Security Directory

F

Filterpro

filterpro.co.nz

0

Filterpro is a New Zealand-based supplier specializing in automotive, light and heavy commercial, and industrial filters, including oil, fuel, air, and cabin filters, as well as lubricants and workshop chemicals. The company operates multiple physical locations across New Zealand, indicating a solid regional presence and a medium-sized business model targeting both B2B and B2C customers in the transportation and manufacturing sectors. The website reflects a professional and consistent brand image with clear contact information and a satisfaction guarantee, supporting its market position as a trusted supplier. Technically, the website employs modern web technologies such as Vue.js, Bootstrap, Google Tag Manager, and Google Analytics, ensuring a responsive and user-friendly experience across devices. While the site is well-structured and optimized for SEO, there is room for improvement in accessibility and performance tuning. The absence of detected CMS suggests a custom or proprietary platform. From a security perspective, the site enforces HTTPS and includes secure login forms with CSRF tokens, but lacks important security headers like Content-Security-Policy and X-Frame-Options. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, which may expose the company to GDPR compliance risks. The lack of WHOIS data for the domain is unusual but does not currently impact the legitimacy of the business given the professional website and clear contact details. Overall, Filterpro presents a credible and professional online presence with moderate technical maturity and a good security posture. Strategic improvements in security headers, privacy compliance, and WHOIS transparency would enhance trust and reduce risk.

A

Aluro Healthcare NZ Ltd

aluro.co.nz

0

Aluro Healthcare NZ Ltd is a well-established dental products and equipment supplier serving the New Zealand dental industry for over 25 years. The company operates an e-commerce platform offering a wide range of dental consumables, equipment, and professional training courses. Their market position is strong within the local dental sector, supported by professional branding and customer-focused services. The website is designed to cater to dental professionals and consumers, providing educational content and product promotions. Technically, the website employs modern web technologies including Vue.js, Google Analytics, Facebook Pixel, and reCAPTCHA for security. The site is mobile-optimized with good navigation and SEO practices. Security posture is solid with HTTPS enforced and secure forms, though additional security headers could enhance protection. Privacy compliance is basic with a privacy policy likely present but no explicit cookie consent mechanism detected. WHOIS data for the domain is missing, which raises some concerns about domain registration transparency but does not detract significantly from the business credibility based on website content. Overall, the site is professional, trustworthy, and safe for general audiences.

USL Medical is a well-established New Zealand-based supplier of medical consumables, equipment, and protective clothing, serving a broad range of healthcare sectors including public and private hospitals, aged care, and primary care. The company offers an extensive product catalog with over 15,000 SKUs and emphasizes exceptional customer service and comprehensive medical support including training. The website reflects a mature business with consistent branding and a professional online presence. Technically, the site uses modern analytics and marketing tools, is mobile-optimized, and employs HTTPS for secure communications. However, explicit privacy and cookie consent mechanisms are not evident, and WHOIS data for the domain is unavailable, which limits domain registration verification. Security headers could be improved by adding explicit policies. Overall, the site is trustworthy and functional, supporting a large healthcare business in New Zealand.

K

Kiwi Office

kiwioffice.co.nz

0

Kiwi Office is a New Zealand-based e-commerce retailer specializing in stationery, office supplies, furniture, and related products. Established since 1975 and 100% Kiwi owned, the company targets both businesses and individual consumers with a comprehensive product range and trade pricing options. The website offers NZ-wide free shipping over $75 and emphasizes customer service and ease of ordering. Technically, the site employs modern web technologies including Vue.js, Bootstrap, and integrates Google Analytics and HubSpot for marketing and analytics. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS, CSRF protection, and no exposed sensitive data, though HTTP security headers could be improved. Privacy and cookie policies are present and indicate GDPR compliance. However, WHOIS data for the domain is missing, which raises transparency concerns about domain registration. Overall, the website is trustworthy and professional, but domain registration details should be clarified to enhance legitimacy.

M

Marleen Wholesalers Ltd.

marleen.co.nz

0

Marleen Wholesalers Ltd. is a New Zealand-based wholesale distributor specializing in cycling products and accessories. The company emphasizes strong product support, training, and after-market services, positioning itself as a reputable wholesaler in the cycling retail sector. The website reflects a medium-sized business with a comprehensive product catalog and active social media presence, targeting retailers and cycling enthusiasts within New Zealand. Technically, the website employs modern web technologies including asynchronous loading of analytics and tracking scripts, Google reCAPTCHA for form protection, and responsive design elements to ensure good mobile usability. Security posture is generally good with HTTPS enforced and use of security best practices like CAPTCHA, though the absence of security headers and explicit privacy/cookie policies indicates room for improvement. The lack of WHOIS data is a notable concern, reducing domain trustworthiness and suggesting the need for verification of domain registration status. Overall, the website is professional and trustworthy in content and design but should address compliance and security transparency gaps to enhance credibility and user trust.

