and cookie consent mechanisms reflects attention to privacy and security compliance. From a security perspective, Medplus.cz demonstrates a solid posture with HTTPS enforcement, security headers, and no visible vulnerabilities in the HTML content. However, the absence of a publicly available security policy or vulnerability disclosure page suggests room for improvement in transparency and incident response readiness. The WHOIS data is unavailable, which limits domain trust assessment, but the professional website presentation and business information mitigate concerns. Overall, Medplus.cz is a trustworthy and professionally managed e-commerce site with good technical and security standards. Strategic recommendations include publishing a formal security policy, implementing a vulnerability disclosure program, and enhancing accessibility features to further strengthen compliance and user trust.

G

GeneTiCA s.r.o.

genetica.cz

0

GeneTiCA s.r.o. is a Czech Republic-based company specializing in supplying modern instruments, reagents, consumables, and specialized diagnostics for biomedical research and diagnostic applications. The company targets biomedical researchers, diagnostic laboratories, and healthcare professionals, offering a broad portfolio including NGS sequencing kits, sequencers, microarrays, automated pipetting and nucleic acid extraction systems, spatial transcriptomics, single-cell analysis, and data analysis tools. The website reflects a medium-sized enterprise with a consistent brand presence and professional content, positioning itself as a niche player in the healthcare technology sector within the Czech market.

O

OpenExchange

open-exchange.net

0

OpenExchange is a professional service provider specializing in managed virtual meetings and events for corporate clients, including investor relations, corporate engagement, and institutional banking sectors. Founded in 2011, the company has established a strong market presence with a medium-sized operation based in the United States. Their website reflects a mature digital infrastructure leveraging WordPress CMS, integrated marketing and analytics tools such as HubSpot, Google Tag Manager, and multiple tracking pixels, indicating a sophisticated approach to customer engagement and data collection. Security posture is solid with HTTPS enabled, domain transfer protection, and some security best practices observed, though there is room for improvement in DNSSEC and explicit security policies. Overall, the website is professional, well-branded, and trustworthy, targeting business audiences seeking high-quality virtual event solutions.

T

Tamedia AG

landbote.ch

0

Tamedia AG operates the Tages-Anzeiger website, a leading Swiss news media platform providing regional news and background information for Winterthur and surrounding areas. The company has a strong market position as a reputable media publisher with a subscription-based business model offering digital and print content. The website demonstrates a mature digital infrastructure using modern web technologies such as Next.js, JavaScript, and integrated paywall solutions. It employs robust privacy and cookie consent mechanisms, reflecting compliance with GDPR and other privacy regulations. Security posture is strong with HTTPS enforcement, security headers, and CAPTCHA-protected forms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and well-optimized for user experience and SEO.

A

Avenir Conseil France

avenir-conseil.fr

0

Avenir Conseil France is a specialized consulting and training firm focusing on the deployment of business information systems and supporting organizational digital transformation. The company positions itself as a bridge between IT and engineering/manufacturing sectors, offering services including project management, change management, training, operations, and user support. Their subsidiary or agency, edufactory, enhances their digital learning capabilities. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site uses WordPress with modern plugins and frameworks, including Yoast SEO, Bootstrap, Google Tag Manager, and Google Analytics, with a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, which is common for consulting firms. Overall, the site demonstrates a credible and professional business presence with moderate risk due to limited public domain registration transparency.

E

Über 20 Jahre Kompetenz für die Energiewirtschaft - Energy4u GmbH

energy4u.org

0

Energy4U is a German-based energy sector service provider with a long-established domain since 2000. The company appears to offer energy consultancy and related services targeting businesses and consumers interested in energy solutions. The website is professionally designed using WordPress CMS with Bootstrap and Font Awesome, providing a good user experience and mobile optimization. However, the site lacks explicit privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy but would benefit from improved privacy compliance and enhanced security measures.

N

NetApp Instaclustr

instaclustr.com

0

NetApp Instaclustr operates a managed platform specializing in open source data infrastructure technologies such as Apache Kafka, Cassandra, PostgreSQL, OpenSearch, and others. Positioned as an enterprise-grade solution, it targets organizations seeking to simplify and scale their data infrastructure both on-premises and in the cloud. The company leverages its parent company NetApp's brand and resources to establish market trust and credibility. The website demonstrates a mature digital presence with comprehensive content, professional design, and strong SEO and accessibility features. The technical infrastructure is modern, utilizing WordPress CMS with advanced marketing and analytics integrations. Security posture is robust, supported by multiple certifications including GDPR, SOC2, and ISO standards, though explicit security headers could be further verified. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for enterprise domains. Overall, the site reflects a secure, compliant, and professional business operation with a clear focus on managed open source services.

