Security Directory

P

PowNed

powned.tv

0

PowNed is a Dutch media organization focused on delivering news, investigative journalism, and video content primarily for a general audience in the Netherlands. The website serves as a platform for their latest news, programs, and membership engagement. It is affiliated with public broadcasting entities, enhancing its credibility and market position. Technically, the site uses modern web technologies including Vue.js and Tailwind CSS, with integrations for analytics and video streaming. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of security headers and explicit privacy policies indicates room for improvement. The lack of WHOIS data reduces domain trustworthiness but does not detract from the site's operational legitimacy. Overall, PowNed's website is a well-maintained media platform with moderate technical sophistication and a good security baseline.

N

NTR

ntr.nl

0

NTR is a Dutch public broadcasting organization operating under the NPO umbrella, providing a wide range of programming focused on information, education, culture, youth, and diversity. The website serves as a portal to their content offerings, including television and radio programs, with a clear focus on accessibility and relevance for all audience segments. The site is well-branded, consistent, and professionally maintained, reflecting its status as a major public media entity in the Netherlands. Technically, the website employs modern web technologies including jQuery, Bitmovin video player, and a cookie consent management system. It is mobile-optimized with responsive design elements and integrates tracking and analytics tools compliant with privacy regulations. The site uses HTTPS with DNSSEC enabled, indicating strong foundational security practices, although some advanced security headers are not explicitly detected. From a security perspective, the site demonstrates good practices such as encrypted connections and cookie consent mechanisms. However, it lacks publicly visible security policies or incident response contacts, which could be improved to enhance transparency and trust. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the organization's identity and history. Overall, the website is a trustworthy, professional platform for a public broadcaster with a strong compliance posture and good user experience. Strategic improvements in security policy disclosure and header implementation could further strengthen its security posture.

T

Touren Service France S.A.S

grand-est-for-groups.com

0

The website grand-est-for-groups.com operates as an online platform dedicated to planning and booking group travel in France, targeting primarily bus operators and travel agencies. The business, identified as Touren Service France S.A.S, was founded in 2020 and offers services including hotel bookings, activities, and group packages. The platform positions itself as a niche regional service provider in the transportation and hospitality sectors. Technically, the site leverages modern JavaScript frameworks such as Vue.js and integrates Google Tag Manager for analytics, indicating a moderate level of digital maturity. The site appears to be mobile-optimized with a good user experience and professional design. However, there is a lack of visible privacy and cookie policies, and no explicit contact information was found in the analyzed content, which impacts trust and compliance. Security posture is moderate with no detected security headers and DNSSEC not enabled, suggesting room for improvement in technical security controls. Overall, the site is safe with no adult or questionable content detected, but it would benefit from enhanced privacy compliance and security practices.

P

Pigolabs

piwigo.com

0

Piwigo.com is a mature and reputable online image library and digital asset management platform operated by Pigolabs, founded in 2008. The company targets a broad range of professional users including travel and tourism organizations, public sector entities, businesses, non-profits, and photographers. Their SaaS business model offers a free trial and subscription pricing, emphasizing ease of use, collaboration, and GDPR compliance. The website is professionally designed with clear navigation and rich content, supporting multiple languages and showcasing strong trust indicators such as client logos and testimonials. Technically, the site uses a modern tech stack including Bootstrap, jQuery, and Matomo analytics, hosted under a domain registered with Gandi SAS. The site is mobile optimized and performs moderately well. Security posture is good with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence, but lacks a cookie consent mechanism. Security evaluation shows no critical vulnerabilities or exposed sensitive data. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure policy are areas for improvement. Overall, the site is trustworthy, safe, and professionally maintained with a high AI score reflecting content quality, technical implementation, security, privacy, and business credibility.

R

Regiondo

regiondo.fr

0

Regiondo is a French-language SaaS company providing an all-in-one online booking software solution tailored for tour operators, leisure activity providers, attractions, and destinations. The platform offers comprehensive features including online ticketing, reservation management, multi-channel distribution, POS solutions, and integrations with major OTAs like Viator and GetYourGuide. The company positions itself as a growth partner for businesses in the hospitality and tourism sector, emphasizing increased bookings, operational efficiency, and cost reduction. The website is professionally designed, multilingual, and rich in content, supporting a strong market presence in France and related markets. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and uses Google Tag Manager and Usercentrics for analytics and consent management. HubSpot forms are used for lead capture, indicating a mature digital marketing infrastructure. The site is mobile-optimized and SEO-friendly, with structured data and Open Graph metadata enhancing search visibility and social sharing. From a security perspective, the site enforces HTTPS and employs a consent management platform, but lacks explicit HTTP security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data for the subdomain is unavailable, which is typical for subdomains, and does not raise legitimacy concerns. Overall, the security posture is good but could be improved with additional headers and transparency. The overall risk assessment is low, with the site demonstrating professionalism, compliance with GDPR, and strong business credibility. Strategic recommendations include enhancing HTTP security headers, publishing security policies, and maintaining regular audits of third-party scripts to sustain security and trust.