H

HELLA New Zealand Limited

hella.co.nz

0

HELLA New Zealand Limited operates a professional website focused on LED lighting and automotive electrical accessories, targeting automotive professionals and consumers within New Zealand. The site offers a comprehensive product catalog, reseller information, and multimedia content, positioning itself as a reputable player in the automotive lighting sector. The technical infrastructure leverages modern JavaScript libraries, lazy loading for images, and integrates Google Analytics and Tag Manager for user tracking. While the site is accessible and well-structured, mobile optimization and accessibility are basic, with room for improvement. Security posture is moderate; HTTPS is used, but no explicit security headers were detected, and no cookie consent mechanism is present despite tracking scripts. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for commercial entities. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

E

Enterprise Motor Group (RMVT)

enterprisecars.co.nz

0

Enterprise Motor Group (RMVT) operates a professional and comprehensive used car sales and finance website targeting customers in New Zealand, specifically in Auckland, Hamilton, and Gisborne. The company offers a wide range of used vehicles, flexible finance options, and multiple physical branches, positioning itself as a significant player in the New Zealand used car market. The website is well-structured with clear navigation, multiple interactive features, and detailed vehicle listings, supporting a positive user experience. Technically, the site employs modern technologies including Vue.js, Google Analytics, Facebook and TikTok pixels, and Google reCAPTCHA, indicating a mature digital infrastructure. Security practices are generally strong with HTTPS, CSRF tokens, and CAPTCHA protections; however, some security headers are not explicitly detected, and no dedicated security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. The absence of WHOIS data for the domain is a notable concern, reducing trust in domain legitimacy despite the professional website presence. Overall, the site demonstrates good business credibility and technical maturity but would benefit from enhanced transparency and privacy compliance.

D

Dominator

dominator.co.nz

0

Dominator is a New Zealand-based company specializing in manufacturing and distributing high-quality garage doors and openers. The company operates a network of 30 distributors nationwide, providing comprehensive door-to-door services including selection, installation, and after-sales support. Their website reflects a professional and consistent brand image, targeting homeowners and businesses seeking durable garage door solutions. Technically, the website employs modern frameworks such as Vue.js and Bootstrap, integrates multiple analytics and marketing tools, and uses HTTPS with reCAPTCHA for form security. However, the absence of WHOIS data for the domain raises some concerns about domain registration transparency. Security headers are not explicitly detected, suggesting room for improvement in security hardening. Overall, the site is well-structured, mobile-optimized, and provides clear contact channels, but could enhance trust by publishing security policies and incident response information.

Active+ is a well-established healthcare provider in New Zealand specializing in physiotherapy, occupational therapy, rehabilitation, and wellness services. The company operates a large network of over 1400 clinicians and multiple branded clinics across the country, positioning itself as a leading provider in its sector. The website reflects a professional and comprehensive service offering targeting individuals seeking health and rehabilitation support. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, Hotjar, and Google reCAPTCHA to enhance user experience and security. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and secure form handling, though some security headers could be improved. Privacy policies and cookie consent mechanisms are present, supporting basic compliance. Overall, the website and business present a trustworthy and professional image with no critical security or content safety concerns.

Buteline NZ Ltd is a New Zealand-based manufacturer specializing in plumbing systems for potable water and gas applications, serving both domestic and commercial markets. The company operates internationally with dedicated sites for New Zealand, Malaysia, and the United Kingdom, reflecting a solid market presence. Their product portfolio includes PB Plumbing Systems, Pexline, Bute-Gasline, and underfloor heating systems, positioning them as a key player in the plumbing manufacturing sector. The website branding and content consistently reflect their business identity and market focus. Technically, the website employs modern web technologies including Vue.js, Bootstrap, and Google Analytics, ensuring a responsive and user-friendly experience. The site is mobile optimized and includes SEO best practices such as meta tags and structured data. However, some security best practices like security headers are not visibly implemented, and no CMS or hosting provider details are evident. Performance is moderate with room for optimization. From a security perspective, the site uses HTTPS with a good SSL configuration and includes a cookie consent banner indicating privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration details raises concerns about domain legitimacy and trustworthiness. The lack of explicit security policies or incident response information suggests an area for improvement in security transparency. Overall, Buteline's website is professional and trustworthy from a content and usability standpoint but would benefit from enhanced security measures and clearer domain registration transparency to improve its risk profile and stakeholder confidence.

L

Lightingplus

lightingplus.co.nz

0

Lightingplus is a well-established New Zealand-based retailer specializing in lighting products, offering a wide range of lighting fixtures, lamps, bulbs, and related accessories both online and through numerous physical stores nationwide. The company emphasizes quality and variety, targeting residential and commercial customers seeking lighting solutions. Their market position is strong within New Zealand, supported by a comprehensive store network and an e-commerce platform. Technically, the website leverages modern web technologies including Vue.js and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and Adform, indicating a mature digital marketing strategy. Security-wise, the site uses HTTPS with appropriate security headers and CSRF protections, though explicit security policies and incident response information are not published. Overall, the site is professional, user-friendly, and trustworthy, with good privacy compliance and cookie consent mechanisms. The lack of public WHOIS data is typical for .nz domains and does not detract from the site's legitimacy. Strategic recommendations include publishing a dedicated security policy, incident response contacts, and vulnerability disclosure information to enhance trust and transparency.

K

Kenshoo Skai

skai.io

0

Kenshoo Skai operates as an omnichannel marketing platform delivering advanced marketing technology solutions to enterprises and marketing professionals. The company focuses on providing tools for campaign optimization and marketing analytics across multiple channels, positioning itself as a significant player in the marketing technology sector. The website reflects a mature digital presence built on WordPress with modern performance optimizations and a consistent branding approach. Security posture is adequate with HTTPS enabled and domain protections in place, though improvements such as enabling DNSSEC and publishing security policies are recommended. Privacy compliance is currently weak due to the absence of explicit privacy and cookie policies. Overall, the website is professional and trustworthy, but enhancing privacy and security transparency would strengthen its credibility.

