Security Directory

I

Inxmail GmbH

inxmail.com

0

Inxmail GmbH operates a professional email marketing platform focused on delivering newsletters, automated campaigns, transactional emails, and SMTP mail relay services. The company targets businesses seeking GDPR-compliant, secure, and efficient email marketing solutions. Their platform supports integrations with CRM, CMS, and e-commerce systems, and offers marketing automation with visual workflows. The website reflects a mature digital presence with a modern TYPO3 CMS infrastructure, consent management, and tracking tools integrated for analytics and compliance. Security posture is strong, supported by ISO 27001 certification and adherence to GDPR standards, with no visible vulnerabilities or exposed sensitive data. Overall, Inxmail presents a trustworthy and professional brand with a solid market position in the technology and e-commerce sectors.

The website www.proxena.com is effectively non-existent in terms of content and business presence. The site contains only a single line of text with the domain name and no metadata, scripts, or interactive elements. The WHOIS lookup failed to find any registration data, indicating the domain is either unregistered or inactive. This lack of registration and content means there is no identifiable business, no contact information, and no security or privacy policies in place. The technical infrastructure appears minimal or non-existent, with no evidence of HTTPS or security best practices. Overall, the site does not present any trust signals or business credibility, and it is not possible to assess any meaningful security posture beyond the absence of data. The risk level is high due to the lack of registration and content, and the site should not be considered a legitimate or operational business presence.

H

Hrvatsko dizajnersko društvo / Croatian Designers Association

dizajn.hr

0

Hrvatsko dizajnersko društvo (Croatian Designers Association) is a non-profit organization dedicated to promoting design culture, education, exhibitions, and discourse in Croatia. The website serves as a portal for design professionals, students, and enthusiasts, providing information on events, workshops, publications, and membership. It holds a reputable position in the Croatian design community, supported by government and cultural sponsors, and is a member of international design associations.

R

ReStyloh

restyloh.hr

0

ReStyloh is a Croatian e-commerce platform focused on the buying and selling of second-hand clothing and footwear. The website targets general consumers interested in sustainable fashion and offers a marketplace model where users can list and purchase used apparel. The platform is positioned as a niche player in the local market, emphasizing unique fashion finds and environmental consciousness. The website features clear navigation with categorized product listings and search capabilities for both products and users. Technically, the site employs common web technologies including jQuery, Bootstrap, Owl Carousel, and Select2 for UI components, along with Google Fonts for typography. Analytics are implemented via Google Analytics and Clicky, indicating a moderate level of digital maturity. The site uses HTTPS, ensuring encrypted communication, but lacks visible advanced security headers and formal privacy or cookie policies. From a security perspective, the site demonstrates basic good practices such as HTTPS usage and no visible exposure of sensitive data. However, the absence of security headers, privacy policies, and incident response information suggests room for improvement in compliance and security posture. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, ReStyloh presents a functional and professional e-commerce platform with a focus on second-hand fashion in Croatia. To enhance trust and compliance, the site should implement comprehensive privacy and cookie policies, security headers, and clear contact information. These improvements would strengthen the site's security posture and user confidence.

F

FBL

fbl.ba

0

The website fbl.ba is a WordPress-based site titled 'FBL' with integration of Google advertising and analytics technologies, including Google Tag Manager and Adsense, with consent mode enabled for privacy compliance. The site appears to be targeted at a general audience in Bosnia and Herzegovina, but lacks explicit business descriptions, contact information, or detailed company data. Technically, the site uses modern web fonts and SEO plugins, providing a moderate level of performance and mobile optimization. Security posture is basic, with no visible security headers or published security policies, and no evidence of vulnerability disclosure or incident response readiness. Privacy compliance is limited to a cookie consent mechanism, but no privacy policy or terms of service are found. Overall, the site is accessible without WAF or blocking mechanisms and contains safe content suitable for general audiences.

M

Mainstream Public Cloud Services d.o.o.

bizlife.rs

0

BIZlife.rs is a well-established Serbian business news portal operated by Mainstream Public Cloud Services d.o.o., founded in 2011. The site offers comprehensive business, entrepreneurship, IT/Tech, lifestyle, travel, and health news targeted at Serbian-speaking professionals and entrepreneurs. The platform uses WordPress with Elementor, integrating modern web technologies and analytics tools such as Google Analytics, Facebook Pixel, and Gemius Prism. The website demonstrates good content quality, professional design, and consistent branding, supported by active social media channels and a newsletter subscription service. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a comprehensive privacy policy but no explicit cookie consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

M

Mediakit

mediakit.hr

0

Mediakit.hr is a Croatian informational platform focused on marketing, PR, media, and the event industry. The website provides news, articles, and newsletters targeting professionals in these sectors. The platform is relatively new, with domain registration in April 2024, and positions itself as a niche media outlet serving the Croatian market. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, Modern Events Calendar Lite, and Complianz GDPR for cookie consent, indicating a moderate level of digital maturity. Google Analytics and AdSense are integrated for analytics and monetization purposes. Security-wise, the site enforces HTTPS and shows no signs of WAF or blocking mechanisms. However, explicit security headers are not detected, and there is no visible security policy or incident response information. Privacy compliance is partially addressed through cookie consent, but no privacy policy or terms of service pages were found. Overall, the site demonstrates a good level of professionalism and trustworthiness but would benefit from enhanced privacy and security disclosures.