S

Slovenski regionalno razvojni sklad

srrs.si

0

Slovenski regionalno razvojni sklad (SRRS) is a Slovenian public financial institution established in 2020, focused on providing favorable financing and subsidies to support regional development, agriculture, entrepreneurship, local infrastructure, and non-profit organizations across Slovenia. The institution operates multiple financial product programs tailored to different sectors and prioritizes sustainability, green transition, and social responsibility. The website reflects a professional and comprehensive digital presence with clear communication channels and extensive program information. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics, reCAPTCHA, and accessibility features, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforcement and reCAPTCHA protection on forms, though explicit security headers could be more visible. Privacy compliance is well addressed with a comprehensive GDPR policy and cookie consent mechanisms. Overall, SRRS presents a trustworthy and authoritative online presence aligned with its government-backed mission.

URI Soča is a Slovenian public tertiary healthcare institute specializing in comprehensive rehabilitation services for children and adults. The website clearly targets patients and healthcare professionals, offering detailed information about rehabilitation medicine, vocational rehabilitation, rehabilitation engineering, pharmacy services, orthotics and prosthetics, and research activities. The domain is well-established since 2011, consistent with the organization's history. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Select2, and is hosted with Slovenian academic DNS providers, indicating a reliable infrastructure. The website is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit security policies are missing. Privacy compliance is strong with a comprehensive privacy and cookie policy aligned with GDPR. Overall, the site is professional, trustworthy, and serves its audience well.

Pomursko društvo za kakovost is a well-established Slovenian non-profit organization founded in 1993, dedicated to promoting quality management principles through education, consulting, and annual conferences. The organization targets professionals and educational institutions interested in quality assurance and management systems. Their website reflects a consistent brand and provides clear contact information and event details, supporting their role as a regional quality association. Technically, the website uses common JavaScript libraries such as jQuery and Modernizr, with a custom or unknown CMS. The site is moderately performant and mobile-optimized, though accessibility and SEO could be improved. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit security policies. Overall, the website is trustworthy and professional with no signs of malicious content or blocking mechanisms. The domain age and WHOIS data align well with the organization's history, supporting legitimacy. However, improvements in security policies, vulnerability disclosure, and analytics transparency would enhance compliance and trust. The risk level is low, but strategic security enhancements and clearer privacy documentation are recommended to maintain and improve stakeholder confidence.

L

Ljudska Univerza Murska Sobota

lums.si

0

Ljudska Univerza Murska Sobota is a well-established Slovenian educational institution specializing in lifelong learning and adult education. Founded in 1960, it offers a broad range of educational programs including language courses, professional training, and social integration projects, primarily serving the Murska Sobota region. The website reflects a mature digital presence with a WordPress CMS and Elementor framework, providing a good user experience with clear navigation and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with accessible GDPR-compliant privacy and cookie policies. Overall, the site demonstrates high trustworthiness and professionalism consistent with its non-profit educational mission.

SloExport is a Slovenian export database platform developed by the Chamber of Commerce and Industry of Slovenia in cooperation with SPIRIT Slovenia. It serves as a business directory and export promotion tool, targeting Slovenian exporters and international business partners. The platform provides searchable company and product information to facilitate new business contacts and export opportunities. The website is well-positioned as an official government-supported resource, enhancing Slovenia's export market presence. Technically, the website is built on ASP.NET WebForms using the DotNetNuke CMS platform, integrating Google Analytics and Twitter widgets for analytics and social media engagement. The site is moderately optimized for performance and mobile use, with basic accessibility features. Security is adequate with HTTPS enforced and a Content-Security-Policy header, though additional security headers and incident response information are lacking. The security posture is solid but could be improved by publishing a security policy, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is basic with a cookie consent banner and privacy policy present, but more detailed GDPR compliance indicators could enhance trust. Business credibility is high due to official backing and consistent branding. Overall, the website is a professional, trustworthy platform with good content quality and technical implementation. Strategic improvements in security transparency and mobile optimization would further strengthen its position.

J

Javni štipendijski, razvojni, invalidski in preživninski sklad Republike Slovenije

srips-rs.si

0

The website represents a Slovenian government institution dedicated to scholarships, workforce development, rights of workers, employment support for disabled persons, child support compensation, and recovery. It serves a broad audience including students, workers, employers, and educational institutions. The site is well-structured with clear navigation and relevant content, reflecting a mature digital presence. Technically, it uses modern web standards, includes cookie consent, and integrates Google Tag Manager and Analytics for tracking. Security posture is adequate with HTTPS enforced but lacks explicit security headers and published security policies. Privacy compliance is partial due to missing privacy and terms pages. Overall, the domain registration and hosting align with the institutional nature, indicating legitimacy and trustworthiness.

S

Slovenski podjetniški sklad

podjetniskisklad.si

0

Slovenski podjetniški sklad is a Slovenian government-related institution dedicated to supporting entrepreneurship, startups, and innovation through financial incentives, development partnerships, and promotional activities. The website serves as an information hub for entrepreneurs seeking funding and support programs. The organization holds a strong market position as a key national player in fostering business growth and innovation in Slovenia. Technically, the website is built on WordPress with a modern theme and multiple plugins enhancing user experience and functionality. It employs HTTPS and standard security headers, with a cookie consent mechanism ensuring GDPR compliance. However, it lacks explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and well-structured, targeting Slovenian entrepreneurs and startups.

