Security Directory

C

CSRV | Centre Sportif Régional Vaudois

csrv.ch

0

CSRV | Centre Sportif Régional Vaudois is a small regional sports cooperative based in Switzerland, providing sports facility rental and event hosting services primarily focused on football and community events. The website presents a professional and consistent brand image, targeting local sports clubs, families, and event organizers. The business has a long history dating back to 1966, which aligns with the domain age and registration data, supporting its legitimacy. Technically, the website is built on WordPress using the Divi theme and several plugins for booking and mapping functionalities. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled and some security plugins in use, but lacks visible security headers and formal privacy or cookie policies, indicating room for compliance improvement. The security evaluation shows no critical vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies and security headers reduces the overall security and privacy compliance score. No incident response or vulnerability disclosure information is provided. The website content is safe for general audiences and contains no adult or questionable material. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

C

CIAC Sàrl

batiguide.ch

0

Batiguide is a Swiss platform dedicated to connecting property owners with trusted local construction and renovation professionals. Established since 1982 and operated by CIAC Sàrl, it serves the French-speaking Swiss market by providing a curated directory of artisans and companies, facilitating informed decision-making for property-related projects. The platform offers services such as emergency repairs, professional listings, and educational guides related to construction trades. Technically, the website is built on a modern WordPress CMS with standard libraries like jQuery and Bootstrap, ensuring a responsive and user-friendly experience. The presence of cookie consent mechanisms and HTTPS indicates a baseline commitment to privacy and security. However, the absence of explicit security policies and incident response contacts suggests room for improvement in security transparency. Overall, the site is professionally maintained, trustworthy, and well-positioned within its niche market.

The website represents the Mednarodni forum znanstvenoraziskovalnih farmacevtskih družb, an international forum of pharmaceutical research companies focused on healthcare innovation and patient access in Slovenia. The site provides news, event information, and advocacy content targeting healthcare professionals, policymakers, and patients. Technically, the site uses modern web standards, including HTML5, CSS3, JavaScript, and Google Analytics for tracking. It appears to be built on a CMS platform, likely Drupal, and is mobile-optimized with a moderate performance profile. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks visible security headers and explicit privacy or terms of service pages. No contact information or incident response details are found, which limits user trust and compliance transparency. The domain registration is consistent with the business and shows no suspicious patterns, indicating legitimacy. Overall, the site is professional and trustworthy but could improve privacy compliance and security transparency.

L

LogiPac

ajdistribution.se

0

LogiPac is a Swedish third-party logistics (3PL) service provider specializing in retail and pharmaceutical sectors. Established in 2011, the company offers a range of logistics services including campaign logistics, event logistics, warehousing (lagerhub), post-processing, and sustainable climate-smart logistics solutions. Their website reflects a professional and consistent brand presence targeting retail and pharma brands and chain companies in Sweden. The business model focuses on providing advanced logistics solutions with precision and economic efficiency. The company maintains a medium-sized market presence with multiple notable clients showcased on the site.

MSD Vaccinservice is a Swedish website operated by Merck & Co., Inc., providing vaccine ordering services primarily targeted at healthcare professionals. The site offers a streamlined process for ordering vaccines and related materials, emphasizing ease of use and customer service. The business is positioned as part of a global pharmaceutical leader with a strong reputation in vaccine development and distribution. The website content is professional, well-branded, and compliant with relevant privacy regulations, including GDPR. Technically, the site uses modern JavaScript libraries, cookie consent management tools, and Google Tag Manager for analytics, indicating a mature digital infrastructure. Security measures include HTTPS enforcement and a Content Security Policy, though DNSSEC is not enabled and no explicit security or incident response policies are published on the site. Overall, the site demonstrates a strong security posture with room for improvement in transparency around security policies and incident response. The domain registration details are consistent with a legitimate enterprise business, registered through a reputable registrar with no privacy protection, supporting trustworthiness. No adult or questionable content is present, making the site safe for general audiences.

M

Merck Sharp & Dohme AB

pneumo.se

0

The website pneumo.se is an educational platform operated by Merck Sharp & Dohme AB, a large pharmaceutical company. It provides comprehensive information about pneumococcal diseases and vaccination, targeting primarily adults over 65 and risk groups in Sweden. The content is medically reviewed and references authoritative health sources such as Folkhälsomyndigheten and 1177 Vårdguiden, establishing strong trust and credibility. The site promotes vaccination awareness and guides users to find local healthcare centers for vaccination services. Technically, the site is built on WordPress and employs modern web technologies including jQuery, Google Tag Manager, Facebook Pixel, and OneTrust for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with good performance characteristics. Hosting details are not explicit but DNS and registrar data indicate a professional setup. Privacy and cookie policies are clearly presented with GDPR compliance mechanisms in place. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks DNSSEC and visible security headers. No vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy or incident response information is noted. The domain registration is consistent and transparent, registered with a reputable registrar and appropriate for the business age. Overall, the website demonstrates a strong business credibility and technical maturity with good privacy compliance. Strategic improvements could include enabling DNSSEC, publishing security policies, and enhancing security headers to further strengthen the security posture.