G

GEN energija d.o.o.

esvet.si

0

eSvet.si is an educational website operated under the GEN energija d.o.o. group, focusing on energy topics relevant to Slovenia. It provides comprehensive information on various energy sources including nuclear, hydro, fossil, and renewable energies. The platform targets a broad audience including students, professionals, and the general public interested in energy and sustainability. The site is well-branded, consistent, and supported by recognized energy sector partners, enhancing its credibility and trustworthiness. Technically, the site is built on Drupal CMS with modern JavaScript libraries and analytics tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are not published. Overall, the site demonstrates a mature digital presence with good compliance to privacy regulations and a strong educational mission.

G

GEN energija

jek2.si

0

The website jek2.si represents the JEK2 nuclear energy project, a strategic initiative by GEN energija to develop a modern, reliable, and environmentally friendly electricity supply in Slovenia. The site serves as an information hub for the public, stakeholders, and government entities, providing news, project details, and educational content. It positions itself as a key player in Slovenia's energy future, emphasizing nuclear energy's role alongside renewables to achieve climate neutrality. Technically, the website is built on WordPress with a modern tech stack including Google Fonts, Google Analytics, and multilingual support via WPML. It is hosted behind Cloudflare DNS and CDN services, ensuring good performance and security. The site employs HTTPS with strong SSL configuration and uses reCAPTCHA v3 to secure its contact form. Privacy and cookie policies are present and GDPR compliant, reflecting a mature approach to data protection. However, no explicit security policy or incident response contacts are published. Overall, the site is professional, trustworthy, and well-maintained, with a strong focus on transparency and public engagement.

C

Clearout

clearout.io

0

Clearout.io is a technology company specializing in email validation, email finding, and sales prospecting services. The platform targets businesses seeking to improve their email marketing and sales outreach by providing accurate and verified email data. The company operates primarily in the B2B SaaS market and has established itself as a focused provider in the email validation niche since its founding in 2018. The website presents a professional and modern interface built with Gatsby and React technologies, indicating a mature digital infrastructure. Hosting and DNS services leverage Cloudflare and GoDaddy, ensuring reliable performance and security. Security posture is adequate with HTTPS enabled and domain status protections, but lacks advanced security headers and published policies. Privacy compliance is weak due to absence of visible privacy and cookie policies, which should be addressed to meet GDPR and other regulations. Overall, Clearout.io demonstrates a solid business and technical foundation with room for improvement in privacy and security transparency.

R

Revenera

revenera.com

0

Revenera is a leading enterprise software company specializing in software monetization, entitlement management, software composition analysis, and installation solutions. As a subsidiary of Flexera, Revenera leverages decades of industry experience to help software and technology companies optimize revenue, ensure compliance, and enhance customer experience. The website demonstrates a mature digital presence with comprehensive content, professional design, and strong branding consistency. Technically, the site is built on Drupal 11 with modern analytics and marketing tools integrated, ensuring good performance and accessibility. Security posture is strong with HTTPS enforcement and security headers, though public disclosure of security policies and incident response contacts is lacking. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is common for enterprise domains. Overall, Revenera presents a credible and professional online presence aligned with its business objectives.

frogblue.shop is an e-commerce website operated by fb Vertriebs AG, a German company specializing in smart building technology products. The site offers a range of hardware modules and accessories for smart building solutions, targeting both business and private customers. The company appears to be a medium-sized technology business founded around 2020, with a clear market niche in smart building technology hardware. The website is professionally designed with consistent branding and multi-language support, enhancing its accessibility and user experience. Technically, the site is built on the Odoo CMS platform, utilizing modern JavaScript libraries such as jQuery and Chart.js, and integrates Google Analytics and Google Tag Manager for marketing and analytics purposes. The site is hosted with a reputable registrar and uses HTTPS with a good SSL configuration, although DNSSEC is not enabled. Security practices include CSRF tokens in forms and IP anonymization in analytics, but there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy and professional, with clear contact information and a cookie consent mechanism, but lacks explicit terms of service and vulnerability disclosure policies.

