Security Directory

A

Art for You

artforyou.ch

0

Art for You is a Swiss-based e-commerce business specializing in selling posters and art prints created by Swiss artists. The company emphasizes sustainable and ecological production, targeting art enthusiasts and customers interested in unique Swiss art. The website is built on the Shopify platform, leveraging modern web technologies and integrations such as Facebook Pixel and Mailchimp for marketing and analytics. The site is well-structured, mobile-optimized, and provides a good user experience with clear navigation and professional design. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not published. Privacy and cookie policies are present and indicate GDPR compliance. Overall, the business appears legitimate and trustworthy with consistent WHOIS data and a clear market niche.

B

Be.Beyond GmbH & Co KG

lead-print.com

0

Lead-Print, a brand of Be.Beyond GmbH & Co KG, is a well-established provider of web-to-print solutions primarily serving the DACH region. With over 360 installations and 2500 active portals, the company offers tailored, cost-effective platforms for printers, media service providers, and corporate clients. Their product suite includes PRINT LOUNGE, DRUCKSHOP, and ONLINE CREATOR, supported by consulting and plugin services. The website reflects a professional and consistent brand image with clear contact information and comprehensive privacy and cookie policies, indicating a mature digital presence. Technically, the website employs modern JavaScript libraries and tracking tools such as Google Analytics and Tag Manager, with a responsive design and moderate performance. However, there is room for improvement in security headers and published security policies. The absence of WHOIS data is a notable gap, reducing domain transparency and trust from a registration perspective. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but the lack of incident response contacts and security policy documentation suggests an opportunity to enhance trust and compliance. Overall, the website is safe, business-focused, and well-structured, suitable for its target audience in the printing and media technology sector.

R

Rewardful Inc.

getrewardful.com

0

Rewardful Inc. operates a specialized SaaS affiliate and customer referral tracking software platform designed primarily for SaaS professionals, digital creators, and marketers. The company positions itself as a leader in ease of setup, evidenced by its #1 rating on G2 and verified Stripe partnership. Their software offers seamless integration with Stripe and Paddle, flexible commission structures, and robust API support, catering to businesses seeking to launch and manage affiliate programs efficiently. Technically, the website is built on Webflow CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Intercom, and VWO, reflecting a mature digital infrastructure. The presence of Usercentrics CMP indicates attention to privacy compliance, although explicit privacy and terms of service pages are not found. Security posture is solid with HTTPS and consent management but lacks some advanced security headers and published policies. The absence of WHOIS data for the domain is a notable concern, potentially impacting trust and legitimacy verification. Overall, Rewardful presents as a professional and credible SaaS affiliate software provider with room for improvement in transparency and security documentation.

S

Some Place Studio

someplace.studio

0

Some Place Studio is a small architectural practice operating out of Berlin and Vienna, specializing in buildings, interiors, and exhibitions with a strong commitment to sustainability and cultural engagement. The firm emphasizes collaboration and diversity, positioning itself as a woman-owned business within the German architecture market. Their service offerings include comprehensive architectural design, project management, and construction supervision, targeting clients who value sustainable and contextually aware design solutions. Technically, the website is built on the Cargo CMS platform, utilizing modern web standards and custom typography, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. No forms or direct contact details are provided, which may impact user engagement and trust. Overall, the domain appears legitimate with privacy-protected WHOIS data, consistent with the professional nature of the business. Strategic recommendations include enhancing security headers, adding privacy and cookie policies, and providing clear contact information to improve compliance and user trust.

D

Dinamo Typefaces

abcdinamo.com

0

Dinamo Typefaces is a Berlin-based specialized type design studio offering a range of retail and bespoke typefaces, design software, research, and consultancy services. The company targets design professionals and clients seeking custom font solutions, positioning itself as a niche player with a strong international presence. The website reflects a professional and modern digital presence with excellent design quality, clear navigation, and mobile optimization. Technically, the site uses modern JavaScript frameworks (Vue.js), lazy loading, and secure HTTPS connections, supported by strong security headers and CSRF protections on forms. However, there is room for improvement in privacy compliance, particularly regarding cookie consent mechanisms and publishing explicit security policies or incident response information. Overall, the security posture is strong with no evident vulnerabilities or exposed sensitive data. The domain registration data is consistent with the business claims, enhancing trustworthiness. Strategic recommendations include enabling DNSSEC, adding cookie consent, publishing security and incident response policies, and establishing a vulnerability disclosure process.

S

Studio HanLi

hanli.eu

0

Studio HanLi is a small creative business specializing in graphic design and typography, including typeface creation. The website presents a professional and visually appealing design built on WordPress with modern web technologies such as jQuery and Swiper.js. The technical infrastructure is moderate in performance and well optimized for mobile devices. However, the site lacks critical privacy and cookie policies, contact information, and visible security policies, which impacts its compliance and trustworthiness. Security posture is average due to missing security headers and unclear SSL configuration. Overall, the business appears legitimate and niche-focused but would benefit from enhanced privacy compliance and security practices.