S

SPIRIT Slovenija

spiritslovenia.si

0

SPIRIT Slovenija is a Slovenian public agency dedicated to promoting investments, entrepreneurship, and internationalization. It operates as a government entity providing a wide range of services including public tenders, educational programs, and business support portals. The agency targets Slovenian businesses, startups, investors, and public sector stakeholders, positioning itself as a key facilitator of economic growth and innovation within Slovenia. The website reflects a professional and consistent brand image, supported by EU co-funding and government legitimacy. Technically, the site is built on Angular 8 as a single-page application, with modern web technologies and responsive design, though some performance and accessibility improvements are possible. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible advanced security headers and incident response disclosures. Overall, the domain registration and website content align well, indicating a trustworthy and established online presence.

Invest Pomurje is a regional development agency focused on promoting foreign direct investment in the Pomurje region of Slovenia. The website highlights the region's strategic location in Central Europe and offers detailed information on business opportunities in sectors such as tourism, sport, renewable energy, advanced agriculture, and metal processing. The agency provides support services to investors and showcases success stories to build credibility. The target audience includes foreign investors and businesses seeking expansion in Central and South-Eastern Europe. Technically, the website is built on WordPress using the Uncode theme and integrates common tools like Yoast SEO, Google Analytics, and Google Maps API. The site is mobile optimized and demonstrates good SEO practices. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security policies or incident response information. No vulnerabilities or suspicious content were detected, and the domain registration is consistent with a legitimate business entity. Overall, the website presents a professional and trustworthy front for regional investment promotion.

E

Edition Digital

editiondigital.com

0

Edition Digital is a UK-based technology company specializing in smart digital publishing software that integrates content creation, management, distribution, monetization, and analytics. Their platform targets publishers and media companies seeking responsive, cross-platform digital magazine solutions with gamification features. The website presents a professional image with clear navigation and good content quality, supported by modern JavaScript libraries and Google Analytics integration. However, the absence of WHOIS data and explicit privacy policies slightly detracts from overall trustworthiness. Security measures include Google reCAPTCHA and cookie consent, but lack of HTTP security headers and vulnerability disclosure mechanisms indicate room for improvement. Overall, the site is accessible and functional, with moderate technical maturity and a solid business proposition.

M

ManpowerGroup

manpowergroup.com

0

ManpowerGroup is a globally recognized leader in workforce solutions, founded in 1948 and headquartered in Milwaukee, USA. The company operates through multiple brands including Manpower, Experis, and Talent Solutions, offering a comprehensive range of staffing, recruitment, assessment, and workforce consulting services. Their market position is strong, serving over 400,000 clients worldwide and connecting more than 600,000 associates daily. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization, supporting their enterprise-level operations. Technically, the site leverages modern technologies such as React, HubSpot forms, and Google Tag Manager, indicating a contemporary and scalable infrastructure. Privacy and cookie consent mechanisms are well implemented, aligning with GDPR requirements. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and incident response policies are not prominently disclosed. Overall, the website and business presence demonstrate high professionalism and trustworthiness. The lack of publicly available WHOIS data is likely due to privacy protection, common for large enterprises, and does not detract significantly from legitimacy. Strategic recommendations include enhancing transparency around security policies and incident response, and confirming security header implementations to further strengthen security posture.

N

noris network AG

noris.net

0

noris network AG is a well-established premium IT service provider based in Germany, specializing in IT outsourcing, managed services, cloud computing, and colocation. With over 30 years of experience, the company serves primarily business clients in sectors such as finance and public administration. Their website reflects a mature digital presence with comprehensive service descriptions and strong trust signals including ISO 27001 certification and GDPR compliance. Technically, the site is built on WordPress with modern plugins and scripts, optimized for performance and mobile use. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, though explicit incident response and vulnerability disclosure policies are not publicly visible. Overall, noris network AG presents a credible, professional, and secure IT services business with a solid market position in Germany.

W

W.A.G. payment solutions, a.s.

inelo.pl

0

Eurowag, incorporating Inelo, is a leading European provider of integrated mobility and payment solutions tailored for the road transport sector. Their offerings include advanced telematics, seamless payment services such as fuel cards and mobile payments, and comprehensive compliance and driver management solutions. The company targets transport companies and fleet managers, aiming to optimize fleet efficiency and regulatory adherence across multiple European markets. The website reflects a mature digital presence with multilingual support and extensive service descriptions. Technically, the website is built on Webflow CMS, leveraging modern JavaScript libraries and integrations such as Google Tag Manager and LiveChat for analytics and customer engagement. The site is well-optimized for mobile devices, features accessibility considerations, and employs security best practices including HTTPS and CAPTCHA on forms. The technical infrastructure suggests a robust and scalable platform suitable for enterprise operations. From a security perspective, the site demonstrates a strong posture with encrypted communications, secure form handling, and no visible vulnerabilities or exposed sensitive data. However, explicit security headers could be more clearly implemented, and incident response contact details are not publicly provided. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR adherence and user consent mechanisms. Overall, the website and business exhibit high professionalism, trustworthiness, and operational maturity. The lack of public WHOIS data is consistent with privacy protection practices common among large enterprises. Strategic recommendations include enhancing security header implementation, publishing vulnerability disclosure policies, and providing clearer incident response contacts to further strengthen trust and security readiness.