C

CareerSource North Central Florida

careersourcencfl.com

0

CareerSource North Central Florida is a regional government workforce development organization providing career services, job placement, training, and business workforce solutions primarily for North Central Florida counties. The website serves job seekers and employers with resources, events, and support programs. The organization is positioned as a key regional player in workforce development with a medium-sized operational footprint and a focus on community impact. Technically, the website is built on WordPress with common libraries such as jQuery, Flickity, and Google Maps API. SEO is enhanced via Yoast SEO plugin, and Google Analytics is used for visitor tracking. The site is mobile optimized and has moderate performance. Hosting and domain registration are stable and consistent with the organization's profile. Security posture is adequate with HTTPS enabled and domain status protections, but lacks DNSSEC and security headers. No cookie consent mechanism or explicit security policies are published, indicating room for improvement in privacy compliance and incident response readiness. No critical vulnerabilities or suspicious indicators were found. Overall, the website is professional, trustworthy, and serves its intended audience well. Strategic improvements in security headers, DNSSEC, privacy compliance, and incident response transparency would enhance the security posture and trustworthiness further.

G

Greater Gainesville Chamber Foundation

acedcompact.com

0

The Greater Gainesville Chamber Foundation is a non-profit organization focused on mobilizing community efforts around education to prepare students for higher education and sustainable careers. The foundation collaborates with education, business, philanthropy, workforce development, government, and families to improve systemic education outcomes and align efforts for emerging industry career opportunities. The website is hosted on WordPress.com, using a modern tech stack including Jetpack and Bootstrap, and demonstrates good content quality and professional design. However, the domain is newly registered in 2024, which is inconsistent with the foundation's original founding year of 1992, indicating a recent reactivation or rebranding. Security posture is solid with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, representing compliance gaps.

The City of Alachua, FL website serves as the official municipal portal providing residents and visitors with access to city services, government information, and community resources. The site features sections for service requests, utility outage reporting, city commission details, recreation, and employment opportunities, positioning itself as a comprehensive local government resource. The website targets local citizens and stakeholders seeking municipal information and services. Technically, the website employs a modern but somewhat dated technology stack including AngularJS, jQuery, Bootstrap 3.4.1, and a proprietary Vision CMS platform. It integrates Google Analytics and Tag Manager for visitor tracking and performance monitoring. The site is mobile optimized and accessible, though SEO and security header implementations could be enhanced for better performance and protection. From a security perspective, the site enforces HTTPS and uses some XSS filtering within its CMS. However, it lacks explicit HTTP security headers and does not provide visible privacy, cookie, or incident response policies, which are important for compliance and user trust. The absence of WHOIS registration data is a notable anomaly that detracts from domain trustworthiness despite the professional and official nature of the content. Overall, the website is functional and professional but would benefit from improved transparency in privacy and security policies, enhanced security headers, and clarification or correction of domain registration information to strengthen trust and compliance posture.

W

WCJB

wcjb.com

0

WCJB is a regional local news media outlet serving North Central Florida, including Gainesville, Ocala, and Lake City. It provides comprehensive news coverage, weather updates, sports reporting, and community engagement content. The website is professionally designed with consistent branding and targets local residents seeking timely and relevant information. WCJB operates under the parent company Gray Television, a reputable media conglomerate, which enhances its market position and trustworthiness. The business model centers on digital media content delivery supported by advertising networks and community partnerships. Technically, WCJB employs a modern technology stack including React, Arc Publishing CMS, and integrates multiple advertising and analytics services such as Taboola, PubMatic, Amazon Ads, Google Analytics, and Comscore. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be improved. Performance is moderate, with a well-structured navigation system and clear content hierarchy. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes essential security headers. There is no evidence of exposed sensitive data or vulnerable libraries. However, the absence of a dedicated security policy page and incident response contact information represents an area for improvement. Privacy compliance is well addressed with visible privacy and cookie policies, including GDPR considerations. Overall, WCJB presents a low-risk profile with a solid security posture and good business credibility. The main concern is the lack of WHOIS registration data, which is inconsistent with the active and professional nature of the website. This anomaly should be monitored to ensure domain legitimacy. Strategic recommendations include publishing a security policy, adding vulnerability disclosure information, enhancing accessibility, and maintaining regular audits of third-party scripts.

The website www.southstatebank.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) security challenge page employing Turnstile human verification. This prevents direct access to the site's content, limiting the ability to analyze business, security, and compliance details. The WHOIS lookup for the domain returned no data, indicating either the domain is not registered, is newly registered, or WHOIS data is withheld or privacy-protected. No privacy policies, cookie consent mechanisms, terms of service, contact information, or business descriptions are accessible. The site is protected by Cloudflare, indicating a focus on security, but the lack of accessible content and WHOIS data reduces trust and transparency. Overall, the site scores low on content quality, privacy compliance, and business credibility due to these access restrictions.