T

Trojka

trojkavodka.com

0

Trojka is a Swiss spirits brand specializing in flavored vodkas designed for consumers who prefer simple, ready-to-mix alcoholic beverages. The website presents a professional and consistent brand image with a clear focus on product variety and ease of use. Technically, the site uses modern web technologies including JavaScript ES modules, CSS3, and integrates Google Tag Manager and Cookiebot for analytics and cookie consent management. The site appears mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and implements a detailed cookie consent mechanism, but lacks explicit security headers and published security policies. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and branding suggest a legitimate business. Overall, the site demonstrates a moderate to good security posture and privacy compliance but would benefit from enhanced transparency and contact information.

M

Macquarie Group

yourlease.com.au

0

YourLease, operated under the Macquarie Group umbrella, provides a secure online platform for customers to manage leasing contracts, view payment histories, and download related documents. The website is professionally designed with a focus on user experience and mobile optimization, leveraging modern web technologies such as AngularJS and Google Analytics for performance and tracking. Security is well addressed with HTTPS enforcement, secure login forms, and clear warnings about phishing scams, reflecting a mature security posture appropriate for a financial services platform. Privacy policies and terms of service are clearly linked, supporting compliance with data protection regulations. Overall, the site demonstrates a high level of professionalism and trustworthiness, although the lack of explicit cookie consent and limited WHOIS transparency slightly reduce privacy compliance scores.

B

Bora

bora.co

0

Bora is a medium-sized architectural and interior design firm based in Portland, Oregon, with a national presence primarily servicing the Pacific Northwest and beyond. The company specializes in architecture, interior design, sustainability consulting, and branding services, targeting clients such as educational institutions and commercial enterprises. Their website reflects a professional and consistent brand image with a strong portfolio showcasing their work. Technically, the site is built on WordPress with modern plugins and technologies such as Mapbox and Google Analytics, offering good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and formal security policies suggests room for improvement. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is trustworthy and well-maintained, supporting Bora's market position as a reputable design firm.

M

Mithun, Inc

mithun.com

0

Mithun, Inc is a well-established design and architecture firm with a strong market presence in the United States, operating since at least 1996 as indicated by domain registration. The company focuses on integrated design services including architecture, planning, and research and development, emphasizing sustainability and community impact. Their website reflects a professional and content-rich platform targeting clients seeking high-quality design solutions. Technically, the site is built on WordPress with standard technologies like jQuery and Yoast SEO, and it incorporates Google Analytics for user tracking. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security-wise, the website uses HTTPS and has domain transfer protections, but lacks DNSSEC and security headers, and does not publish privacy or security policies, indicating room for improvement in compliance and security posture. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

M

Mahlum Architects Inc.

mahlum.com

0

Mahlum Architects Inc. is a medium-sized architectural firm focused on sustainable and community-centered design, serving sectors such as education, healthcare, housing, and planning. Their website reflects a professional presence with a clear emphasis on values like equity, inclusion, and environmental sustainability. The firm holds certifications such as the Living Building Challenge, underscoring their commitment to green building practices. Technically, the website is built on WordPress using common plugins and tracking tools like Google Analytics and Leadfeeder, with moderate performance and good mobile optimization. Security posture is generally good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. The absence of WHOIS data reduces domain trustworthiness, though the website content and social media presence support legitimacy. Overall, the site is professional and trustworthy but could improve privacy compliance and security best practices.

Swinerton Incorporated is a well-established national construction company founded in 1888, operating with a 100% employee-owned business model. The company offers a broad range of construction services including general contracting, construction management, and design-build services, serving clients across 24 regional offices in the United States. Their market position is strong, consistently ranked among the top general contractors nationally, with a focus on quality, innovation, and local market expertise. Technically, the website is built on WordPress using modern frameworks and plugins such as Elementor, Bootstrap 4, and Yoast SEO. It employs Google Tag Manager and Plausible Analytics for tracking, alongside Cookiebot for cookie consent management, reflecting a mature digital infrastructure. Hosting appears to be managed by WP Engine, ensuring reliable performance and security. From a security perspective, the site enforces HTTPS and implements clientTransferProhibited status on the domain, enhancing domain security. Cookie consent mechanisms are in place, and privacy policies are comprehensive and GDPR compliant. However, there is room for improvement by enabling DNSSEC, adding security headers, and publishing a formal security policy or vulnerability disclosure. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of security or content safety issues. The domain registration data supports the legitimacy and long-term presence of the company. Strategic recommendations include enhancing DNS security, publishing security policies, and expanding incident response transparency to further strengthen trust and security posture.

D

Diamond Schmitt

dsai.ca

0

Diamond Schmitt is a well-established architecture firm founded in 2001, specializing in designing cultural, educational, and research facilities. The company has a strong market position with a portfolio of notable projects and serves clients primarily in Canada and the United States. Their website reflects a professional and consistent brand image, targeting institutional clients and stakeholders seeking architectural services. Technically, the website is built on WordPress with modern JavaScript libraries and demonstrates good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain registration transparency, but lacks DNSSEC and security headers, and does not publish explicit security or incident response policies. Privacy compliance is basic, with no clear cookie consent mechanism or detailed privacy policy found. Overall, the website is trustworthy and professional but could improve in privacy and security transparency.