F

fireTMS.com Sp. z o.o.

firexgo.com

0

fireXgo is a freight exchange platform integrated into the fireTMS transport management system, designed to serve transport and forwarding companies by providing a unified tool for posting freights, finding transport orders, and managing transport operations comprehensively. The platform leverages the established fireTMS user base and infrastructure, offering real-time load monitoring and GPS telematics integration to enhance operational transparency and efficiency. The business targets freight forwarders and carriers, positioning itself as a secure and reliable marketplace with verified users and a large volume of daily orders. Technically, the website is built on a modern React and Next.js stack, hosted by OVH sas, and integrates Google services such as reCAPTCHA and Tag Manager for security and analytics. The site is mobile-optimized and provides a professional user experience with clear navigation and comprehensive content. However, some GDPR compliance aspects, such as cookie consent mechanisms, are missing. From a security perspective, fireXgo enforces HTTPS, uses user verification to reduce fraud risk, and integrates GPS telematics for real-time tracking. The absence of DNSSEC and explicit security headers suggests room for improvement in hardening the platform. No critical vulnerabilities or exposed sensitive data were detected. Overall, fireXgo presents a credible and professional service with strong business credibility and technical maturity. Strategic improvements in privacy compliance and security policies would further enhance trust and regulatory adherence.

S

Solutions de personnalisation et de configuration en ligne de produits et services

configurateur-en-ligne.com

0

The website www.configurateur-en-ligne.com represents a specialized business, GIBRALTAZ, offering online product and service personalization and configuration solutions primarily targeting B2B and B2C clients. The company emphasizes robust, scalable 2D/3D configurators integrated with existing client systems such as e-commerce platforms, ERP, and CRM. The site is professionally designed with comprehensive content and SEO optimization, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security headers and policies are lacking. The absence of WHOIS registration data raises concerns about domain legitimacy, warranting further investigation. Overall, the site is trustworthy and business-focused but would benefit from enhanced transparency in security and domain registration.

C

CCI Business

ccibusiness.fr

0

CCI Business is a French B2B platform established in 2014 that facilitates connections between businesses and major market order givers, serving over 12,500 member companies. It operates through multiple regional territories and sector-specific communities, focusing on energy, manufacturing, and government sectors. The website is built on Drupal 10 and employs Matomo for analytics and tarteaucitron for cookie consent, reflecting a moderate level of digital maturity. While the site is well-structured and mobile-optimized, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security posture is solid with HTTPS and no visible vulnerabilities, but could be improved with additional security headers and clearer contact information for incident response. Overall, the site presents a professional and trustworthy business presence with room for enhancement in privacy and security transparency.

G

GitBook

gitbook.com

0

GitBook is a technology company providing a SaaS platform focused on documentation and knowledge management optimized for AI. The website presents a professional and modern interface targeting developers and product teams seeking efficient documentation solutions. The platform leverages AI to enhance user experience and conversion. Technically, the site uses modern frameworks such as Framer, integrates analytics tools like Google Analytics, Amplitude, and HubSpot, and hosts assets on Amazon S3, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security headers and privacy policies are missing. The absence of WHOIS data reduces transparency but is common for commercial SaaS providers using privacy protection. Overall, the site is trustworthy and professional but could improve privacy compliance and security disclosures.

AD/D ADVERTISING DESIGN is a small Czech graphic design agency specializing in corporate identity, print, and web design services. The company has been operating since 2010, as supported by domain registration data. The website primarily serves as a portfolio and contact point for potential clients, featuring services such as logo creation, advertising graphics, and POP materials. The target audience includes businesses and individuals seeking professional graphic design solutions. Technically, the website relies on outdated Flash technology, which negatively impacts accessibility, performance, and user experience. The site lacks modern responsive design and accessibility features, limiting its reach on mobile devices and to users with disabilities. Security posture is weak, with no visible HTTPS enforcement or security headers, and no privacy or cookie policies are present, indicating compliance gaps with GDPR and other regulations. Google Analytics is used for user tracking without visible consent mechanisms, further highlighting privacy concerns. Overall, the website is functional but outdated and requires modernization to improve security, compliance, and user experience.