F

Foundation for Environmental Education

fee.global

0

The Foundation for Environmental Education (FEE) is a well-established non-profit organization focused on environmental education and sustainable development with a global presence spanning over 110 member organizations in 85 countries. Their core activities include managing internationally recognized sustainability certification programs such as Blue Flag and Green Key, youth empowerment initiatives like Eco-Schools and Young Reporters for the Environment, and global campaigns addressing climate action and ecosystem restoration. The website reflects a professional and consistent brand image aligned with their mission. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Google Tag Manager and Mailchimp for analytics and marketing. The site is mobile-optimized and performs moderately well, though accessibility features could be enhanced. Security posture is strong with HTTPS enforced and HSTS enabled, but the absence of visible privacy and cookie policies indicates room for improvement in compliance. Overall, the security posture is solid with no evident vulnerabilities or exposed sensitive data. However, the lack of explicit privacy and cookie policies, as well as missing contact information for security incidents, represents compliance and transparency gaps. The domain WHOIS data is privacy protected, which is common for non-profits, and no suspicious patterns were detected. The website is safe for general audiences and free from adult or questionable content. Strategically, the organization should prioritize publishing comprehensive privacy and cookie policies with consent mechanisms, establish a vulnerability disclosure process, and improve accessibility to enhance trust and compliance. These steps will strengthen their security culture and align with global data protection standards.

B

BTC d.d.

btc.si

0

BTC d.d. is a well-established Slovenian company specializing in real estate management, logistics, and retail operations, notably managing BTC City, one of Europe's largest shopping and business centers. The company targets business partners, tenants, and visitors, offering a broad range of services including property leasing, logistics, and event hosting. The website reflects a mature digital presence with multilingual support and strong SEO practices. Technically, the site is built on WordPress with modern plugins and optimized for performance and mobile use. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, BTC d.d. presents a trustworthy and professional online presence consistent with its business stature.

The website www.neverbounce.com is currently inaccessible due to a Web Application Firewall (WAF) security challenge implemented by PerimeterX, which blocks automated or suspicious access. The WHOIS lookup for the domain failed, returning no registration data, which raises significant concerns about the domain's legitimacy or registration status. Due to the lack of accessible content, metadata, or business information, a comprehensive analysis of the company's business model, services, or compliance posture is not possible. The only visible element is a security challenge page with no usable content or contact information. From a technical perspective, the site employs PerimeterX for bot mitigation and security, but no other technologies, frameworks, or hosting details are discernible. The absence of security headers, privacy policies, or contact details further limits the ability to assess the security and compliance maturity of the website. The domain's WHOIS data absence is a critical red flag, suggesting either a non-registered domain or privacy-protected data that is not publicly available. Security posture evaluation is severely limited due to the blocked content, but the presence of a WAF indicates some level of security awareness. However, the lack of visible HTTPS enforcement, security headers, or compliance documentation suggests potential gaps. Overall, the website's risk profile is high due to inaccessibility and missing registration data, and it is recommended to verify domain registration and ensure proper public-facing security and compliance disclosures. Strategic recommendations include enabling access for legitimate users, publishing clear privacy and security policies, and ensuring WHOIS data is accurate and publicly available to improve trust and legitimacy.

Q

Quickpay

quickpay.net

0

Quickpay is a well-established payment service provider founded in 1999, offering flexible and scalable online payment solutions to over 30,000 merchants with more than 4 million transactions processed monthly. The company provides a comprehensive product portfolio including payment method integrations, API access for developers, and a partner program, positioning itself as a reliable player in the European fintech and e-commerce market. The website reflects a professional and modern digital presence, leveraging technologies such as Hugo for static site generation, Cookiebot for consent management, and Google Tag Manager for analytics, ensuring good performance, accessibility, and SEO optimization. Security posture is strong with HTTPS enforced, clientTransferProhibited domain status, and cookie consent mechanisms, although DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Overall, Quickpay demonstrates high business credibility and technical maturity with minor areas for improvement in security transparency and DNS security.

L

Lidl Slovenija

lidl.si

0

Lidl Slovenija operates as a leading retail supermarket chain in Slovenia, providing a broad assortment of grocery and household products to general consumers. The website serves as a digital storefront and information portal, reflecting the company's strong market position and brand consistency. The business is part of the larger Schwarz Gruppe, indicating a solid backing and extensive retail experience. The site is well-structured, professionally designed, and targets Slovenian consumers effectively. From a technical perspective, the website employs modern web technologies including JavaScript frameworks, YouTube integration, and advanced cookie consent management via OneTrust. Hosting is managed through Akamai, ensuring reliable content delivery. The site demonstrates good performance, mobile optimization, and accessibility features, supporting a positive user experience. Security posture is robust with HTTPS enforced, comprehensive cookie consent, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not publicly detailed, representing an area for improvement. Privacy compliance is strong, with GDPR-aligned policies and a dedicated data protection officer contact. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing detailed security policies and vulnerability disclosure information to enhance transparency and trust further.