The website ingavattkoppor.nu is a professionally developed healthcare information portal operated by MSD Sverige AB, a subsidiary of Merck & Co., Inc. It focuses on educating Swedish parents about chickenpox, its symptoms, transmission, and vaccination options. The site includes a vaccination center locator and provides clear, relevant content targeted at parents and guardians. The business model is informational and promotional, supporting public health awareness with backing from a major pharmaceutical company. Technically, the site uses modern web technologies including Google Tag Manager and OneTrust for cookie consent, and is likely built on WordPress. The site is mobile optimized, accessible, and SEO friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. The domain registration is consistent and legitimate, registered since 2019 with no privacy protection, aligning with the business claims. Overall, the site is trustworthy, compliant with GDPR, and provides a safe user experience.

K

KNRB

knrb-formulieren.nl

0

The KNRB formulieren website serves as an official portal for the Koninklijke Nederlandse Roeibond, providing essential forms and resources to the Dutch rowing community. It is positioned as a non-profit sports federation resource hub, targeting members, volunteers, and affiliated clubs. The site maintains consistent branding aligned with KNRB and offers clear contact information, enhancing its credibility. Technically, the website is built on WordPress using the Elementor page builder, incorporating modern web technologies such as jQuery and Google reCAPTCHA for form security. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. However, it lacks advanced security headers and visible privacy or cookie policies. From a security perspective, the site benefits from HTTPS and reCAPTCHA integration but misses several best practices such as security headers and formal privacy compliance documentation. No critical vulnerabilities or suspicious elements were detected, indicating a generally secure posture suitable for its purpose. Overall, the website is functional and trustworthy for its intended audience but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

Swisscommunes.ch is a specialized digital solutions provider targeting Swiss communes and local governments. Their offerings include document publication and archiving, parking permits, and room rental management, emphasizing simplicity, autonomy, and cost-effectiveness. The business operates in a niche market with a clear focus on municipal digital services, supported by a small-sized company, Gilston Digital SA. The website is professionally designed with consistent branding and includes trust signals such as customer testimonials and Swiss Made Software certification. Technically, the site is built on WordPress with modern libraries and frameworks, including Bootstrap and Matomo analytics, ensuring a good user experience and privacy-conscious tracking. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though it lacks some advanced security headers and explicit security policies. Overall, the site is trustworthy and well-positioned for its target audience, with room for improvement in privacy documentation and security transparency.

M

Mediaworks Hungary Zrt.

boon.hu

0

BOON.hu is a regional news portal serving Borsod-Abaúj-Zemplén county in Hungary, operated by Mediaworks Hungary Zrt. The site focuses on delivering fresh news, economic updates, and local information to residents and interested audiences within the region. It operates primarily on an advertising-supported business model, leveraging multiple ad networks and tracking technologies to monetize content. The website demonstrates a moderate to good level of digital maturity, employing modern analytics, consent management, and SEO best practices, including structured data markup. Security posture is adequate with HTTPS enforced and consent mechanisms in place, but lacks published security policies, incident response contacts, and vulnerability disclosure information, which are areas for improvement. Overall, the site is legitimate, professionally presented, and safe for general audiences.

Confedere.ch is a French-language Swiss media website providing news and journal content, including print editions. The site is built on WordPress using a professional Newspaper theme and includes GDPR-compliant cookie consent mechanisms. The technical infrastructure is modern with standard plugins and Google Analytics integration. Security posture is adequate with HTTPS enforced but could be improved by adding explicit security headers and hardening login forms. The website is trustworthy with consistent domain registration data and no suspicious content detected. Privacy compliance is good with clear cookie policies and consent mechanisms, though terms of service and security policies are not explicitly found.

The website frequenzwechsel.org is currently inaccessible, returning a 403 Forbidden error page served by nginx on Ubuntu. Due to the lack of accessible content, no business description, services, or user engagement features can be analyzed. The domain is registered since 2007 with a German registrar and hosting provider, indicating a potentially established entity, but no further business details are available from the site itself. Technically, the site uses a standard nginx web server but lacks visible security headers or HTTPS confirmation in the provided data. The security posture cannot be fully assessed due to blocked access, but the absence of DNSSEC and security policies suggests room for improvement. Overall, the site presents a low trust and content quality profile due to inaccessibility and lack of transparency.