CabaDesign is a small Czech Republic-based web development service provider specializing in creating websites and web applications. The company appears to be operated by Ing. Jan Cabalka and has been active since at least 2010, as supported by domain registration data. The website content is minimal but clearly communicates the core business offering and provides direct contact information including email, phone, and physical location. The market position is that of a small local technology service provider targeting businesses or individuals needing web development solutions. Technically, the website uses basic modern web technologies including Google Fonts, Google Analytics, and Google Tag Manager for tracking. Hosting is provided by WEDOS, a Czech hosting provider, consistent with the domain registrar. The site lacks advanced frameworks or CMS indications and has basic mobile and accessibility features. SEO and performance optimizations appear minimal but functional. From a security perspective, the site uses HTTPS (assumed from domain and hosting) but lacks visible security headers and published security or privacy policies. No forms or input fields are present to assess input security. Google Analytics tracking is implemented without visible cookie consent mechanisms, indicating potential GDPR compliance gaps. The WHOIS data is consistent and supports the legitimacy of the business with no privacy protection or suspicious patterns. Overall, the website is functional and credible for a small business but lacks comprehensive privacy, security, and compliance features. Strategic improvements in privacy policy publication, security headers, and consent mechanisms would enhance trust and compliance posture.

DuelOnline.cz is a Czech Republic-based online accounting portal focused on providing cloud-based access to the DUEL economic system. The website targets accounting professionals, businesses, and accounting firms seeking secure, remote, and integrated accounting solutions. The business model revolves around SaaS delivery of accounting, payroll, inventory, and retail sales management services. The company Ace IT s.r.o. appears as the parent entity, with partnerships with major technology providers such as HP, Dell, Cisco, Microsoft, and Debian, enhancing its market credibility. Technically, the website employs a traditional web stack with jQuery 1.6.1, jQuery UI, and Google Analytics for tracking. It integrates virtualization technologies and cloud infrastructure based on Microsoft and Linux platforms. However, the site shows signs of aging technology and lacks modern security headers and HTTPS confirmation, which impacts its security posture. Mobile optimization and accessibility are basic, and no CMS or hosting provider details are evident. From a security perspective, the site demonstrates some best practices like data backup and physical server security but lacks visible HTTPS enforcement, security headers, and formal privacy or cookie policies. The absence of WHOIS data reduces domain trustworthiness and raises concerns about domain registration legitimacy. No vulnerability disclosures or incident response contacts are provided, limiting transparency. Overall, DuelOnline.cz is a functional and professional business site with moderate technical maturity and security posture. Strategic improvements in security, privacy compliance, and technology modernization are recommended to enhance trust and resilience.

A

Ace IT s.r.o.

gdpr-experts.cz

0

GDPR Experts, operated by Ace IT s.r.o., is a specialized small business based in the Czech Republic providing GDPR compliance and IT security consulting services. Their offerings include GDPR training, audits, legal documentation, and IT security assessments tailored for companies and entrepreneurs within the EU. The website is professionally designed with clear navigation and relevant content targeting businesses needing GDPR solutions. Technically, the site employs modern frontend technologies such as Bootstrap, jQuery, and Google Analytics, indicating a moderate level of digital maturity. However, there are gaps in privacy compliance, notably the absence of explicit privacy and cookie policies. Security posture is adequate with HTTPS implied but lacks visible security headers and incident response information. Overall, the domain registration data aligns well with the business, supporting legitimacy and trustworthiness.

A

Acemail

acemail.cz

0

The website acemail.cz serves as a webmail client interface, powered by RainLoop Webmail software. It provides users with email management capabilities including support for PGP encryption and two-factor authentication, targeting general users seeking secure email access. The domain is registered since 2011 in the Czech Republic, indicating a mature service presence. Technically, the site uses modern JavaScript frameworks like Knockout.js and Bootstrap for UI rendering, but lacks advanced SEO and accessibility features. Security-wise, while it supports important features like 2FA and PGP, it lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance and trust. Overall, the site is functional but could improve in transparency and security best practices.

A

AceIT Office

aceoffice.cz

0

AceIT Office operates a web-based business software platform powered by Group-Office, providing enterprise-level office management solutions. The website serves primarily as a login portal for authenticated users rather than a public-facing marketing site. The platform leverages ExtJS 3 for its frontend interface, indicating a mature but somewhat dated technology stack. The domain aceoffice.cz has been registered since 2012, consistent with the longevity of the software product. However, the website lacks publicly accessible business information, privacy policies, or contact details, limiting transparency for external visitors. Technically, the website employs HTTPS with a security token mechanism for AJAX requests, which is a positive security practice. Nonetheless, the absence of standard security headers and advanced bot protection on the login form suggests room for improvement in security hardening. The site does not appear to use any analytics or advertising technologies, indicating a focus on internal users rather than marketing or tracking external visitors. From a security and compliance perspective, the lack of visible privacy and cookie policies, as well as missing contact information, represents a compliance gap, especially under GDPR requirements. The site’s security posture is moderate but could benefit from implementing additional security headers and bot mitigation techniques. Overall, the risk to external users is low given the site’s nature as a login portal, but the lack of transparency and compliance documentation could impact trustworthiness. Strategically, AceIT Office should prioritize publishing clear privacy and cookie policies, enhancing security headers, and providing contact information to improve compliance and user trust. These steps will also support better security posture and regulatory adherence, which are critical for enterprise software providers.