D

D.E. Scorpio Corporation

scorpioco.com

0

D.E. Scorpio Corporation is a medium-sized, established construction firm founded in 2013, specializing in commercial general contracting with a community-centered and sustainable approach. Their website showcases a professional portfolio of projects and emphasizes quality, safety, and innovative construction management services. The company targets commercial clients and public sector entities, positioning itself as a trusted regional construction partner. Technically, the website is built on WordPress with modern plugins and SEO tools, delivering a good user experience and mobile optimization. Security posture is adequate with HTTPS and domain protections but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website reflects a credible and professional business with room for improvement in privacy and security transparency.

L

Lifesouth Community Blood Centers

lifesouth.org

0

LifeSouth Community Blood Centers operates as a regional non-profit blood supplier serving Florida, Alabama, and Georgia. The organization focuses on ensuring blood availability at local hospitals through community engagement, blood drives, and related healthcare services. Their website reflects a mature digital presence with comprehensive content, clear navigation, and a professional design that supports their mission and outreach efforts. Technically, the site is built on WordPress using the Divi theme and integrates modern tools such as Google Tag Manager and CookiePro for analytics and privacy compliance. Security posture is solid with HTTPS enforced and a Content-Security-Policy header, although some advanced security headers and explicit security policies are absent. Overall, the website demonstrates a trustworthy and professional online presence aligned with its healthcare mission.

P

Pavlov Media

pavlovmedia.com

0

Pavlov Media is a medium-sized telecommunications company specializing in providing fiber internet services to residential and business customers across the United States. Established in 2006, the company operates a national backbone network and offers a range of services including residential fiber internet, business internet, MDU internet, and phone solutions. The website reflects a professional and consistent brand presence with clear navigation and relevant content targeting both residential and commercial markets. Technically, the site is built on WordPress with Visual Composer and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and HubSpot. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not publish a security policy or incident response contacts. Privacy compliance is limited due to absence of explicit privacy and cookie policies or consent mechanisms. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

C

CAMPUS USA Credit Union

campuscu.com

0

CAMPUS USA Credit Union is a well-established financial institution based in Florida, providing a broad range of banking, loan, investment, and insurance services primarily to residents and employees in multiple Florida counties. The credit union emphasizes community involvement and member empowerment, positioning itself as a trusted alternative to traditional banks with a community-driven approach. Their market presence is supported by numerous physical branches and a strong digital presence, including online and mobile banking platforms. Technically, the website employs a modern technology stack including jQuery, Google Tag Manager, Facebook Pixel, and ASP.NET MVC framework, hosted on AWS infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Analytics and marketing tools are used responsibly, with moderate user tracking. From a security perspective, the site enforces HTTPS, uses secure login forms, and manages cookies securely. However, it lacks DNSSEC, explicit security headers, and a vulnerability disclosure policy. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The WHOIS data confirms the domain's legitimacy and long-standing registration, consistent with the business claims. Overall, CAMPUS USA Credit Union's website demonstrates a strong business credibility and technical maturity with minor gaps in privacy compliance and security best practices. Strategic improvements in cookie consent, DNS security, and vulnerability disclosure would enhance trust and compliance.

F

Florida Credit Union

flcu.org

0

Florida Credit Union is a well-established financial institution founded in 1954, serving personal and business customers primarily in Florida. The credit union offers a broad range of financial products including personal loans, mortgages, auto loans, business loans, checking and savings accounts, and credit cards. The website reflects a strong community and member-oriented approach with clear trust signals such as member testimonials and federal insurance by NCUA. Technically, the site is built on the Kentico CMS platform, hosted on Oracle Cloud DNS, and integrates multiple modern analytics and marketing tools. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced and secure login forms, though DNSSEC is not enabled and security headers are not explicitly observed. Privacy compliance is basic with a comprehensive privacy policy but lacking a cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

Newor Media operates a digital media platform focused on ensuring payment reliability for advertising earnings, emphasizing conservative financial management to guarantee clients receive owed payments. The website is built on Drupal 10 with Bootstrap 4 and uses standard web technologies such as jQuery and Google Fonts. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is average; HTTPS is assumed but no advanced security headers or DNSSEC are implemented. Privacy compliance is limited, with a privacy policy present but no cookie consent mechanism or GDPR indicators. Business credibility is supported by consistent WHOIS data and a physical US address, but contact details and certifications are minimal. Overall, the site is functional but could improve in security and privacy transparency.

P

Perion Network Ltd.

vidazoo.com

0

Perion Network Ltd. is an established enterprise technology company specializing in AI-powered digital advertising solutions. Founded in 1997, the company offers a unified platform that connects advertisers and brands with consumers across multiple digital channels including Connected TV, dynamic audio ads, digital out-of-home, retail commerce, and audience segmentation. Their market position is that of a technology leader with a strong focus on innovation and AI-driven ad optimization. The website reflects a mature digital presence with excellent content quality, professional design, and comprehensive navigation tailored to advertisers, publishers, and partners. Technically, the website is built on WordPress with modern performance and SEO optimizations, including Google Analytics, Google Tag Manager, HubSpot forms, and Cookiebot for consent management. The site is mobile-optimized and accessible, leveraging caching and lazy loading technologies. Security posture is good with HTTPS enforced and domain registration protections in place, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of direct contact emails or phone numbers suggests contact is managed via web forms. The company maintains active social media profiles enhancing trust and engagement. The website is safe for general audiences, contains no adult or explicit content, and demonstrates a high level of professionalism and trustworthiness. Strategic recommendations include enabling DNSSEC, publishing a formal security policy and incident response contacts, and considering a vulnerability disclosure program to further enhance security transparency.