S

Synergy Partners Consulting Ltd.

synergypartners.ca

0

Synergy Partners Consulting Ltd. is a Canadian engineering consulting firm specializing in building engineering and advisory services for new and existing buildings. Founded in 2014 and headquartered in Toronto, Ontario, the company serves property owners, managers, designers, and builders across various real estate sectors. Their core services include advisory, restoration engineering, and enclosure engineering, positioning them as a trusted and experienced player in the Canadian real estate engineering market. The website reflects a professional and well-established business with clear branding and comprehensive service descriptions. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Slick Carousel, and Magnific Popup for enhanced user experience. SEO is supported by Yoast SEO plugin, and Google Analytics is integrated for visitor tracking. The site is mobile optimized and accessible, with good performance, although some improvements in security headers and DNSSEC could be made. From a security perspective, the site uses HTTPS and has domain locks to prevent unauthorized changes, but lacks DNSSEC and security headers that would strengthen its posture. There is no visible security policy or incident response contact information, and no cookie consent mechanism despite the use of tracking scripts, which may impact privacy compliance. The WHOIS data is consistent with the business claims, showing a legitimate and stable domain registration. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security best practices. Strategic improvements in these areas would enhance the company's digital trust and compliance posture.

P

Pomerleau Inc.

pomerleau.ca

0

Pomerleau Inc. is a leading Canadian construction company specializing in building, infrastructure, and civil engineering projects. Established in 2000, it has grown to become one of Canada's largest construction firms with revenues exceeding $4.8 billion in 2023. The company targets clients in various sectors including energy, transport, and real estate, offering comprehensive construction services with a focus on innovation and sustainability. The website reflects a professional and well-branded digital presence, supporting its market position and business model effectively. Technically, the website is built on Drupal CMS and integrates modern technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing content discoverability. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and employs a robust cookie consent mechanism, demonstrating good privacy compliance aligned with GDPR. However, there is an opportunity to enhance security posture by enabling DNSSEC, adding security headers, and publishing explicit security policies or incident response contacts. No critical vulnerabilities or suspicious indicators were detected. Overall, Pomerleau's website presents a trustworthy and professional front that aligns well with its business stature. Strategic recommendations include strengthening DNS security, enhancing HTTP security headers, and publishing formal security and incident response documentation to further build trust and compliance.

L

Lever Architecture

leverarchitecture.com

0

Lever Architecture is a professional architectural design firm operating primarily in Portland, Oregon, and Los Angeles, California. The company offers architectural, interior design, and research services, targeting clients seeking innovative and impactful building solutions. Their market position is supported by a mature domain age and media recognition for notable projects, indicating a stable and reputable presence in the architecture sector. Technically, the website employs modern web technologies including JavaScript, Turbolinks, and Google Analytics for tracking. The hosting infrastructure leverages Google Cloud DNS services, and the site is secured with HTTPS and CSRF protections. While performance and mobile optimization are good, there is room for improvement in accessibility and security headers. From a security perspective, the site demonstrates a solid baseline with HTTPS and CSRF tokens but lacks advanced security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a cookie consent banner and privacy policy present but no explicit GDPR compliance statements or data retention policies. Overall, the website is professional, trustworthy, and secure for its business purpose. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance its security posture and user trust.

W

Walsh Construction Co.

walshconstruction.com

0

Walsh Construction Co. is a regional construction company based in the Pacific Northwest, specializing in community-focused projects such as affordable housing and senior living facilities. The company emphasizes a family-oriented culture and partnership approach, supported by multiple workplace excellence awards. Their website reflects a professional digital presence with modern technologies including WordPress, jQuery, and SEO optimization tools. Multimedia content such as embedded Vimeo videos and social media integration enhance user engagement. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements are recommended in security headers and privacy consent mechanisms. The absence of WHOIS data limits domain trust analysis but does not detract significantly from the overall legitimacy given the professional presentation and business indicators. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving accessibility features to strengthen trust and compliance.

R

RDH

rdh.com

0

RDH is a well-established consulting and engineering firm specializing in building enclosures, facade and structural engineering, construction, energy and climate services, forensics, and asset management. The company targets clients across North America, focusing on improving building performance, resilience, and sustainability. Their website reflects a strong market position with comprehensive service offerings and a professional digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for performance, SEO, and mobile responsiveness. Security posture is good with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The lack of WHOIS registration data is a notable concern, impacting domain legitimacy trust. Overall, the website is professional and trustworthy, but domain registration transparency should be addressed.

P

PAE Engineers

pae-engineers.com

0

PAE Engineers is a professional engineering consulting firm specializing in sustainable mechanical, electrical, plumbing, lighting, and technology design. They position themselves as leaders in high-performance engineering with a strong commitment to sustainability, evidenced by their B-Corp and JUST certifications. Their target market includes clients in healthcare, education, government, and commercial real estate sectors seeking innovative and regenerative engineering solutions. The website presents a comprehensive portfolio of projects and services, reinforcing their market position. Technically, the website employs modern web technologies including Google Analytics and Tag Manager for tracking, and uses responsive design with good SEO and accessibility features. The site is served over HTTPS with CSRF protections indicated, though some security headers are missing. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. From a security perspective, the site demonstrates good practices such as HTTPS and CSRF tokens but could improve by adding security headers and explicit incident response information. The absence of WHOIS data for the domain is a concern, reducing trust slightly, but the professional presentation and certifications mitigate this risk. No WAF or blocking mechanisms were detected, and the content is safe and appropriate for general audiences. Overall, the website is professional, trustworthy, and well-structured, with minor improvements recommended in security headers and privacy compliance to enhance trust and protection.