S

swissporTON

swissporton.ro

0

swissporTON is a Romanian-based manufacturer and retailer specializing in high-quality ceramic roof tiles and related roofing products. The company emphasizes Swiss quality standards, offering over 200 product variants with a 50-year warranty, targeting investors, roof installers, architects, and distributors. The website presents a professional and consistent brand image with extensive product information and support resources. Technically, the site uses modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Hotjar, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly but lacks explicit privacy and terms of service pages, which are areas for improvement. Security posture is good with HTTPS enforced, though security headers are not evident in the provided data. Overall, swissporTON demonstrates a solid market position with a trustworthy online presence but should enhance privacy compliance and security transparency.

N

NordNet SA (Registrar)

tourisme-en-champagne.com

0

The website tourisme-en-champagne.com serves as a comprehensive regional tourism portal for the Champagne region in France, offering information on destinations, cultural heritage, accommodations, and activities. It targets tourists and visitors interested in exploring the Champagne terroir and related experiences. The site is well-established with a domain age dating back to 1999, indicating a mature presence in the tourism sector. Technically, the site is built on Drupal 7 with a variety of JavaScript libraries for UI enhancements and analytics, including Matomo and Google Analytics. While the site is functional and provides good content quality and navigation, it uses some outdated JavaScript libraries that may pose security risks. Security posture is moderate with HTTPS enabled but lacks visible security headers and DNSSEC. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Overall, the site is credible and trustworthy but would benefit from improvements in security and privacy compliance.

S

Swisscare

swisscare.ch

0

Swisscare is an established insurance provider specializing in international health and travel insurance for students, interns, au pairs, travelers, and expatriates primarily in Europe and Switzerland. The company offers a digital-first experience with instant online insurance certificates and a customer account portal. The website is professionally designed, mobile-optimized, and supports multiple languages, reflecting a mature digital presence. Technically, the site uses modern web standards, Cloudflare DNS, and privacy-respecting analytics, though DNSSEC is not enabled. Security posture is good with HTTPS and CSRF tokens, but lacks explicit security policies and some security headers. Privacy compliance is strong with GDPR and FADP policies and cookie consent mechanisms. Overall, the domain and website content align well, indicating a legitimate and trustworthy business with a solid market position in niche insurance services.

G

Globetrotter

globetrotter.ch

0

Globetrotter is a Swiss travel company offering a wide range of travel experiences, advisory services, and curated travel recommendations. The website targets diverse traveler segments including families, solo travelers, and those interested in responsible tourism. The company appears to have a solid market position in Switzerland with a medium-sized business profile. Technically, the website uses modern web technologies such as the Svelte framework, lazy loading for images, and integrates a consent management platform to comply with privacy regulations. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses consent management but lacks explicit security headers and published security policies, which could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and compliant with privacy standards, though it would benefit from publishing privacy and security policies and providing clearer contact information.

H

Hotelplan

hotelplan.ch

0

Hotelplan.ch is a leading Swiss online travel agency specializing in personalized holiday and travel bookings including flights, hotels, cruises, and car rentals. The website targets Swiss travelers seeking convenient and comprehensive travel solutions. Technically, the site employs modern frameworks such as Next.js and integrates multiple analytics and marketing tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS and security headers in place, though explicit privacy and cookie policies are not detected in the provided content, representing a compliance gap. Overall, the site is professional and trustworthy but would benefit from enhanced privacy disclosures and incident response documentation.

L

Luzerner Kantonalbank

lukb.ch

0

Luzerner Kantonalbank (LUKB) is a leading regional bank based in Luzern, Switzerland, providing a broad range of financial services including retail banking, mortgages, investment products, and personalized financial advisory. The website targets private customers primarily in the Luzern and Central Switzerland region, emphasizing personal service and innovative banking solutions. The bank maintains a strong market position as a trusted cantonal bank with a professional digital presence. Technically, the website employs modern web technologies such as Google Tag Manager, Cookiebot for consent management, and HTMX for dynamic content. It is well-optimized for mobile devices and accessibility, with good SEO practices and comprehensive metadata. The site uses HTTPS with strong security headers, ensuring secure communications and protecting user data. From a security perspective, the site demonstrates good practices including secure cookie handling, consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response information are not publicly detailed, representing an area for improvement. The privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Overall, the website is professional, trustworthy, and secure, with extensive content relevant to its audience. It integrates multiple analytics and marketing tools responsibly, maintaining transparency and user control over data. Strategic recommendations include publishing detailed security policies, vulnerability disclosure mechanisms, and enhancing transparency around data protection officers to further strengthen trust and compliance.

M

MonoSystems

monosystems.com

0

MonoSystems is a specialized manufacturer and direct seller of cable management systems including cable trays, raceways, power poles, and j-hooks. The company positions itself as a unique direct manufacturer with over 50 years of industry experience and is part of the NIEDAX GROUP. Their website targets electrical contractors, engineers, architects, and general contractors, offering detailed product information, downloadable resources, and customer engagement through forms and social media. Technically, the site is built on WordPress with WooCommerce and uses modern libraries such as jQuery and Bootstrap, integrating Google Analytics and Tag Manager for tracking. Security measures include HTTPS and Google reCAPTCHA on forms, but the site lacks visible privacy and cookie policies as well as security headers, which are areas for improvement. The WHOIS data is unavailable, which reduces domain trustworthiness, but the website content and business presence indicate a legitimate operation. Overall, the site is professional and functional with moderate technical maturity and good business credibility.