K

Kantonsspital Baden

kantonsspitalbaden.ch

0

Kantonsspital Baden is a large regional healthcare provider in Switzerland offering comprehensive medical services, research, and patient care. The website reflects a mature digital presence with a modern tech stack including Next.js and React, hosted on Vercel, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

G

Gemeinde Wettingen

wettingen.ch

0

Gemeinde Wettingen operates as the official municipal government website for the town of Wettingen in Switzerland. It provides comprehensive information about local government services, political participation, community events, and administrative resources. The site targets residents and visitors seeking municipal services and information. The business model is centered on public service and community engagement, positioning itself as a trusted local government portal. Technically, the website employs modern web technologies including JavaScript modules, CSS, and HTML5, and is built on the i-web CMS platform. It demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. The site uses HTTPS and includes a privacy policy and cookie consent mechanism, reflecting a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and anonymizes web statistics data, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is adequate but could be improved by implementing additional headers and formalizing security policies. The website is safe for general audiences, containing no adult or questionable content. The domain registration details align well with the municipal identity, supporting high legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, publishing incident response information, and improving SEO and accessibility compliance.

G

Gemeinde Suhr

suhr.ch

0

The website www.suhr.ch serves as the official digital presence of the municipality of Suhr in Switzerland. It provides comprehensive information about the community, local government, services, events, and digital offerings such as an online service portal. The site targets residents and visitors seeking municipal information and services. The business model is that of a government service portal, focusing on transparency, accessibility, and community engagement. The website is well-branded, consistent, and trustworthy, reflecting its official status. Technically, the site is built on a modern stack including HTML5, CSS3, JavaScript, and a proprietary CMS platform (i-web.ch). It uses Matomo for analytics, indicating a privacy-conscious approach. The site is mobile-optimized, accessible, and SEO-friendly, with good performance characteristics. The presence of accessibility features and a dedicated accessibility mode enhances inclusivity. From a security perspective, the site enforces HTTPS and employs secure login forms with password reset capabilities. However, it lacks explicit security headers and does not publish a security policy or vulnerability disclosure information. No vulnerabilities or exposed sensitive data were detected. Overall, the security posture is solid but could be improved with additional headers and transparency. The overall risk assessment is low, with no critical issues detected. Strategic recommendations include implementing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to enhance trust and security culture. The site is suitable for its purpose as a municipal information portal and demonstrates good digital maturity.

H

HEKS - Hilfswerk der Evangelisch-reformierten Kirche Schweiz

heks.ch

0

HEKS is a well-established Swiss non-profit organization affiliated with the Evangelical Reformed Church of Switzerland. It focuses on humanitarian aid, development projects, and social integration, with key thematic areas including climate justice, land and food rights, migration, and inclusion. The organization targets a broad audience including donors, partners, and beneficiaries, operating both nationally and internationally. The website reflects a mature digital presence with multilingual support and clear calls to action for donations and engagement. Technically, the website is built on Drupal 10 with Commerce 2, integrating modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Crazy Egg. The site is mobile-optimized, accessible, and SEO-friendly, demonstrating good digital maturity. Security measures include HTTPS enforcement and standard security headers, though there is room for improvement in publishing explicit security policies and incident response information. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is strong, with a comprehensive privacy and cookie policy and consent mechanisms in place. Business credibility is high, supported by transparent contact information, certifications like ZEWO, and trust signals such as a whistleblowing platform and ACT Alliance membership. Overall, HEKS presents a trustworthy, professional, and secure online presence suitable for its non-profit mission. Strategic recommendations include enhancing security transparency and incident response readiness to further strengthen stakeholder confidence.

S

Stadt Zofingen

zofingen.ch

0

Stadt Zofingen operates as the official municipal government website for the city of Zofingen, Switzerland. It serves as a comprehensive portal providing residents and visitors with information on political structures, administrative services, education, culture, tourism, and community events. The site positions itself as a regional center blending tradition with modern development, offering a broad range of public services and cultural activities. Its target audience includes local citizens, businesses, and regional stakeholders. The business model is typical of a government entity focused on public service delivery and community engagement. Technically, the website is built on the GOViS eGovernment CMS platform, utilizing modern JavaScript libraries such as jQuery, Swiper, Flickity, and Magnific Popup. It employs Matomo for analytics, ensuring privacy-conscious tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a clean and professional design. Hosting and development credits point to backslash AG, a Swiss web agency specializing in government digital solutions. From a security perspective, the site enforces HTTPS and uses secure cookies for analytics. It includes a robust cookie consent mechanism compliant with GDPR, providing users control over data collection. However, explicit security headers like Content Security Policy and X-Frame-Options are not visibly implemented, and no public security policy or incident response contacts are published. No vulnerabilities or suspicious content were detected. Overall, Stadt Zofingen's website is a trustworthy, well-maintained government portal with strong privacy compliance and a solid technical foundation. Strategic improvements could include enhancing security headers and publishing formal security policies to further strengthen trust and resilience.