M

Marketing Magazin

marketingmagazin.si

0

Marketing Magazin is a well-established Slovenian media outlet specializing in marketing, communications, and advertising industry news and insights. The website serves marketing professionals and industry stakeholders with news articles, interviews, event listings, and video content. The business model is primarily media publication supported by advertising and subscriptions. Technically, the site uses Drupal 9 CMS with standard analytics and advertising tools such as Google Analytics, Facebook Pixel, and Gemius. The site is mobile optimized and has good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are not evident. No privacy policy or terms of service were found in the provided content, indicating room for compliance improvement. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

L

LED Mreza Srbije

ledmrezasrbije.rs

0

LED Mreža Srbije operates a comprehensive network of LED and video billboards across Serbia, targeting advertisers seeking high-impact outdoor and indoor marketing solutions. The company holds a strong market position with over 100 locations in more than 40 cities, offering premium advertising spaces in strategic urban and transit locations. Their business model focuses on renting advertising space on LED billboards, complemented by indoor advertising in shopping centers, leveraging modern video marketing techniques to enhance client campaigns. Technically, the website is built on WordPress with WooCommerce and Oxygen Builder, integrating Google Tag Manager for analytics. The site is mobile-optimized and provides a professional user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partially met with privacy and cookie policies present, but lacks an explicit cookie consent mechanism. Overall, the domain registration data aligns well with the business history, supporting legitimacy and trustworthiness.

A

Advertiser Serbia

advertiser-serbia.com

0

Advertiser Serbia is a professional online media portal focused on the advertising, media, and marketing sectors in Southeast Europe, primarily Serbia. The website provides news, industry analysis, event announcements, and advertising content targeting media professionals, agencies, brands, and the general public interested in this sector. It positions itself as a leading and influential portal in the regional media and advertising landscape. Technically, the site is built on WordPress CMS with a modern tech stack including Yoast SEO, Google Analytics, and social sharing plugins, offering good mobile optimization and SEO practices. Security posture is decent with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, which are compliance gaps. The domain WHOIS data is missing or not found, raising concerns about domain legitimacy despite the professional and active website content. Overall, the site is functional and professional but would benefit from improved privacy compliance and clearer domain registration transparency.

S

Studenac d.o.o.

studenac.hr

0

Studenac d.o.o. is a leading Croatian retail chain specializing in food and household products, operating over 1000 stores nationwide. Founded in 1991 and headquartered in Omiš, Croatia, it is owned by the Polish Enterprise Fund VIII since 2018. The company offers a broad range of services including weekly promotions, mobile app-based coupons, and additional services such as package pickup and delivery via third-party platforms. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site employs modern JavaScript libraries and asynchronous loading techniques, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR regulations.

I

INA, d.d.

ina.hr

0

INA, d.d. is a leading Croatian integrated energy company specializing in oil and gas exploration, production, refining, marketing, and retail. The company maintains a strong market position in Croatia and the region, offering a broad range of petroleum products and customer services. The website reflects a mature digital presence with comprehensive corporate information, targeting customers, investors, and partners. Technically, the site is built on WordPress with modern SEO and analytics tools, providing good performance and mobile optimization. Security posture is strong with HTTPS enforcement, ISO 27001 certification, and cookie consent mechanisms, although public vulnerability disclosure and incident response contacts are not explicitly provided. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR.

Costa Coffee's Croatian website serves as a localized digital presence for the internationally recognized coffeehouse brand. The site primarily focuses on showcasing coffee products and brand information tailored to the Croatian market. The business operates within the retail sector, targeting general consumers and coffee enthusiasts. The website reflects a consistent brand identity aligned with Costa Coffee's global image and is supported by The Coca-Cola Company as its parent entity. Technically, the website leverages modern web technologies including React and Gatsby, supported by Akamai CDN for optimized performance. The site is mobile-optimized and employs standard security best practices such as HTTPS enforcement and security headers. Cookie consent is managed through OneTrust, indicating a basic level of privacy compliance. From a security perspective, the site demonstrates a solid posture with no detected vulnerabilities or exposed sensitive data. However, the absence of explicit privacy policy, terms of service, and incident response contact details suggests areas for improvement in compliance and transparency. The WHOIS data confirms the domain's legitimacy and consistency with the brand's regional presence. Overall, the website is professional, secure, and trustworthy, but would benefit from enhanced privacy and security disclosures to meet higher compliance standards.