E

Ebo-systems S.A.S

ebo-systems.com

0

Ebo Systems is a specialist manufacturer of composite cable tray systems with over 60 years of experience, serving demanding industrial sectors such as energy, transportation, chemistry, and water. The company is part of the Niedax Group, a global leader in cable management solutions, which strengthens its market position and global reach across 27 countries. The website reflects a professional and well-structured digital presence built on WordPress, leveraging modern technologies and SEO best practices. Security posture is strong with HTTPS enforced and no obvious vulnerabilities, though explicit security policies and privacy compliance documentation are lacking. WHOIS data is unavailable, which reduces transparency but does not negate the evident legitimacy of the business. Overall, the website is a credible and professional representation of a medium-sized industrial supplier.

S

SpinaGroup Srl

spinagroup.com

0

SpinaGroup Srl is an established Italian company specializing in integrated solutions for industrial plants, focusing on electrical and instrumentation packages. With over 30 years of experience and recent integration into the Niedax Group, the company offers customized and ready-made solutions for industrial plant engineering. Their target audience includes industrial companies and plant engineers seeking reliable electrical materials and services. The website reflects a professional B2B business model with a clear market position in the energy and manufacturing sectors. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable digital infrastructure. The site includes cookie consent mechanisms and Google Tag Manager for analytics, demonstrating digital maturity and privacy awareness. Performance and mobile optimization are good, though some accessibility features could be enhanced. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected, but improvements in security best practices and transparency are recommended. Overall, the website is trustworthy and professional, though the lack of WHOIS data reduces domain trust slightly. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving accessibility to strengthen compliance and user trust.

The domain auberge-de-l-ill.com is a long-registered domain since 2000, suggesting an established presence. However, the website content is currently inaccessible or blocked, displaying only a minimal placeholder message indicating the website could not be determined. This lack of accessible content prevents meaningful analysis of the business, its services, or its digital maturity. The technical infrastructure appears minimal with no detected CMS, frameworks, or modern technologies. Security posture is weak with no DNSSEC, no security headers, and no visible HTTPS enforcement details. Privacy and compliance policies are absent, and no contact or business information is available on the site. Overall, the website is not currently functional or publicly accessible, which significantly limits trust and credibility.

P

Pomurska gospodarska zbornica

pgz.si

0

Pomurska gospodarska zbornica (PGZ) is a regional economic chamber based in the Pomurje region of Slovenia, established in 2008. The organization focuses on uniting and supporting local businesses through networking events, consulting services, public documentation, and educational programs. The website reflects a professional and consistent brand presence, targeting a broad audience including businesses and stakeholders in the region. The site content is primarily in Slovenian and provides comprehensive information about the chamber's activities, projects, and regional economic data. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, FontAwesome, and Owl Carousel, with Google Analytics integrated for user tracking. The site is mobile-optimized and demonstrates good SEO practices.

S

SzeneSchweiz – Berufsverband Darstellende Künste

szeneschweiz.ch

0

SzeneSchweiz is the largest and most important Swiss professional association for performing artists in theater, film, and TV. It provides a range of services including legal advice, protection against abuse, pension schemes for freelancers, continuing education, and a casting platform. The organization targets professional artists in Switzerland and operates as a non-profit entity with a strong market position in the Swiss performing arts sector. The website is multilingual and professionally designed, reflecting a medium-sized organization founded around 2017. Technically, the website is built on WordPress 6.8.3 with modern plugins for social sharing and forms. It uses Google Analytics for tracking and is mobile-optimized with good SEO practices. Performance is moderate, and accessibility is basic. The site uses HTTPS with excellent SSL configuration but lacks some security headers and a cookie consent mechanism. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, it lacks explicit security policies, incident response information, and cookie consent banners, which are important for GDPR compliance. No vulnerabilities or suspicious content were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the organization's Swiss identity. Overall, the website is professional, trustworthy, and well-positioned in its niche but could improve privacy compliance and security posture by adding cookie consent, security headers, and incident response details.

V

VPOD/SSP

vpod.ch

0

VPOD/SSP is a well-established Swiss trade union representing employees in the public service sector, including education, healthcare, transportation, and government. The organization offers membership services, educational programs, advocacy on labor rights, and regional support through multiple subdomains. The website reflects a mature digital presence with clear branding, comprehensive content, and active social media engagement. Technically, the site is built on the ProcessWire CMS with modern JavaScript libraries and privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is professional, trustworthy, and well-aligned with its mission and audience.