M

Museum Aargau

museumaargau.ch

0

Museum Aargau is a prominent cultural institution in Switzerland, managing a network of 10 museum locations including castles, monasteries, and Roman heritage sites. It offers a wide range of services such as exhibitions, educational programs, guided tours, and digital access to its collections. The museum holds a strong market position as one of the largest historical museums in the country, targeting a broad audience interested in history and culture. Technically, the website is built on TYPO3 CMS and leverages modern web technologies including jQuery, Bootstrap, and various multimedia integrations like Wistia for video content. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional and engaging user experience. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. While no critical vulnerabilities were detected, there is room for improvement in security headers and formal security policies. Analytics tools such as Google Analytics and Hotjar are used with appropriate privacy controls. Overall, the website demonstrates a mature digital presence with strong business credibility and compliance posture. The risk level is low, with recommendations focusing on enhancing security policies and headers to further strengthen the security posture.

S

Stadt Baden

baden.ch

0

Stadt Baden operates as the official municipal government website for the city of Baden, Switzerland, providing comprehensive information and services to residents, businesses, and tourists. The site offers a broad range of public services including online administrative services, cultural and leisure information, economic development resources, and political and administrative details. It targets a diverse audience including local citizens, businesses, and visitors, positioning itself as a central information hub for the city.

R

Römisch-Katholische Kirche im Aargau

kathaargau.ch

0

The Römisch-Katholische Kirche im Aargau website serves as the official digital presence of the Roman Catholic Church in the Aargau canton of Switzerland. It provides comprehensive information about the church's community, services, and events, targeting church members, volunteers, and the general public interested in religious and social support activities. The site is well-branded and consistent with the organization's identity, featuring rich content and multiple social media channels to engage its audience. Technically, the website is built on a modern WordPress CMS platform using Elementor and several plugins for SEO, content management, and user interaction. It employs HTTPS with a valid SSL certificate and integrates Google Analytics for visitor tracking. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a published vulnerability disclosure policy. No incident response contacts are visible, which could be improved to enhance trust and readiness. The WHOIS data aligns well with the website's claims, indicating a legitimate and transparent registration. Overall, the website is professional, trustworthy, and serves its community effectively. Strategic improvements in privacy policy visibility, security headers, and incident response information would further strengthen its security posture and compliance.

P

POČITEK - UŽITEK d.o.o.

vivat.si

0

Terme Vivat is a well-established hospitality and wellness resort located in Moravske Toplice, Slovenia, operating since 2006. The company offers premium accommodation, thermal pools, wellness services including a Thai massage salon, and facilities for business and sports events. The website reflects a high level of professionalism with clear branding, multilingual support, and comprehensive service offerings targeting families, wellness tourists, and business clients. Technically, the site uses modern JavaScript libraries and asynchronous loading to optimize performance and user experience. Security posture is good with HTTPS enforced and secure forms, though some security headers and explicit policies could be improved. Privacy compliance is adequate with clear privacy and cookie policies, but lacks a consent mechanism. Overall, the website is trustworthy, well-maintained, and aligned with the business's market position.

K

Kursaal Engelberg AG

kursaalengelberg.ch

0

Kursaal Engelberg AG operates as a regional hospitality venue in Engelberg, Switzerland, specializing in hosting weddings, congresses, seminars, banquets, and cultural events. The company targets private, business, and cultural event organizers seeking a stylish and well-equipped location. The website is professionally designed using the Wix platform, featuring relevant content and structured data that supports business legitimacy. However, the site lacks critical privacy and cookie policies, which impacts compliance and user trust. Technically, the site leverages Wix's Thunderbolt framework and standard web technologies, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Overall, the business presents a trustworthy and professional image but should improve privacy compliance and security transparency to enhance user confidence and regulatory adherence.