S

Smart Water d.o.o.

smartwater.hr

0

Smart Water d.o.o. is a Croatian company specializing in products and services for water supply companies, construction firms, and design houses. The company represents renowned manufacturers of water supply equipment, positioning itself as a niche B2B provider in the energy sector focused on water management. The website is professionally designed using WordPress with the Divi theme and optimized for SEO with Yoast. It offers content primarily in Croatian with an English alternative, targeting regional business clients. The technical infrastructure is modern and mobile-optimized, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Contact information is not explicitly found in the provided content, which may impact user trust and compliance. Overall, the website reflects a legitimate small business with room for improvement in security and privacy transparency.

B

bebold sàrl

bebold.ch

0

bebold sàrl is a Swiss-based digital agency specializing in web development, marketing, and design services primarily serving clients in Martigny and Lausanne. Their website presents a professional image with detailed service offerings across design, web, and marketing domains, targeting businesses seeking comprehensive digital solutions. The company positions itself as a creative and functional partner for digital projects, emphasizing user experience and strategic marketing. Technically, the website employs modern JavaScript libraries, Google Analytics for tracking, Google reCAPTCHA for form security, and a cookie consent mechanism via tarteaucitron.io, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and design quality. Security posture is solid with HTTPS enforced and reCAPTCHA integration, but lacks visible security headers and published security policies, which are areas for improvement. Privacy compliance is partial due to the absence of a privacy policy and terms of service, though cookie consent is implemented. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and security documentation.

A

Agrisano

agrisano.ch

0

Agrisano is a Swiss insurance provider specializing in tailored insurance solutions for farmers and agricultural workers. The company offers a comprehensive range of services including basic health insurance, supplementary insurance, pension plans, and employee global insurance. The website is professionally designed using TYPO3 CMS and targets the German-speaking Swiss agricultural community. The digital infrastructure includes privacy-conscious analytics via Matomo and Google Analytics, with a cookie consent mechanism in place. Security posture is solid with HTTPS and some security best practices observed, though there is room for improvement in security headers and incident response disclosures. Overall, the website is trustworthy, well-branded, and serves its niche market effectively.

D

diagraf GmbH

diagraf.ch

0

diagraf GmbH is a small graphic design atelier based in Bern, Switzerland, specializing in corporate design, branding, illustrative graphics, and web design services. The company targets brands and businesses seeking professional visual communication solutions. The website presents a professional portfolio with clear navigation and detailed references, positioning diagraf as a trusted local design service provider. Technically, the site uses modern web technologies including Svelte and Craft CMS, delivering a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS enforced but lacks security headers and published security policies. Privacy compliance is limited due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

H

High Altitude Research Stations Jungfraujoch and Gornergrat

hfsjg.ch

0

The High Altitude Research Stations Jungfraujoch and Gornergrat operate as a Swiss international foundation dedicated to supporting scientific research at high altitude locations. The foundation provides infrastructure and facilitates research projects primarily in the fields of atmospheric, environmental, and astronomical sciences. Their market position is specialized and niche, serving academic and research communities with unique facilities. The website reflects a professional and consistent brand image, targeting researchers and scientific institutions. Technically, the website is built on WordPress 6.4.7 with modern JavaScript libraries such as jQuery 3.7.1 and uses optimization plugins like Autoptimize. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO practices in place. However, there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses nonce tokens for AJAX requests, indicating some security awareness. However, the absence of explicit security headers and published security policies limits the overall security posture. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is trustworthy and professionally maintained, with a strong legitimacy score based on WHOIS data and business consistency. Strategic recommendations include implementing cookie consent, enhancing security headers, publishing incident response policies, and maintaining regular updates to WordPress and plugins to ensure ongoing security and compliance.

B

Bolden

bolden.nl

0

Bolden is an independent creative agency based in Amsterdam, specializing in brand strategy, brand identity, digital experiences, and e-commerce design since 2010. The company has established a strong market position with multiple industry awards such as the FONK150 Best Small Design Agency. Their target audience includes brands and businesses seeking professional digital and branding services. The website reflects a high level of professionalism, excellent design quality, and clear navigation, supporting their market reputation. Technically, the website employs modern web technologies including JavaScript ES modules, lazy loading with Lozad.js, and Google Analytics with IP anonymization, indicating a mature digital infrastructure. The site is mobile-optimized and performs well, with good SEO and accessibility features. However, the CMS and hosting provider are not explicitly identified. From a security perspective, the site uses HTTPS with strong SSL configuration and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; while a privacy policy and terms of service exist (in Dutch), there is no cookie consent mechanism or explicit GDPR compliance details. Incident response and security policy pages are absent. Overall, the website presents a low risk profile with strong business credibility and technical implementation. Strategic improvements in privacy compliance and security transparency would enhance trust and regulatory adherence.