B

Bys Hosting

byshosting.nl

0

Bys Hosting is a Dutch hosting provider established in 2004, specializing in business hosting solutions with a focus on personal support and reliability. Their services include various hosting packages, VPS, and security offerings, with servers hosted in an ISO 27001 certified data center in the EU. The website is built on WordPress and uses modern frontend technologies, providing a professional and user-friendly experience targeted at business customers in the Netherlands. Security posture is solid with HTTPS and SSL certificates, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is basic with a privacy policy and terms of service present but lacking cookie consent mechanisms. Overall, the website and business appear legitimate and trustworthy.

Salland Zorgkantoor is a regional healthcare organization in the Netherlands responsible for executing the Long-term Care Act (Wet langdurige zorg - Wlz) for residents in the Salland region, including municipalities such as Deventer, Olst-Wijhe, Raalte, and Voorst. The organization facilitates access to appropriate long-term care services, including care in kind and personal budgets, and provides support through client advisors and informational resources. Their market position is that of a trusted regional care office, supported by clear contact information and a professional web presence. The website is designed to serve individuals needing long-term care and professionals in the healthcare sector.

Putter & de Boer B.V. is a Dutch company providing tailored administrative, fiscal, and payroll services primarily targeting small and medium-sized enterprises (MKB) and private individuals. With over 45 years of experience, the company positions itself as a reliable and comprehensive service provider offering a 'one stop shopping' approach. Their website is built on the concrete5 CMS and integrates common web technologies such as jQuery, Google Analytics, and Facebook SDK for tracking and social media integration. The hosting provider is Easyhosting BV, a reputable Dutch hosting company, consistent with the company's geographic focus. From a security perspective, the website uses HTTPS but lacks important security headers, privacy and cookie policies, and explicit contact information, which are areas for improvement to enhance compliance and trust. No vulnerabilities or suspicious content were detected in the HTML content. The website is accessible without WAF or security challenges, indicating no blocking or filtering mechanisms are interfering with access. Overall, the website demonstrates a moderate level of technical maturity and business credibility but falls short in privacy compliance and security best practices. Strategic improvements in these areas would strengthen the company's digital trustworthiness and regulatory adherence.

The website www.sitearchief.nl serves as the official platform for web archiving of Dutch government websites, operated under the Rijksoverheid brand. It provides access to archived versions of various government-related web projects and initiatives, enabling users to browse historical web content. The platform is developed and managed by GW Crossmedia using the Archiefweb.eu product tailored for the Dutch government. The target audience includes government agencies, researchers, and the general public interested in government web archives. The site demonstrates consistent branding aligned with government standards and offers a comprehensive archive listing.

The analyzed content corresponds to a browser internal error page (chrome-error://chromewebdata/) displaying the Chromium offline dinosaur game. No actual website content is accessible or served. Consequently, there is no business information, contact details, or privacy and security policies available for analysis. The technical content is limited to embedded JavaScript and CSS related to the offline game. The absence of accessible content and metadata prevents meaningful assessment of business operations or compliance. Security posture is minimal due to lack of HTTPS and security headers. Overall, the site appears to be a placeholder or error page rather than an active business website.

K

Koocook

koocook.com

0

Koocook is a French meal planning platform established in 2006, offering users personalized recipes, shopping lists, and meal plans focused on healthy eating and reducing food waste. The business operates a freemium model with a premium subscription unlocking advanced features such as personalized meal plans, nutrition and allergen information, and online grocery ordering. The website is well-designed, mobile responsive, and uses modern web technologies including Bootstrap, jQuery, and integrates Google Analytics and Stripe for payments. Hosting appears to be via SwissCenter based on nameservers. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are present and GDPR compliant, though no explicit security or incident response policies are published. Contact is available via a web form, with no direct emails or phone numbers found. Overall, the site is professional, trustworthy, and safe for general audiences.

C

Cafés Cuendet Torréfaction SA

cafes-cuendet.ch

0

Cafés Cuendet Torréfaction SA is a well-established Swiss coffee roasting company founded in 1907, specializing in supplying high-quality coffee products primarily to hospitality professionals in the Swiss Romande region. The company emphasizes artisanal roasting methods and freshness, supporting a strong market position as a trusted supplier with a professional e-commerce presence. Technically, the website is built on WordPress with WooCommerce, leveraging modern libraries and privacy-conscious analytics tools such as Matomo Cloud alongside Google Analytics. The site is well-optimized for SEO and mobile devices, providing a positive user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and formal policies are absent. Overall, the domain registration data aligns well with the business claims, reinforcing legitimacy and trustworthiness.