P

Prägebüro GmbH

papiersaal-loc.ch

0

Prägebüro GmbH operates the Papiersaal and Folium event venues located in the historic Old Sihlpapierfabrik in Zurich, Switzerland. The company offers flexible event spaces suitable for conferences, presentations, and celebrations accommodating 60 to 600 guests. Their business model centers on venue rental complemented by comprehensive event services including catering, technical setup, and event creation. The company targets business, private, and public clients seeking unique event locations in Zurich. The website reflects a strong market position within the hospitality sector, supported by partnerships with local tourism and event organizations. Technically, the website is built on the Cmsbox CMS platform with integrations such as Google reCAPTCHA for form security, Typekit fonts for typography, and Piwik analytics for user tracking. The site is mobile-optimized, accessible, and SEO-friendly, delivering a professional user experience. Performance is moderate with modern web technologies employed, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a comprehensive privacy policy and terms of service, but the absence of a cookie consent banner reduces compliance confidence. Overall, the website is trustworthy, professional, and well-aligned with the business objectives. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing incident response information to improve compliance and security posture further.

Z

Zürcher Oberland Medien AG, Verlags- und Medienhaus, 8620 Wetzikon

zo-medien.ch

0

The website www.zo-medien.ch appears to be a small Swiss media or business-related site built on the Wix platform using Wix Thunderbolt technology. The site content is minimal in the provided HTML snippet, with no visible privacy, cookie, or terms of service policies, and no explicit contact information. The technical infrastructure relies heavily on Wix's hosting and content delivery network, indicating a moderate level of digital maturity. Security posture is basic with HTTPS enabled but lacking security headers and visible security policies. Overall, the site shows low business credibility and limited compliance with privacy regulations. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and providing clear contact information to improve trust and compliance.

The website www.stadtwil.ch serves as the official digital presence of the city of Wil in Switzerland, providing residents and visitors with comprehensive information about municipal services, local news, and community resources. The site is built on the OneGov Town CMS platform, which is widely used by Swiss municipalities, indicating a mature and specialized technical infrastructure. The website demonstrates good design quality, clear navigation, and mobile optimization, supporting a positive user experience. Security posture is strong with HTTPS enforced and minimal third-party tracking, though the absence of explicit privacy and cookie policies suggests room for improvement in compliance. Overall, the site reflects a trustworthy government entity with a focus on public service delivery.

M

mynewsletter.rocks

mynewsletter.rocks

0

mynewsletter.rocks is a German-based SaaS company offering a simple and user-friendly email marketing application tailored for small businesses. The platform enables users to send newsletters effortlessly without prior technical knowledge, positioning itself as a niche player in the email marketing sector focused on the German-speaking market. The website is professionally designed, multilingual, and integrates e-commerce capabilities via WooCommerce, indicating a mature digital infrastructure. The technical stack leverages WordPress with modern plugins and Cloudflare for hosting and security, ensuring fast performance and reliable uptime. Security posture is strong with HTTPS, comprehensive cookie consent mechanisms, and use of Cloudflare's protective services. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website and business appear legitimate and trustworthy, with good compliance to GDPR and privacy standards.

T

TablePress

tablepress.org

0

TablePress is a well-established WordPress plugin provider specializing in creating and managing tables easily and efficiently on WordPress websites. The company offers a freemium business model with premium plans that enhance functionality and support. The website is professionally designed, highly accessible, and optimized for mobile devices, targeting WordPress users who need advanced table features without coding. Technically, the site leverages WordPress CMS, modern JavaScript libraries like DataTables, and is hosted with Cloudflare DNS and registrar services, ensuring good performance and security. Security posture is strong with HTTPS enforced and multiple security headers present, though DNSSEC is not enabled. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the site is trustworthy and credible with strong user testimonials and a clear market position as a leading WordPress table plugin.

A

ALTEN France

alten.fr

0

ALTEN France is a leading global engineering and IT services company that supports clients in innovation, R&D, and IT systems both in France and worldwide. The company offers a broad range of services including engineering services, IT services, cybersecurity, artificial intelligence, and data management. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to corporate clients and professionals in technology sectors. Technically, the site is built on WordPress with modern frameworks and includes robust privacy and cookie consent mechanisms. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. WHOIS data is unavailable due to privacy protection but the domain appears legitimate and active. Overall, ALTEN France demonstrates a solid business and technical foundation with good compliance and trust indicators.

S

saarVV

saarfahrplan.de

0

The website 'saarfahrplan.de' serves as a public transportation schedule and route planning platform for the Saarland region in Germany. It provides users with timetable information and journey planning tools primarily through a web application built on the HAFAS WebApp framework. The target audience is general commuters and residents within the Saarland area seeking transit information. The business model focuses on delivering transit data and real-time updates, positioning itself as a regional transportation information provider. Technically, the site employs a modern JavaScript-based tech stack with Leaflet.js for mapping and a modular HAFAS framework. While the site is functional and moderately optimized for performance and mobile use, it lacks advanced SEO and accessibility features. The absence of a CMS or hosting details limits deeper infrastructure insights. From a security perspective, the site uses HTTPS as indicated by the URL, but no explicit security headers are present in the HTML content. There are no visible forms or data collection points, reducing attack surface but also limiting user interaction. The lack of privacy, cookie, and terms of service policies indicates compliance gaps, especially under GDPR. No incident response or security contact information is provided. Overall, the site is moderately trustworthy and functional for its purpose but would benefit from enhanced security practices, privacy compliance, and clearer business identity disclosures. Strategic improvements in these areas would strengthen user trust and regulatory adherence.