E

ETH-Rat

ethrat.ch

0

ETH-Rat is the official strategic leadership and supervisory body for the ETH domain in Switzerland, overseeing the two Federal Institutes of Technology (ETH Zurich and EPFL) and four research institutes. The website serves as a government portal providing governance documents, strategic plans, and public information. The site is professionally designed using WordPress with Elementor and Yoast SEO, supporting multiple languages and integrating official social media channels. Security posture is strong with HTTPS and security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is good with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the site reflects a mature governmental digital presence with moderate user tracking via Google Tag Manager.

The website triplepundit.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any content or business information. The domain is registered since 2005 with GoDaddy.com, LLC and hosted on Amazon AWS infrastructure, indicating a legitimate and established domain. However, the lack of accessible content, metadata, privacy policies, contact information, and security headers prevents a comprehensive analysis of the business or security posture. The site does not expose any forms, scripts, or external links in the provided HTML content. Due to the blocked status, the technical maturity and security posture cannot be fully assessed, but the absence of DNSSEC and security headers suggests room for improvement. Overall, the site currently provides no usable information or trust signals to visitors.

P

Proyecto Ututo

ututo.org

0

Proyecto Ututo is a small, community-driven free software project focused on developing and distributing 100% free GNU/Linux distributions and related simulation software for solar and thermal energy systems. The project has historical recognition and aims to promote knowledge sharing and digital inclusion, especially in developing countries. The website content is primarily in Spanish and provides resources, downloads, and community information related to the Ututo project and SimuSol software. Technically, the site uses CMSimple_XH CMS, older JavaScript libraries, and is hosted on DigitalOcean. Google Analytics and Tag Manager are used for user tracking. Security posture is moderate with some gaps such as lack of DNSSEC and missing security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data is consistent with the project’s claims and history, supporting legitimacy.

P

Parabola Project

parabola.nu

0

Parabola GNU/Linux-libre is a community-driven free software operating system distribution based on Arch Linux, emphasizing software freedom and compliance with GNU guidelines. It targets free software enthusiasts and power users seeking a fully libre and hackable OS. The project provides packages, documentation, and community support through forums, mailing lists, and IRC channels. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript with jQuery 1.8.3. The site is accessible, uses HTTPS, but lacks modern security headers and privacy policies, indicating room for improvement in compliance and security posture. No tracking or advertising scripts are present, reflecting a privacy-respecting approach. The WHOIS data for the exact domain www.parabola.nu is unavailable, likely because it is a subdomain or alias, but the project’s long-standing presence since 2009 supports legitimacy. Overall, the website is professional, trustworthy, and safe, but could enhance security and privacy compliance.

The website dragora.org is currently inaccessible beyond a minimal 503 Service Unavailable maintenance page, providing no substantive content or business information. The domain is registered since 2008 with a reputable registrar, indicating a legitimate registration, but the lack of accessible content prevents meaningful analysis of the business or services. Technically, the site lacks metadata, scripts, or security headers, and no privacy or cookie policies are present, indicating a low digital maturity level. Security posture is minimal with only basic SSL configuration inferred from WHOIS data, and no advanced protections or compliance measures are evident. Overall, the site presents a high risk due to lack of transparency, content, and security features, and is currently non-functional for end users.

F

Free Software Foundation, Inc.

nongnu.org

0

Savannah.nongnu.org is a well-established software forge platform dedicated to hosting and supporting free software projects, both GNU and non-GNU. It operates under the auspices of the Free Software Foundation, providing a collaborative environment for developers committed to free software principles. The platform offers project hosting, bug tracking, support requests, task and patch management, serving a community of over 25,000 registered users and nearly 4,000 hosted groups. Its market position is strong within the free software ecosystem, acting as a central hub for development and distribution.