H

Hacker Architects & Interior Design

hackerarchitects.com

0

Hacker Architects & Interior Design is a professional architecture studio based in Portland, Oregon, specializing in creating meaningful and sustainable spaces that connect people with their environment. The website serves as a portfolio and blog showcasing diverse projects across sectors such as education, cultural, residential, hospitality, and office design. The firm positions itself as a medium-sized regional player with a focus on clarity, meaning, and environmental integration in design. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including jQuery, Typekit fonts, and ElfSight widgets. The site is mobile-optimized and provides a good user experience with clear navigation and professional content presentation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks advanced security headers and formal privacy or cookie policies, which are compliance gaps. The absence of WHOIS data for the domain raises questions about domain registration legitimacy, but the professional nature of the site and contact information support its credibility. Overall, the site is well-constructed but would benefit from enhanced privacy compliance and security best practices.

ERA Architects Inc. is a Canadian award-winning architecture and planning firm specializing in heritage conservation, adaptive reuse, and urban design. The firm focuses on renewing and improving the built environment through conservation and reactivation strategies. Their market position is strong within the Canadian architecture sector, supported by a portfolio of significant projects and a professional leadership team. Technically, the website is built on WordPress with modern SEO and analytics tools, demonstrating a mature digital presence with good mobile optimization and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and explicit privacy policies. Overall, the firm presents a credible and professional online presence with room for enhanced privacy compliance and security transparency.

B

British Pacific Properties Limited

britishproperties.com

0

British Pacific Properties Limited is a well-established real estate developer focused on creating exceptional residential communities in West Vancouver, Canada. With a legacy dating back to 1931, the company emphasizes quality, nature, and lifestyle in its developments. The website serves as a professional platform to showcase their communities, history, and upcoming projects, targeting prospective home buyers and residents interested in upscale neighborhoods. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery and GSAP for interactive elements. Hosting is provided by GreenGeeks, and the site includes Google Tag Manager and Usercentrics for analytics and consent management, indicating a moderate level of digital maturity. The site is mobile optimized and has good SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and no advanced security headers were detected. There is no published security policy or incident response contact, which could be improved. Privacy and cookie policies are present and include consent mechanisms, supporting GDPR compliance. Overall, the website is professional, trustworthy, and secure for its business purpose. Recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and enhancing accessibility to further strengthen the security posture and compliance.

A

Andersen Construction

andersen-const.com

0

Andersen Construction is a well-established general contractor and construction management firm operating primarily in the Pacific Northwest of the United States, with offices in Portland, Seattle, Boise, and Eugene. Founded in 1950, the company emphasizes collaborative delivery methods such as Design-Build, Integrated Project Delivery (IPD), and Construction Management/General Contracting (CM/GC). Their business model focuses on serving commercial, industrial, healthcare, education, and multifamily housing sectors with a strong reputation for integrity, safety, and client-first service. The website reflects a medium-sized, employee-owned company with a consistent brand and a professional online presence. Technically, the website uses a moderate technology stack including jQuery, Google Analytics, and Elfsight widgets for enhanced user experience and social proof. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in security headers and privacy compliance. The absence of explicit privacy and cookie policies and lack of security incident contacts indicate gaps in compliance and security transparency. Security posture is adequate but could be improved by implementing standard security headers and providing clear data protection and incident response information. The WHOIS data is unavailable, which raises concerns about domain legitimacy despite the professional content and strong business signals. Overall, the website is trustworthy and professional but would benefit from enhanced security and compliance disclosures. Strategic recommendations include improving privacy and cookie policies, adding security headers, establishing incident response contacts, and clarifying domain registration details to enhance trust and compliance.

R

RUBY PRESS GmbH

ruby-press.com

0

Ruby Press GmbH operates a specialized e-commerce platform focused on publishing and selling books related to architecture, art, and cultural spatial practices. Established in 2008 and based in Berlin, Germany, the company targets academics, architects, and cultural practitioners with a curated selection of niche publications. The website demonstrates a professional and consistent brand presence with clear product listings and company information. Technically, the site is built on WordPress with WooCommerce, leveraging modern web technologies such as jQuery and Google Fonts, and hosted likely via IONOS SE. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate with HTTPS enforced and domain transfer protection enabled, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a cookie consent banner and privacy policy present, though GDPR compliance is not explicitly stated. Overall, the website is trustworthy and professionally maintained, with room for security and privacy enhancements.

Stiftung Buchkunst is a well-established non-profit organization based in Germany that promotes exemplary book design through prestigious competitions such as 'Die Schönsten Deutschen Bücher', 'Förderpreis für junge Buchgestaltung', and 'Best Book Design from all over the World'. The organization targets the book industry, designers, publishers, and the general public interested in book arts. Their business model centers on cultural promotion and recognition of design excellence rather than commercial sales. The website reflects a mature digital presence with clear navigation, multilingual support, and a focus on content quality. Technically, the site uses standard web technologies with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though additional security headers and policies could enhance protection. Overall, the site is trustworthy and professional, with transparent contact information and GDPR compliance.