S

Subjekt d.o.o.

subjekt.eu

0

Subjekt d.o.o. is a Croatian consulting company specializing in connecting culture, tourism, sport, and local communities with EU funding opportunities. Founded in 2018 and based in Rijeka, it has a niche market position focusing on EU fund projects such as Erasmus+, Interreg, Creative Europe, and the European Social Fund. The company is part of the Impuls savjetovanja d.o.o. group since 2023, enhancing its professional capacity. The website reflects a professional and consistent brand image with clear messaging targeted at organizations seeking EU funding support in relevant sectors. Technically, the website is built on WordPress with modern technologies including Bootstrap 5, jQuery, and SEO plugins, delivering good performance and mobile optimization. Security posture is solid with HTTPS and hCaptcha integration, though security headers and formal security policies could be improved. Privacy compliance is partial with a cookie consent mechanism but lacking a visible privacy policy. Contact is primarily via a contact form, with no explicit emails or phone numbers publicly listed. Overall, the website is trustworthy and professionally maintained, suitable for its business purpose.

F

Flughafen Nürnberg GmbH

flughafen-nuernberg.de

0

Flughafen Nürnberg GmbH operates the regional airport in Nuremberg, Germany, providing comprehensive flight information, parking services, VIP offerings, and travel bookings. The website serves a broad audience of travelers and business partners with a well-structured, bilingual interface. Technically, the site uses modern CMS technology (Scrivito) and integrates consent management via Usercentrics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response details could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site projects professionalism and trustworthiness consistent with a public transportation entity.

FPH Offizin is a specialized professional society focused on further education and certification in the field of community pharmacy in Switzerland. The organization aims to position public pharmacies as the primary healthcare contact point by providing high-quality, accessible training and certification programs. The website reflects a professional and well-structured digital presence, leveraging modern web technologies such as Nuxt.js and Vue.js, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and domain protection measures, though DNSSEC is not enabled. Privacy compliance is strong, featuring a comprehensive privacy policy and cookie consent mechanism. Overall, the site demonstrates a trustworthy and credible online presence suitable for its target audience of pharmacy professionals.

P

PowNed

helpmee.tv

0

The website www.helpmee.tv serves as a membership enrollment portal for PowNed, a Dutch media organization focused on providing an alternative voice in the Hilversum broadcasting landscape. The business model revolves around annual membership fees (€8.50 per year) to support their media activities. The site is well-branded, consistent, and targets Dutch-speaking individuals interested in media and alternative perspectives. The content is relevant and professionally presented, with clear calls to action for membership sign-up. Technically, the website employs modern tracking and analytics technologies including Google Tag Manager, Google Analytics, Facebook Pixel, and DoubleClick advertising services. The site is served over HTTPS with CSRF protection tokens present, indicating a baseline of security awareness. However, there is no evidence of advanced security headers or cookie consent mechanisms, which are important for compliance and security hardening. The site is mobile optimized and SEO friendly but lacks accessibility features beyond basic levels. From a security perspective, the site shows good use of HTTPS and some security best practices but lacks visible security headers and formal security policies or incident response contacts. The absence of WHOIS data and domain registration transparency reduces trustworthiness, although the website content and business appear legitimate. No critical vulnerabilities or adult content were detected, and the site is fully accessible without WAF or blocking mechanisms. Overall, the website scores moderately well on content quality, technical implementation, and business credibility but has room for improvement in privacy compliance and security posture. Strategic recommendations include implementing cookie consent, adding security headers, publishing security policies, and improving domain registration transparency to enhance trust and compliance.

R

Radenska d.o.o.

srcnozajutri.si

0

The website www.srcnozajutri.si is a well-developed corporate campaign platform for Radenska d.o.o., a Slovenian company focused on mineral water production and environmental sustainability. The site highlights Radenska's commitment to ecological projects such as tree planting, circular economy, green energy, water resource protection, and social sponsorships. It targets environmentally conscious consumers and local communities. Technically, the site uses modern web technologies, is mobile-optimized, and hosted behind Cloudflare, ensuring good performance and security. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are absent. Privacy compliance is well addressed with cookie consent and a comprehensive cookie policy. Overall, the site reflects a trustworthy and professional brand presence with strong environmental and social responsibility messaging.