SofaSurfer.org is a personal portfolio and blog website operated by Kilian Bohnenblust, a digital artist and web developer active since 1999. The site showcases various web development projects and digital art, targeting digital art enthusiasts and potential clients seeking web design and development services. The business model is that of a freelance or individual professional offering services and sharing knowledge through a blog. The website is hosted on Hostpoint AG infrastructure and uses modern web technologies including jQuery, Masonry.js, and Piwik/Matomo analytics. The site is mobile optimized and has good SEO practices, although accessibility features are basic. From a security perspective, the website uses HTTPS with a good SSL configuration but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No sensitive data exposure or vulnerable libraries were detected. Privacy compliance is partial; a privacy policy is present but no cookie consent mechanism is implemented. Contact information is minimal, with no explicit emails or phone numbers provided on the homepage, which may impact user trust and compliance. Overall, the website presents a moderate security posture with room for improvement in privacy compliance and security headers. The domain is long-standing and consistent with the claimed business history, enhancing trustworthiness. The site content is safe for general audiences with no adult or questionable material detected.

4

404 d.o.o.

somoborac.com

0

SoMo Borac is a well-established digital media event and conference organized by 404 d.o.o., focusing on digital awards and industry trends in the Croatian and regional market. The website presents a professional and consistent brand image, targeting digital professionals and stakeholders. The technical infrastructure is based on WordPress with modern front-end libraries and analytics tools, supporting multilingual content and good mobile responsiveness. Security posture is adequate with HTTPS and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, but terms of service and security policies are absent. Overall, the site is trustworthy and professionally maintained, with strong industry partnerships and media presence.

T

Trust Alliance New Zealand

trustalliance.co.nz

0

Trust Alliance New Zealand operates as a membership consortium focused on creating a trusted and verifiable data sharing ecosystem for New Zealand's primary sector including producers, growers, exporters, and retailers. The website presents a professional image with clear messaging about its mission to enable secure data sharing and compliance with evolving global standards. The business model centers on collaboration and data interoperability projects such as the Digital Wallet and Digital Farm Environment Plan. The target audience is primarily New Zealand agricultural stakeholders and related service providers.

F

FIDO Alliance

fidoalliance.org

0

FIDO Alliance is a well-established non-profit organization founded in 2011, dedicated to developing and promoting open authentication standards to reduce reliance on passwords globally. The organization holds a strong market position as a leader in passwordless authentication technologies, serving technology companies, developers, and enterprises. Their key services include standard development, certification programs, and fostering industry collaboration. The website reflects a professional and consistent brand image with good content quality and clear messaging focused on authentication standards. Technically, the website is built on WordPress with modern technologies such as jQuery, Google reCAPTCHA, and Google Tag Manager. It is hosted with Cloudflare DNS services, ensuring good performance and security. The site implements cookie consent mechanisms and uses SEO best practices, although accessibility features could be improved. The technical infrastructure supports a moderate to good user experience with mobile optimization. From a security perspective, the site enforces HTTPS, uses security headers, and integrates CAPTCHA for form protection. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms such as security.txt. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the organization's history, supporting legitimacy and trust. Overall, the website presents a low-risk profile with strong business credibility and a solid security posture. Strategic improvements include publishing comprehensive privacy and security policies, enabling DNSSEC, and enhancing accessibility and compliance transparency.

D

Digital Identity New Zealand

digitalidentity.nz

0

Digital Identity New Zealand is a membership-funded organization established in 2018, focused on advancing digital identity and trust ecosystems within New Zealand. The organization provides a platform for collaboration, knowledge sharing, and advocacy through events such as the Digital Trust Hui Taumata, working groups, and educational resources. Their market position is that of a leading entity in the digital identity space in New Zealand, targeting businesses and organizations interested in digital identity innovation and trust economy development. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses common libraries such as jQuery and Owl Carousel. It integrates Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and good SEO practices. From a security perspective, the site uses HTTPS and secure login forms but lacks DNSSEC and important security headers, which are recommended for enhanced protection. Privacy compliance is partial, with a privacy policy present but located at an unusual URL and no cookie consent mechanism detected. No incident response or security policy documents are published. Overall, the website is professional and trustworthy with a good business credibility score. However, improvements in privacy compliance, security headers, and DNS security would strengthen its security posture and regulatory adherence.

C

Cybersecurity and Infrastructure Security Agency

ndstudio.gov

0

The National Design Studio website represents an official U.S. government initiative led by the Cybersecurity and Infrastructure Security Agency. It focuses on modernizing government interfaces and improving citizen experiences through the America by Design initiative. The site is positioned as a government entity with a clear mission and target audience of American citizens and government service users. The business model is non-commercial, centered on public service and design innovation within government frameworks. Technically, the website employs modern web technologies including Next.js and React, hosted and secured via Cloudflare services. Performance and mobile optimization are good, with a clean and professional design. However, accessibility features are basic and could be improved. The site uses Cloudflare Turnstile for bot protection but lacks DNSSEC and some security headers. From a security perspective, the site benefits from HTTPS and Cloudflare protections but lacks published privacy, cookie, and security policies. No contact information for incident response or data protection officers is provided. The domain WHOIS data aligns well with the government entity, showing consistency and legitimacy. No vulnerabilities or malicious content were detected, but enabling DNSSEC and publishing security policies would enhance trust. Overall, the website is trustworthy and professional but could improve privacy compliance and security transparency. Strategic recommendations include enabling DNSSEC, publishing privacy and cookie policies, adding security headers, and providing clear contact channels for security incidents.