D

Domaine Croix-Duplex

croix-duplex.ch

0

Domaine Croix-Duplex is a small family-owned vineyard and wine producer located in Lavaux, Switzerland, offering a diverse range of wines and hosting various events including tastings and private functions. The website is professionally designed, multilingual, and supports e-commerce through WooCommerce, targeting wine enthusiasts and local visitors. The technical infrastructure leverages WordPress with modern plugins for performance and multilingual support, alongside Google Analytics and Mailchimp for marketing and analytics. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site presents a trustworthy and professional online presence for a regional wine business.

L

Ligue Romande de Football

lrf.ch

0

The Ligue Romande de Football (LRF) is a well-established non-profit sports association founded in 1899 and based in Lausanne, Switzerland. It focuses on promoting and organizing amateur football activities within the canton of Vaud. The website serves as an information hub for match schedules, results, official communications, and club support services. The target audience primarily consists of amateur football clubs and players in the region. The organization maintains a consistent brand presence and is supported by local sponsors, reinforcing its regional importance. Technically, the website employs modern frontend technologies such as Bootstrap and jQuery, with Google Fonts for typography. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, there is room for improvement in accessibility and SEO optimization. No CMS or hosting provider details were identified. Performance is moderate, with no evident critical technical issues. From a security perspective, the site uses HTTPS (assumed from the URL), but no security headers were detected in the provided data. There is no visible privacy policy, cookie consent mechanism, or terms of service, which are important for GDPR compliance given the European location. No incident response or vulnerability disclosure information is present. No analytics or tracking scripts were found, indicating minimal user tracking. Overall, the security posture is average with recommendations to enhance headers, policies, and incident response readiness. The overall risk assessment is moderate with a legitimacy score of 90 based on consistent WHOIS data and alignment with the organization's claims. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, establishing vulnerability disclosure and incident response processes, and improving accessibility and SEO. These steps will enhance trust, compliance, and security maturity for the LRF website.

Swisscommunes.ch is a specialized digital solutions provider targeting Swiss communes and local government entities. Their offerings include document management, parking permits, and room rental management, emphasizing simplicity, autonomy, and affordability. The company behind the site is Gilston Digital SA, a small-sized entity with a clear niche in government-related technology services. The website is built on WordPress with modern front-end frameworks like Bootstrap and integrates privacy-conscious analytics via Matomo. The site includes a cookie consent mechanism and a contact form but lacks explicit privacy and terms of service pages. Security posture is generally good with HTTPS and some best practices but could be enhanced with additional security headers and published policies. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

G

Gilston Digital SA

gilston.consulting

0

Gilston Consulting, a department of Gilston Digital SA, specializes in delivering pilot projects that combine software and hardware development. Their market position is that of a niche Swiss consulting firm focusing on innovative proofs of concept and embedded systems. The company leverages a modern WordPress-based website with responsive design and standard web technologies, providing a professional digital presence. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is partial due to the absence of a privacy policy page. Overall, the website reflects a credible small business with clear contact channels and partner affiliations.

M

Merck & Co., Inc.

msdindia.in

0

MSD India is the regional presence of Merck & Co., Inc., a leading global pharmaceutical company. The website serves as a corporate portal providing information about the leadership team, contact details, and resources for healthcare professionals. The company operates in the healthcare sector with a focus on pharmaceuticals, oncology, clinical research, and regulatory affairs. The site reflects a strong market position as part of a large multinational enterprise with consistent branding and professional content. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and uses Google Analytics and Tag Manager for tracking. It employs a cookie consent mechanism compliant with GDPR and other privacy regulations. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and a public security policy or vulnerability disclosure page. No vulnerabilities or exposed sensitive data were detected. The WHOIS data for the domain www.msd.com was not available in the raw output, but the website's legitimacy is supported by consistent branding and official contact information. Overall, the website presents a low risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

M

Merck Sharp & Dohme d.o.o

msd.hr

0

Merck Sharp & Dohme d.o.o (MSD Croatia) is a subsidiary of the global pharmaceutical leader Merck & Co., Inc., focused on delivering prescription medicines, vaccines, and clinical research services. The website serves patients, healthcare professionals, and job seekers with comprehensive corporate information, product details, and responsibility initiatives. The site is well-branded, professionally designed, and consistent with the global MSD identity. Technically, the website is built on WordPress VIP with modern plugins such as Yoast SEO and Tiny Slider, ensuring good SEO, accessibility, and mobile responsiveness. It uses Google Tag Manager for analytics and OneTrust for cookie consent, reflecting a mature digital infrastructure. Performance is moderate with good mobile optimization. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Privacy compliance is robust with clear privacy and cookie policies, and GDPR adherence is evident. Overall, the website is trustworthy, professional, and secure, supporting MSD's market position as a leading pharmaceutical company. Strategic recommendations include publishing detailed security policies, incident response contacts, and enhancing security headers to further strengthen the security posture.