Affichage Public is a small Swiss cultural association founded in 2015 dedicated to promoting Swiss graphic design as a cultural heritage through exhibitions and events primarily in the French-speaking region of Switzerland. The website serves as an informational platform highlighting upcoming exhibitions, partner organizations, and the association's mission. The technical infrastructure is basic, relying on standard HTML, CSS, and JavaScript with jQuery, without advanced CMS or analytics integrations. Mobile optimization and accessibility are basic but functional. Security posture is minimal with no visible security headers or policies, and no HTTPS verification data available. Privacy and cookie policies are absent, which impacts compliance and user trust. The WHOIS data is consistent with the association's profile, showing no privacy protection and appropriate domain age. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

A

Arno Mathies

arnomathies.com

0

Arno Mathies operates a website showcasing artistic and design projects primarily focused on furniture, tableware, and accessories crafted from diverse materials such as aluminum, porcelain, cardboard, and HDPE. The site functions as a portfolio and an online shop targeting art and design enthusiasts interested in unique, handcrafted pieces. The business model appears to be direct sales combined with portfolio presentation, positioning itself in a niche artistic design market. The domain has been registered since 2011, indicating a mature presence in its field. Technically, the website uses Bootstrap 4 and common JavaScript libraries served via CDN, indicating a standard modern front-end stack. The site is moderately optimized for mobile and performance but lacks advanced SEO and accessibility features. Hosting is managed through kreativmedia.ch based on DNS information. No CMS or advanced platform detected, suggesting a custom or static site. From a security perspective, the site lacks critical security headers and does not enable DNSSEC, which are areas for improvement. There is no visible privacy or cookie policy, and no forms or data collection mechanisms are present, reducing exposure but also indicating limited user interaction. The domain registration is consistent and legitimate, with no suspicious patterns detected. Overall, the website is functional and safe but could benefit from enhanced security practices, privacy compliance, and richer business information to improve trust and professionalism.

P

Paperform

paperform.co

0

Paperform is a technology company offering an AI-powered form builder platform designed to simplify the creation of customizable online forms. The website positions itself as a flexible and smart solution for businesses and individuals seeking to streamline workflows and data collection. The company appears to have a medium-sized presence in the SaaS market with a focus on user-friendly design and AI integration. Technically, the website is built using modern frameworks such as React and Gatsby, ensuring fast performance, good SEO, and excellent mobile optimization. However, the site lacks explicit privacy and cookie policies, which are critical for compliance and user trust. Security posture is generally good with HTTPS enabled, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is professional and trustworthy, but enhancing privacy compliance and security transparency would strengthen its risk profile.

Z

ZeroEnergy Design, P.C.

zeroenergy.com

0

ZeroEnergy Design, P.C. is a small professional services firm specializing in sustainable architecture, design, and engineering. Their focus is on creating beautiful, healthy buildings that improve the living environment, with expertise in net-zero, passive house, multifamily, and institutional projects. The company targets clients seeking environmentally responsible building solutions and operates primarily in the United States. The website is professionally designed using the Squarespace platform, featuring good content quality, clear navigation, and mobile optimization. Technical infrastructure includes modern web technologies such as Google Tag Manager and reCAPTCHA, ensuring a moderate level of digital maturity. Security posture is strong with HTTPS and HSTS enabled, though some security headers and policies could be improved. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. The WHOIS data is missing or unavailable, which raises concerns about domain registration transparency but does not currently detract from the website's legitimacy based on content and business presence. Overall, the website presents a trustworthy and professional image with room for improvement in privacy and security disclosures.

N

Netflix

netflix.com

0

Netflix is a leading global streaming entertainment service offering unlimited films, series, and more via subscription. The website targets a general audience in Finland with localized language options and provides a seamless user experience for streaming content across multiple devices. The business model is subscription-based, positioning Netflix as a dominant player in the media industry with a strong brand presence and consistent global branding. Technically, the site employs modern web technologies including JavaScript and React, with cookie consent managed by OneTrust, ensuring compliance with privacy regulations such as GDPR. The site is well-optimized for mobile and desktop platforms, delivering fast performance and good accessibility. Security posture is strong with HTTPS enforced and secure form handling, though explicit security headers and incident response information are not publicly detailed. Overall, the website demonstrates high professionalism, trustworthiness, and compliance, though WHOIS data is unavailable likely due to registry restrictions. Strategic recommendations include enhancing transparency around security policies and vulnerability disclosures to further strengthen trust.

G

GitHub

github.blog

0

GitHub Blog is a professionally maintained content platform operated by GitHub, Inc., a leading technology company specializing in software development and collaboration tools. The blog serves as a key communication channel to deliver updates, insights, and educational content to developers worldwide, reinforcing GitHub's market position as a premier developer platform. The site targets software developers, engineers, and technology professionals, offering resources on AI, security, enterprise software, and developer skills. Technically, the website is built on WordPress with modern SEO and accessibility optimizations, ensuring fast performance and a responsive user experience across devices. Security posture is strong with HTTPS enforcement and standard security headers, although explicit security policies and vulnerability disclosure mechanisms are not prominently published on the blog. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms. Overall, the website demonstrates high business credibility, technical maturity, and content quality, supporting GitHub's brand and community engagement objectives.