E

ERPNext Deutschland

erpnext-deutschland.org

0

ERPNext Deutschland is a small technology-focused business providing a modern, open source ERP system tailored for companies in the German-speaking region. The website promotes ERPNext as a comprehensive, customizable, and mobile-friendly ERP solution supported by an active community. Technically, the site is built on WordPress with the Divi theme, hosted with a reputable German registrar and using Cloudflare DNS. The site is accessible, well-designed, and mobile optimized, though it lacks privacy and cookie policies and explicit contact information. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

N

Nicole Pfister

nicolepfister.ch

0

Nicole Pfister's website serves as a portfolio platform showcasing her work as a filmmaker, illustrator, art director, and photographer. The site targets a general audience interested in creative media and artistic projects. The business operates as a small independent creative professional entity based in Switzerland, focusing on visual and media arts. The website content is primarily image-based, highlighting various projects without extensive textual content or interactive features. Technically, the website is built with basic HTML and CSS, lacking modern frameworks, CMS, or advanced scripting. There are no detected analytics, tracking, or advertising technologies, indicating a minimalistic digital footprint. Mobile optimization and accessibility are basic, and SEO practices are minimal but present through meta tags. Performance is moderate given the image-heavy content. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are important for GDPR compliance. No forms or data collection mechanisms are present, reducing some risk vectors. The WHOIS data aligns well with the website content, showing consistency and legitimacy. However, the absence of HTTPS confirmation and security best practices lowers the security posture. Overall, the website is a straightforward portfolio with moderate technical maturity and limited security measures. Strategic improvements in security headers, HTTPS enforcement, and privacy compliance would enhance trust and protection for visitors.

M

Max Henschel Graphics

mhg.ch

0

Max Henschel Graphics is a small, specialized graphic design agency based in Bern, Switzerland, offering services such as branding, corporate design, logo creation, and illustration. The company targets businesses and organizations seeking professional visual communication solutions. The website presents a professional portfolio and clear contact information, supporting a credible market position within the local media and design sector. Technically, the site uses a moderate technology stack including jQuery, Modernizr, and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks security headers and privacy compliance mechanisms. Overall, the site is functional and professional but would benefit from enhanced privacy and security policies to improve compliance and trust.

D

deinmagazin.ch

deinmagazin.ch

0

deinmagazin.ch operates as a specialized online editorial system platform designed to facilitate the creation and publication of digital magazines. The service targets organizations and businesses seeking flexible, multi-device optimized digital magazine solutions, positioning itself as a niche SaaS provider within the technology sector in Switzerland. The website presents a professional and consistent brand image with clear navigation and relevant content describing its offerings. Technically, the website employs modern web technologies including Google Tag Manager, Google Analytics, and Vimeo for video embedding. The site is mobile optimized and demonstrates good SEO practices. However, no explicit CMS or hosting provider details are evident. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, indicating basic compliance with privacy regulations such as GDPR. However, there is a lack of visible security policies, incident response contacts, or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected, but security headers could be enhanced to improve the security posture. Overall, deinmagazin.ch presents a trustworthy and professional online presence with a solid foundation in privacy compliance and technical implementation. Strategic improvements in security transparency and contact information disclosure would further strengthen its risk profile and user trust.

M

mfe Médecins de famille et de l’enfance Suisse

mfe-actu.ch

0

The website www.mfe-actu.ch serves as the official online magazine for mfe Médecins de famille et de l’enfance Suisse, a specialized organization focused on family and childhood medicine in Switzerland. It provides digital editions, articles, and resources targeted at medical professionals in this sector. The site offers subscription services and maintains a professional editorial team, positioning itself as a trusted source within the Swiss healthcare community. The content is primarily in French with links to German language resources, reflecting the multilingual nature of Switzerland.

C

Coopérative Médecine et Hygiène

medhyg.ch

0

Médecine et Hygiène is a well-established cooperative media group based in Switzerland, specializing in health information for both professionals and the general public in the French-speaking region. The group operates several complementary brands including a leading medical journal, a public health media outlet, a specialized publisher, and a communication service provider. Their market position is strong as the number one health information group in their region, supported by professional editorial boards and a clear business focus. Technically, the website is built on the eZ Platform CMS powered by Netgen, utilizing modern web technologies and standard analytics tools such as Google Analytics and Google Tag Manager. The site is mobile optimized and well-structured, though some accessibility features could be improved. Performance is moderate with good SEO practices evident. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. However, it lacks visible security headers and published security or incident response policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. No vulnerability disclosure or security.txt files are present. Overall, the website is professional and trustworthy with good business credibility but requires improvements in privacy compliance and security best practices to enhance user trust and regulatory adherence.