A

Aniview

aniview.com

0

Aniview operates as a global adtech and media company specializing in video advertising and monetization solutions across Connected TV (CTV), web, and mobile platforms. The company positions itself as an independent video ad serving platform focused on transparency and maximizing publisher revenue. The website reflects a mature business with a professional design and comprehensive content describing its services and market focus. Technically, the site is built on WordPress with Elementor and integrates multiple modern web technologies and marketing tools such as Google Analytics and HubSpot. Security posture is adequate with HTTPS enabled and a robust cookie consent mechanism, though explicit security policies and headers could be improved. Privacy compliance is well addressed with GDPR-aligned cookie consent and a detailed privacy policy. Overall, the domain registration data supports the legitimacy and longevity of the business, with no suspicious indicators detected.

D

Decide

decide.dev

0

Decide is a performance advertising platform focused on providing advertisers and publishers with privacy-respecting, cookieless advertising solutions. Established in 2010, the company positions itself as a future-proof ad platform trusted by smart advertisers and publishers. The website reflects a mature business with a clear focus on technology-driven advertising services and a decision marketplace. Technically, the site uses modern JavaScript, SVG animations, Google Fonts, and Facebook Pixel for marketing analytics. The domain is registered with GoDaddy and uses privacy protection services, which is common and justified for this business type. Security posture is good with HTTPS enabled and domain status protections, but lacks DNSSEC and explicit security policies. Privacy compliance is partially met with privacy and cookie policies present, though a cookie consent mechanism is missing. Overall, the website is professional, well-branded, and trustworthy, with moderate tracking and advertising transparency.

S

Squiz

squiz.net

0

Squiz is a technology company specializing in Digital Experience Platforms (DXP) designed for enterprise clients across sectors such as government, higher education, and professional services. Their platform offers a comprehensive suite of tools including content management, AI-powered search, personalization, integrations, and optimization, enabling organizations to deliver intelligent, secure, and scalable digital experiences. The company is well-positioned in the market, evidenced by longstanding Gartner Magic Quadrant recognition and a portfolio of notable clients. Technically, the website demonstrates a mature digital infrastructure with modern JavaScript libraries, HubSpot integration, and extensive analytics and marketing tools, reflecting a high level of digital maturity and marketing sophistication. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and explicit incident response disclosures. The absence of WHOIS domain registration data is a notable anomaly that warrants further investigation to confirm domain legitimacy. Overall, Squiz presents as a credible, professional enterprise with a strong market presence and a well-implemented digital platform.

F

Fundplat

fundplat.com

0

Fundplat.com is a Zurich-based multimedia and events platform targeting professional investors, focusing on finance, innovation, and lifestyle. The platform offers multimedia content such as interviews, clips, and videos, alongside exclusive events like Afterworks, Breakfasts, Roundtables, and Summits, bridging markets between Switzerland, Germany, Dubai, and Abu Dhabi. The business model centers on providing high-quality content and networking opportunities for finance professionals. Technically, the website is built on WordPress, hosted on SiteGround, and uses common web technologies including jQuery, YouTube and Vimeo APIs, and Google Analytics. The site is mobile-optimized with good navigation and professional design. Security posture is moderate with HTTPS enforced and domain protections in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security practices.

K

Kaiser Partner Privatbank AG

kaiserpartner.bank

0

Kaiser Partner Privatbank AG is a Liechtenstein-based private trust bank specializing in wealth protection and growth for private and business clients, asset managers, and intermediaries. The company offers a range of services including investment solutions, banking services, and support for intermediaries, positioning itself as a trusted institution in the finance sector with a strong market presence and recent positive financial results. The website reflects a professional and modern digital presence, built on WordPress with integration of SEO and marketing tools, providing a user-friendly experience with clear navigation and mobile optimization. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the domain registration and website content align well, indicating a legitimate and credible financial institution.

U

Universal Investment

universal-investment.com

0

Universal Investment is a leading European fund service platform and Super ManCo, providing a broad range of fund services and management company solutions primarily targeting asset managers and institutional investors. The company positions itself as a market leader with comprehensive services including fund structuring, administration, portfolio management, and ESG reporting. Their digital presence reflects a mature and professional organization with a well-structured website offering multiple portals and services to clients. Technically, the website leverages modern frameworks such as Bootstrap 4 and integrates advanced analytics and tracking tools like Google Analytics and Microsoft Application Insights, combined with a robust cookie consent mechanism via Cookiebot. The site is mobile-optimized, accessible, and SEO-friendly, indicating a high level of digital maturity. From a security perspective, the site enforces HTTPS and employs cookie consent best practices, though explicit security headers are not fully confirmed. No critical vulnerabilities or security issues were detected in the content. The absence of WHOIS data is a concern but does not significantly detract from the overall trustworthiness given the professional site and business domain. Overall, the risk assessment is moderate to low with recommendations to enhance security headers and maintain regular audits of third-party scripts. The company should consider publishing more explicit contact information and security policies to further enhance trust and compliance.