G

GitHub

githubuniverse.com

0

GitHub Universe 2025 is a flagship global developer event hosted by GitHub, a leading technology company and subsidiary of Microsoft. The event focuses on innovation, collaboration, and AI-powered software development, targeting developers, engineers, and technology professionals worldwide. The website provides comprehensive event details including dates, location, agenda, speakers, ticketing options, and highlights from previous years. The business model centers on ticket sales for in-person attendance and free virtual participation, positioning GitHub Universe as a premier industry event with strong brand recognition and market presence. Technically, the website is built using modern web technologies such as React and Next.js, ensuring fast performance, mobile optimization, and good accessibility. The site is hosted with reputable DNS and registrar services, and employs HTTPS with strong domain registration security flags. However, there is room for improvement in DNS security (DNSSEC not enabled) and in publishing comprehensive privacy and security policies. From a security perspective, the site demonstrates good baseline practices including HTTPS enforcement and domain locking. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of explicit privacy, cookie, and security policies, as well as contact information for incident response, represents a compliance gap that should be addressed to enhance trust and regulatory adherence. Overall, GitHub Universe 2025's website is professional, trustworthy, and technically sound, supporting its role as a major industry event. Strategic improvements in privacy compliance and security transparency will further strengthen its security posture and user confidence.

E

Eventible

eventible.com

0

Eventible is a specialized online platform founded in 2020 that provides business professionals with trusted reviews and discovery tools for business events and conferences. The platform targets professionals seeking to maximize their event ROI by offering curated event information sorted by industry, priority, and event type. With over 60,000 monthly users, Eventible positions itself as a reliable source for event insights. Technically, the website leverages modern web technologies including Next.js, React, and integrates multiple analytics and marketing tools such as HubSpot, Microsoft Clarity, and AdRoll, ensuring a mature digital infrastructure. Security-wise, the site enforces HTTPS, implements cookie consent mechanisms, and uses security headers, but lacks publicly available incident response or vulnerability disclosure policies. The absence of WHOIS registration data introduces some uncertainty about domain legitimacy, though the professional presentation and structured data with founder information provide trust signals. Overall, Eventible presents a solid business and technical profile with room for improvement in transparency and security policy publication.

C

COREhub, S.R.L.

sessionize.com

0

Sessionize.com is a professional SaaS platform specializing in Call for Papers, Schedule, and Speaker Management software for conferences and events. Founded in 2016 and registered under COREhub, S.R.L., the platform serves a global audience including over 246,000 speakers and 9,700 events. The website presents a clear, well-structured, and visually appealing interface that targets event organizers and speakers, offering a comprehensive suite of event management tools. The business model is subscription-based with tiered pricing for community, professional, and bulk event usage. Technically, the website leverages modern cloud infrastructure hosted on Microsoft Azure, uses popular libraries such as FontAwesome and Google Fonts, and integrates telemetry and analytics tools like Microsoft Application Insights, Google Analytics, and Microsoft Clarity. The site is mobile optimized and accessible, with good SEO practices and fast performance. However, no CMS or major frameworks were explicitly detected. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers. There is no visible security policy, incident response information, or vulnerability disclosure mechanism published. Privacy and cookie policies are not found on the landing page, indicating gaps in privacy compliance. The WHOIS data is transparent and consistent with the business profile, enhancing trustworthiness. Overall, Sessionize.com is a credible and professional platform with strong business credibility and technical implementation. The main areas for improvement include publishing comprehensive privacy and cookie policies, enhancing security headers, and providing clear security and incident response policies to strengthen compliance and user trust.

P

Programming Language Group at Delft University of Technology

webdsl.org

0

WebDSL is an academic project developed by the Programming Language Group at Delft University of Technology, providing a domain-specific language for modeling web applications with a rich data model. The website serves as a documentation hub with tutorials, references, and source code links, targeting developers and researchers interested in domain-specific languages and web application modeling. The project is positioned as a niche academic tool with a small but focused audience. Technically, the site is built using MkDocs with the Material theme, hosted likely on GitHub Pages, and employs modern web standards including HTTPS and responsive design. Security posture is generally good with HTTPS enforced and no exposed sensitive data, but lacks DNSSEC and security headers which could enhance protection. Privacy compliance is minimal with no visible privacy or cookie policies and no contact information for incident response or data protection officers. Overall, the site is trustworthy and professional for its academic purpose but could improve compliance and security transparency.

R

Remo

remo.co

0

Remo is a technology company specializing in virtual event management platforms that enable immersive online events with real connections and engagement. Their platform supports virtual conferences, webinars, networking, and hybrid events, positioning them as a leading SaaS provider in the virtual events space. The company targets event organizers, enterprises, educational institutions, and associations, offering a comprehensive suite of interactive tools to enhance attendee experience. Technically, Remo's website is built on modern web technologies including Webflow CMS, Google Fonts, Microsoft Clarity for analytics, Visual Website Optimizer for A/B testing, and Usercentrics for cookie consent management. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS with strong SSL configuration and implements security headers. It uses Google reCAPTCHA Enterprise to protect forms and has a cookie consent mechanism aligned with GDPR. However, explicit security policies and incident response information are not publicly available, indicating room for improvement in transparency. Overall, Remo presents a professional, trustworthy, and compliant online presence with a strong market position. The risk profile is low, with no detected vulnerabilities or suspicious activity. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and enhancing transparency around data protection officer contacts and certifications.