F

Fédération Suisse des directrices et directeurs d’Hôpitaux

fsdh.ch

0

The Fédération Suisse des directrices et directeurs d’Hôpitaux (FSDH) is a Swiss non-profit association representing hospital directors and senior executives, primarily serving the French-speaking region of Switzerland. The website provides information about membership, contact details, and association activities, targeting healthcare leadership professionals. The organization positions itself as a key representative body advocating for hospital management interests in Switzerland. Technically, the website is built on Joomla CMS with common web technologies such as jQuery, Bootstrap, and Google services for analytics and bot protection. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enforced and use of Google reCAPTCHA; however, it lacks comprehensive security headers and published security or privacy policies, indicating room for improvement in compliance and security transparency. Overall, the website is trustworthy and functional but would benefit from enhanced privacy compliance and security best practices.

I

Infokom GmbH

infokom.info

0

Infokom GmbH is a medium-sized German IT company specializing in software and digital solutions for the building materials trade sector. With over 40 years of experience, they provide modular ERP systems, financial accounting, document management, and cloud telephony services, integrated closely with the EUROBAUSTOFF cooperative. Their website demonstrates a professional digital presence built on TYPO3 CMS, with good SEO and mobile optimization. Security practices include HTTPS and cookie consent with Matomo analytics, though formal security and incident response policies are not publicly documented. Overall, the company presents a credible and trustworthy profile with comprehensive contact information and clear business focus.

I

i&M Bauzentrum

i-m.de

0

i&M Bauzentrum is a well-established Fachhandelsmarke (specialist retail brand) under the EUROBAUSTOFF group, serving the German building materials market with over 130 locations. The company focuses on providing high-quality building materials, expert advice, and comprehensive services to both private customers and professional builders. Their digital presence is powered by TYPO3 CMS with a modern Bootstrap-based design, offering good mobile optimization and user experience. The website includes multimedia content and a cookie consent mechanism aligned with GDPR requirements. Security posture is adequate with HTTPS and cookie management, but lacks some advanced HTTP security headers. No direct contact details are visible on the homepage, but social media channels are active. Overall, the site reflects a professional retail business with strong market positioning in Germany.

H

Hochwasser-Ratgeber

hochwasser-ratgeber.de

0

Hochwasser-Ratgeber is a German-language informational website focused on flood preparedness and building materials, serving homeowners and professionals in Germany. It acts as a partner platform for the Eurobaustoff Fachhändler network, providing comprehensive guidance on flood risk, prevention, and damage mitigation. The site offers key services such as flood preparedness advice, specialist dealer search, and educational content. Technically, the website is built on TYPO3 CMS with a modern tech stack including jQuery, FontAwesome, Google Fonts, and integrates Matomo analytics and Echobot marketing widgets. The site demonstrates good mobile optimization, clear navigation, and solid SEO practices. Security-wise, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR, but lacks explicit security headers and documented security policies or incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve its security posture and transparency. The domain WHOIS data is limited but shows no suspicious indicators, supporting the site's legitimacy.

O

OPUS1

opus-1.eu

0

OPUS1 is a German-based company specializing in innovative paint and coating products for both interior and exterior applications. The website presents a professional image with a focus on quality products such as interior paints, facade paints, and lacquers, targeting DIY enthusiasts and professional painters. The company leverages a modern TYPO3 CMS platform with Bootstrap for responsive design, ensuring a good user experience across devices. The presence of a cookie consent mechanism and use of privacy-respecting Matomo analytics indicate a commitment to privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and explicit policies could enhance trust further. Overall, the website is well-structured, content-rich, and trustworthy, reflecting a medium-sized retail business in the home improvement sector.

E

EUROBAUSTOFF Handelsgesellschaft mbH & Co. KG

cerabella.de

0

Cerabella is a German-based retailer specializing in high-quality ceramic tiles and related accessories, operating under the EUROBAUSTOFF Handelsgesellschaft mbH & Co. KG umbrella. The company targets both retail customers and professional tile buyers, offering a broad product range including floor and wall tiles, mosaics, and tile accessories. The website reflects a well-structured and professionally designed digital presence, leveraging TYPO3 CMS and Bootstrap frameworks, with moderate performance and good mobile optimization. Matomo analytics is used for user tracking with a compliant cookie consent mechanism in place. Security posture is adequate but could be improved by implementing standard security headers and publishing explicit security policies. Contact information and company details are clearly presented, enhancing business credibility. No critical vulnerabilities or suspicious content were detected, and the site is fully accessible without WAF or blocking mechanisms.