V

VCS Productions GmbH

vcs.ch

0

VCS Productions GmbH is a Swiss-based company specializing in visual computing services with over 30 years of experience. Their offerings include tailored content creation for product videos, LED display solutions, high lumen projectors, 3D animations, laser shows, video mapping, and streaming products. The company targets businesses and organizations seeking advanced visual content and display technologies. The website reflects a professional and consistent brand image with clear contact information and a focus on technology services. Technically, the site is built on WordPress with a modern theme and plugins, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and anti-spam measures, though lacking advanced security headers and explicit policies. Privacy compliance is partial, with a privacy policy present but no cookie consent or terms of service. Overall, the site is trustworthy and well-maintained, with room for improvement in security and compliance documentation.

U

Unia

unia.ch

0

Unia is the largest trade union in Switzerland, serving a broad range of employees across industries such as construction, manufacturing, commerce, and private services. The organization operates as a non-profit entity focused on labor rights, collective bargaining agreements, and member services. The website is built on TYPO3 CMS and integrates modern analytics and tracking tools like Google Tag Manager and Facebook Pixel, with privacy-conscious default settings denying consent until granted. Security posture is solid with HTTPS enforced, though improvements can be made by adding security headers and explicit privacy and cookie policies. The site is well-branded, multilingual, and professionally designed, targeting workers and union members in Switzerland.

S

syndicom

syndicom.ch

0

syndicom is a prominent Swiss trade union representing employees in logistics, information and communication technology, and media sectors. The organization advocates for fair working conditions, social justice, and responsible technological progress. It offers services such as collective bargaining, legal advice, education, and campaigns to its members. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support, targeting employees and stakeholders in Switzerland. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response contacts are not publicly disclosed. Overall, the domain registration aligns with the organization's identity, supporting legitimacy and trustworthiness.

S

Sympany Services AG

sympany.ch

0

Sympany Services AG is a Swiss insurance company specializing in health insurance, offering both basic and supplementary insurance products alongside vehicle, household contents, and business insurance. The company targets individuals and corporate customers within Switzerland, positioning itself as a trusted and customer-centric insurer with high satisfaction ratings. The website reflects a professional and comprehensive digital presence with clear navigation and extensive service information. Technically, the website employs modern JavaScript libraries, Google Tag Manager for analytics, and Usercentrics for consent management, indicating a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with secure HTTPS connections and no visible technical vulnerabilities. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses consent management for cookies, but lacks publicly available dedicated security policies or incident response contacts. No exposed sensitive data or vulnerabilities were detected. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR requirements. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, with recommendations to enhance security transparency and implement additional security headers to further strengthen its security posture.

R

RVK

rvk.ch

0

RVK is an independent and leading service provider in the Swiss healthcare market, offering specialized services including risk and performance management, insurance medicine consulting, and education through its RVK Academy. The company targets insurers, pension funds, and enterprises, providing tailored insurance and educational solutions. The website is professionally designed, consistent in branding, and provides clear contact information and trust signals such as client testimonials and SQS-Audit certification. Technically, the site uses modern web technologies like Swiper.js and Google Maps API, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

M

Migros Verteilbetrieb AG

mvb.ch

0

Migros Verteilbetrieb AG is a leading logistics company within the Migros Group, specializing in storage, packaging, picking, and distribution of a wide range of products including food, textiles, and frozen goods. It operates multiple large distribution centers in Switzerland, serving hundreds of Migros stores and migrolino shops daily. The company is well-established with over 50 years of operational history, positioning itself as a key logistics partner in the Swiss retail sector. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and OwlCarousel, and is built on the Umbraco CMS platform. The site is mobile-optimized, uses HTTPS, and includes cookie consent mechanisms compliant with GDPR. While the site lacks explicit security headers and detailed security policies, it demonstrates a solid baseline security posture with no evident vulnerabilities or exposed sensitive data. From a security perspective, the website benefits from HTTPS encryption and cookie consent but could improve by implementing additional HTTP security headers and publishing incident response or security policies. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the business identity, indicating high legitimacy. Overall, the website is professional, trustworthy, and well-suited for its business purpose. Strategic recommendations include enhancing security headers, improving accessibility, and publishing explicit security and incident response information to further strengthen trust and compliance.

H

Helvetia Insurance

helvetia.ch

0

Helvetia Insurance is a well-established Swiss insurance company with over 160 years of history, serving more than 1.3 million customers. The company offers a broad range of insurance and pension products targeting private customers in Switzerland. Their website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding. The technical infrastructure leverages Adobe Experience Manager CMS, integrates multiple analytics and marketing tools, and employs modern web technologies ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and privacy compliance mechanisms in place. However, WHOIS data is not publicly available, likely due to privacy protection, which is common for large enterprises. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

G

Garanto

garanto.ch

0

Garanto is a Swiss trade union established in 2001 representing customs and border personnel. The organization provides legal protection, member services, and advocacy for its members within the customs administration sector. The website is professionally designed, multilingual (German, French, Italian), and provides clear navigation and relevant content for its target audience. Technically, the site uses modern JavaScript libraries such as jQuery, Swiper, and Fancybox, with a custom or unknown CMS. Security posture is adequate with HTTPS enforced and cookie consent implemented, though some security headers are missing. No critical vulnerabilities or blocking mechanisms were detected. Contact information is clearly presented, including phone and email, and a member login area is available. Overall, the site demonstrates a solid digital presence for a government-related non-profit entity.