G

GitNation

gitnation.com

0

GitNation is a technology-focused content platform specializing in React and JavaScript development. It offers talks, workshops, and articles primarily targeting developers and engineers interested in these technologies. The website demonstrates a mature and professional presence with a domain registered since 2015 and a consistent brand identity. Technically, the site leverages modern frameworks such as React and Next.js, uses Cloudflare for DNS and likely hosting, and integrates error monitoring and analytics tools like Sentry and Gauges. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and well-positioned in its niche but could improve compliance and security transparency.

T

Team Tito

tito.io

0

Tito is a small technology company offering a simple and powerful event registration software platform. Their website presents a professional and modern design focused on event organizers seeking fast and flexible ticketing solutions. The technical infrastructure leverages modern JavaScript frameworks such as Vue.js and BootstrapVue, with deferred script loading and privacy-conscious analytics integration. Security posture is adequate with HTTPS enforced and minimal tracking, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. Overall, the website is functional and trustworthy but would benefit from enhanced transparency and security documentation.

R

RiversideFM Inc

riverside.com

0

RiversideFM Inc operates a sophisticated SaaS platform focused on high-quality remote podcast and video recording, editing, and live streaming. The company targets podcasters, video interviewers, marketers, and businesses seeking professional-grade media production tools powered by AI. Their market position is strong with a comprehensive suite of services including 4K local recording, AI-driven editing, transcription, captions, and live streaming capabilities. The platform is supported by a modern technical infrastructure leveraging Webflow CMS, Cloudflare DNS, Google Tag Manager, Segment Analytics, and feature flag management via LaunchDarkly. Security posture is solid with HTTPS enforcement, clientTransferProhibited domain status, and secure authentication via Google One Tap, though improvements such as enabling DNSSEC and publishing explicit security policies are recommended. Overall, the website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence with high trustworthiness and user engagement.

L

LaunchDarkly

launchdarkly.com

0

LaunchDarkly is a leading feature management platform founded in 2014, providing developers and enterprises with tools to safely deliver software through feature flags, experimentation, and AI-driven configurations. The company positions itself as a critical enabler for modern software delivery, emphasizing reliability, automation, and data-driven decision making. Their platform integrates deeply into developer workflows and supports a wide range of SDKs and integrations, targeting developers, DevOps, SREs, and product managers. Technically, the website leverages modern frameworks such as Gatsby and React, hosted on Netlify with AWS DNS, and employs comprehensive analytics and marketing tools including Segment, Google Analytics, and Cookiebot for privacy compliance. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and reputable third-party services, though explicit security headers could be more visible. The WHOIS data confirms domain legitimacy with consistent registration details and a long-term expiry. Overall, the site demonstrates high professionalism, technical maturity, and compliance readiness.

S

Spark Hire | Recruit

comeet.co

0

Spark Hire | Recruit operates a professional Applicant Tracking System (ATS) platform branded as Spark Hire Recruit, targeting globally distributed teams and hiring managers seeking to streamline recruitment processes. The website presents a modern, user-friendly interface emphasizing collaboration, automation, and scheduling features to accelerate hiring. The company positions itself as a technology provider in the recruitment SaaS market with a medium-sized business profile. Technically, the website is built on WordPress CMS with Bootstrap and jQuery frameworks, integrating multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar. The site demonstrates good SEO practices and mobile optimization but lacks explicit privacy and terms of service pages. Security posture is strong with HTTPS enforcement and security headers, though no vulnerability disclosure or incident response contacts are visible. WHOIS data is missing or unavailable, raising concerns about domain registration legitimacy. Overall, the site is professional and trustworthy in content but requires improved transparency on privacy, contact, and domain registration details.

G

Groux.ch

groux.ch

0

Groux.ch is a small Swiss-based business specializing in energy healing, personalized therapy, workshops, and spiritual services. The website offers a range of services including geobiology, corporate analysis, and an online boutique with therapeutic objects and courses. The business targets individuals interested in personal transformation and spiritual development, positioning itself as a niche provider in the energy sector within the French-speaking region of Switzerland. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities, integrating modern payment solutions like Stripe and social media platforms such as Facebook, Instagram, and YouTube. The site demonstrates good design quality, mobile responsiveness, and SEO optimization with structured data and Open Graph tags. Security posture is adequate with HTTPS and CAPTCHA protections, but lacks explicit security headers and privacy compliance policies, which are areas for improvement. Overall, the domain registration is consistent with the business claims, indicating legitimacy and trustworthiness.

P

Polygravia Innovation Visuelle SA / Polygravia Arts Graphiques SA

polygravia.ch

0

Polygravia is a Swiss-based company specializing in advanced printing, packaging, environmental design, and advertising realizations. It holds a strong market position as a pioneer in Digital Foil technology in Europe and operates multiple subsidiaries focused on different aspects of visual communication and prototyping. The website reflects a professional and consistent brand image targeting business clients seeking high-quality printing and design services. Technically, the site is built on WordPress with modern tools such as Gravity Forms, Google Analytics, and CookieYes for consent management, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and an ongoing ISO 27001 certification process, although some compliance documentation like privacy policy and terms of service are missing. Overall, the site is trustworthy, well-structured, and compliant with basic privacy and security standards, with room for improvement in transparency and accessibility.