I

iMaps ETI AG

imaps-capital.com

0

iMaps ETI AG is a Swiss-based financial services company specializing in the creation and issuance of Exchange Traded Instruments (ETIs), including Actively Managed Certificates (AMCs) and Fund-Linked Notes. The company targets financial institutions, asset managers, and investors seeking innovative investment products in the European market. Founded in 2018, iMaps ETI AG positions itself as a niche player offering white label solutions and a proprietary issuance platform to streamline ETI creation. The website infrastructure is built on WordPress with Elementor and Astra theme, leveraging modern web technologies and integrating marketing and analytics tools such as HubSpot and Google Ads. The site is multilingual, GDPR compliant, and features cookie consent mechanisms, reflecting a mature digital presence. Performance and mobile optimization are good, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but there is room for improvement by enabling DNSSEC, adding security headers, and publishing formal security policies and incident response contacts. No critical security issues were detected. The WHOIS data aligns well with the business profile, indicating legitimacy and consistent domain registration. Overall, iMaps ETI AG demonstrates a professional and trustworthy online presence suitable for its financial services business, with recommendations to strengthen security transparency and technical safeguards to further enhance trust and compliance.

S

SwissComply

swisscomply.ch

0

SwissComply is a Swiss-based company specializing in compliance and risk management services. The website presents a professional but basic digital presence primarily targeting businesses seeking compliance consulting and risk management solutions. The site is built on WordPress and integrates common technologies such as Google Fonts, Google reCAPTCHA, and Google Tag Manager for analytics and marketing. Security posture is solid with HTTPS and security headers implemented, but lacks explicit privacy, cookie, and incident response policies. Contact information is not clearly presented in the analyzed content, which may impact user trust and compliance. Overall, the website is functional and moderately mature digitally but could benefit from enhanced privacy compliance and clearer business contact details.

G

Grant Thornton Switzerland / Liechtenstein

grantthornton.ch

0

Grant Thornton Switzerland / Liechtenstein is a well-established professional services firm providing audit, tax, advisory, and consulting services primarily to businesses in Switzerland and Liechtenstein. The firm operates as a member of the global Grant Thornton International network, positioning itself as a leading mid-tier player in the finance sector within its geographic market. The website reflects a professional and consistent brand image aligned with international standards, targeting corporate clients seeking high-quality financial and advisory services. Technically, the website employs modern analytics and marketing technologies such as Google Analytics, Microsoft Clarity, Optimizely, and OneTrust for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO and accessibility features, although some technical details like CMS and hosting provider are not explicitly identified. From a security perspective, the site enforces HTTPS with strong SSL configuration and implements key security headers. Privacy compliance is robust with comprehensive privacy and cookie policies and active consent mechanisms. However, the absence of a dedicated security policy, incident response information, and vulnerability disclosure mechanisms suggests areas for improvement in transparency and security maturity. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include publishing explicit security and incident response policies and implementing a vulnerability disclosure program to enhance trust and security posture further.

C

CV VC AG

cvvc.com

0

CV VC AG is a Swiss-based blockchain venture capital firm established in 2016, specializing in seed funding and acceleration programs for transformative blockchain startups globally. Positioned as a pioneer in Crypto Valley, Switzerland, CV VC offers investment products to qualified investors and operates an ecosystem arm called CV Labs, which supports startups through coworking spaces and events. The website reflects a professional and modern digital presence with comprehensive content targeting blockchain innovators and investors. Technically, the site is built on Webflow with integrations including Google Analytics, HubSpot, and CookieScript, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and reCAPTCHA usage, though lacks visible HTTP security headers and published security policies. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is common for VC firms. Overall, the site demonstrates a mature digital footprint suitable for its business domain.

H

Hauck Aufhäuser Lampe Privatbank

hal-privatbank.com

0

Hauck Aufhäuser Lampe Privatbank operates as a private banking and wealth management institution primarily targeting private clients and investors. The website presents a professional image with clear branding and a focus on helping clients achieve their financial goals. The technical infrastructure is based on TYPO3 CMS, indicating a mature content management approach with good mobile optimization and accessibility. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enabled but lacking advanced security headers and explicit privacy policies. Overall, the site is functional and professional but requires improvements in transparency and security compliance to enhance trust.

L

LGT Private Banking

lgt.li

0

LGT Private Banking is a well-established global private bank with over 100 years of history, specializing in wealth management and investment solutions for wealthy clients. The company emphasizes sustainability and forward-looking investment strategies, serving ultra-high-net-worth individuals and financial intermediaries worldwide. The website reflects a mature digital presence with multiple language and location options, comprehensive content including news, insights, and career opportunities, and secure client login portals. Technically, the site uses modern JavaScript libraries, Piwik PRO analytics, and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is strong with HTTPS enforced and secure cookie handling, though explicit security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy standards.

V

VP Bank Ltd

vpbank.com

0

VP Bank Ltd is a well-established international private bank headquartered in Liechtenstein, offering a broad range of financial services including wealth management, investment advisory, financing, and e-banking. The bank operates across multiple financial centers including Switzerland, Luxembourg, Singapore, and the British Virgin Islands, reflecting a strong international presence and diversified market reach. The website content is professionally presented, targeting private clients and intermediaries with clear navigation and comprehensive service descriptions. Technically, the website is built on Drupal CMS and employs modern web technologies including SVG animations and a self-hosted Matomo analytics platform, complemented by a Usercentrics consent management platform ensuring GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, with no visible vulnerabilities or exposed sensitive data. However, explicit security headers and a published security.txt file are absent, and incident response contact details are not clearly provided, representing areas for improvement. The WHOIS data is unavailable, likely due to privacy protection, but the overall legitimacy of the domain and business is supported by consistent branding, detailed business information, and international regulatory compliance. Overall, VP Bank Ltd's website demonstrates a high level of professionalism, security awareness, and regulatory compliance, making it a trustworthy platform for its target audience. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and providing clearer incident response contacts to further strengthen trust and security posture.