SIMERTEC is a Slovenian web development company specializing in creating websites, web applications, and comprehensive digital presence planning for businesses. Established in 2005, it operates as a small local agency with a focus on delivering tailored web solutions. The website reflects a professional and consistent brand image with clear contact information and service offerings targeted at businesses seeking digital services. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, Font Awesome, and integrates Google Analytics and Facebook Pixel for tracking. Mobile optimization and user experience are good, though accessibility features are basic. Security posture is moderate with HTTPS implied but lacking explicit security headers and policies. Privacy compliance is basic with a cookie consent banner and a cookie policy page, but no dedicated privacy or terms of service pages. Overall, the domain registration data aligns well with the website content, indicating legitimacy and trustworthiness.

R

Revija GLOBAL

revijaglobal.si

0

Revija GLOBAL is a Slovenian media publication focused on issuing a monthly magazine, targeting Slovenian-speaking readers interested in its content. The website serves primarily as an informational portal for the magazine, offering sections about the publication, content, advertising, contact, and subscription. The business model revolves around magazine sales and advertising revenue, positioning it as a small local media entity founded in 2020. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript with jQuery, Google Fonts, and Google Tag Manager for analytics. The site shows basic mobile optimization and SEO practices but lacks advanced frameworks or CMS detection. Performance is moderate with room for improvement in accessibility and modern technical implementations. From a security perspective, the site lacks visible security headers and privacy or cookie policies, indicating potential GDPR compliance gaps. The SSL configuration could not be verified from the provided data, and no incident response or security policy information is available. Google Tag Manager is used for tracking, but no explicit consent mechanism is present. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the website is functional but basic, with moderate trustworthiness. Key recommendations include implementing HTTPS with strong SSL, adding security headers, publishing privacy and cookie policies, and providing clear contact information to improve compliance and user trust.

M

Mladina d.d.

monitor.si

0

Monitor.si is a Slovenian media website operated by Mladina d.d., providing technology news, reviews, opinions, and general media content. The site targets a general audience interested in technology and current affairs, offering subscription-based access to magazine issues and advertising services. The domain is well-established since 2002, reflecting a mature media presence in Slovenia. Technically, the site uses modern web technologies including Bootstrap 4, jQuery, Google Analytics, and multiple advertising platforms with a consent management platform ensuring GDPR compliance. Security posture is good with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not published. The website content is safe for general audiences with no adult or explicit content detected. Overall, the site demonstrates a professional and trustworthy media outlet with moderate to good technical and security maturity.

E

EMKA - Mladinska knjiga

emka.si

0

EMKA - Mladinska knjiga is a well-established Slovenian retail company specializing in books, textbooks, magazines, school supplies, and office materials. The company operates an e-commerce platform hosted on Shopify, targeting general consumers including students and office workers. The website reflects a consistent brand identity aligned with its parent company, Mladinska knjiga, and offers a comprehensive product catalog with a focus on reading and educational materials. The business model is retail e-commerce with a medium-sized market presence in Slovenia, founded in 2001, supported by a mature domain and consistent WHOIS data. Technically, the website leverages modern e-commerce technologies including Shopify's Dawn theme, jQuery, and multiple marketing and analytics integrations such as Google Analytics, TikTok Pixel, Pinterest Tag, and Emarsys. The site is hosted on Shopify's CDN infrastructure, ensuring good performance and mobile optimization. SEO and accessibility are implemented at a basic to good level, with proper meta tags and structured data enhancing search visibility. From a security perspective, the website enforces HTTPS with excellent SSL configuration and includes standard security headers implied by Shopify's platform. The cookie consent mechanism is comprehensive and GDPR compliant, providing granular user control. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, representing areas for improvement. Overall, EMKA - Mladinska knjiga presents a trustworthy and professional online presence with strong business credibility and a solid technical foundation. The site is safe for general audiences, free from adult or questionable content, and demonstrates good privacy compliance. Strategic enhancements in security transparency and accessibility could further strengthen its posture.

pharmaSuisse is a well-established Swiss association representing pharmacists and pharmacies, offering political advocacy, professional development, and member services. The website reflects a professional and consistent brand presence targeting pharmacy professionals and stakeholders in Switzerland. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, with responsive design and moderate performance. Security posture is adequate with HTTPS and domain protections but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible but would benefit from enhanced privacy and security disclosures.