Duo d’Art is a Swiss screen printing company established in 1932, recognized as the oldest in its sector in Switzerland. It specializes in screen printing and digital printing services for advertising, art prints, and large visual communication surfaces, including advertising on public transport. Since 2016, it operates as part of the Remarq SA group, enhancing its technical and human resources. The website presents clear contact information and certifications but lacks privacy and cookie policies, which are important for compliance. Technically, the site is basic with no detected CMS or advanced frameworks, and minimal mobile optimization. Security posture is weak due to missing security headers and unclear SSL status. No analytics or tracking scripts were found, indicating minimal user tracking. Overall, the website is functional but could improve in security, privacy compliance, and technical modernization.

T

TBS, La Buona Stampa sa

labuonastampa.ch

0

LaBuonaStampa is a specialized printing house based in Lugano, Switzerland, with a century-long tradition in high-quality art book printing and packaging. The company supports clients through all phases of the printing process, emphasizing craftsmanship and client involvement. The website showcases notable art projects and highlights the company's expertise in producing artistic publications. Technically, the site is built on WordPress with modern plugins like WPBakery and Slider Revolution, and it uses Google Analytics and Google Maps APIs. The site is mobile-optimized and has good SEO practices but lacks privacy and cookie policies, which impacts compliance. Security posture is decent with HTTPS enabled but missing security headers and formal security policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

The website younesklouche.com serves as a personal portfolio for photographer Younès Klouche, showcasing photographic projects under categories such as 'Personnal' and 'Comissions'. The site targets a general audience interested in photography and artistic commissions. The business model is primarily personal branding and portfolio display, with no direct e-commerce or transactional features evident. The domain is registered since 2017 with OVH sas, a reputable hosting and registrar provider, indicating a stable and legitimate online presence. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Swiper.js for UI elements. Google Analytics is integrated for visitor tracking, but no cookie consent mechanism or privacy policies are present, which is a compliance gap. The site is hosted on OVH infrastructure with basic SSL configuration and no DNSSEC enabled. Performance and mobile optimization are basic but functional. From a security perspective, the site uses HTTPS but lacks security headers such as Content-Security-Policy or X-Frame-Options, which could improve protection against common web attacks. No vulnerability disclosures or incident response contacts are provided. The absence of privacy and cookie policies and lack of GDPR compliance indicators reduce trust and compliance posture. No suspicious or malicious content was detected. Overall, the website is a straightforward personal portfolio with moderate technical implementation and basic security posture. Strategic improvements include adding privacy and cookie policies, implementing security headers, enabling DNSSEC, and enhancing GDPR compliance. These steps will improve trustworthiness, security, and legal compliance, benefiting both the site owner and visitors.

Uldry AG is a well-established Swiss printing and visual communication company with over 56 years of experience. They offer a broad portfolio of printing services including digital print, fine art prints, and advertising technology products, emphasizing ecological and sustainable production methods. Their market position is strong locally with a medium-sized business model targeting both B2B and B2C customers. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site uses modern JavaScript libraries and tracking tools with good mobile optimization and SEO practices. Security posture is solid with HTTPS, secure forms, and cookie consent management, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR-aligned consent mechanisms. Overall, the site is trustworthy and professionally maintained with transparent business and contact information.

O

Omnitype

omnitype.ch

0

Omnitype is a small Swiss online type foundry based in Lausanne, specializing in the design, production, and distribution of typefaces. The company is run by Leonardo Azzolini and Simon Mager and offers trial versions and custom font projects. The website presents a professional and consistent brand image targeting designers and clients interested in typography. Technically, the site uses standard HTML5 and CSS3 with moderate performance and good mobile optimization but lacks advanced frameworks or CMS. Security posture is basic with no detected security headers or policies, and no HTTPS status was explicitly provided. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is safe with no adult or questionable content and minimal user tracking.

O

Oneleet Inc.

oneleet.com

0

Oneleet Inc. is a small technology company founded in 2022, specializing in full-stack cybersecurity and compliance automation solutions. Their platform offers services such as SOC 2 compliance, ISO 27001 certification support, penetration testing, and assistance with HIPAA, PCI, and GDPR compliance. The company positions itself as a security-first compliance provider targeting businesses seeking to streamline their security and compliance processes. Technically, the website is built using Framer CMS and integrates multiple analytics and marketing tools including Google Analytics, Segment, Posthog, and HubSpot, indicating a mature digital marketing infrastructure. Security-wise, the site uses HTTPS with good SSL configuration but lacks some security headers and formal privacy and cookie policies, which are critical for compliance and user trust. The absence of WHOIS registration data is a concern, though the professional website and clear business focus mitigate some risk. Overall, Oneleet presents as a legitimate cybersecurity service provider with room for improvement in privacy compliance and security best practices.

S

SavvyCal, Inc.

savvycal.com

0

SavvyCal, Inc. operates a professional SaaS scheduling platform designed to simplify meeting bookings for individuals and teams. The company positions itself as a niche player with innovative features such as calendar overlays, team scheduling modes, and round robin scheduling. Their market focus is on professionals and teams seeking efficient and user-friendly scheduling solutions. The website reflects a mature digital presence with modern technologies including Inertia.js, Cloudflare CDN, Stripe for payments, and privacy-conscious analytics via Fathom. Security is well-implemented with HTTPS, security headers, and CSRF protections, although DNSSEC is not enabled. Privacy policies and terms of service are comprehensive and GDPR compliant, supporting trust and compliance. Overall, the site is professional, fast, and user-friendly, with strong branding and clear business information.