B

Bolder Group

boldergroup.com

0

Bolder Group is a UK-based professional services firm specializing in corporate, funds, governance, and private wealth services. The company targets corporate clients, fund managers, and private wealth holders, offering tailored financial and governance solutions. The website reflects a mature and established business with a clear market position in the finance sector. Technically, the site is built on WordPress with modern analytics and marketing integrations, including Google Analytics, Microsoft Clarity, and HubSpot. Security posture is strong with HTTPS, security headers, and anti-spam measures, though it lacks a dedicated security policy or incident response information. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-optimized for its audience.

W

Waystone

waystone.com

0

Waystone is a prominent service provider in the asset management industry, specializing in institutional governance, administration, risk, and compliance services. The company offers a broad range of regulated fund solutions, administration services, compliance support, Cayman Islands solutions, and ETF platforms, targeting asset managers and institutional investors globally. Their market position is strong, supported by multiple subsidiaries and partnerships, indicating a well-established presence in the finance sector. Technically, the website is built on WordPress CMS with modern JavaScript libraries and integrates several third-party analytics and marketing tools such as Google Tag Manager, Crazy Egg, and Demandbase. The site is hosted on AWS Cloudfront CDN, ensuring good performance and global availability. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS registration data is a notable anomaly, which may indicate privacy protection or recent domain registration, warranting further verification. Overall, the website demonstrates a professional and trustworthy digital presence with moderate to good security posture. Strategic recommendations include enhancing security headers, publishing clear privacy and incident response policies, and resolving WHOIS data inconsistencies to strengthen trust and compliance.

C

CreaTrust Sàrl

creatrust.com

0

Creatrust Sàrl is a well-established Luxembourg-based company specializing in corporate, investment fund, and family office services. With over 20 years of experience, it positions itself as a leading independent provider offering comprehensive solutions including company formation, fund setup, wealth structuring, and fintech platforms such as FundNav®, Intradomus®, and FundWire®. The company targets international clients, institutional investors, and high net worth individuals seeking to establish or manage entities in Luxembourg. The website reflects a professional and consistent brand image with detailed service offerings and client testimonials, reinforcing its market credibility. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google Analytics, and Google Tag Manager, ensuring a responsive and user-friendly experience. Hosting is managed by EuroDNS S.A., and the domain is secured with HTTPS and clientTransferProhibited status, though DNSSEC is not enabled. The site lacks a cookie consent mechanism and explicit security or incident response policies, which are areas for improvement in privacy compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and use of reCAPTCHA, but could enhance its posture by enabling DNSSEC and publishing security policies. No vulnerabilities or suspicious activities were detected. Overall, Creatrust presents a trustworthy and professional online presence suitable for its financial services audience. Strategically, Creatrust should focus on enhancing GDPR compliance by implementing cookie consent and publishing detailed security and incident response policies. Enabling DNSSEC would further strengthen domain security. These steps will improve user trust and regulatory adherence, supporting the company’s strong market position in Luxembourg’s financial services sector.

G

GenTwo AG

gentwo.com

0

GenTwo AG is a fintech company specializing in assetization and financial engineering, aiming to expand the investment universe by making all assets investable. The company targets financial intermediaries such as banks, hedge funds, asset managers, family offices, and digital investors, offering a unique platform called GenTwo PRO along with other financial technology solutions. The website presents a professional and modern digital presence, leveraging advanced web technologies including Nuxt.js and Vue.js, integrated with HubSpot for marketing and analytics. Security measures are robust, with HTTPS enforced and appropriate security headers in place, although explicit security policies and incident response details are not publicly available. The absence of WHOIS registration data is a notable concern, suggesting the need for further verification of domain ownership. Overall, the website demonstrates a high level of professionalism, content quality, and compliance with privacy regulations, positioning GenTwo as a credible player in the fintech sector.

E

Eidgenössische Finanzmarktaufsicht FINMA

finma.ch

0

The Eidgenössische Finanzmarktaufsicht FINMA is the Swiss federal financial market supervisory authority responsible for licensing, prudential supervision, and enforcement in the Swiss financial sector. It serves a broad audience including banks, insurance companies, asset managers, and the general public. The website is professionally designed, content-rich, and provides extensive regulatory information and resources. Technically, the site uses modern JavaScript frameworks and Matomo analytics, indicating a mature digital infrastructure. Security posture is strong with HTTPS and no visible vulnerabilities, though improvements in security headers and privacy policies are recommended. Overall, the site is trustworthy and authoritative, reflecting its role as a national regulator.

G

Ghost Plugins

ghostplugins.dev

0

Ghost Plugins operates as a specialized provider of free and premium plugins and templates for Squarespace websites, positioning itself as the largest resource in this niche. The business targets Squarespace designers, agencies, and website owners seeking to enhance their sites with additional functionality and design options. The website is built on the Squarespace platform, leveraging its CMS capabilities and integrating various third-party analytics and marketing tools to optimize user engagement and business growth. Privacy and cookie compliance are well implemented, reflecting a mature approach to user data protection. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency, which slightly impacts overall trustworthiness. Security posture is adequate with HTTPS enforced, but could be improved by adding advanced security headers and enabling HSTS. Overall, the site presents a professional and trustworthy front with room for technical security enhancements.