S

Software Freedom Conservancy

sfconservancy.org

0

Software Freedom Conservancy is a small, established non-profit organization dedicated to promoting and defending free and open source software rights, including copyleft compliance and software freedom. Their services include legal defense, community support, internships, and advocacy initiatives. The website reflects a mature and consistent brand with excellent content quality and user experience. Technically, the site uses standard web technologies and is hosted via Gandi SAS, with good mobile optimization and SEO. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration data aligns well with the organization's history, supporting legitimacy and trustworthiness.

S

Stiftung Science et Cité

science-et-cite.ch

0

Stiftung Science et Cité is a Swiss non-profit foundation dedicated to fostering dialogue between science and society through various projects including citizen science, educational initiatives, and public events. The organization targets a broad audience including the general public, children, and youth, positioning itself as a key player in science communication within Switzerland. The website reflects a professional and consistent brand image with comprehensive content and multilingual support. Technically, the website is built on TYPO3 CMS and leverages modern JavaScript libraries such as jQuery, Tobii lightbox, and Plyr for media handling. Google Analytics is used with IP anonymization to track user engagement. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. No hosting provider details were identified. From a security perspective, the site uses HTTPS with good SSL configuration and secure form handling via Mailchimp. However, it lacks explicit security headers and formal security or incident response policies. Privacy compliance is addressed with a comprehensive privacy and cookie policy, though no explicit cookie consent mechanism is present. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy, professionally maintained, and aligned with the foundation's mission. Security posture is adequate but could be improved with additional headers and policies. Privacy compliance is good but could benefit from explicit consent mechanisms. No critical vulnerabilities or suspicious elements were detected.

The Schweizerische Akademie der Geistes- und Sozialwissenschaften (SAGW) is a Swiss non-profit academic umbrella organization uniting 63 scientific societies in the humanities and social sciences. It serves as the largest network in these fields within Switzerland, providing services such as networking, research promotion, publications, and event organization. The website is professionally designed, multilingual, and targets academics, researchers, and policy makers in Switzerland and beyond. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics and Facebook Pixel for tracking. It employs HTTPS with a cookie consent mechanism, reflecting good privacy compliance. Security posture is solid with no visible vulnerabilities, though some security headers and policies could be improved. Overall, the site is trustworthy, well-maintained, and serves its academic audience effectively.

The website at cityu.edu is currently inaccessible due to a 403 Forbidden error, indicating restricted access to the content. The domain appears to be valid and registered until 2027, consistent with a long-standing educational institution. However, the lack of accessible content prevents detailed analysis of business operations, services, or user engagement. The site loads only a Google Fonts resource and displays a custom error page with no metadata, forms, or contact information. Technical infrastructure details such as SSL configuration and security headers are not available from the provided data. Privacy and cookie policies are absent, indicating potential compliance gaps. Overall, the website's digital presence is currently limited by access restrictions, impacting its usability and trustworthiness.

The website www.eteamsponsor.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. The WHOIS lookup for the domain indicates no registration record exists, suggesting the domain may not be registered or is expired. Due to the lack of accessible content, no business description, contact information, or security policies are available for analysis. The technical infrastructure cannot be assessed beyond the error page, and no security headers or SSL configuration details are present. Overall, the site presents a high risk due to inaccessibility and lack of domain registration data, severely limiting trust and credibility.

O

outline4

outline4.ch

0

outline4 is a small, specialized web design agency based in Bern, Switzerland, founded in 2003. The company focuses on creating beautiful, user-friendly, and responsive websites with a strong emphasis on CMS solutions such as Craft CMS and Expressionengine, as well as SEO optimization. They maintain a local market presence with partnerships with other Bern-based agencies and offer a portfolio of diverse web design projects. The website is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the website uses a modern albeit slightly outdated technology stack including jQuery 1.11.1, Modernizr for SVG detection, and Google Analytics for tracking. The site is served over HTTPS with no visible security issues in the HTML content. However, there is a lack of security headers and the use of an outdated jQuery version poses a potential security risk. The site does not implement privacy or cookie policies, which is a compliance gap especially under GDPR regulations. From a security perspective, the site demonstrates good baseline practices such as HTTPS and no exposed sensitive data, but lacks advanced security headers and incident response information. No forms are present, reducing attack surface. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's founding date and no privacy protection, which is suitable for this type of business. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in privacy compliance, security headers, and updating JavaScript libraries would enhance the security posture and regulatory compliance. The business is credible and well-positioned locally with a clear service offering and partner ecosystem.