Y

YesWeHack

yeswehack.io

0

YesWeHack operates as a global bug bounty and vulnerability management platform, connecting organizations with a large community of ethical hackers to identify and remediate security vulnerabilities. The company positions itself as a leader in crowdsourced security testing, offering a suite of services including bug bounty programs, vulnerability disclosure policies, pentest management, and attack surface management. Their business model emphasizes pay-for-results and scalable security testing tailored to diverse IT and security needs. The website content is professional, well-structured, and targets organizations seeking to enhance their cybersecurity posture through innovative and collaborative approaches. Technically, the website leverages modern web technologies such as Next.js and React, ensuring fast performance, mobile optimization, and good accessibility. The presence of multiple tracking and marketing scripts indicates a mature digital marketing strategy, balanced with privacy compliance evidenced by comprehensive privacy and cookie policies with consent mechanisms. Security best practices are observed with HTTPS enforcement, security headers, and secure form handling, although explicit incident response contacts and security.txt files are not found. The security posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data limits the ability to fully verify domain registration legitimacy, slightly impacting trust. Overall, YesWeHack presents a credible, professional, and secure platform with a strong market position in the cybersecurity industry.

L

Little Hotelier

littlehotelier.com

0

Little Hotelier is a specialized SaaS provider offering all-in-one software solutions tailored for small hospitality properties, focusing on front desk and reservation management. The company targets small hotel owners and property managers, providing tools to increase bookings and streamline operations. The website demonstrates a professional and consistent brand presence with good content quality and SEO optimization, supported by structured data and social media integration. Technically, the site is built on WordPress with modern plugins and analytics tools, including Google Tag Manager and Microsoft Clarity, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data raises concerns about domain registration legitimacy, but the active online presence and comprehensive privacy compliance suggest a legitimate business. Overall, the website is well-constructed, user-friendly, and compliant with privacy regulations, though further verification of domain registration is recommended.

TransmitSMS operates as a technology company providing SMS messaging services primarily through a SaaS platform that supports direct business users and resellers. The website analyzed is a login portal leveraging Auth0 for secure authentication, indicating a mature approach to identity management. The platform targets businesses requiring SMS communication capabilities and reseller account management. The market position appears stable with a focus on technology-driven messaging solutions. Technically, the site uses modern JavaScript libraries and OAuth2 protocols with PKCE, ensuring secure and standards-compliant authentication flows. The design is professional and mobile-optimized, though accessibility features could be improved. Security posture is strong with HTTPS enforced and use of Auth0, but lacks some security headers and explicit cookie consent mechanisms. Privacy policies and terms of service are comprehensive and GDPR compliant, supporting regulatory adherence. Overall, the site presents a low-risk profile with good business credibility and technical implementation.

V

Visit Gainesville

visitgainesville.com

0

Visit Gainesville operates as a regional destination marketing organization promoting tourism in Gainesville and Alachua County, Florida. The website offers comprehensive information about local attractions, events, outdoor recreation, dining, and lodging, targeting tourists and local visitors. The business model focuses on tourism promotion and community engagement, positioning itself as a key regional tourism authority. Technically, the site is built on WordPress with modern JavaScript libraries such as Swiper and Leaflet, and integrates marketing and analytics tools like Google Tag Manager and Crazy Egg. The site is mobile-optimized and SEO-friendly, with good content quality and consistent branding. Security-wise, the website uses HTTPS and cookie consent mechanisms but lacks explicit security headers, a published security policy, and vulnerability disclosure information. WHOIS data is consistent with the website's regional focus, supporting legitimacy. Overall, the site is professional and trustworthy but could improve privacy and security transparency.

G

Greater Gainesville Chamber of Commerce

gainesvillechamber.com

0

The Greater Gainesville Chamber of Commerce is a well-established regional business advocacy and support organization founded in 1996. It serves the Gainesville, Florida area by providing membership benefits, economic development resources, public policy advocacy, and community engagement programs. The website reflects a professional and consistent brand presence with a focus on local business networking and regional growth initiatives. Technically, the site is built on WordPress with a modern theme and several plugins to enhance user experience, though performance is moderate and accessibility could be improved. Security posture is adequate with HTTPS and domain protections, but lacks some security headers and formal privacy compliance documentation. Overall, the site is trustworthy and serves its business community effectively, though it would benefit from enhanced privacy and security policies.

B

Brandecation

brandecation.com

0

Brandecation is a technology company offering a customizable managed training platform that integrates learning management, rewards, and incentive program management. Their platform targets organizations seeking to elevate sales performance through tailored training and dynamic rewards. The website demonstrates a strong market position by combining multiple program management tools into a unified SaaS solution, supported by managed services to ensure client success. Technically, the website is built on modern frameworks such as Astro and Svelte, uses a headless CMS (Storyblok), and integrates reputable analytics and marketing tools like HubSpot and Plausible. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no exposed sensitive data; however, the absence of explicit security headers and published privacy or terms policies indicates room for improvement. Overall, the website is professional and trustworthy, though enhancing privacy compliance and security transparency would strengthen its risk profile.